$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/XAgJp8wGygf2F1yjeLhm7LwdpVk.roa File: XAgJp8wGygf2F1yjeLhm7LwdpVk.roa (raw, json) Hash identifier: cyzeS2Aak4vSvsXPe1t2lgED2mhPz6MsE4RPAUSyTFA= Subject key identifier: 5C:08:09:A7:CC:06:CA:07:F6:17:5C:A3:78:B8:66:EC:BC:1D:A5:59 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 0796 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/XAgJp8wGygf2F1yjeLhm7LwdpVk.roa Signing time: Mon 10 Feb 2025 13:44:34 +0000 ROA not before: Mon 10 Feb 2025 13:44:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.122.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1942 (0x796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5C0809A7CC06CA07F6175CA378B866ECBC1DA559 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:fa:96:e2:39:6a:6b:7b:95:e0:3a:5c:86: 83:7b:e3:46:69:cf:ea:80:fb:64:fc:a2:5d:bd:fc: c5:25:49:73:a1:83:c9:17:30:f0:24:35:9d:76:01: e5:3f:2e:26:1b:c5:8d:f3:82:ca:b7:aa:88:a3:ce: f3:2b:c2:9a:ef:f6:82:ec:32:43:34:26:e4:68:44: 60:b7:a5:90:5e:f2:bc:5e:6e:15:d0:da:ce:69:42: 9e:db:e5:9b:d3:7d:cf:5f:67:10:61:44:18:ba:78: cc:4a:22:98:ff:25:fc:db:67:89:83:87:2a:2a:34: e7:ce:a8:b8:03:a8:c5:63:93:8e:5e:03:f8:f1:2c: 57:d5:2d:cb:c0:94:07:99:3e:ed:e9:87:ac:d0:23: e1:8c:92:44:d8:49:d9:4a:63:e9:15:5b:58:fe:fe: 18:c7:e3:7f:70:d9:a4:48:e8:48:81:51:86:67:5b: 37:ea:9c:8e:23:81:f1:d6:ee:eb:d5:9d:08:43:7f: b7:90:ae:e0:c8:06:78:07:73:34:d4:31:26:6a:fa: 47:94:13:c6:07:7f:8b:a5:0b:5f:b8:c5:8f:d8:52: 29:02:71:4a:cd:e4:20:92:a3:3d:da:ab:c2:85:27: 07:65:e2:c5:9d:dc:0a:94:72:22:b8:af:08:ee:5b: f3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:08:09:A7:CC:06:CA:07:F6:17:5C:A3:78:B8:66:EC:BC:1D:A5:59 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/XAgJp8wGygf2F1yjeLhm7LwdpVk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.190.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:d7:a4:38:3d:46:67:68:0d:da:8d:b1:d3:1c:fc:21:3e:1c: 44:d4:52:12:6a:28:63:3e:0d:4c:c7:19:1f:58:f2:8c:d7:90: 9d:60:37:02:dd:49:13:d8:80:fe:57:84:29:48:0d:3e:be:8b: 65:32:a0:ee:e1:6b:c2:6b:58:3a:53:63:67:fb:11:76:4f:56: 7c:43:41:6c:12:49:4c:e1:04:e6:8b:e9:07:0d:eb:f0:3d:a6: 49:39:4f:c1:1e:f9:0e:c2:7c:a8:42:ee:f5:ee:ee:0b:a3:e9: 2b:9b:65:a9:d3:c5:0d:d2:fb:17:10:cb:c9:26:db:e9:c5:a1: 2d:27:01:45:78:b3:21:47:e0:b6:9c:8c:a7:a5:df:2e:02:b8: 53:55:fe:9e:c2:ea:aa:40:82:49:38:93:cf:84:38:b1:3c:68: 53:e3:1f:b4:56:44:e7:be:f6:0c:90:0b:f4:71:aa:0b:31:b3: 78:ca:c4:ed:9e:90:56:a1:d5:2c:a3:e3:d2:d3:53:02:9d:bf: ba:65:5d:5c:7b:eb:59:bb:36:37:24:cb:be:8b:18:bf:95:2a: 05:2f:3b:6e:04:3e:60:b1:2e:09:e3:78:43:08:0a:ad:36:06: 28:f9:b8:7f:6f:89:e6:36:a2:af:16:87:f4:98:5e:10:9e:84: 53:de:18:ec -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDMDgwOUE3Q0MwNkNB MDdGNjE3NUNBMzc4Qjg2NkVDQkMxREE1NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5QPqW4jlqa3uV4DpchoN740Zpz+qA+2T8ol29/MUlSXOhg8kX MPAkNZ12AeU/LiYbxY3zgsq3qoijzvMrwprv9oLsMkM0JuRoRGC3pZBe8rxebhXQ 2s5pQp7b5ZvTfc9fZxBhRBi6eMxKIpj/JfzbZ4mDhyoqNOfOqLgDqMVjk45eA/jx LFfVLcvAlAeZPu3ph6zQI+GMkkTYSdlKY+kVW1j+/hjH439w2aRI6EiBUYZnWzfq nI4jgfHW7uvVnQhDf7eQruDIBngHczTUMSZq+keUE8YHf4ulC1+4xY/YUikCcUrN 5CCSoz3aq8KFJwdl4sWd3AqUciK4rwjuW/N5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXAgJp8wGygf2F1yjeLhm7LwdpVkwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1hBZ0pwOHdHeWdmMkYxeWpl TGhtN0x3ZHBWay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er4wDQYJKoZIhvcNAQELBQADggEBAJ7XpDg9RmdoDdqNsdMc/CE+HETUUhJqKGM+ DUzHGR9Y8ozXkJ1gNwLdSRPYgP5XhClIDT6+i2UyoO7ha8JrWDpTY2f7EXZPVnxD QWwSSUzhBOaL6QcN6/A9pkk5T8Ee+Q7CfKhC7vXu7guj6SubZanTxQ3S+xcQy8km 2+nFoS0nAUV4syFH4LacjKel3y4CuFNV/p7C6qpAgkk4k8+EOLE8aFPjH7RWROe+ 9gyQC/Rxqgsxs3jKxO2ekFah1Syj49LTUwKdv7plXVx761m7Njcky76LGL+VKgUv O24EPmCxLgnjeEMICq02Bij5uH9vieY2oq8Wh/SYXhCehFPeGOw= -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:29 2025 by rpki-client