$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/4iL_MibD6Prj84UyQAFqXfzP3Cg.roa File: 4iL_MibD6Prj84UyQAFqXfzP3Cg.roa (raw, json) Hash identifier: UnQisigTSnRjxPx3tLyCKeoWWp8lKJa6N1QjaVcQotc= Subject key identifier: E2:22:FF:32:26:C3:E8:FA:E3:F3:85:32:40:01:6A:5D:FC:CF:DC:28 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0CF4 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/4iL_MibD6Prj84UyQAFqXfzP3Cg.roa Signing time: Mon 10 Feb 2025 14:10:19 +0000 ROA not before: Mon 10 Feb 2025 14:10:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.234.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3316 (0xcf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Feb 10 14:10:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E222FF3226C3E8FAE3F3853240016A5DFCCFDC28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:45:05:85:c7:b4:e9:c7:bb:86:0a:6b:52:cd: be:88:69:32:3f:48:9c:4d:5d:11:02:8d:43:62:f7: 70:c6:91:f5:c1:26:e7:f0:30:c0:65:7f:d5:b5:15: bd:9e:4e:95:fb:8d:ca:3e:b3:28:08:4d:82:a8:d6: 16:fd:b0:d9:33:7d:9b:b3:32:12:2d:6a:6b:19:96: 72:37:80:26:f0:05:2e:e2:db:78:cb:92:1e:be:c5: 3b:a3:a7:ed:5e:93:c9:d3:51:49:c8:36:06:b4:48: a2:e7:e1:fc:2f:c1:d9:18:d7:72:80:b2:1c:ab:eb: b6:75:60:69:91:ae:11:bd:fc:e9:aa:60:d7:7a:e6: 03:15:de:36:f5:bf:37:03:85:ad:a0:fe:81:46:8a: d0:e3:24:9d:db:ad:1c:74:e5:2c:66:cd:96:d7:5c: cd:75:ce:fd:57:46:f7:03:6e:6f:69:91:0b:cf:c3: f2:83:c3:26:48:bf:3e:96:33:bb:1a:29:5f:2c:26: a5:ec:4b:3e:46:2b:42:1d:ce:60:31:a4:14:c9:b5: fa:57:b7:c2:f6:65:f8:e0:01:38:d9:8e:6e:14:50: ce:9f:07:42:e4:4b:cb:82:18:39:86:b6:b6:e9:e2: ce:34:86:35:b7:f7:e2:02:46:1d:9b:5c:a3:4d:d9: 5c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:22:FF:32:26:C3:E8:FA:E3:F3:85:32:40:01:6A:5D:FC:CF:DC:28 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/4iL_MibD6Prj84UyQAFqXfzP3Cg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.224.0/22 Signature Algorithm: sha256WithRSAEncryption c0:cd:61:f4:25:fb:90:65:d2:66:06:b7:4e:a4:04:f5:bf:e9: de:60:fb:af:cd:23:90:69:74:62:7b:37:18:d2:fa:e7:93:50: 23:63:7e:f1:a1:b6:40:ed:70:81:ad:fc:44:ab:f9:9d:8d:ae: 9a:4e:60:59:98:1e:be:ba:f7:87:79:ac:9d:3d:ff:f0:ae:ce: 45:c2:29:aa:b7:cd:88:c7:6e:30:61:78:0d:0f:25:97:49:a8: 12:12:03:b8:85:b0:7c:52:54:fd:65:f2:40:a5:8b:ab:7a:5b: 61:1c:1d:21:ee:1d:bc:f1:88:b4:ed:8c:32:13:2b:2b:e9:95: f1:04:5a:4f:13:44:5f:61:c2:6e:65:10:96:d3:5e:b4:27:ce: 21:7e:56:38:b8:fe:60:54:93:50:5e:b2:81:0e:9d:57:f2:75: ec:7b:3f:74:df:69:de:1c:82:4a:dd:09:43:3e:33:9a:52:45: ea:24:81:f4:01:6a:6a:d2:c1:7f:93:e9:b5:3f:1e:6d:51:56: 4d:c9:41:bc:f4:89:bf:6e:30:7b:95:53:2e:be:9f:85:55:03: f9:1d:b3:f5:85:a6:57:f6:d8:87:a5:1c:8b:58:97:0d:a2:41: 84:00:1c:77:9c:d1:e1:67:9f:66:38:be:c4:6f:b1:df:a6:35: 2d:32:a6:55 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDPQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTAyMTAx NDEwMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUyMjJGRjMyMjZDM0U4 RkFFM0YzODUzMjQwMDE2QTVERkNDRkRDMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfRQWFx7Tpx7uGCmtSzb6IaTI/SJxNXRECjUNi93DGkfXBJufw MMBlf9W1Fb2eTpX7jco+sygITYKo1hb9sNkzfZuzMhItamsZlnI3gCbwBS7i23jL kh6+xTujp+1ek8nTUUnINga0SKLn4fwvwdkY13KAshyr67Z1YGmRrhG9/OmqYNd6 5gMV3jb1vzcDha2g/oFGitDjJJ3brRx05SxmzZbXXM11zv1XRvcDbm9pkQvPw/KD wyZIvz6WM7saKV8sJqXsSz5GK0IdzmAxpBTJtfpXt8L2ZfjgATjZjm4UUM6fB0Lk S8uCGDmGtrbp4s40hjW39+ICRh2bXKNN2VzRAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU4iL/MibD6Prj84UyQAFqXfzP3CgwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vNGlMX01pYkQ2 UHJqODRVeVFBRnFYZnpQM0NnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmfq4DANBgkqhkiG9w0BAQsFAAOCAQEAwM1h9CX7kGXSZga3TqQE9b/p 3mD7r80jkGl0Yns3GNL655NQI2N+8aG2QO1wga38RKv5nY2umk5gWZgevrr3h3ms nT3/8K7ORcIpqrfNiMduMGF4DQ8ll0moEhIDuIWwfFJU/WXyQKWLq3pbYRwdIe4d vPGItO2MMhMrK+mV8QRaTxNEX2HCbmUQltNetCfOIX5WOLj+YFSTUF6ygQ6dV/J1 7Hs/dN9p3hyCSt0JQz4zmlJF6iSB9AFqatLBf5PptT8ebVFWTclBvPSJv24we5VT Lr6fhVUD+R2z9YWmV/bYh6Uci1iXDaJBhAAcd5zR4WefZji+xG+x36Y1LTKmVQ== -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:11 2025 by rpki-client