$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/MfszGtR2dwxcf143HKZ-Nbv_CWM.roa File: MfszGtR2dwxcf143HKZ-Nbv_CWM.roa (raw, json) Hash identifier: PJHyAN9AlzKr7wDiemfzd/ffYEe9JFaQJp7WgCubBOg= Subject key identifier: 31:FB:33:1A:D4:76:77:0C:5C:7F:5E:37:1C:A6:7E:35:BB:FF:09:63 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07A8 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/MfszGtR2dwxcf143HKZ-Nbv_CWM.roa Signing time: Mon 10 Feb 2025 13:44:38 +0000 ROA not before: Mon 10 Feb 2025 13:44:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 396982 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1960 (0x7a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=31FB331AD476770C5C7F5E371CA67E35BBFF0963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:12:4f:dc:12:28:a1:a8:5f:26:01:3b:27: 40:8e:f6:e9:48:7c:14:8c:88:b3:f1:3e:00:75:34: c5:96:44:53:42:d1:5c:85:40:ef:60:22:db:71:80: 0c:c4:4a:f0:cb:ee:b4:9e:9b:8a:1f:e2:5d:5f:2a: 1e:4d:e8:ab:f0:c2:51:84:07:87:99:cb:96:7d:e2: 0b:d7:3e:2c:10:32:97:78:9b:ee:5a:76:29:fb:6d: 0f:93:00:41:18:94:31:01:3c:1c:9a:e9:ed:49:26: 45:91:e2:d8:81:f6:1b:aa:e2:7f:f2:c6:75:d9:6d: 1d:35:8c:09:e6:d7:d3:01:6b:7f:eb:2e:89:0b:d1: 32:d6:e0:66:e7:65:40:36:e9:bd:e4:7c:98:49:9c: fe:a4:62:37:23:37:e6:8d:04:70:a4:9a:76:97:9f: e6:fc:51:46:42:af:8a:7b:53:67:2f:92:3f:91:b8: 33:64:b2:7c:f6:31:e6:74:0e:2a:fe:08:27:a4:bb: 2f:20:32:c8:24:df:c9:92:75:f6:e5:26:21:03:98: 80:b9:ce:e8:e4:c6:b4:6f:ae:29:dc:1c:de:1b:a3: 32:71:f5:89:30:50:91:24:3c:d6:89:db:70:ea:a4: 49:46:c8:b9:b3:0a:42:04:24:2e:57:15:c3:35:6b: 6b:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FB:33:1A:D4:76:77:0C:5C:7F:5E:37:1C:A6:7E:35:BB:FF:09:63 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/MfszGtR2dwxcf143HKZ-Nbv_CWM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption 29:10:85:23:20:a6:6a:1a:24:bc:00:e2:a9:1d:14:18:96:c0: e3:96:a2:0c:76:9f:51:44:38:2a:23:10:42:d0:65:f3:f6:10: 90:37:53:d4:34:3e:a2:0d:b7:23:ca:5b:9a:e3:c9:17:1b:0b: 88:53:96:fe:6d:3d:fd:5b:7b:62:a9:24:ae:45:e1:40:5c:66: d5:4c:69:ff:85:37:77:42:4b:6d:cd:52:41:00:fa:6b:e3:5e: 2a:af:55:1a:df:da:cb:54:89:0e:e0:56:dc:81:04:a3:b6:ea: f5:65:40:cd:41:58:2c:d7:f9:d3:20:8d:43:43:0d:f4:0d:40: 62:62:b2:3f:4f:bc:25:d5:c2:b2:b4:21:4a:8c:13:2d:b8:bb: 99:4c:18:46:5e:9c:85:3c:fe:0c:05:cf:d8:a9:53:a5:45:d7: 31:9a:f0:65:51:32:c3:c1:8a:69:b6:fe:98:9e:ed:a2:9d:c6: ca:b7:29:c3:6d:4a:72:6d:6f:8c:13:79:58:a6:00:07:f9:68: 4d:93:60:11:52:6c:0a:65:95:f3:6f:c2:2d:bb:b1:9d:09:21: d3:c1:d2:71:cd:8c:19:81:25:9c:ec:e4:91:23:36:1e:86:38: 07:6d:9c:a9:b8:e7:de:ab:81:d2:19:35:c4:8a:48:a8:b0:c9: 27:dd:1c:71 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB6gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxRkIzMzFBRDQ3Njc3 MEM1QzdGNUUzNzFDQTY3RTM1QkJGRjA5NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/SRJP3BIooahfJgE7J0CO9ulIfBSMiLPxPgB1NMWWRFNC0VyF QO9gIttxgAzESvDL7rSem4of4l1fKh5N6KvwwlGEB4eZy5Z94gvXPiwQMpd4m+5a din7bQ+TAEEYlDEBPBya6e1JJkWR4tiB9huq4n/yxnXZbR01jAnm19MBa3/rLokL 0TLW4GbnZUA26b3kfJhJnP6kYjcjN+aNBHCkmnaXn+b8UUZCr4p7U2cvkj+RuDNk snz2MeZ0Dir+CCekuy8gMsgk38mSdfblJiEDmIC5zujkxrRvrincHN4bozJx9Ykw UJEkPNaJ23DqpElGyLmzCkIEJC5XFcM1a2tBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUMfszGtR2dwxcf143HKZ+Nbv/CWMwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL01mc3pHdFIyZHd4Y2YxNDNI S1otTmJ2X0NXTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBACkQhSMgpmoaJLwA4qkdFBiWwOOWogx2n1FE OCojEELQZfP2EJA3U9Q0PqINtyPKW5rjyRcbC4hTlv5tPf1be2KpJK5F4UBcZtVM af+FN3dCS23NUkEA+mvjXiqvVRrf2stUiQ7gVtyBBKO26vVlQM1BWCzX+dMgjUND DfQNQGJisj9PvCXVwrK0IUqMEy24u5lMGEZenIU8/gwFz9ipU6VF1zGa8GVRMsPB imm2/pie7aKdxsq3KcNtSnJtb4wTeVimAAf5aE2TYBFSbApllfNvwi27sZ0JIdPB 0nHNjBmBJZzs5JEjNh6GOAdtnKm4596rgdIZNcSKSKiwySfdHHE= -----END CERTIFICATE-----Generated at Fri Apr 4 22:42:22 2025 by rpki-client