$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Sa3exXTN1J9wzGftysQJHNMzkUc.roa File: Sa3exXTN1J9wzGftysQJHNMzkUc.roa (raw, json) Hash identifier: 20CdidB+JONEz/MgtBzE7ScFEUbbpEvUf97Kh/n/PdU= Subject key identifier: 49:AD:DE:C5:74:CD:D4:9F:70:CC:67:ED:CA:C4:09:1C:D3:33:91:47 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1266 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Sa3exXTN1J9wzGftysQJHNMzkUc.roa Signing time: Mon 10 Feb 2025 14:14:48 +0000 ROA not before: Mon 10 Feb 2025 14:14:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 203.163.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4710 (0x1266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=49ADDEC574CDD49F70CC67EDCAC4091CD3339147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0b:a8:4f:19:26:85:8d:54:22:3e:3b:dc:4c: 80:43:18:7e:14:02:c0:3c:8c:c1:fb:23:fc:24:cd: cf:f8:4d:e3:85:f2:61:04:fb:b5:c8:3e:c0:5f:ab: 48:3d:0a:8e:e1:93:a6:9d:0c:e3:01:26:0d:59:b2: 6d:b6:87:d1:8f:9e:d0:27:20:a5:8b:a5:96:f5:e1: d6:32:6b:19:4f:a5:f3:50:10:f1:a4:9d:44:49:17: 09:21:98:23:b0:dd:88:9f:2c:81:b2:18:e6:f9:3d: 8e:b3:af:85:d5:b7:15:35:89:7e:6a:89:50:19:b0: 0b:6c:22:c1:55:b9:7a:f0:0c:aa:e8:27:43:6d:1e: 18:1b:a4:0b:dd:00:79:db:6b:91:57:ee:c8:a8:c9: 96:6d:75:6c:4b:37:d5:c3:ca:7c:b8:83:a9:52:11: dc:a5:4f:ee:ee:4f:47:72:03:16:7a:ff:48:ea:b2: 68:e4:6f:b9:f9:dd:ee:0d:0d:30:88:df:9c:2c:e1: 52:4f:e5:4a:2d:7f:96:38:7e:86:8e:d0:b2:3d:77: bc:dc:02:8e:71:e7:47:fe:7d:d5:cd:5d:11:d6:d1: a7:73:a1:9c:55:2c:7c:00:e7:0e:db:4d:26:0d:19: 90:cd:ba:12:15:c5:8e:c1:42:1a:4f:c7:4c:66:23: 66:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AD:DE:C5:74:CD:D4:9F:70:CC:67:ED:CA:C4:09:1C:D3:33:91:47 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Sa3exXTN1J9wzGftysQJHNMzkUc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.192.0/23 Signature Algorithm: sha256WithRSAEncryption 32:a4:c4:bb:38:09:d6:bd:ab:a3:18:97:4f:e2:33:5d:0b:1e: 2b:68:f4:b7:8e:ea:65:64:1f:21:e2:85:e1:4e:e9:d6:bd:79: d3:a9:1a:e6:f9:53:96:22:27:a7:d1:c2:12:50:e2:0f:c0:6a: f0:b1:87:21:c1:15:57:36:35:29:9a:d8:fb:eb:0e:08:0c:f5: 5b:f7:c8:1f:32:1a:3d:fa:e9:5b:06:b0:4f:49:f1:c9:09:2e: a2:4b:0a:fe:af:ed:d0:3b:a8:76:76:50:ea:e2:1a:c5:11:48: db:8d:47:4b:9e:9f:a9:66:16:fb:48:00:c9:33:d1:aa:e9:a9: b6:6d:eb:a6:9e:5d:5c:7a:3c:69:b9:83:3c:da:fe:29:0a:38: 64:25:fd:e1:7e:24:ff:a5:8a:30:89:d4:94:9a:25:62:77:fd: 2a:0c:54:89:c9:ad:5c:c2:9f:61:91:09:f8:f5:c7:03:ab:03: 30:82:c9:51:3f:4d:94:19:cb:82:b7:06:f3:79:a6:2e:ec:76: 15:8e:68:37:aa:be:21:9f:3c:27:e4:55:fc:4a:a2:b5:71:f2: 12:8c:ba:79:dc:df:81:cf:41:67:6c:92:da:ca:12:fa:56:54: 57:74:b0:1b:f2:90:34:7c:96:da:16:22:76:9f:40:95:13:21: 02:a7:af:69 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEmYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5QURERUM1NzRDREQ0 OUY3MENDNjdFRENBQzQwOTFDRDMzMzkxNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1C6hPGSaFjVQiPjvcTIBDGH4UAsA8jMH7I/wkzc/4TeOF8mEE +7XIPsBfq0g9Co7hk6adDOMBJg1Zsm22h9GPntAnIKWLpZb14dYyaxlPpfNQEPGk nURJFwkhmCOw3YifLIGyGOb5PY6zr4XVtxU1iX5qiVAZsAtsIsFVuXrwDKroJ0Nt HhgbpAvdAHnba5FX7sioyZZtdWxLN9XDyny4g6lSEdylT+7uT0dyAxZ6/0jqsmjk b7n53e4NDTCI35ws4VJP5Uotf5Y4foaO0LI9d7zcAo5x50f+fdXNXRHW0adzoZxV LHwA5w7bTSYNGZDNuhIVxY7BQhpPx0xmI2ZlAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUSa3exXTN1J9wzGftysQJHNMzkUcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9TYTNleFhUTjFKOXd6 R2Z0eXNRSkhOTXprVWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PAMA0GCSqGSIb3DQEBCwUAA4IBAQAypMS7OAnWvaujGJdP4jNdCx4raPS3 juplZB8h4oXhTunWvXnTqRrm+VOWIien0cISUOIPwGrwsYchwRVXNjUpmtj76w4I DPVb98gfMho9+ulbBrBPSfHJCS6iSwr+r+3QO6h2dlDq4hrFEUjbjUdLnp+pZhb7 SADJM9Gq6am2beumnl1cejxpuYM82v4pCjhkJf3hfiT/pYowidSUmiVid/0qDFSJ ya1cwp9hkQn49ccDqwMwgslRP02UGcuCtwbzeaYu7HYVjmg3qr4hnzwn5FX8SqK1 cfISjLp53N+Bz0FnbJLayhL6VlRXdLAb8pA0fJbaFiJ2n0CVEyECp69p -----END CERTIFICATE-----Generated at Sat Apr 5 13:56:28 2025 by rpki-client