$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UeSxuH9_5rhS8rVwFfuqUpcd0AE.roa File: UeSxuH9_5rhS8rVwFfuqUpcd0AE.roa (raw, json) Hash identifier: T3KOLIrvulruedCKBPKf1W8sFJYYXTPR0de+NvGNMdY= Subject key identifier: 51:E4:B1:B8:7F:7F:E6:B8:52:F2:B5:70:15:FB:AA:52:97:1D:D0:01 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07A1 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UeSxuH9_5rhS8rVwFfuqUpcd0AE.roa Signing time: Mon 10 Feb 2025 13:44:37 +0000 ROA not before: Mon 10 Feb 2025 13:44:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.122.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1953 (0x7a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=51E4B1B87F7FE6B852F2B57015FBAA52971DD001 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cb:00:24:a9:86:8c:b1:a7:07:5c:33:3f:c6: 9c:df:a8:b5:56:dd:47:41:91:ea:82:7e:a7:0b:1a: a6:7e:85:61:27:72:38:1e:e0:64:ca:d7:d9:18:dc: b1:38:ae:3f:78:c9:f9:b3:00:44:f1:09:94:aa:56: f3:a3:11:fe:81:0d:1c:89:26:e1:0c:1c:4a:91:df: 7d:08:f8:17:ba:e3:cd:19:36:1f:97:53:2a:a7:6f: 59:23:2f:96:45:71:d7:c4:f8:6e:48:23:b1:dd:23: 43:54:56:12:30:a3:ec:f2:8d:4c:fe:b8:8e:b7:5d: b3:36:f7:26:9c:a1:73:b3:7d:00:b5:62:6f:e5:e1: 12:56:a2:80:14:b8:f1:43:45:2c:01:ad:7e:77:21: 10:ff:af:23:5b:88:a6:d0:e4:66:57:a8:63:49:ad: fa:8d:d5:e0:b4:d1:14:7a:59:d2:4a:84:b5:39:cd: 79:b4:60:d7:b0:d1:ed:ea:7e:dc:8c:49:ff:e1:d2: 23:cd:a5:3f:87:16:56:d8:62:18:4a:3f:7d:62:16: 0d:14:f1:b6:08:97:1e:e1:c3:3a:4e:86:56:5c:ba: 99:07:f4:b1:c2:19:94:23:37:da:1c:ca:d3:72:d2: 9d:cb:8b:20:0d:d3:2b:2b:56:04:34:ee:b6:65:35: 06:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E4:B1:B8:7F:7F:E6:B8:52:F2:B5:70:15:FB:AA:52:97:1D:D0:01 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UeSxuH9_5rhS8rVwFfuqUpcd0AE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.189.0/24 Signature Algorithm: sha256WithRSAEncryption 32:b2:b7:12:c7:f5:21:72:e0:1c:e3:e1:c9:81:30:fc:d1:10: c3:12:cd:80:ce:d6:6e:6f:df:13:19:0b:68:84:ab:2f:f7:b3: 5e:b0:c9:e7:d4:f0:e5:a5:e7:e1:12:d0:f5:47:25:3d:96:bc: 1b:bf:69:78:b6:03:78:55:cd:f2:bd:e5:ee:84:d9:f3:28:3b: 2a:31:f8:18:f7:5a:55:25:da:60:9a:f3:b3:e2:bf:0d:f2:80: 1a:c6:c0:50:ad:8c:10:86:f6:d8:b0:db:81:69:a6:00:4f:5b: 7f:80:f7:db:d9:c1:8e:18:76:10:8d:d5:62:21:fb:8c:79:7f: b5:dd:9b:6c:ae:f1:3b:83:53:5b:c4:27:0c:36:c3:72:ce:ee: f7:9a:01:c6:e8:85:6c:6b:06:44:7e:48:54:8d:ee:e4:4b:1e: a5:af:21:a8:25:f9:97:77:7b:1b:37:01:e4:4f:cf:9b:2a:a4: 81:b1:0d:19:3b:53:ae:9e:38:7b:d5:e9:e9:0f:df:8e:5a:7e: 1c:19:e9:02:93:d8:dd:24:3b:ef:be:87:2f:db:c9:e2:24:08: 05:eb:ed:b6:ca:24:fc:7a:a0:90:77:78:54:05:fc:46:84:ec: a8:47:fd:6a:45:db:8c:09:91:42:6c:00:94:bc:c9:6a:7c:30: f3:a3:b8:ab -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB6EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxRTRCMUI4N0Y3RkU2 Qjg1MkYyQjU3MDE1RkJBQTUyOTcxREQwMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHywAkqYaMsacHXDM/xpzfqLVW3UdBkeqCfqcLGqZ+hWEncjge 4GTK19kY3LE4rj94yfmzAETxCZSqVvOjEf6BDRyJJuEMHEqR330I+Be6480ZNh+X Uyqnb1kjL5ZFcdfE+G5II7HdI0NUVhIwo+zyjUz+uI63XbM29yacoXOzfQC1Ym/l 4RJWooAUuPFDRSwBrX53IRD/ryNbiKbQ5GZXqGNJrfqN1eC00RR6WdJKhLU5zXm0 YNew0e3qftyMSf/h0iPNpT+HFlbYYhhKP31iFg0U8bYIlx7hwzpOhlZcupkH9LHC GZQjN9ocytNy0p3LiyAN0ysrVgQ07rZlNQbDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUeSxuH9/5rhS8rVwFfuqUpcd0AEwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1VlU3h1SDlfNXJoUzhyVndG ZnVxVXBjZDBBRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er0wDQYJKoZIhvcNAQELBQADggEBADKytxLH9SFy4Bzj4cmBMPzREMMSzYDO1m5v 3xMZC2iEqy/3s16wyefU8OWl5+ES0PVHJT2WvBu/aXi2A3hVzfK95e6E2fMoOyox +Bj3WlUl2mCa87Pivw3ygBrGwFCtjBCG9tiw24FppgBPW3+A99vZwY4YdhCN1WIh +4x5f7Xdm2yu8TuDU1vEJww2w3LO7veaAcbohWxrBkR+SFSN7uRLHqWvIagl+Zd3 exs3AeRPz5sqpIGxDRk7U66eOHvV6ekP345afhwZ6QKT2N0kO+++hy/byeIkCAXr 7bbKJPx6oJB3eFQF/EaE7KhH/WpF24wJkUJsAJS8yWp8MPOjuKs= -----END CERTIFICATE-----Generated at Sat Apr 5 09:34:52 2025 by rpki-client