$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/V0nd6pc3RtSsmF0nSm_gsNM082c.roa File: V0nd6pc3RtSsmF0nSm_gsNM082c.roa (raw, json) Hash identifier: yZIPD6BTzSX8sDqBWT7nVtGftHirqyVVjdjng9udzzM= Subject key identifier: 57:49:DD:EA:97:37:46:D4:AC:98:5D:27:4A:6F:E0:B0:D3:34:F3:67 Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Certificate serial: 0C58 Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/V0nd6pc3RtSsmF0nSm_gsNM082c.roa Signing time: Mon 10 Feb 2025 14:12:39 +0000 ROA not before: Mon 10 Feb 2025 14:12:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.103.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 16:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3160 (0xc58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Validity Not Before: Feb 10 14:12:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5749DDEA973746D4AC985D274A6FE0B0D334F367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:56:73:ee:52:ef:6d:42:4c:95:e8:39:b2:55: 4a:c7:63:2d:43:ec:62:df:01:fa:67:ce:6b:db:2f: 4e:94:a0:cd:c9:ee:d2:8c:b9:ac:2e:4c:35:e6:a8: e3:81:d9:63:93:ed:be:d1:5f:d3:c8:22:6d:69:ae: aa:ac:ab:b9:af:00:a3:bc:3d:a6:7d:b7:8e:1d:93: 1a:08:7e:6e:a5:64:dc:e0:57:59:09:79:83:32:28: 44:1d:4b:a6:5b:70:64:9e:48:8d:4e:c2:bf:2c:96: 1b:94:c6:fd:7e:19:e5:44:1e:38:dc:5a:0a:82:28: cf:49:07:00:8d:5a:a0:3a:42:7a:db:c2:38:5c:aa: dd:90:e5:5d:89:e3:09:91:56:ab:30:b3:55:fa:12: 69:e4:23:c0:73:30:c6:7c:d7:5c:fe:b9:b2:28:0b: 1a:6d:58:d3:0f:be:92:f5:0e:05:da:d8:8e:b0:40: 8e:99:8b:1d:80:68:ee:64:24:4b:27:75:d9:0d:fb: 0b:d8:bd:18:60:5c:cc:a2:ac:a2:9b:99:93:32:89: 9b:1f:fa:a5:67:eb:98:35:bd:94:a6:8a:04:66:6a: ba:c6:f3:2f:60:2c:38:db:04:67:96:04:56:57:fa: f4:29:f3:9a:d8:11:34:61:3d:1f:46:9a:c0:64:82: 9f:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:49:DD:EA:97:37:46:D4:AC:98:5D:27:4A:6F:E0:B0:D3:34:F3:67 X509v3 Authority Key Identifier: keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/V0nd6pc3RtSsmF0nSm_gsNM082c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.103.80.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:cd:77:68:38:ab:0e:05:e5:55:40:67:70:8f:a0:f8:66:0b: ea:5c:a1:54:de:d6:71:b8:99:df:0d:77:01:34:46:bc:3e:db: 06:11:b7:5f:7d:b1:d7:43:8d:2b:7b:8a:5e:76:77:11:ff:19: a6:aa:24:aa:c1:b0:7a:7d:66:a7:3e:b4:89:c0:1d:a4:f4:63: 8c:ff:e1:45:f4:51:1b:5a:58:52:50:05:ec:e1:78:c0:ab:33: 77:b9:55:8f:e4:fe:dc:c4:51:ed:d1:0f:e1:f8:84:49:2a:a6: dc:b5:ed:f0:52:54:60:22:d9:7b:0c:5f:c9:a3:a9:1d:78:93: a5:95:c0:41:25:29:97:3c:65:0f:ef:f6:cb:39:c4:38:d2:63: 1d:f9:ac:f2:be:45:92:d3:ca:59:bb:40:db:ca:64:27:ba:6c: 3a:4c:ad:50:34:52:05:3d:f1:4d:cd:b5:74:9a:da:33:9d:0f: f8:6c:da:18:36:9a:08:5d:de:a1:2c:ef:01:34:21:10:37:91: b3:39:eb:46:6a:45:49:c0:a4:4e:59:c7:99:f3:09:76:99:cf: 66:f7:93:cc:21:82:fe:ef:17:5c:d4:66:4e:62:4d:bd:10:d7: aa:3c:2c:a7:e2:73:99:12:a2:71:cd:0a:58:5f:5b:52:2d:38: b0:52:58:ca -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDFgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEJE NjQ1Mjc4RkM0QTJBMjAwQkNEODA3MkYzQjNEQzc5MzEyNTM2QzAeFw0yNTAyMTAx NDEyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU3NDlEREVBOTczNzQ2 RDRBQzk4NUQyNzRBNkZFMEIwRDMzNEYzNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9VnPuUu9tQkyV6DmyVUrHYy1D7GLfAfpnzmvbL06UoM3J7tKM uawuTDXmqOOB2WOT7b7RX9PIIm1prqqsq7mvAKO8PaZ9t44dkxoIfm6lZNzgV1kJ eYMyKEQdS6ZbcGSeSI1Owr8slhuUxv1+GeVEHjjcWgqCKM9JBwCNWqA6Qnrbwjhc qt2Q5V2J4wmRVqsws1X6EmnkI8BzMMZ811z+ubIoCxptWNMPvpL1DgXa2I6wQI6Z ix2AaO5kJEsnddkN+wvYvRhgXMyirKKbmZMyiZsf+qVn65g1vZSmigRmarrG8y9g LDjbBGeWBFZX+vQp85rYETRhPR9GmsBkgp/1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUV0nd6pc3RtSsmF0nSm/gsNM082cwHwYDVR0jBBgwFoAUi9ZFJ4/EoqIAvNgH Lzs9x5MSU2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTC1O RVQvaTlaRko0X0VvcUlBdk5nSEx6czl4NU1TVTJ3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9pOVpGSjRfRW9xSUF2TmdITHpzOXg1TVNVMncuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVJMLU5FVC9WMG5kNnBjM1J0U3Nt RjBuU21fZ3NOTTA4MmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ2dQMA0GCSqGSIb3DQEBCwUAA4IBAQA8zXdoOKsOBeVVQGdwj6D4ZgvqXKFU 3tZxuJnfDXcBNEa8PtsGEbdffbHXQ40re4pedncR/xmmqiSqwbB6fWanPrSJwB2k 9GOM/+FF9FEbWlhSUAXs4XjAqzN3uVWP5P7cxFHt0Q/h+IRJKqbcte3wUlRgItl7 DF/Jo6kdeJOllcBBJSmXPGUP7/bLOcQ40mMd+azyvkWS08pZu0DbymQnumw6TK1Q NFIFPfFNzbV0mtoznQ/4bNoYNpoIXd6hLO8BNCEQN5GzOetGakVJwKROWceZ8wl2 mc9m95PMIYL+7xdc1GZOYk29ENeqPCyn4nOZEqJxzQpYX1tSLTiwUljK -----END CERTIFICATE-----Generated at Sun Apr 6 15:13:38 2025 by rpki-client