$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/WpQOfPuFZUXEs6ezt13ue41B0FI.roa File: WpQOfPuFZUXEs6ezt13ue41B0FI.roa (raw, json) Hash identifier: M8K7tdE+uq4o5o/F2I0p9Tt5F7A8jE+cmRMPjZdgC1Q= Subject key identifier: 5A:94:0E:7C:FB:85:65:45:C4:B3:A7:B3:B7:5D:EE:7B:8D:41:D0:52 Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Certificate serial: 0423 Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/WpQOfPuFZUXEs6ezt13ue41B0FI.roa Signing time: Mon 10 Feb 2025 14:22:58 +0000 ROA not before: Mon 10 Feb 2025 14:22:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.158.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1059 (0x423) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F Validity Not Before: Feb 10 14:22:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5A940E7CFB856545C4B3A7B3B75DEE7B8D41D052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:74:9a:ec:9a:27:b0:b3:2e:12:64:53:4b:ec: 58:79:07:7a:ba:ec:12:60:30:09:5b:f8:8d:28:bb: 9b:42:3d:0f:ff:04:f2:b1:1a:36:5a:27:8e:bd:9f: 40:fa:22:5c:b5:0b:a5:1f:08:79:d9:f7:49:93:e2: ab:7f:4e:55:27:bb:4e:1b:d9:c4:71:57:ad:6b:55: 53:cc:4c:ea:64:e2:4a:8a:3e:67:d5:27:c6:4d:7a: 7e:88:50:a2:80:26:a9:7e:95:13:23:d1:15:7a:28: 79:3c:45:01:ca:62:27:38:62:08:bf:db:d5:34:0f: 73:0f:c8:1c:f2:d5:1a:ef:10:ed:cb:01:96:8f:38: d3:b6:bb:2d:af:81:5c:31:b5:8e:76:d0:6f:07:64: 10:42:81:7f:3b:04:ad:8c:da:05:b5:e2:c1:23:4c: 57:06:4f:8b:0f:40:f6:c6:4a:8a:91:b7:88:46:6e: 94:bc:f9:25:92:b4:b1:b6:16:4a:b1:e3:a8:19:eb: 79:44:36:4e:80:46:81:42:cf:16:ba:07:50:f3:77: 22:4a:87:c0:12:e1:84:7b:49:58:e7:f9:36:6b:64: 73:7d:6c:ed:8d:ca:14:25:ee:35:16:56:ba:99:aa: 35:b6:c8:ea:bb:6f:c0:d5:ba:39:ad:ca:30:59:fc: 20:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:94:0E:7C:FB:85:65:45:C4:B3:A7:B3:B7:5D:EE:7B:8D:41:D0:52 X509v3 Authority Key Identifier: keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/WpQOfPuFZUXEs6ezt13ue41B0FI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.158.228.0/23 Signature Algorithm: sha256WithRSAEncryption 97:30:1d:65:1b:c5:0c:6e:92:06:54:69:44:99:68:ec:7e:78: 96:35:99:8b:3f:13:b8:8d:02:6a:66:8d:37:79:c6:89:ec:15: b1:e0:e2:6a:90:de:31:13:36:a1:17:3a:45:4a:e0:a9:4b:c3: 45:93:b1:52:0f:8c:47:cc:cd:37:3a:82:c2:6e:38:d6:57:57: 46:a2:4a:c9:09:40:9e:5f:aa:64:7e:9d:9c:c4:ea:26:4b:29: 2a:c7:c2:5b:84:69:5b:c8:4e:dd:91:db:a7:23:01:1a:fe:05: c9:75:de:c9:d6:6e:40:ea:dc:97:20:0e:99:19:90:98:51:62: 5f:f4:cb:0f:9f:ea:73:5c:7b:96:ef:2b:0c:b5:1c:3e:9b:b0: 03:44:39:7a:b6:60:a1:63:8d:cd:d7:d8:ec:7d:0c:bf:79:e5: 6c:da:b0:8e:a7:a2:89:ab:07:d1:7c:72:40:49:16:b0:89:96: 04:2c:aa:7e:f8:15:c3:ba:dd:3d:ea:3d:46:61:39:1f:f2:8e: a2:fe:fb:a7:dd:65:9b:d7:12:dc:bf:5c:87:24:13:81:9d:70: 68:f5:f1:40:f8:40:d1:6e:10:38:54:61:75:87:41:b5:19:a0: c7:07:95:32:2e:42:04:d4:9d:2a:c9:a8:6b:dd:3c:31:51:17: 3f:c2:56:7a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICBCMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTBF QTg4NUE3RTY5NzFDOTkzNDI3NzdFN0REREJBNjVEMEVCMTMxRjAeFw0yNTAyMTAx NDIyNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVBOTQwRTdDRkI4NTY1 NDVDNEIzQTdCM0I3NURFRTdCOEQ0MUQwNTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrdJrsmiewsy4SZFNL7Fh5B3q67BJgMAlb+I0ou5tCPQ//BPKx GjZaJ469n0D6Ily1C6UfCHnZ90mT4qt/TlUnu04b2cRxV61rVVPMTOpk4kqKPmfV J8ZNen6IUKKAJql+lRMj0RV6KHk8RQHKYic4Ygi/29U0D3MPyBzy1RrvEO3LAZaP ONO2uy2vgVwxtY520G8HZBBCgX87BK2M2gW14sEjTFcGT4sPQPbGSoqRt4hGbpS8 +SWStLG2Fkqx46gZ63lENk6ARoFCzxa6B1DzdyJKh8AS4YR7SVjn+TZrZHN9bO2N yhQl7jUWVrqZqjW2yOq7b8DVujmtyjBZ/CANAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWpQOfPuFZUXEs6ezt13ue41B0FIwHwYDVR0jBBgwFoAU4OqIWn5pccmTQnd+ fd26ZdDrEx8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVRJTUUv NE9xSVduNXBjY21UUW5kLWZkMjZaZERyRXg4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80T3FJV241cGNjbVRRbmQtZmQyNlpkRHJFeDguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FVElNRS9XcFFPZlB1RlpVWEVzNmV6dDEz dWU0MUIwRkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ57k MA0GCSqGSIb3DQEBCwUAA4IBAQCXMB1lG8UMbpIGVGlEmWjsfniWNZmLPxO4jQJq Zo03ecaJ7BWx4OJqkN4xEzahFzpFSuCpS8NFk7FSD4xHzM03OoLCbjjWV1dGokrJ CUCeX6pkfp2cxOomSykqx8JbhGlbyE7dkdunIwEa/gXJdd7J1m5A6tyXIA6ZGZCY UWJf9MsPn+pzXHuW7ysMtRw+m7ADRDl6tmChY43N19jsfQy/eeVs2rCOp6KJqwfR fHJASRawiZYELKp++BXDut096j1GYTkf8o6i/vun3WWb1xLcv1yHJBOBnXBo9fFA +EDRbhA4VGF1h0G1GaDHB5UyLkIE1J0qyahr3TwxURc/wlZ6 -----END CERTIFICATE-----Generated at Sat Apr 5 09:34:51 2025 by rpki-client