$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/EkwGLuoXRQIvp9ZhBmMZuxV9shQ.roa File: EkwGLuoXRQIvp9ZhBmMZuxV9shQ.roa (raw, json) Hash identifier: M1DPQxaCNWT7mZEaDYP/5dvkBZjDizykPms/EDUoB2Y= Subject key identifier: 12:4C:06:2E:EA:17:45:02:2F:A7:D6:61:06:63:19:BB:15:7D:B2:14 Certificate issuer: /CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5 Certificate serial: 017D Authority key identifier: 60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/EkwGLuoXRQIvp9ZhBmMZuxV9shQ.roa Signing time: Mon 10 Feb 2025 13:43:27 +0000 ROA not before: Mon 10 Feb 2025 13:43:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.69.80.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 381 (0x17d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5 Validity Not Before: Feb 10 13:43:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=124C062EEA1745022FA7D661066319BB157DB214 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:09:fa:ab:20:74:b5:14:f3:d9:5d:36:ae:08: 36:83:f7:73:8d:bd:90:b9:47:88:28:0b:c5:62:5b: 29:fe:de:78:ca:87:5f:0b:5f:0c:dd:90:b6:fd:5a: 6a:22:ee:f8:f1:b5:75:28:ba:77:f9:70:13:ae:33: 97:d3:45:19:2b:a8:d5:b8:a7:98:4b:7b:a3:d8:06: 88:ea:1b:6e:79:82:e4:b3:45:96:9b:da:00:34:81: b5:09:60:08:47:59:2c:07:d7:8d:a0:78:2d:f0:9f: 69:98:ef:61:ac:64:06:c7:eb:18:fb:4b:09:1d:2d: f7:04:d3:42:4f:8f:c3:2b:ef:22:a1:5c:e4:a8:21: 38:fe:4d:f8:d8:fc:95:60:41:a2:22:e2:a0:10:f0: 72:50:d4:b9:de:05:45:94:4e:26:64:84:94:fe:10: 63:8c:44:58:9f:8c:1b:a3:c5:3d:84:bc:37:17:5a: 10:e5:85:b5:4b:21:48:3b:d2:f6:72:83:85:b5:b4: ee:55:b8:e4:d6:58:7a:75:d0:ab:6d:73:67:0b:1c: e5:39:2c:24:2e:2b:eb:1f:75:e2:63:68:0a:30:2c: 2a:dd:1f:9c:33:e0:8b:fa:c0:a3:2e:53:e1:4b:b0: 65:49:9a:c8:4f:7b:a5:b8:f4:5b:75:a9:17:f8:bd: 47:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:4C:06:2E:EA:17:45:02:2F:A7:D6:61:06:63:19:BB:15:7D:B2:14 X509v3 Authority Key Identifier: keyid:60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/EkwGLuoXRQIvp9ZhBmMZuxV9shQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.80.0/23 Signature Algorithm: sha256WithRSAEncryption 11:39:7b:0e:9c:3d:c8:3b:88:72:81:59:26:a3:93:b9:e8:cb: 64:ec:29:6d:57:e7:f1:c0:63:90:7f:5b:cc:e7:9c:7d:0d:1c: 2d:86:ce:e8:bd:e3:ad:09:39:75:fa:d0:a7:73:b9:ef:38:21: 6d:00:8e:87:20:a4:76:fc:7e:37:e9:ff:db:87:e5:47:55:ed: eb:f0:ca:b0:8b:f2:87:88:d3:41:35:fe:35:e3:f2:c3:94:f5: 38:ac:83:04:03:03:09:8f:96:25:84:98:c6:72:ba:c7:47:ca: 1b:00:84:9b:fc:85:10:b6:32:a4:4e:c7:23:be:68:f1:b7:b6: 7f:f2:6c:a2:23:0e:69:c9:ad:54:c8:c4:03:31:b4:f0:5e:6c: b3:55:f9:65:6a:ef:f9:25:80:8d:69:36:c3:8c:8a:04:6c:6e: f5:43:6d:b3:65:62:0c:b6:1e:28:3c:77:9b:b2:e6:86:76:af: 73:e9:b4:d4:ad:cd:cb:59:8b:e1:de:b7:b8:02:fe:9b:5b:0d: a6:b1:b5:da:22:1a:ad:e4:b1:01:c1:28:af:fd:61:2b:23:07: 09:60:d5:39:ed:18:1c:28:05:4d:10:06:e4:76:97:2c:d7:c9: ee:cd:85:0e:b6:8f:ba:23:54:75:de:f5:0e:98:c1:58:a2:a5: 27:e7:6a:4d -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAx NkVGNDFGMzIxQzlBQTZDMUUxM0QxMTVCNUI2MEEzMDI5QzhFNTAeFw0yNTAyMTAx MzQzMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyNEMwNjJFRUExNzQ1 MDIyRkE3RDY2MTA2NjMxOUJCMTU3REIyMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClCfqrIHS1FPPZXTauCDaD93ONvZC5R4goC8ViWyn+3njKh18L XwzdkLb9Wmoi7vjxtXUounf5cBOuM5fTRRkrqNW4p5hLe6PYBojqG255guSzRZab 2gA0gbUJYAhHWSwH142geC3wn2mY72GsZAbH6xj7SwkdLfcE00JPj8Mr7yKhXOSo ITj+TfjY/JVgQaIi4qAQ8HJQ1LneBUWUTiZkhJT+EGOMRFifjBujxT2EvDcXWhDl hbVLIUg70vZyg4W1tO5VuOTWWHp10Kttc2cLHOU5LCQuK+sfdeJjaAowLCrdH5wz 4Iv6wKMuU+FLsGVJmshPe6W49Ft1qRf4vUc7AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUEkwGLuoXRQIvp9ZhBmMZuxV9shQwHwYDVR0jBBgwFoAUYBbvQfMhyapsHhPR FbW2CjApyOUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdT SEVOL1lCYnZRZk1oeWFwc0hoUFJGYlcyQ2pBcHlPVS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWUJidlFmTWh5YXBzSGhQUkZiVzJDakFweU9VLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdTSEVOL0Vrd0dMdW9YUlFJ dnA5WmhCbU1adXhWOXNoUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnRVAwDQYJKoZIhvcNAQELBQADggEBABE5ew6cPcg7iHKBWSajk7noy2Ts KW1X5/HAY5B/W8znnH0NHC2Gzui9460JOXX60Kdzue84IW0AjocgpHb8fjfp/9uH 5UdV7evwyrCL8oeI00E1/jXj8sOU9TisgwQDAwmPliWEmMZyusdHyhsAhJv8hRC2 MqROxyO+aPG3tn/ybKIjDmnJrVTIxAMxtPBebLNV+WVq7/klgI1pNsOMigRsbvVD bbNlYgy2Hig8d5uy5oZ2r3PptNStzctZi+Het7gC/ptbDaaxtdoiGq3ksQHBKK/9 YSsjBwlg1TntGBwoBU0QBuR2lyzXye7NhQ62j7ojVHXe9Q6YwViipSfnak0= -----END CERTIFICATE-----Generated at Wed Feb 19 22:04:24 2025 by rpki-client