$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/aoSnaGo4DaVmaMdWILBrBFZVFWY.roa File: aoSnaGo4DaVmaMdWILBrBFZVFWY.roa (raw, json) Hash identifier: rbMB8Oi4dM4y2Q0uDWrXN+2xVuIl3tESUN82Z6s7ROo= Subject key identifier: 6A:84:A7:68:6A:38:0D:A5:66:68:C7:56:20:B0:6B:04:56:55:15:66 Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6 Certificate serial: 0257 Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/aoSnaGo4DaVmaMdWILBrBFZVFWY.roa Signing time: Mon 10 Feb 2025 14:01:31 +0000 ROA not before: Mon 10 Feb 2025 14:01:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38042 IP address blocks: 103.14.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 599 (0x257) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6 Validity Not Before: Feb 10 14:01:31 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6A84A7686A380DA56668C75620B06B0456551566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:08:3a:be:f9:d2:70:b3:56:08:d8:79:f2:48: e3:a1:51:f6:93:96:1c:68:7b:99:40:51:7a:78:84: 91:11:72:e0:ed:a9:7e:65:6a:a6:0a:dd:ae:2c:fb: ed:aa:1c:1f:4a:cf:19:af:f8:5c:14:30:76:05:0a: ae:20:3f:0c:48:8d:5b:ac:75:70:77:be:09:49:ad: f9:9a:f6:9f:3c:c5:f0:a0:0c:09:38:a4:b5:5d:52: e7:b1:27:d8:ae:32:61:bb:88:a5:15:32:b8:28:4b: 77:09:eb:cb:b7:b7:b2:c3:c4:db:dd:4b:cd:d6:f9: ee:b9:7e:32:70:39:a7:91:86:64:c5:a1:9b:95:b3: 9b:35:8e:ac:69:c6:47:92:dd:39:d7:ee:18:33:b3: 0a:8c:b1:48:1f:27:f0:3b:64:b5:b7:5a:f7:a0:40: 01:f2:3b:c5:f3:44:0c:e4:e8:04:ad:be:9e:04:79: ce:5a:36:6d:fb:aa:54:ba:fa:37:65:f2:67:bb:5d: ae:76:23:ca:79:8d:9f:a1:77:85:be:8b:45:f3:10: 4c:76:8b:cd:12:02:e8:21:11:5e:ad:cc:84:d3:6b: f9:5c:c1:10:6a:d6:83:85:e8:9c:1f:92:a4:9b:74: 7b:f4:9f:50:12:fd:3a:b3:be:ba:c2:db:11:51:dd: db:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:84:A7:68:6A:38:0D:A5:66:68:C7:56:20:B0:6B:04:56:55:15:66 X509v3 Authority Key Identifier: keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/aoSnaGo4DaVmaMdWILBrBFZVFWY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.14.170.0/23 Signature Algorithm: sha256WithRSAEncryption 73:bb:9f:00:e8:eb:8d:1b:fc:f9:22:0e:49:6e:54:8a:cf:f2: 44:9e:ae:72:d6:ba:c6:9a:b8:eb:40:c6:c6:9f:c6:df:81:6a: e8:f1:dd:1b:34:6e:85:c0:99:2b:54:c2:e6:50:6b:b0:d3:e5: b1:86:c8:54:2c:61:9e:16:4c:e3:2c:22:3b:b6:45:3a:69:ba: a9:e1:b7:4e:68:81:7a:f0:54:85:5e:2f:bf:00:08:04:46:e3: 5a:67:c9:d8:ae:e3:79:14:b8:00:fe:4c:18:f2:77:ee:83:b1: c8:01:8b:c8:de:55:35:89:fc:d8:19:31:11:06:97:c1:13:1c: 83:eb:44:08:49:75:99:ae:3b:62:17:23:a3:1c:b8:0f:22:35: c3:03:4b:10:dc:ce:10:6e:f0:11:70:7f:85:b2:68:f7:96:85: f7:d5:d2:c9:4d:52:6f:1d:dc:f1:60:15:3f:c0:f4:c7:76:28: 83:dd:4f:38:07:10:28:60:c3:6f:1e:b9:70:fe:b6:ba:5c:9a: e5:67:e8:f4:a9:c3:62:3b:d3:c5:26:ff:c7:0d:74:72:43:db: f2:6d:82:fb:f6:03:05:1b:2e:6c:7c:a4:88:02:bb:a2:71:12: a9:49:63:36:42:5b:63:2d:5f:b7:75:18:86:28:60:3d:72:8f: c4:24:a1:a1 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAlcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4 Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNTAyMTAx NDAxMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBODRBNzY4NkEzODBE QTU2NjY4Qzc1NjIwQjA2QjA0NTY1NTE1NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiCDq++dJws1YI2HnySOOhUfaTlhxoe5lAUXp4hJERcuDtqX5l aqYK3a4s++2qHB9Kzxmv+FwUMHYFCq4gPwxIjVusdXB3vglJrfma9p88xfCgDAk4 pLVdUuexJ9iuMmG7iKUVMrgoS3cJ68u3t7LDxNvdS83W+e65fjJwOaeRhmTFoZuV s5s1jqxpxkeS3TnX7hgzswqMsUgfJ/A7ZLW3WvegQAHyO8XzRAzk6AStvp4Eec5a Nm37qlS6+jdl8me7Xa52I8p5jZ+hd4W+i0XzEEx2i80SAughEV6tzITTa/lcwRBq 1oOF6JwfkqSbdHv0n1AS/TqzvrrC2xFR3dsbAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUaoSnaGo4DaVmaMdWILBrBFZVFWYwHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy9hb1NuYUdvNERhVm1hTWRXSUxC ckJGWlZGV1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw6q MA0GCSqGSIb3DQEBCwUAA4IBAQBzu58A6OuNG/z5Ig5JblSKz/JEnq5y1rrGmrjr QMbGn8bfgWro8d0bNG6FwJkrVMLmUGuw0+WxhshULGGeFkzjLCI7tkU6abqp4bdO aIF68FSFXi+/AAgERuNaZ8nYruN5FLgA/kwY8nfug7HIAYvI3lU1ifzYGTERBpfB ExyD60QISXWZrjtiFyOjHLgPIjXDA0sQ3M4QbvARcH+Fsmj3loX31dLJTVJvHdzx YBU/wPTHdiiD3U84BxAoYMNvHrlw/ra6XJrlZ+j0qcNiO9PFJv/HDXRyQ9vybYL7 9gMFGy5sfKSIAruicRKpSWM2QltjLV+3dRiGKGA9co/EJKGh -----END CERTIFICATE-----Generated at Thu Apr 17 09:49:14 2025 by rpki-client