$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/L-94wboaaVgPHVkRYvI7gZfD_9s.roa File: L-94wboaaVgPHVkRYvI7gZfD_9s.roa (raw, json) Hash identifier: bXAn+Hu3fjVuxA6uW5fP3em0sJ+rJeQr42FQ06boVqw= Subject key identifier: 2F:EF:78:C1:BA:1A:69:58:0F:1D:59:11:62:F2:3B:81:97:C3:FF:DB Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 079A Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/L-94wboaaVgPHVkRYvI7gZfD_9s.roa Signing time: Mon 10 Feb 2025 13:44:35 +0000 ROA not before: Mon 10 Feb 2025 13:44:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.122.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1946 (0x79a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2FEF78C1BA1A69580F1D591162F23B8197C3FFDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:85:71:ca:c3:cc:6e:86:47:d6:25:46:bd:77: 7a:f4:2b:97:e7:f7:c9:08:2a:e2:51:8d:48:62:c7: fb:b8:96:66:db:76:05:b8:9e:d9:03:84:ac:5c:70: b5:75:83:87:85:33:48:85:e4:fc:68:bb:09:6e:51: 85:cf:dd:a2:3b:e3:43:9f:b8:36:35:45:b6:a1:7b: ec:92:63:69:1f:98:d4:d8:58:f3:37:59:df:12:2b: 07:fc:f5:f2:42:e7:4e:e2:5e:72:61:7e:bf:b7:1c: 01:48:32:a2:b4:20:ca:1f:04:48:81:90:13:c1:95: 3a:dc:07:55:0e:f3:21:0f:32:18:8c:ba:f9:06:e7: a8:c3:4d:03:db:9c:0d:25:c2:77:9f:1e:57:51:0c: 48:7c:e7:b1:37:7c:8e:0a:8f:1f:45:2d:c8:75:2c: a4:e4:56:50:cd:08:27:eb:5b:6e:25:49:94:a9:25: 68:3e:72:e3:c1:46:e2:15:8b:77:7b:60:84:f3:e3: 20:bc:41:e7:7a:50:94:f3:39:ed:d2:38:4d:00:27: d4:2c:97:29:6f:dd:91:87:99:bb:e5:97:2d:99:c8: 13:2d:bf:4a:28:74:47:4c:b9:42:bf:98:b6:3e:6b: ff:bc:24:49:16:0e:0a:15:4e:b1:20:01:f2:51:f4: 2f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:EF:78:C1:BA:1A:69:58:0F:1D:59:11:62:F2:3B:81:97:C3:FF:DB X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/L-94wboaaVgPHVkRYvI7gZfD_9s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/24 Signature Algorithm: sha256WithRSAEncryption af:57:9c:ef:90:45:38:b2:c6:89:58:fc:3b:87:99:47:d5:b0: f5:0c:6e:ff:1f:06:9b:f5:8e:2d:d5:bf:be:ad:c3:58:52:a4: fb:d8:96:61:8f:c0:ff:7a:44:04:4c:bc:c0:d5:6d:dd:e0:6c: a8:0a:07:0e:66:0b:e2:de:ce:ec:f8:56:54:e5:2c:4e:90:24: 4d:8c:3c:83:d0:33:ff:51:8e:e3:a9:4c:99:10:d7:b0:14:ac: d5:21:92:8a:32:e9:38:bd:a9:bc:de:ff:ec:40:55:1d:05:e6: 05:87:49:4f:fb:89:1d:85:8a:1b:8c:10:e7:70:b7:3c:0d:f1: 91:55:15:7f:ae:7c:f4:bb:16:52:29:8f:28:dd:3c:f7:1a:e7: 1a:7b:40:0a:cb:f4:d4:ae:eb:80:b6:cc:fe:00:69:29:fc:00: 6d:e6:b9:cb:48:33:11:1a:9f:44:80:4c:46:68:fd:ef:7c:31: 6f:d3:58:d0:5a:d0:87:92:02:4c:3b:c0:44:7b:32:1f:86:b8: 76:e2:21:25:42:7d:81:17:14:bb:64:bc:09:50:57:6e:48:94: 83:d3:15:bf:21:c4:4c:75:1d:d1:6b:26:96:74:30:ec:7a:31: ba:eb:9e:5b:10:ba:f6:26:f9:e5:a6:21:af:84:c1:4b:9f:33: 66:f5:84:08 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB5owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJGRUY3OEMxQkExQTY5 NTgwRjFENTkxMTYyRjIzQjgxOTdDM0ZGREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNhXHKw8xuhkfWJUa9d3r0K5fn98kIKuJRjUhix/u4lmbbdgW4 ntkDhKxccLV1g4eFM0iF5PxouwluUYXP3aI740OfuDY1Rbahe+ySY2kfmNTYWPM3 Wd8SKwf89fJC507iXnJhfr+3HAFIMqK0IMofBEiBkBPBlTrcB1UO8yEPMhiMuvkG 56jDTQPbnA0lwnefHldRDEh857E3fI4Kjx9FLch1LKTkVlDNCCfrW24lSZSpJWg+ cuPBRuIVi3d7YITz4yC8Qed6UJTzOe3SOE0AJ9Qslylv3ZGHmbvlly2ZyBMtv0oo dEdMuUK/mLY+a/+8JEkWDgoVTrEgAfJR9C+3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUL+94wboaaVgPHVkRYvI7gZfD/9swHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0wtOTR3Ym9hYVZnUEhWa1JZ dkk3Z1pmRF85cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn erwwDQYJKoZIhvcNAQELBQADggEBAK9XnO+QRTiyxolY/DuHmUfVsPUMbv8fBpv1 ji3Vv76tw1hSpPvYlmGPwP96RARMvMDVbd3gbKgKBw5mC+Lezuz4VlTlLE6QJE2M PIPQM/9RjuOpTJkQ17AUrNUhkooy6Ti9qbze/+xAVR0F5gWHSU/7iR2FihuMEOdw tzwN8ZFVFX+ufPS7FlIpjyjdPPca5xp7QArL9NSu64C2zP4AaSn8AG3muctIMxEa n0SATEZo/e98MW/TWNBa0IeSAkw7wER7Mh+GuHbiISVCfYEXFLtkvAlQV25IlIPT Fb8hxEx1HdFrJpZ0MOx6MbrrnlsQuvYm+eWmIa+EwUufM2b1hAg= -----END CERTIFICATE-----Generated at Sat Apr 5 09:33:23 2025 by rpki-client