$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/1ThVdaoJkKialZuUyfjyCbVUT40.roa File: 1ThVdaoJkKialZuUyfjyCbVUT40.roa (raw, json) Hash identifier: 4GX4AQlfS9XnCO1N5KZiRFmFN22cuAbxziJrcPm8Tvg= Subject key identifier: D5:38:55:75:AA:09:90:A8:9A:95:9B:94:C9:F8:F2:09:B5:54:4F:8D Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07AD Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/1ThVdaoJkKialZuUyfjyCbVUT40.roa Signing time: Mon 10 Feb 2025 13:44:38 +0000 ROA not before: Mon 10 Feb 2025 13:44:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1965 (0x7ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D5385575AA0990A89A959B94C9F8F209B5544F8D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:48:11:82:8c:09:66:4e:e4:94:83:7e:ce:56: 5a:80:ab:1c:bb:f8:ad:78:1c:30:9e:6a:c7:55:6f: 6c:98:4c:ee:35:2b:29:a1:f6:89:8b:45:d5:c1:27: 0f:58:ed:a1:a8:df:8b:9d:0b:b5:5f:7e:d6:61:a4: c2:9d:98:7e:e1:6f:5b:d0:4a:59:e8:26:ec:ec:c1: 2c:52:f9:93:63:9e:0a:62:4a:1b:fc:30:0d:0e:f9: 9a:05:4d:d4:06:f3:06:b4:9d:74:f0:38:ae:36:b1: e4:d0:02:62:7b:72:79:f3:ce:26:ef:0e:5a:eb:53: dc:5e:eb:2f:65:63:cf:74:98:cf:8b:5f:b1:df:e0: ca:4f:c8:e7:99:24:fb:ea:0d:f7:9d:26:04:b3:09: 9a:55:dd:62:ec:17:01:93:3e:df:fc:bc:f6:8f:7f: 28:2a:9c:f2:2d:1a:47:5f:57:62:c5:d6:96:f0:c2: 08:72:86:15:2e:d4:43:54:c4:d7:1d:f0:75:53:2a: 76:50:18:e3:28:cc:2c:72:c9:8e:41:fc:6a:54:f5: 1f:2d:5f:0d:70:66:15:c3:50:af:87:09:d3:5d:31: 6a:43:87:7c:49:43:aa:24:99:13:2d:da:73:94:43: d8:9d:e3:43:05:ed:0a:20:d1:53:91:f5:70:8f:93: 3c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:38:55:75:AA:09:90:A8:9A:95:9B:94:C9:F8:F2:09:B5:54:4F:8D X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/1ThVdaoJkKialZuUyfjyCbVUT40.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption 75:f8:ee:51:0e:65:8e:f0:0a:b7:92:17:f6:1c:90:fb:d5:3e: 52:2e:1a:90:a6:57:f0:43:9b:72:6c:a8:6c:5b:7b:5c:bb:46: 19:c1:fa:9d:0d:92:ee:2f:8f:fa:cd:c9:06:15:e5:d7:74:76: 72:7c:1b:55:ea:65:0b:b8:44:8a:dd:4d:3f:b2:ca:37:ca:c9: 2e:61:1f:62:ee:b0:99:63:c1:d1:b4:e9:1f:5e:5b:b0:1d:55: c3:8a:a3:b2:80:93:9e:dd:2e:11:d0:54:73:7b:cf:05:70:bd: 2a:52:20:a9:56:22:33:ef:f5:00:fb:4f:26:eb:4d:ab:82:1a: 77:f9:f8:5d:06:81:0e:e5:1f:1a:9e:14:f8:30:41:a2:7d:2a: df:1f:0e:68:73:cb:57:d7:e7:01:ad:2c:ca:cb:2f:55:0a:44: 32:b0:b5:7c:4c:1b:21:3d:03:a2:a5:75:a2:c4:e0:f8:20:81: e3:85:91:0b:37:4b:cb:3a:75:ee:14:f7:b5:e9:3b:af:10:db: 7a:12:14:07:aa:67:21:b5:63:e6:43:07:c4:df:bf:74:20:e9: 4d:cd:e3:3c:89:0a:fb:c5:6c:c3:ea:e9:5c:85:9c:09:08:bb: 6e:68:07:c9:b2:fd:ce:01:c0:94:a0:dc:e5:6c:f4:ca:16:1e: 38:23:e8:df -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1Mzg1NTc1QUEwOTkw QTg5QTk1OUI5NEM5RjhGMjA5QjU1NDRGOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeSBGCjAlmTuSUg37OVlqAqxy7+K14HDCeasdVb2yYTO41Kymh 9omLRdXBJw9Y7aGo34udC7VfftZhpMKdmH7hb1vQSlnoJuzswSxS+ZNjngpiShv8 MA0O+ZoFTdQG8wa0nXTwOK42seTQAmJ7cnnzzibvDlrrU9xe6y9lY890mM+LX7Hf 4MpPyOeZJPvqDfedJgSzCZpV3WLsFwGTPt/8vPaPfygqnPItGkdfV2LF1pbwwghy hhUu1ENUxNcd8HVTKnZQGOMozCxyyY5B/GpU9R8tXw1wZhXDUK+HCdNdMWpDh3xJ Q6okmRMt2nOUQ9id40MF7Qog0VOR9XCPkzwdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1ThVdaoJkKialZuUyfjyCbVUT40wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzFUaFZkYW9Ka0tpYWxadVV5 Zmp5Q2JWVVQ0MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBAHX47lEOZY7wCreSF/YckPvVPlIuGpCmV/BD m3JsqGxbe1y7RhnB+p0Nku4vj/rNyQYV5dd0dnJ8G1XqZQu4RIrdTT+yyjfKyS5h H2LusJljwdG06R9eW7AdVcOKo7KAk57dLhHQVHN7zwVwvSpSIKlWIjPv9QD7Tybr TauCGnf5+F0GgQ7lHxqeFPgwQaJ9Kt8fDmhzy1fX5wGtLMrLL1UKRDKwtXxMGyE9 A6KldaLE4PgggeOFkQs3S8s6de4U97XpO68Q23oSFAeqZyG1Y+ZDB8Tfv3Qg6U3N 4zyJCvvFbMPq6VyFnAkIu25oB8my/c4BwJSg3OVs9MoWHjgj6N8= -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:50 2025 by rpki-client