$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/vF4x6TcKvmJ4-4tBwwhznIF8ZRg.roa File: vF4x6TcKvmJ4-4tBwwhznIF8ZRg.roa (raw, json) Hash identifier: Lcu4yOAT2q2dZeDO837wgHnPEO9/c9ksMLMfLsdF09I= Subject key identifier: BC:5E:31:E9:37:0A:BE:62:78:FB:8B:41:C3:08:73:9C:81:7C:65:18 Certificate issuer: /CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D Certificate serial: 038F Authority key identifier: 8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/vF4x6TcKvmJ4-4tBwwhznIF8ZRg.roa Signing time: Mon 10 Feb 2025 14:21:04 +0000 ROA not before: Mon 10 Feb 2025 14:21:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 14618 IP address blocks: 103.168.156.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 04:06:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 911 (0x38f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8C508B7DDA024FB2C9EF7FBBF4FBD02B9F43191D Validity Not Before: Feb 10 14:21:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BC5E31E9370ABE6278FB8B41C308739C817C6518 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d3:28:a2:3e:82:13:5c:0a:c3:86:77:1a:8c: 54:76:cf:19:fe:53:25:28:8c:cf:59:4f:ff:65:f8: 45:fd:af:fd:fa:c0:cd:07:bb:66:6d:a0:c9:70:44: 17:ef:df:4e:90:1e:c7:24:ec:a0:c2:d5:33:43:57: af:3f:50:59:d3:3d:a4:2c:b9:a9:28:4a:47:b4:8e: c9:70:4d:cf:67:38:0c:7f:3d:b5:32:fc:93:f2:df: 04:12:7d:3c:7d:9e:fd:45:e4:fb:9f:18:3c:05:4b: e4:64:65:23:a1:44:20:cf:52:df:95:29:a3:27:bc: 07:5b:be:1c:d5:1d:90:f6:49:08:51:c9:87:7c:a9: 1e:c9:ed:fc:a8:77:af:34:52:5b:15:2a:dd:5a:c2: 34:f3:a4:17:e6:9a:87:1e:f2:6d:36:c6:90:35:61: 7f:e3:6d:72:26:3d:66:49:c5:d5:a6:b3:3b:34:7a: d5:e6:ac:5c:23:d9:40:05:98:2b:d7:0c:3e:2d:7f: e8:f4:41:9f:e0:a1:5b:5d:f2:60:20:6e:3d:90:4b: e2:68:5f:01:79:67:e3:07:86:9f:68:d3:11:81:46: 16:e0:ca:46:07:b6:88:11:9a:64:f0:4f:1c:e7:bb: 74:29:ad:ec:0c:82:8d:85:6c:ae:85:02:41:61:7a: 98:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:5E:31:E9:37:0A:BE:62:78:FB:8B:41:C3:08:73:9C:81:7C:65:18 X509v3 Authority Key Identifier: keyid:8C:50:8B:7D:DA:02:4F:B2:C9:EF:7F:BB:F4:FB:D0:2B:9F:43:19:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/jFCLfdoCT7LJ73-79PvQK59DGR0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jFCLfdoCT7LJ73-79PvQK59DGR0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYBERLINK/vF4x6TcKvmJ4-4tBwwhznIF8ZRg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.168.156.0/23 Signature Algorithm: sha256WithRSAEncryption 39:fc:65:b5:ff:aa:02:b7:d4:ad:5c:9f:01:1d:6e:a4:be:54: 98:0d:a7:5a:00:88:22:fe:10:b3:bd:a5:bf:2f:56:c9:ec:4a: 4d:23:81:b4:54:7d:bf:96:64:1b:65:69:2a:73:03:a3:eb:f9: b1:55:50:43:11:46:3f:68:09:3a:70:58:43:34:2a:e8:f0:77: 7c:2e:81:a7:d9:17:cb:6c:f1:df:bd:c7:0d:b7:97:fe:94:32: 28:27:e0:37:ea:fc:21:fe:fe:4a:1c:85:f7:fe:8b:d0:c8:42: 17:f3:d4:70:53:70:39:88:e3:2c:07:ee:f6:8c:f0:3b:b1:1c: 01:69:1e:b7:a5:08:26:f1:51:e2:bb:82:fa:c3:a9:26:a5:fb: 2f:bd:20:fc:ed:a9:ad:c9:c5:87:23:3e:37:05:ee:4d:33:07: 0a:94:85:0c:e9:72:22:b2:5f:29:94:6f:3b:d0:fd:26:e2:48: 29:e1:ec:ca:0d:98:33:9d:90:c8:19:b9:0e:17:d1:34:79:d1: 24:71:b6:61:5f:e5:99:f9:91:ef:79:a8:c2:62:ac:10:37:57: eb:16:66:90:3c:30:d1:99:da:90:98:72:58:b3:af:81:59:9b: 0f:ba:f9:17:64:77:bf:a3:06:87:3c:ca:d3:93:e3:fe:f3:05: 77:cd:8c:1c -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICA48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEM1 MDhCN0REQTAyNEZCMkM5RUY3RkJCRjRGQkQwMkI5RjQzMTkxRDAeFw0yNTAyMTAx NDIxMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDNUUzMUU5MzcwQUJF NjI3OEZCOEI0MUMzMDg3MzlDODE3QzY1MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/0yiiPoITXArDhncajFR2zxn+UyUojM9ZT/9l+EX9r/36wM0H u2ZtoMlwRBfv306QHsck7KDC1TNDV68/UFnTPaQsuakoSke0jslwTc9nOAx/PbUy /JPy3wQSfTx9nv1F5PufGDwFS+RkZSOhRCDPUt+VKaMnvAdbvhzVHZD2SQhRyYd8 qR7J7fyod680UlsVKt1awjTzpBfmmoce8m02xpA1YX/jbXImPWZJxdWmszs0etXm rFwj2UAFmCvXDD4tf+j0QZ/goVtd8mAgbj2QS+JoXwF5Z+MHhp9o0xGBRhbgykYH togRmmTwTxznu3QprewMgo2FbK6FAkFhepihAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUvF4x6TcKvmJ4+4tBwwhznIF8ZRgwHwYDVR0jBBgwFoAUjFCLfdoCT7LJ73+7 9PvQK59DGR0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lCRVJM SU5LL2pGQ0xmZG9DVDdMSjczLTc5UHZRSzU5REdSMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvakZDTGZkb0NUN0xKNzMtNzlQdlFLNTlER1IwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lCRVJMSU5LL3ZGNHg2VGNLdm1K NC00dEJ3d2h6bklGOFpSZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnqJwwDQYJKoZIhvcNAQELBQADggEBADn8ZbX/qgK31K1cnwEdbqS+VJgN p1oAiCL+ELO9pb8vVsnsSk0jgbRUfb+WZBtlaSpzA6Pr+bFVUEMRRj9oCTpwWEM0 Kujwd3wugafZF8ts8d+9xw23l/6UMign4Dfq/CH+/kochff+i9DIQhfz1HBTcDmI 4ywH7vaM8DuxHAFpHrelCCbxUeK7gvrDqSal+y+9IPztqa3JxYcjPjcF7k0zBwqU hQzpciKyXymUbzvQ/SbiSCnh7MoNmDOdkMgZuQ4X0TR50SRxtmFf5Zn5ke95qMJi rBA3V+sWZpA8MNGZ2pCYclizr4FZmw+6+Rdkd7+jBoc8ytOT4/7zBXfNjBw= -----END CERTIFICATE-----Generated at Sat Apr 5 00:02:19 2025 by rpki-client