$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/SChvRI6t8GVgNAHnlDZb_arOi4k.roa File: SChvRI6t8GVgNAHnlDZb_arOi4k.roa (raw, json) Hash identifier: VcqybCs0QaK3EwDmEOV3MsYoFzcizsdmVw0OJyVRW/M= Subject key identifier: 48:28:6F:44:8E:AD:F0:65:60:34:01:E7:94:36:5B:FD:AA:CE:8B:89 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07A4 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/SChvRI6t8GVgNAHnlDZb_arOi4k.roa Signing time: Mon 10 Feb 2025 13:44:37 +0000 ROA not before: Mon 10 Feb 2025 13:44:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20473 IP address blocks: 103.122.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1956 (0x7a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=48286F448EADF065603401E794365BFDAACE8B89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e6:2e:d1:11:87:89:91:fe:d4:ad:92:7a:f4: df:68:6b:b0:1e:b9:04:f2:6f:5f:a9:63:58:33:52: 24:9f:95:35:aa:08:e3:59:45:70:bf:17:b9:67:01: 8f:b1:57:82:f2:0a:83:9d:17:10:6a:a3:4d:ef:e4: b8:f2:d1:1e:93:4f:d0:b2:87:62:b0:b3:4f:69:fe: 6d:48:69:af:08:40:a3:e6:bf:10:48:82:a8:47:29: 4e:ed:0e:64:03:3b:68:19:fb:7f:1c:ac:53:b2:79: 12:75:86:40:8e:86:58:ff:e2:8b:b0:4d:a6:1b:03: c5:f8:68:c5:a8:1e:23:b1:06:ad:79:d6:16:ed:bb: d1:61:db:7d:3c:0a:e1:52:5f:62:d0:82:f5:0f:4c: c1:e3:f3:42:67:29:d8:88:30:2f:95:f4:ed:a8:f0: d4:05:6f:70:bf:e0:d6:f5:2f:b7:0f:e8:c2:9c:1c: 46:47:68:f1:4b:68:a3:c9:0d:c4:f7:59:ed:5b:5d: d9:06:0b:f6:71:61:49:dc:dc:3c:8a:21:0f:d1:ee: 12:5f:6b:93:02:4b:61:81:4a:ac:26:c6:b6:a8:d7: 4e:44:06:d8:ba:ca:b8:b9:81:fb:b9:01:25:b3:c2: c6:35:76:43:f2:c7:f5:c1:32:48:89:2d:5a:fd:99: d4:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:28:6F:44:8E:AD:F0:65:60:34:01:E7:94:36:5B:FD:AA:CE:8B:89 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/SChvRI6t8GVgNAHnlDZb_arOi4k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 83:ca:6e:5e:69:74:26:07:d4:bd:cb:7c:59:24:d8:db:ea:39: 81:f1:fe:af:9d:5d:20:72:2a:a9:d4:d5:a8:61:7d:71:38:0e: aa:ad:06:89:82:b7:b8:19:55:00:31:c7:02:7b:93:43:6b:5b: 5b:10:6a:75:90:8a:5b:35:b2:87:fb:1f:3d:82:1c:24:29:88: 45:4b:ed:d0:fa:31:f1:e0:40:cd:10:b9:07:8f:f4:4c:25:2b: 60:a2:33:8c:4d:e1:d4:65:bb:1b:7c:8f:10:60:c7:1a:c3:28: 43:b2:2e:72:6f:3b:c5:dd:1b:38:3d:ec:61:95:a4:e9:05:6f: d6:ac:3d:01:ca:ea:85:7e:f5:87:34:83:e9:cc:4c:70:e7:95: a9:5e:e4:16:65:31:5e:14:28:ea:b5:e2:ee:27:f8:87:9f:66: 86:e3:3a:96:e7:cc:e7:f3:80:e5:9b:bf:2d:4f:db:59:09:19: ef:86:ce:30:1c:7b:47:6c:b5:60:46:ac:0b:03:1e:b7:bf:80: 45:f8:6a:af:28:47:4e:28:df:6b:64:af:6a:4f:e7:d5:bd:96: 16:91:23:4b:a6:22:58:51:b7:51:27:53:30:92:0b:1d:07:44: ef:be:53:55:d1:87:98:3a:f5:cc:08:80:87:d9:94:08:8e:a0: d8:33:90:b5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB6QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4Mjg2RjQ0OEVBREYw NjU2MDM0MDFFNzk0MzY1QkZEQUFDRThCODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC25i7REYeJkf7UrZJ69N9oa7AeuQTyb1+pY1gzUiSflTWqCONZ RXC/F7lnAY+xV4LyCoOdFxBqo03v5Ljy0R6TT9Cyh2Kws09p/m1Iaa8IQKPmvxBI gqhHKU7tDmQDO2gZ+38crFOyeRJ1hkCOhlj/4ouwTaYbA8X4aMWoHiOxBq151hbt u9Fh2308CuFSX2LQgvUPTMHj80JnKdiIMC+V9O2o8NQFb3C/4Nb1L7cP6MKcHEZH aPFLaKPJDcT3We1bXdkGC/ZxYUnc3DyKIQ/R7hJfa5MCS2GBSqwmxrao105EBti6 yri5gfu5ASWzwsY1dkPyx/XBMkiJLVr9mdSzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSChvRI6t8GVgNAHnlDZb/arOi4kwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1NDaHZSSTZ0OEdWZ05BSG5s RFpiX2FyT2k0ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBAIPKbl5pdCYH1L3LfFkk2NvqOYHx/q+dXSBy KqnU1ahhfXE4DqqtBomCt7gZVQAxxwJ7k0NrW1sQanWQils1sof7Hz2CHCQpiEVL 7dD6MfHgQM0QuQeP9EwlK2CiM4xN4dRluxt8jxBgxxrDKEOyLnJvO8XdGzg97GGV pOkFb9asPQHK6oV+9Yc0g+nMTHDnlale5BZlMV4UKOq14u4n+IefZobjOpbnzOfz gOWbvy1P21kJGe+GzjAce0dstWBGrAsDHre/gEX4aq8oR04o32tkr2pP59W9lhaR I0umIlhRt1EnUzCSCx0HRO++U1XRh5g69cwIgIfZlAiOoNgzkLU= -----END CERTIFICATE-----Generated at Sat Apr 5 11:55:04 2025 by rpki-client