$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/qgeC-MdngcenX78I1yK5GSQRgfk.roa File: qgeC-MdngcenX78I1yK5GSQRgfk.roa (raw, json) Hash identifier: LTphWgrCFAzM9L9956loVS/4+v8cWvF8/jWwxCZt4SI= Subject key identifier: AA:07:82:F8:C7:67:81:C7:A7:5F:BF:08:D7:22:B9:19:24:11:81:F9 Certificate issuer: /CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D Certificate serial: 037F Authority key identifier: 00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/qgeC-MdngcenX78I1yK5GSQRgfk.roa Signing time: Mon 10 Feb 2025 13:57:04 +0000 ROA not before: Mon 10 Feb 2025 13:57:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 396982 IP address blocks: 103.169.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 895 (0x37f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00DCF050C4CEAE5021AA8D311953F02D6121FD8D Validity Not Before: Feb 10 13:57:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AA0782F8C76781C7A75FBF08D722B919241181F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:9b:ff:84:9b:e0:18:70:dc:55:4d:7c:4e:a0: e0:d3:17:81:dd:4f:59:84:31:64:e1:01:02:e7:f7: 87:51:83:c9:4a:f7:02:16:ae:7d:0c:70:d3:6d:07: b3:49:3f:13:3b:b9:0b:a1:f2:7e:60:38:58:40:dd: 04:a2:8e:f4:d2:b4:cb:69:75:78:85:14:56:84:5a: 12:cc:42:22:ce:0e:9f:f7:be:56:c9:96:da:4f:b6: 57:4e:21:6e:64:5f:73:78:b5:6b:23:fd:e8:cc:89: 9e:c8:74:2a:c4:84:33:a3:bb:51:a8:04:4c:ab:98: 98:33:19:1d:e1:43:01:eb:a0:83:5a:41:bf:27:21: 02:80:60:8d:4d:d9:a9:9a:14:7b:78:4b:6a:da:c9: 94:f2:aa:d6:19:4f:c1:72:1d:62:0b:35:d8:b4:8a: 29:4f:75:9f:90:70:af:30:77:03:c0:93:48:6e:cd: 81:c3:e6:d9:14:36:06:68:6a:01:1c:88:62:45:c9: f2:83:57:ad:2f:c7:e2:42:09:81:a3:2c:63:81:cb: 52:54:d6:95:1c:06:71:5a:c5:eb:62:99:1c:7e:81: c5:39:62:3f:aa:69:54:18:dc:5f:60:b0:43:85:7c: aa:d9:05:c1:8d:f1:52:b0:66:fd:3c:45:de:24:89: 4d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:07:82:F8:C7:67:81:C7:A7:5F:BF:08:D7:22:B9:19:24:11:81:F9 X509v3 Authority Key Identifier: keyid:00:DC:F0:50:C4:CE:AE:50:21:AA:8D:31:19:53:F0:2D:61:21:FD:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANzwUMTOrlAhqo0xGVPwLWEh_Y0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HAPPYMONEY/qgeC-MdngcenX78I1yK5GSQRgfk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.169.213.0/24 Signature Algorithm: sha256WithRSAEncryption 62:07:a0:48:89:80:f7:68:5c:8a:fd:34:5f:80:3d:f7:e5:17: 09:c2:0c:fa:f8:b0:2c:bd:13:25:41:fb:fc:72:fc:0c:57:10: f2:01:59:12:b4:b5:34:9e:12:1d:63:37:ff:e5:bf:e9:48:58: d4:97:5e:e6:3d:32:6a:71:d6:72:85:a1:f6:ff:16:5d:21:42: 58:d2:98:85:d0:f2:11:2f:e3:15:fc:44:8a:a0:7d:8d:7e:4a: 87:3b:b3:36:20:4c:27:f4:cf:80:f4:8e:26:c9:39:f5:d1:01: 87:00:b0:26:de:36:1b:65:49:41:01:a0:04:06:00:fc:c5:9c: e7:c1:a5:61:64:c3:a9:df:70:18:2d:a4:13:35:d2:75:d1:6d: c7:40:85:d7:4a:2a:67:6a:fb:34:fc:e6:1a:60:8d:15:a0:7a: c3:bf:28:53:8b:5d:c0:d2:2d:fa:1f:e4:9d:4d:ea:df:58:96: d6:80:2c:50:9b:4a:cb:bc:9d:a7:18:be:d4:5e:85:17:d3:71: e7:ef:67:f6:97:25:bf:81:ed:8d:8d:ce:ca:65:2b:75:32:a2: a8:df:55:e0:78:75:21:d4:11:2c:3f:05:aa:02:56:6e:db:d3: 08:7b:be:02:ec:fe:45:e3:cf:39:73:fd:8c:da:59:f9:5f:f0: 1d:aa:d9:6c -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICA38wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDBE Q0YwNTBDNENFQUU1MDIxQUE4RDMxMTk1M0YwMkQ2MTIxRkQ4RDAeFw0yNTAyMTAx MzU3MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBMDc4MkY4Qzc2Nzgx QzdBNzVGQkYwOEQ3MjJCOTE5MjQxMTgxRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvm/+Em+AYcNxVTXxOoODTF4HdT1mEMWThAQLn94dRg8lK9wIW rn0McNNtB7NJPxM7uQuh8n5gOFhA3QSijvTStMtpdXiFFFaEWhLMQiLODp/3vlbJ ltpPtldOIW5kX3N4tWsj/ejMiZ7IdCrEhDOju1GoBEyrmJgzGR3hQwHroINaQb8n IQKAYI1N2amaFHt4S2rayZTyqtYZT8FyHWILNdi0iilPdZ+QcK8wdwPAk0huzYHD 5tkUNgZoagEciGJFyfKDV60vx+JCCYGjLGOBy1JU1pUcBnFaxetimRx+gcU5Yj+q aVQY3F9gsEOFfKrZBcGN8VKwZv08Rd4kiU07AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUqgeC+MdngcenX78I1yK5GSQRgfkwHwYDVR0jBBgwFoAUANzwUMTOrlAhqo0x GVPwLWEh/Y0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEFQUFlN T05FWS9BTnp3VU1UT3JsQWhxbzB4R1ZQd0xXRWhfWTAuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0FOendVTVRPcmxBaHFvMHhHVlB3TFdFaF9ZMC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hBUFBZTU9ORVkvcWdlQy1NZG5n Y2VuWDc4STF5SzVHU1FSZ2ZrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGep1TANBgkqhkiG9w0BAQsFAAOCAQEAYgegSImA92hciv00X4A99+UX CcIM+viwLL0TJUH7/HL8DFcQ8gFZErS1NJ4SHWM3/+W/6UhY1Jde5j0yanHWcoWh 9v8WXSFCWNKYhdDyES/jFfxEiqB9jX5KhzuzNiBMJ/TPgPSOJsk59dEBhwCwJt42 G2VJQQGgBAYA/MWc58GlYWTDqd9wGC2kEzXSddFtx0CF10oqZ2r7NPzmGmCNFaB6 w78oU4tdwNIt+h/knU3q31iW1oAsUJtKy7ydpxi+1F6FF9Nx5+9n9pclv4HtjY3O ymUrdTKiqN9V4Hh1IdQRLD8FqgJWbtvTCHu+Auz+RePPOXP9jNpZ+V/wHarZbA== -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:12 2025 by rpki-client