$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/mpjSQTEYu6hDbshTiDcjWB5guVo.roa File: mpjSQTEYu6hDbshTiDcjWB5guVo.roa (raw, json) Hash identifier: gAGrXjp4pHGrsTOt31QQdjdh04KS+EO6DzW7W1dDuDk= Subject key identifier: 9A:98:D2:41:31:18:BB:A8:43:6E:C8:53:88:37:23:58:1E:60:B9:5A Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: 0138 Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/mpjSQTEYu6hDbshTiDcjWB5guVo.roa Signing time: Mon 10 Feb 2025 14:23:51 +0000 ROA not before: Mon 10 Feb 2025 14:23:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150766 IP address blocks: 36.50.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 18:17:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Feb 10 14:23:51 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9A98D2413118BBA8436EC853883723581E60B95A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:50:c7:2f:20:8d:fb:f4:60:3b:f9:d5:99:ad: d2:c9:1d:5f:7e:77:a9:d4:f9:b1:21:4f:7f:0c:06: 56:fa:9e:33:3a:7c:86:1e:e8:97:e7:a9:2d:d0:ce: 34:ac:17:28:7b:75:8f:e0:a0:7a:1e:8c:6b:a6:30: e9:63:4f:37:6f:0f:25:df:e5:51:39:de:9f:70:b2: 17:ec:d0:b1:5c:52:ad:50:0d:c2:3d:e5:f0:50:ee: 34:c8:ef:53:5c:75:10:43:83:c6:66:e9:fe:8f:33: 8d:0c:4d:2f:50:ad:e8:5f:34:e7:69:ac:48:11:88: 61:3f:9f:31:ba:0c:69:6a:39:6b:8f:4d:54:94:b4: 31:af:8b:84:60:0f:c5:52:01:6f:30:69:71:16:bc: af:a9:eb:cd:80:f3:e7:f7:b9:c1:09:46:a3:41:71: 7a:a8:a0:73:a4:1e:fe:b0:42:bd:19:78:60:b0:ad: 56:e2:52:39:bc:76:12:e4:52:59:7c:db:99:68:cc: db:ce:9f:2a:75:0a:88:a2:13:23:19:cd:4f:de:4d: b6:46:fe:01:7d:0b:6c:61:ad:d0:7d:5a:bc:f7:b2: 9d:35:09:c7:e9:46:30:bc:ba:15:f7:ca:df:32:98: a9:97:d9:d8:4a:61:0c:a9:58:a7:33:ae:3d:d6:28: 75:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:98:D2:41:31:18:BB:A8:43:6E:C8:53:88:37:23:58:1E:60:B9:5A X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/mpjSQTEYu6hDbshTiDcjWB5guVo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.50.228.0/24 Signature Algorithm: sha256WithRSAEncryption 18:d7:7f:fa:af:60:53:39:68:e8:cc:4d:9e:4e:35:a7:0a:37: 9b:08:07:60:79:3a:d0:95:cc:b5:55:f5:ae:92:38:a2:98:8a: a4:6a:76:46:fb:07:bf:e1:77:16:9e:33:09:e2:40:d6:b6:95: d1:2a:b1:b0:12:3e:5d:00:d3:78:8b:bf:dd:38:f4:44:1e:a1: b6:b0:df:0e:67:b2:fc:2b:0e:e4:a5:79:94:c0:f9:b6:95:c5: ed:88:d4:4f:6a:d7:d4:65:96:58:c7:22:df:10:39:27:fc:5a: 23:66:4f:54:b4:43:f2:1f:00:aa:97:dd:bb:3c:21:56:70:6f: 69:57:b9:3f:c8:91:6e:96:22:f7:9f:ea:6c:21:3f:38:e2:e2: c4:d3:54:a9:b1:da:1d:cb:45:34:47:51:2b:cc:19:37:79:d9: 8d:d1:61:61:a2:a1:91:79:c6:9b:81:97:7d:34:04:47:da:ce: a4:69:5d:a7:4c:4f:37:d0:91:6f:06:43:98:34:4e:5b:56:55: 50:37:da:ad:56:6b:16:48:49:4a:4c:e0:96:de:70:d2:df:d3: 78:a4:64:9a:5c:26:ec:0e:98:ee:92:06:a9:b5:ed:c4:cf:b3: 27:bd:ea:4a:38:24:03:54:8c:fd:36:4d:ba:ad:1d:1e:0f:32: 0f:eb:57:85 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICATgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNTAyMTAx NDIzNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlBOThEMjQxMzExOEJC QTg0MzZFQzg1Mzg4MzcyMzU4MUU2MEI5NUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpUMcvII379GA7+dWZrdLJHV9+d6nU+bEhT38MBlb6njM6fIYe 6JfnqS3QzjSsFyh7dY/goHoejGumMOljTzdvDyXf5VE53p9wshfs0LFcUq1QDcI9 5fBQ7jTI71NcdRBDg8Zm6f6PM40MTS9QrehfNOdprEgRiGE/nzG6DGlqOWuPTVSU tDGvi4RgD8VSAW8waXEWvK+p682A8+f3ucEJRqNBcXqooHOkHv6wQr0ZeGCwrVbi Ujm8dhLkUll825lozNvOnyp1CoiiEyMZzU/eTbZG/gF9C2xhrdB9Wrz3sp01Ccfp RjC8uhX3yt8ymKmX2dhKYQypWKczrj3WKHUBAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUmpjSQTEYu6hDbshTiDcjWB5guVowHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5 goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lUL21walNRVEVZdTZo RGJzaFRpRGNqV0I1Z3VWby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAkMuQwDQYJKoZIhvcNAQELBQADggEBABjXf/qvYFM5aOjMTZ5ONacKN5sI B2B5OtCVzLVV9a6SOKKYiqRqdkb7B7/hdxaeMwniQNa2ldEqsbASPl0A03iLv904 9EQeobaw3w5nsvwrDuSleZTA+baVxe2I1E9q19RllljHIt8QOSf8WiNmT1S0Q/If AKqX3bs8IVZwb2lXuT/IkW6WIvef6mwhPzji4sTTVKmx2h3LRTRHUSvMGTd52Y3R YWGioZF5xpuBl300BEfazqRpXadMTzfQkW8GQ5g0TltWVVA32q1WaxZISUpM4Jbe cNLf03ikZJpcJuwOmO6SBqm17cTPsye96ko4JANUjP02TbqtHR4PMg/rV4U= -----END CERTIFICATE-----Generated at Fri Apr 18 17:49:52 2025 by rpki-client