$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/eYvkALsA4MvgoEHrjYFSqOUQea4.roa File: eYvkALsA4MvgoEHrjYFSqOUQea4.roa (raw, json) Hash identifier: LYCOdo9I1ggYG0GO18ZtJ72cD52GucHntu+MfcFEdgU= Subject key identifier: 79:8B:E4:00:BB:00:E0:CB:E0:A0:41:EB:8D:81:52:A8:E5:10:79:AE Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07AB Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/eYvkALsA4MvgoEHrjYFSqOUQea4.roa Signing time: Mon 10 Feb 2025 13:44:38 +0000 ROA not before: Mon 10 Feb 2025 13:44:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.153.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1963 (0x7ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=798BE400BB00E0CBE0A041EB8D8152A8E51079AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:7b:e3:ce:3d:1e:14:7a:0d:fa:56:8e:6b:71: 8d:9b:eb:9c:a7:e9:92:b9:f2:2e:c8:89:5d:85:4c: 80:62:1a:19:80:90:1c:c6:9b:73:b4:87:38:23:e0: 35:da:9f:7e:df:0f:bd:7d:61:2b:f8:ec:35:5e:96: ba:48:65:93:be:e0:cf:32:bd:b8:55:ea:6d:55:ba: 73:2c:1b:46:43:40:16:79:2b:2f:bd:8a:61:97:e5: 85:2e:9d:3f:88:4e:5f:c3:19:11:ba:b0:d1:70:cf: cc:25:a7:30:a0:bd:c0:f3:25:76:89:71:e5:cd:20: e2:46:38:76:96:b3:19:3f:ee:1b:1a:af:a6:72:1a: f7:7c:98:db:61:a9:8e:cd:74:4b:26:e8:f6:61:4c: 26:4c:71:9d:e5:ec:19:98:17:18:c3:b8:46:51:97: 4e:c7:3b:9e:3c:ee:a7:5e:b4:2a:21:94:57:6f:f0: 0e:39:a9:13:2a:5e:93:81:4e:c6:02:3d:6e:3e:09: 78:56:20:ce:41:ec:97:d2:db:e2:2a:3b:28:d4:9b: ca:01:90:aa:52:04:7a:0e:1f:be:a2:97:0b:a1:02: 68:92:6a:e5:20:06:0f:6f:b4:ec:bf:8f:1b:ee:72: 3c:14:dc:7c:10:43:1b:09:b7:ca:16:7f:43:02:29: 79:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:8B:E4:00:BB:00:E0:CB:E0:A0:41:EB:8D:81:52:A8:E5:10:79:AE X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/eYvkALsA4MvgoEHrjYFSqOUQea4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption 08:5d:f8:23:08:c5:60:63:4f:d3:0e:5f:1f:0e:e5:4e:63:53: 80:3d:f4:9d:a3:0e:7f:f8:02:b3:56:bb:a1:d5:65:dc:a9:af: 9c:d0:5b:fb:2a:fa:a5:d6:59:42:0f:b9:44:79:20:39:e1:f5: 11:33:42:3c:55:e6:bd:ff:cb:34:f3:a2:fe:ec:32:eb:a9:1c: d5:80:6d:47:73:be:f5:3e:7e:48:f6:fc:8b:64:db:1f:a7:48: 1c:25:53:7e:3e:5f:41:17:81:d4:16:90:b4:a1:b3:da:11:6a: 23:93:60:4c:4a:b8:ac:26:d2:be:47:bc:88:7f:00:d8:6e:7e: f5:7d:dd:56:3b:e3:15:b9:32:6a:ce:bd:57:2c:5b:19:76:03: 36:00:d4:cd:55:d5:83:28:2e:79:c7:a6:09:f1:ff:eb:2f:4c: 24:24:ef:bd:87:93:2f:3f:d4:51:e5:81:59:6e:de:f0:92:ec: 0f:4e:3c:60:09:e0:42:df:aa:d9:ec:10:35:34:fe:68:6c:4e: 47:d2:7d:9c:52:af:46:1d:ac:82:72:72:1e:90:1c:07:fd:b1: 93:46:7c:31:ef:98:9c:95:3a:7c:57:45:9b:58:4c:98:72:a8: 6d:f9:2a:b0:33:57:f7:48:5f:be:fd:1a:c0:bc:50:e3:03:3f: 39:19:61:f5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB6swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5OEJFNDAwQkIwMEUw Q0JFMEEwNDFFQjhEODE1MkE4RTUxMDc5QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRe+POPR4Ueg36Vo5rcY2b65yn6ZK58i7IiV2FTIBiGhmAkBzG m3O0hzgj4DXan37fD719YSv47DVelrpIZZO+4M8yvbhV6m1VunMsG0ZDQBZ5Ky+9 imGX5YUunT+ITl/DGRG6sNFwz8wlpzCgvcDzJXaJceXNIOJGOHaWsxk/7hsar6Zy Gvd8mNthqY7NdEsm6PZhTCZMcZ3l7BmYFxjDuEZRl07HO5487qdetCohlFdv8A45 qRMqXpOBTsYCPW4+CXhWIM5B7JfS2+IqOyjUm8oBkKpSBHoOH76ilwuhAmiSauUg Bg9vtOy/jxvucjwU3HwQQxsJt8oWf0MCKXmBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUeYvkALsA4MvgoEHrjYFSqOUQea4wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2VZdmtBTHNBNE12Z29FSHJq WUZTcU9VUWVhNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAAhd+CMIxWBjT9MOXx8O5U5jU4A99J2jDn/4 ArNWu6HVZdypr5zQW/sq+qXWWUIPuUR5IDnh9REzQjxV5r3/yzTzov7sMuupHNWA bUdzvvU+fkj2/Itk2x+nSBwlU34+X0EXgdQWkLShs9oRaiOTYExKuKwm0r5HvIh/ ANhufvV93VY74xW5MmrOvVcsWxl2AzYA1M1V1YMoLnnHpgnx/+svTCQk772Hky8/ 1FHlgVlu3vCS7A9OPGAJ4ELfqtnsEDU0/mhsTkfSfZxSr0YdrIJych6QHAf9sZNG fDHvmJyVOnxXRZtYTJhyqG35KrAzV/dIX779GsC8UOMDPzkZYfU= -----END CERTIFICATE-----Generated at Sat Apr 5 23:10:13 2025 by rpki-client