$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CTII/-8ZXgnh4G_xZj5ogWYpbh5PGa7o.roa File: -8ZXgnh4G_xZj5ogWYpbh5PGa7o.roa (raw, json) Hash identifier: QXY8yJQ0T4K+S7mgl3ckSQt9xSxFL52/QvV/kj3C/vA= Subject key identifier: FB:C6:57:82:78:78:1B:FC:59:8F:9A:20:59:8A:5B:87:93:C6:6B:BA Certificate issuer: /CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A Certificate serial: 12B7 Authority key identifier: FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-8ZXgnh4G_xZj5ogWYpbh5PGa7o.roa Signing time: Mon 10 Feb 2025 14:02:06 +0000 ROA not before: Mon 10 Feb 2025 14:02:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 984 IP address blocks: 103.130.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-9Osn8RMPdKre10gvBWMgtg9Jgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-9Osn8RMPdKre10gvBWMgtg9Jgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 08:07:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4791 (0x12b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FBD3AC9FC44C3DD2AB7B5D20BC158C82D83D260A Validity Not Before: Feb 10 14:02:06 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FBC6578278781BFC598F9A20598A5B8793C66BBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:04:33:07:94:1a:ef:55:a3:4f:0c:53:b6:67: cd:25:0c:40:b8:6e:66:5f:9b:7b:11:d9:5c:23:25: 8f:e8:4f:ba:ab:ad:d9:40:74:b3:85:78:40:e0:7b: b4:8e:ca:b2:b2:14:e5:1f:07:9f:c8:a9:1f:a1:ac: 2a:23:ac:c8:5e:0a:da:14:6a:dd:20:9f:13:df:03: dc:8c:f7:c3:a0:e3:7f:9b:9b:d1:1b:45:07:b1:aa: ca:e9:36:b5:b7:08:65:49:fd:b5:30:dd:6c:bc:de: 17:e8:0a:1d:e1:2d:fa:38:c6:18:3e:dc:ef:fe:b3: a8:79:37:d8:24:d1:5e:7d:b5:58:a3:65:13:11:1a: dd:65:34:d4:f7:06:e3:0a:47:5e:b0:9d:b1:46:f7: 26:c2:3f:bd:f6:c4:7c:0f:ff:12:00:8a:35:4a:40: 89:8d:8f:ae:6a:40:ef:9f:13:85:bf:af:b3:af:7c: c6:b0:c4:97:d8:96:e5:37:91:d4:05:c5:d4:4f:13: 6c:fb:c3:17:e6:8b:99:38:91:83:9a:c9:e6:fa:79: 0d:b2:25:6d:6b:9c:47:f1:e1:fa:ea:f6:c2:7f:fe: 75:c2:78:45:e7:cb:c3:21:85:ff:82:86:43:7b:cd: 17:46:8d:f1:5b:15:b9:1d:61:da:b8:4e:bb:36:6b: fc:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:C6:57:82:78:78:1B:FC:59:8F:9A:20:59:8A:5B:87:93:C6:6B:BA X509v3 Authority Key Identifier: keyid:FB:D3:AC:9F:C4:4C:3D:D2:AB:7B:5D:20:BC:15:8C:82:D8:3D:26:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-9Osn8RMPdKre10gvBWMgtg9Jgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-9Osn8RMPdKre10gvBWMgtg9Jgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CTII/-8ZXgnh4G_xZj5ogWYpbh5PGa7o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.249.0/24 Signature Algorithm: sha256WithRSAEncryption 89:8d:ac:90:d9:c9:0a:31:fb:15:14:29:d2:62:b8:36:aa:d5: 33:4c:95:03:15:10:80:e0:c6:ca:34:9f:ea:3a:c7:c0:9a:28: 91:49:cc:64:c0:64:75:b1:d3:3f:8b:57:8c:12:7c:ae:1a:55: 37:0d:c8:7c:3f:f5:79:f5:31:4c:69:93:20:63:96:62:bb:a9: e5:5f:f9:c4:78:1b:33:1b:18:21:0d:2b:00:8a:ad:80:cf:e3: 00:f1:42:a4:f8:a7:ed:ca:e6:20:2d:4b:af:a6:4f:c3:6c:42: 0f:7c:ba:72:6c:b2:0b:96:b9:ef:17:4a:dd:7e:1d:30:da:64: 21:97:ac:92:93:04:80:e5:6b:62:3d:81:ae:26:b6:09:68:8b: 42:0e:14:04:3c:84:e4:59:6a:9a:d9:7e:dd:79:4f:d1:25:25: 8e:53:44:bd:4f:6f:4b:52:45:de:39:57:ea:1f:30:5b:8e:aa: 9b:54:7b:b1:b6:8d:64:86:32:b7:11:ef:45:4d:4c:6d:f6:28: 13:cd:49:e0:6e:f5:73:ea:99:52:71:92:58:be:30:03:73:25: f5:76:de:5d:2a:20:ce:eb:d7:ff:33:8e:9a:d5:a4:3a:c5:d3: ef:66:08:30:14:93:56:4b:2d:75:85:eb:d4:ee:53:e9:f3:cd: 99:52:cf:ff -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICErcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkJE M0FDOUZDNDRDM0REMkFCN0I1RDIwQkMxNThDODJEODNEMjYwQTAeFw0yNTAyMTAx NDAyMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCQzY1NzgyNzg3ODFC RkM1OThGOUEyMDU5OEE1Qjg3OTNDNjZCQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDBDMHlBrvVaNPDFO2Z80lDEC4bmZfm3sR2VwjJY/oT7qrrdlA dLOFeEDge7SOyrKyFOUfB5/IqR+hrCojrMheCtoUat0gnxPfA9yM98Og43+bm9Eb RQexqsrpNrW3CGVJ/bUw3Wy83hfoCh3hLfo4xhg+3O/+s6h5N9gk0V59tVijZRMR Gt1lNNT3BuMKR16wnbFG9ybCP732xHwP/xIAijVKQImNj65qQO+fE4W/r7OvfMaw xJfYluU3kdQFxdRPE2z7wxfmi5k4kYOayeb6eQ2yJW1rnEfx4frq9sJ//nXCeEXn y8Mhhf+ChkN7zRdGjfFbFbkdYdq4Trs2a/xTAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+8ZXgnh4G/xZj5ogWYpbh5PGa7owHwYDVR0jBBgwFoAU+9Osn8RMPdKre10g vBWMgtg9JgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1RJSS8t OU9zbjhSTVBkS3JlMTBndkJXTWd0ZzlKZ28uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Ly05T3NuOFJNUGRLcmUxMGd2QldNZ3RnOUpnby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NUSUkvLThaWGduaDRHX3haajVvZ1dZcGJo NVBHYTdvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeC+TAN BgkqhkiG9w0BAQsFAAOCAQEAiY2skNnJCjH7FRQp0mK4NqrVM0yVAxUQgODGyjSf 6jrHwJookUnMZMBkdbHTP4tXjBJ8rhpVNw3IfD/1efUxTGmTIGOWYrup5V/5xHgb MxsYIQ0rAIqtgM/jAPFCpPin7crmIC1Lr6ZPw2xCD3y6cmyyC5a57xdK3X4dMNpk IZeskpMEgOVrYj2Bria2CWiLQg4UBDyE5Flqmtl+3XlP0SUljlNEvU9vS1JF3jlX 6h8wW46qm1R7sbaNZIYytxHvRU1MbfYoE81J4G71c+qZUnGSWL4wA3Ml9XbeXSog zuvX/zOOmtWkOsXT72YIMBSTVkstdYXr1O5T6fPNmVLP/w== -----END CERTIFICATE-----Generated at Sat Apr 12 06:11:26 2025 by rpki-client