$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mLSLyGRbN3YBEB5ddzdKcjgHg3Y.roa File: mLSLyGRbN3YBEB5ddzdKcjgHg3Y.roa (raw, json) Hash identifier: bnikQGAuCNspTJienWJ9Li1iKgnNP8RuDlUHX0ppr7k= Subject key identifier: 98:B4:8B:C8:64:5B:37:76:01:10:1E:5D:77:37:4A:72:38:07:83:76 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1790 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mLSLyGRbN3YBEB5ddzdKcjgHg3Y.roa Signing time: Wed 12 Feb 2025 01:36:50 +0000 ROA not before: Wed 12 Feb 2025 01:36:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 198949 IP address blocks: 203.66.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6032 (0x1790) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:50 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=98B48BC8645B377601101E5D77374A7238078376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:9d:d4:38:3a:62:21:a1:d6:6a:81:90:af:ea: e5:30:f1:4f:16:fc:bd:92:76:b0:67:de:d3:4a:81: 33:43:c9:26:9a:eb:a1:31:16:9a:a5:9e:0e:87:01: f3:77:ed:fc:7f:0c:96:8b:94:15:0c:e5:27:10:6b: 75:c8:1d:cd:32:3b:14:2f:63:13:7f:bd:5d:fb:c4: b0:08:5d:59:36:cc:8f:31:ca:d0:f7:66:22:f0:ae: 34:61:5f:3b:df:f7:c3:7d:08:58:bb:15:68:fc:e3: 0d:4a:6d:6a:20:b2:80:97:02:0e:18:00:4f:d9:68: 7e:cd:dc:84:2c:98:12:81:81:ec:a0:73:7f:ca:18: bd:d3:02:d9:12:86:7f:5c:94:7b:f5:2c:b3:96:18: da:3b:65:f1:d2:fd:3c:79:30:19:79:eb:be:b4:83: 24:5a:70:2b:73:29:3f:7b:4f:8c:48:cf:f2:3e:39: 76:76:37:1a:1b:03:0d:08:ab:b9:b0:6d:21:31:12: 89:bf:88:56:ed:0d:86:e8:ad:d3:c9:e4:76:1c:73: d3:c2:3d:83:a4:db:7a:15:a0:18:19:cb:40:31:5f: b6:5f:af:8f:ce:d1:e6:bf:ad:e1:58:84:3c:34:a7: 01:1a:db:b2:ff:13:bb:47:8f:a7:2c:c2:73:a4:c5: 0c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B4:8B:C8:64:5B:37:76:01:10:1E:5D:77:37:4A:72:38:07:83:76 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mLSLyGRbN3YBEB5ddzdKcjgHg3Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.126.0/24 Signature Algorithm: sha256WithRSAEncryption 39:98:bc:3e:9d:17:77:a4:42:43:a4:d0:ef:9b:67:63:5a:9e: 21:77:1c:ec:49:66:2a:5d:83:8d:ab:b4:e9:ad:46:37:9e:af: 92:b1:4d:43:da:42:f3:b3:c6:92:3c:24:68:1a:5d:83:79:45: 86:a5:9e:fe:7a:4e:40:64:fc:e9:cd:4c:24:9f:0d:ce:90:be: e8:66:11:95:18:5f:32:c6:a4:e9:67:b8:45:49:a1:ea:45:ed: 75:df:93:02:e8:cb:98:10:b8:74:81:5e:b7:66:59:fa:6b:95: ee:1a:cc:5d:61:52:0a:2a:b7:b9:1a:51:7f:64:a8:4e:4d:f2: 61:50:74:57:88:6f:d2:33:44:70:99:9a:ba:0a:2a:e1:e8:09: d8:42:58:52:80:e6:1f:47:53:27:36:dc:da:7b:0c:f2:49:56: 7f:9c:c1:38:d4:c1:da:65:6e:ba:22:0c:88:65:26:dc:f5:f5: bb:a8:69:49:0e:08:28:61:66:85:99:00:ec:60:34:69:1b:f6: 75:ce:55:16:bf:60:cf:91:12:ab:05:bb:ae:98:69:3f:7a:82: cb:b3:e7:20:e0:69:89:17:ab:f6:d2:c4:48:be:5a:cc:2e:e9: b0:9b:82:4b:73:eb:6f:a8:ea:5b:b7:09:52:8b:40:e5:bd:7a: 03:d6:d3:98 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4QjQ4QkM4NjQ1QjM3 NzYwMTEwMUU1RDc3Mzc0QTcyMzgwNzgzNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWndQ4OmIhodZqgZCv6uUw8U8W/L2SdrBn3tNKgTNDySaa66Ex Fpqlng6HAfN37fx/DJaLlBUM5ScQa3XIHc0yOxQvYxN/vV37xLAIXVk2zI8xytD3 ZiLwrjRhXzvf98N9CFi7FWj84w1KbWogsoCXAg4YAE/ZaH7N3IQsmBKBgeygc3/K GL3TAtkShn9clHv1LLOWGNo7ZfHS/Tx5MBl56760gyRacCtzKT97T4xIz/I+OXZ2 NxobAw0Iq7mwbSExEom/iFbtDYbordPJ5HYcc9PCPYOk23oVoBgZy0AxX7Zfr4/O 0ea/reFYhDw0pwEa27L/E7tHj6cswnOkxQxXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUmLSLyGRbN3YBEB5ddzdKcjgHg3YwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tTFNMeUdSYk4zWUJFQjVkZHpk S2NqZ0hnM1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0J+ MA0GCSqGSIb3DQEBCwUAA4IBAQA5mLw+nRd3pEJDpNDvm2djWp4hdxzsSWYqXYON q7TprUY3nq+SsU1D2kLzs8aSPCRoGl2DeUWGpZ7+ek5AZPzpzUwknw3OkL7oZhGV GF8yxqTpZ7hFSaHqRe1135MC6MuYELh0gV63Zln6a5XuGsxdYVIKKre5GlF/ZKhO TfJhUHRXiG/SM0RwmZq6Cirh6AnYQlhSgOYfR1MnNtzaewzySVZ/nME41MHaZW66 IgyIZSbc9fW7qGlJDggoYWaFmQDsYDRpG/Z1zlUWv2DPkRKrBbuumGk/eoLLs+cg 4GmJF6v20sRIvlrMLumwm4JLc+tvqOpbtwlSi0DlvXoD1tOY -----END CERTIFICATE-----Generated at Mon Apr 7 17:47:08 2025 by rpki-client