$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Qoo05daqC4U2GqjPhTxN66ba_nM.roa File: Qoo05daqC4U2GqjPhTxN66ba_nM.roa (raw, json) Hash identifier: lg3RU8j+FW6kYHxcxMX3KoK4aTSiZqG3OWH7Vum/URM= Subject key identifier: 42:8A:34:E5:D6:AA:0B:85:36:1A:A8:CF:85:3C:4D:EB:A6:DA:FE:73 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0CF1 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Qoo05daqC4U2GqjPhTxN66ba_nM.roa Signing time: Mon 10 Feb 2025 14:10:18 +0000 ROA not before: Mon 10 Feb 2025 14:10:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 101.0.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 16:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3313 (0xcf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Feb 10 14:10:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=428A34E5D6AA0B85361AA8CF853C4DEBA6DAFE73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:35:7d:f8:32:fd:2b:57:82:bf:ed:35:48:c8: 62:a1:e4:77:3f:db:17:76:02:3a:0f:fe:a3:50:5a: 39:b2:cc:69:42:cc:ff:fe:80:93:e2:48:0c:af:86: 22:21:57:da:bc:96:74:6b:50:5a:84:b3:25:dc:e0: c1:41:4e:fb:5b:53:cc:ad:fe:d5:14:a8:84:95:b3: e2:84:43:87:c0:cb:22:8f:a4:ed:50:f4:87:ae:d5: 73:5d:d9:6f:00:4e:85:78:13:0e:62:09:25:7c:33: 5d:65:60:b5:a5:ee:86:04:8d:fd:f2:77:56:83:77: a9:ec:6a:3e:43:b4:1c:3f:5c:08:26:02:22:bb:e6: 73:59:7a:bc:fc:55:18:d2:63:2c:eb:ea:81:d0:17: 09:02:79:42:01:73:ec:59:4a:fa:7b:5c:a9:be:40: 40:c8:5d:c3:c8:39:28:a8:e0:b1:22:1c:3e:aa:29: 4c:03:3f:f9:c7:27:3f:c5:7f:a2:b1:ce:6b:e8:b7: 69:33:22:aa:a6:35:28:ef:d1:6f:9a:91:4c:43:4d: ed:7e:73:1d:ea:dd:47:c3:1c:91:4c:28:c7:fe:97: c1:c5:b7:8f:e8:28:02:24:78:ea:96:54:b2:04:b3: 50:b1:61:e9:73:82:33:55:45:6e:1b:9e:47:80:b5: f6:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:8A:34:E5:D6:AA:0B:85:36:1A:A8:CF:85:3C:4D:EB:A6:DA:FE:73 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/Qoo05daqC4U2GqjPhTxN66ba_nM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.224.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:21:5a:7d:65:40:7b:f0:7c:98:de:80:55:11:e9:e4:b4:42: a2:69:80:31:3d:8a:c8:77:44:a4:81:44:e9:bd:b1:38:d7:ad: 60:7e:21:f0:ac:a8:e8:a2:d7:32:cb:e0:fe:b1:64:24:ce:da: ff:52:b1:4f:e8:77:ef:d5:d3:21:25:cc:2d:16:70:91:e5:c7: a3:ac:ad:65:2b:ef:b5:ae:eb:96:f7:3d:59:fb:9d:4d:c4:20: 5c:33:f7:df:5b:98:ee:9f:85:f2:40:1c:01:c4:05:16:02:27: 1e:8f:7b:37:c6:9d:b8:8c:1a:33:5c:d7:86:c2:95:df:49:9e: 70:b3:93:a1:02:42:a2:7a:d9:d1:89:18:a3:1b:31:82:8b:5d: 2d:45:25:99:be:7f:dc:d3:85:0b:b4:5a:93:4c:cc:03:8d:c7: d4:63:70:b8:9a:6e:3c:6d:31:31:18:6c:b3:e6:d3:0e:2e:e4: 7c:31:b3:10:30:33:5b:68:b0:e8:bf:30:c7:57:a4:03:2c:23: 7f:e5:d4:4f:21:46:c5:f0:8b:86:9a:d6:5c:30:cf:7a:37:d9: 86:86:e6:e1:6a:9e:cd:dd:e2:ef:cb:a3:db:93:1a:0c:02:88: 4b:83:a6:b6:98:bd:07:d4:ba:d0:ab:a9:4d:82:f1:66:bc:70: 82:d6:f0:38 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNTAyMTAx NDEwMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyOEEzNEU1RDZBQTBC ODUzNjFBQThDRjg1M0M0REVCQTZEQUZFNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFNX34Mv0rV4K/7TVIyGKh5Hc/2xd2AjoP/qNQWjmyzGlCzP/+ gJPiSAyvhiIhV9q8lnRrUFqEsyXc4MFBTvtbU8yt/tUUqISVs+KEQ4fAyyKPpO1Q 9Ieu1XNd2W8AToV4Ew5iCSV8M11lYLWl7oYEjf3yd1aDd6nsaj5DtBw/XAgmAiK7 5nNZerz8VRjSYyzr6oHQFwkCeUIBc+xZSvp7XKm+QEDIXcPIOSio4LEiHD6qKUwD P/nHJz/Ff6Kxzmvot2kzIqqmNSjv0W+akUxDTe1+cx3q3UfDHJFMKMf+l8HFt4/o KAIkeOqWVLIEs1CxYelzgjNVRW4bnkeAtfa3AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUQoo05daqC4U2GqjPhTxN66ba/nMwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vUW9vMDVkYXFD NFUyR3FqUGhUeE42NmJhX25NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2UA4DANBgkqhkiG9w0BAQsFAAOCAQEAmiFafWVAe/B8mN6AVRHp5LRC ommAMT2KyHdEpIFE6b2xONetYH4h8Kyo6KLXMsvg/rFkJM7a/1KxT+h379XTISXM LRZwkeXHo6ytZSvvta7rlvc9WfudTcQgXDP331uY7p+F8kAcAcQFFgInHo97N8ad uIwaM1zXhsKV30mecLOToQJConrZ0YkYoxsxgotdLUUlmb5/3NOFC7Rak0zMA43H 1GNwuJpuPG0xMRhss+bTDi7kfDGzEDAzW2iw6L8wx1ekAywjf+XUTyFGxfCLhprW XDDPejfZhobm4Wqezd3i78uj25MaDAKIS4Omtpi9B9S60KupTYLxZrxwgtbwOA== -----END CERTIFICATE-----Generated at Sun Apr 6 14:27:41 2025 by rpki-client