$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/8lgksGyFKvJY9lK1LhikqULoopw.roa File: 8lgksGyFKvJY9lK1LhikqULoopw.roa (raw, json) Hash identifier: yV52A09KS/ILAZsl/BWdaL2j13u2glbPv2ZzoG0Ou40= Subject key identifier: F2:58:24:B0:6C:85:2A:F2:58:F6:52:B5:2E:18:A4:A9:42:E8:A2:9C Certificate issuer: /CN=75BD930C745D23E9EA585C04D6B99F95A96322E5 Certificate serial: 0C4D Authority key identifier: 75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/8lgksGyFKvJY9lK1LhikqULoopw.roa Signing time: Mon 10 Feb 2025 14:25:47 +0000 ROA not before: Mon 10 Feb 2025 14:25:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131143 IP address blocks: 103.126.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3149 (0xc4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75BD930C745D23E9EA585C04D6B99F95A96322E5 Validity Not Before: Feb 10 14:25:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F25824B06C852AF258F652B52E18A4A942E8A29C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:20:f4:d9:46:38:3b:b6:cf:08:6f:e4:bb:51: ed:3e:31:2d:98:6c:91:e0:4f:1f:ee:4b:3b:9d:8e: 91:0c:f1:48:80:08:e5:f5:a4:26:03:9f:94:fc:25: 17:e4:f7:d5:23:03:92:09:39:af:0d:8c:2d:a2:0a: bf:10:c2:ca:80:ef:28:22:e4:bb:9a:2b:4d:fc:cd: 05:f7:06:c4:3e:be:5f:70:ca:a4:c4:28:3d:db:a7: ef:77:50:47:69:1e:0f:40:db:89:a6:9e:bb:aa:cc: 4b:bd:1c:de:77:ba:e1:48:de:b4:f3:4e:a9:1f:50: 65:c1:66:3b:08:71:5b:6b:c2:4f:d0:20:24:31:5b: d9:cf:5b:dd:84:8f:d2:ff:cf:51:6c:88:f8:19:82: 7f:e5:59:32:86:9d:df:bb:07:3b:7b:7e:16:4e:df: 72:b8:9e:04:54:c6:2c:fa:1c:b3:86:bc:65:ae:01: 68:de:2b:a2:ac:d0:5c:f9:3f:63:56:77:44:56:37: 36:1f:39:e2:8d:76:b3:8e:e4:f5:58:63:6d:dc:4c: 71:51:3d:2e:9c:33:37:ab:d0:a5:a1:fd:81:20:5f: 58:d6:11:9e:99:5e:99:88:1c:a3:09:22:8a:47:2a: 2e:47:80:22:ac:57:5d:c8:43:05:7a:f8:1c:c6:36: 9a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:58:24:B0:6C:85:2A:F2:58:F6:52:B5:2E:18:A4:A9:42:E8:A2:9C X509v3 Authority Key Identifier: keyid:75:BD:93:0C:74:5D:23:E9:EA:58:5C:04:D6:B9:9F:95:A9:63:22:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/db2TDHRdI-nqWFwE1rmflaljIuU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/db2TDHRdI-nqWFwE1rmflaljIuU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATRUST/8lgksGyFKvJY9lK1LhikqULoopw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.164.0/22 Signature Algorithm: sha256WithRSAEncryption 31:e7:8e:2e:7a:8b:b5:79:98:f0:75:36:5c:fa:63:27:bc:7b: b5:73:bf:81:b2:22:b3:28:c1:8c:a2:d8:cf:3a:67:de:a3:c6: fe:e7:2a:b7:bf:78:f6:1e:0b:32:ac:18:70:e2:bf:5c:dd:05: dc:f0:cb:d9:05:8e:d2:3b:6a:b9:07:56:c2:be:4e:6a:b8:1a: df:d3:b3:3e:54:6a:29:b3:20:5f:d7:2f:16:e1:2c:5b:05:5c: cd:85:e4:0a:67:28:a1:1a:a6:f9:7e:e2:4e:b6:b8:f0:bd:0d: ef:0d:64:db:d4:52:8c:81:01:88:a2:e3:31:05:5d:1d:a0:4b: 09:ff:3b:c6:29:a4:d1:53:b2:bb:a4:92:b2:65:44:3f:8e:9a: b0:f5:5f:ef:ea:96:6d:69:de:54:14:81:05:e4:fb:de:e2:77: cf:3b:a1:82:6d:fd:2b:3f:d3:b4:e3:79:42:80:c4:f3:4d:bc: be:9e:5a:0c:ff:1f:67:24:e6:6e:4f:25:8d:42:ba:04:27:99: 9b:5e:da:8c:c1:aa:a6:87:c0:c7:f8:69:fc:0d:e5:88:e6:06: ab:3b:ca:8b:9a:69:77:68:cc:4f:82:54:1b:1c:9a:60:c2:67: 0b:ac:7b:c5:b0:5c:49:66:02:f1:11:6e:54:41:4c:ae:38:13: d0:f1:71:48 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDE0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVC RDkzMEM3NDVEMjNFOUVBNTg1QzA0RDZCOTlGOTVBOTYzMjJFNTAeFw0yNTAyMTAx NDI1NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyNTgyNEIwNkM4NTJB RjI1OEY2NTJCNTJFMThBNEE5NDJFOEEyOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0IPTZRjg7ts8Ib+S7Ue0+MS2YbJHgTx/uSzudjpEM8UiACOX1 pCYDn5T8JRfk99UjA5IJOa8NjC2iCr8QwsqA7ygi5LuaK038zQX3BsQ+vl9wyqTE KD3bp+93UEdpHg9A24mmnruqzEu9HN53uuFI3rTzTqkfUGXBZjsIcVtrwk/QICQx W9nPW92Ej9L/z1FsiPgZgn/lWTKGnd+7Bzt7fhZO33K4ngRUxiz6HLOGvGWuAWje K6Ks0Fz5P2NWd0RWNzYfOeKNdrOO5PVYY23cTHFRPS6cMzer0KWh/YEgX1jWEZ6Z XpmIHKMJIopHKi5HgCKsV13IQwV6+BzGNppzAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU8lgksGyFKvJY9lK1LhikqULoopwwHwYDVR0jBBgwFoAUdb2TDHRdI+nqWFwE 1rmflaljIuUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU UlVTVC9kYjJUREhSZEktbnFXRndFMXJtZmxhbGpJdVUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2RiMlRESFJkSS1ucVdGd0Uxcm1mbGFsakl1VS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NISU5BVFJVU1QvOGxna3NHeUZL dkpZOWxLMUxoaWtxVUxvb3B3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmd+pDANBgkqhkiG9w0BAQsFAAOCAQEAMeeOLnqLtXmY8HU2XPpjJ7x7 tXO/gbIisyjBjKLYzzpn3qPG/ucqt7949h4LMqwYcOK/XN0F3PDL2QWO0jtquQdW wr5Oarga39OzPlRqKbMgX9cvFuEsWwVczYXkCmcooRqm+X7iTra48L0N7w1k29RS jIEBiKLjMQVdHaBLCf87ximk0VOyu6SSsmVEP46asPVf7+qWbWneVBSBBeT73uJ3 zzuhgm39Kz/TtON5QoDE8028vp5aDP8fZyTmbk8ljUK6BCeZm17ajMGqpofAx/hp /A3liOYGqzvKi5ppd2jMT4JUGxyaYMJnC6x7xbBcSWYC8RFuVEFMrjgT0PFxSA== -----END CERTIFICATE-----Generated at Wed Feb 19 22:01:47 2025 by rpki-client