$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DCT/mt9fhQIIfRNyBdnfT1TSytHRRTg.roa File: mt9fhQIIfRNyBdnfT1TSytHRRTg.roa (raw, json) Hash identifier: 401n1+0MXQc8DpMOoG4fpPqqaaBDb4DGKt1NsHMtJ5M= Subject key identifier: 9A:DF:5F:85:02:08:7D:13:72:05:D9:DF:4F:54:D2:CA:D1:D1:45:38 Certificate issuer: /CN=9B062D74C7F512F04AE60955C5456FC19755337F Certificate serial: 0C97 Authority key identifier: 9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mt9fhQIIfRNyBdnfT1TSytHRRTg.roa Signing time: Mon 10 Feb 2025 14:10:30 +0000 ROA not before: Mon 10 Feb 2025 14:10:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131601 IP address blocks: 103.252.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:26:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3223 (0xc97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B062D74C7F512F04AE60955C5456FC19755337F Validity Not Before: Feb 10 14:10:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9ADF5F8502087D137205D9DF4F54D2CAD1D14538 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6d:f8:28:0e:fc:8a:89:3f:6a:56:4a:63:7e: 1e:72:00:8e:22:ae:65:2a:03:c2:09:f1:8c:f3:af: 54:1c:7a:c5:01:92:f8:b7:22:1e:5f:03:d2:e9:dd: 30:ad:44:f9:91:8f:18:ca:37:03:b9:eb:3a:b0:79: d6:45:12:aa:36:0f:ad:e7:d7:e0:80:e0:d6:f0:56: 4f:8e:6b:72:08:fa:98:a2:42:49:84:03:50:66:62: 70:db:5d:5c:9a:75:14:7a:c3:ad:56:11:93:64:f9: c7:e9:5d:a3:ae:7c:a8:f7:33:ac:d3:00:93:62:69: 52:7c:aa:d8:4c:1a:10:0e:07:2d:87:60:2d:08:03: 3c:ac:9e:49:16:fb:41:34:a4:6d:0b:e5:38:45:68: 12:6b:9f:b5:0f:b7:9b:e7:61:9d:fc:f1:44:ba:61: fe:38:47:5d:d9:7f:6c:8b:76:d6:51:0d:fc:d5:ec: 8a:6d:62:ad:b9:61:f5:94:0e:0a:f6:c1:83:41:4c: 52:1e:36:28:4b:4f:94:e5:9a:7f:c8:2d:6c:8e:ac: dc:7a:c1:a9:1e:01:af:84:c1:7d:12:58:9e:ec:db: 42:12:37:d9:e2:bc:ed:fc:b2:5b:03:ac:4a:56:f1: a9:f4:c9:41:4a:c9:de:2e:33:c8:bd:fb:56:17:31: 3c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:DF:5F:85:02:08:7D:13:72:05:D9:DF:4F:54:D2:CA:D1:D1:45:38 X509v3 Authority Key Identifier: keyid:9B:06:2D:74:C7:F5:12:F0:4A:E6:09:55:C5:45:6F:C1:97:55:33:7F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mwYtdMf1EvBK5glVxUVvwZdVM38.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mwYtdMf1EvBK5glVxUVvwZdVM38.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DCT/mt9fhQIIfRNyBdnfT1TSytHRRTg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.252.196.0/22 Signature Algorithm: sha256WithRSAEncryption 14:91:c5:c3:63:e8:78:92:fe:fc:ff:73:bd:e7:f4:ee:95:19: e1:09:78:b1:d4:19:8e:bb:99:30:4e:9b:c9:fb:02:68:6a:69: e6:7a:45:7d:39:79:83:88:c7:0e:56:8a:fe:fb:a5:1b:53:89: fe:51:8a:8f:c5:74:c2:96:28:19:85:7b:5a:69:1f:42:55:3e: b2:b7:39:98:10:f4:cc:41:62:4a:02:10:ca:4d:d6:7e:9a:35: c8:5a:f8:60:e9:45:69:f6:0e:a3:90:f3:a2:e2:3a:b7:8f:07: bf:a5:4a:ba:f5:80:9e:9e:06:5d:d7:c9:98:c2:61:c7:88:7e: a5:d5:34:9f:40:24:d1:08:08:06:b5:25:5d:24:35:f2:0e:67: c3:e4:b3:23:76:e2:ed:d6:c7:6b:4c:c6:ab:67:91:2f:f7:a2: 29:a0:8f:27:a4:40:71:55:7f:83:55:fb:8d:06:83:6a:ab:9f: de:24:89:30:2f:a1:46:e9:16:3b:c5:67:04:d6:c1:79:20:e7: 15:00:5b:c1:ed:4c:d9:50:dc:0c:cd:4b:b5:63:d8:21:a3:9e: 69:47:49:c8:80:1a:05:d8:46:3e:87:f1:5f:c7:c0:da:c6:6a: 26:77:f1:ad:fc:06:d2:81:70:e3:74:a5:f2:fc:15:e0:6a:81: 2f:d8:92:c6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDJcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUIw NjJENzRDN0Y1MTJGMDRBRTYwOTU1QzU0NTZGQzE5NzU1MzM3RjAeFw0yNTAyMTAx NDEwMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlBREY1Rjg1MDIwODdE MTM3MjA1RDlERjRGNTREMkNBRDFEMTQ1MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAbfgoDvyKiT9qVkpjfh5yAI4irmUqA8IJ8Yzzr1QcesUBkvi3 Ih5fA9Lp3TCtRPmRjxjKNwO56zqwedZFEqo2D63n1+CA4NbwVk+Oa3II+piiQkmE A1BmYnDbXVyadRR6w61WEZNk+cfpXaOufKj3M6zTAJNiaVJ8qthMGhAOBy2HYC0I AzysnkkW+0E0pG0L5ThFaBJrn7UPt5vnYZ388US6Yf44R13Zf2yLdtZRDfzV7Ipt Yq25YfWUDgr2wYNBTFIeNihLT5Tlmn/ILWyOrNx6wakeAa+EwX0SWJ7s20ISN9ni vO38slsDrEpW8an0yUFKyd4uM8i9+1YXMTwtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmt9fhQIIfRNyBdnfT1TSytHRRTgwHwYDVR0jBBgwFoAUmwYtdMf1EvBK5glV xUVvwZdVM38wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRENUL213 WXRkTWYxRXZCSzVnbFZ4VVZ2d1pkVk0zOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bXdZdGRNZjFFdkJLNWdsVnhVVnZ3WmRWTTM4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRENUL210OWZoUUlJZlJOeUJkbmZUMVRTeXRI UlJUZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn/MQwDQYJ KoZIhvcNAQELBQADggEBABSRxcNj6HiS/vz/c73n9O6VGeEJeLHUGY67mTBOm8n7 AmhqaeZ6RX05eYOIxw5Wiv77pRtTif5Rio/FdMKWKBmFe1ppH0JVPrK3OZgQ9MxB YkoCEMpN1n6aNcha+GDpRWn2DqOQ86LiOrePB7+lSrr1gJ6eBl3XyZjCYceIfqXV NJ9AJNEICAa1JV0kNfIOZ8PksyN24u3Wx2tMxqtnkS/3oimgjyekQHFVf4NV+40G g2qrn94kiTAvoUbpFjvFZwTWwXkg5xUAW8HtTNlQ3AzNS7Vj2CGjnmlHSciAGgXY Rj6H8V/HwNrGaiZ38a38BtKBcON0pfL8FeBqgS/YksY= -----END CERTIFICATE-----Generated at Wed Feb 19 22:06:15 2025 by rpki-client