$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mc0NGujw0NZIMQfezcA2d3SkdWY.roa File: mc0NGujw0NZIMQfezcA2d3SkdWY.roa (raw, json) Hash identifier: /TBDiUPmxqn0+zmC2hr8koGEyWJia6MfZb7ZlHOCy1w= Subject key identifier: 99:CD:0D:1A:E8:F0:D0:D6:48:31:07:DE:CD:C0:36:77:74:A4:75:66 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 0798 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mc0NGujw0NZIMQfezcA2d3SkdWY.roa Signing time: Mon 10 Feb 2025 13:44:35 +0000 ROA not before: Mon 10 Feb 2025 13:44:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17418 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1944 (0x798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=99CD0D1AE8F0D0D6483107DECDC0367774A47566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:18:d0:a8:5d:c5:87:8f:bd:1f:9f:4a:d3:c1: 3e:f9:a1:d2:78:bb:de:fe:d4:6b:60:97:c8:94:70: 38:88:ac:85:de:50:ef:c6:1d:73:2d:00:40:b0:7e: 95:74:94:f2:24:c6:08:0d:ec:7c:ad:a3:3f:19:c0: e3:9c:bb:e9:fb:aa:e3:f4:c2:bb:60:f4:5f:28:c8: b6:68:0c:9e:b1:7f:6d:e0:c9:32:7e:24:05:e7:8a: 03:20:6f:d3:db:97:72:3c:c4:b0:a0:97:4f:c7:bb: 14:a9:5e:fa:a1:7a:d8:41:25:2c:e3:77:03:3e:41: 30:7e:69:f2:f8:b9:dc:1e:77:a0:f9:1d:1a:1f:7c: 08:b9:4c:4e:a6:78:53:ad:10:d9:6f:e8:00:3b:be: 0f:dc:77:4c:ee:b6:85:a5:ed:a0:eb:dd:de:f4:a2: 2a:15:d3:7d:3a:79:e9:d1:62:e8:48:71:c5:ba:db: 60:d1:5e:f0:8a:2f:58:b2:1c:e7:7e:a3:0b:dc:4c: 7d:52:11:77:dd:30:be:8a:b0:64:2a:30:48:b4:0b: 29:51:8f:cc:c4:7b:7f:cf:8b:bf:5c:34:8f:1b:e0: 02:ae:d7:49:f8:96:b0:ed:c0:f6:d0:df:73:8e:2b: 73:bd:2c:11:e1:9d:c4:9a:b8:ac:c2:28:a4:71:6b: 11:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:CD:0D:1A:E8:F0:D0:D6:48:31:07:DE:CD:C0:36:77:74:A4:75:66 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mc0NGujw0NZIMQfezcA2d3SkdWY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption ac:92:48:d8:7c:29:f6:52:88:d0:0d:7d:eb:a1:90:3f:1b:2c: a5:5a:6c:71:f2:62:21:cf:44:cc:db:4b:6e:9b:29:22:a5:c9: c7:5d:bc:69:0c:c2:ed:69:63:88:a6:0e:24:80:34:14:4c:43: 1c:9c:23:0d:95:50:c4:da:e2:e5:ab:dd:21:a1:ff:8c:7e:5b: e5:7d:52:b7:66:8d:c5:92:1e:92:ab:88:fb:ed:e2:dc:04:10: c8:6b:27:64:3e:9a:11:56:3e:e8:a0:1b:12:c6:8a:65:84:a5: 0a:10:f7:54:95:e5:5c:32:1a:5f:7b:b2:55:42:12:e5:58:dc: 0f:96:79:78:7e:ec:87:85:33:d5:25:69:81:2c:3d:01:ae:f5: 8c:d5:d6:e2:36:00:37:5f:75:cc:3a:46:24:52:8e:79:06:a3: 61:42:99:3a:e4:58:fa:35:17:d8:eb:49:0b:40:24:ba:49:14: 28:fd:f6:f2:32:83:5b:25:ba:10:da:87:ad:63:11:6e:69:bc: 7a:75:f4:71:d7:05:80:1b:9e:ea:91:22:3a:a5:ae:7b:ce:26: a8:17:3d:18:84:74:7d:c9:db:be:8c:65:44:dc:4c:51:f6:0c: 80:94:14:23:7e:b6:7f:78:b9:da:77:c9:49:68:60:47:f5:ee: 1b:20:b2:e1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB5gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5Q0QwRDFBRThGMEQw RDY0ODMxMDdERUNEQzAzNjc3NzRBNDc1NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+GNCoXcWHj70fn0rTwT75odJ4u97+1Gtgl8iUcDiIrIXeUO/G HXMtAECwfpV0lPIkxggN7Hytoz8ZwOOcu+n7quP0wrtg9F8oyLZoDJ6xf23gyTJ+ JAXnigMgb9Pbl3I8xLCgl0/HuxSpXvqhethBJSzjdwM+QTB+afL4udwed6D5HRof fAi5TE6meFOtENlv6AA7vg/cd0zutoWl7aDr3d70oioV0306eenRYuhIccW622DR XvCKL1iyHOd+owvcTH1SEXfdML6KsGQqMEi0CylRj8zEe3/Pi79cNI8b4AKu10n4 lrDtwPbQ33OOK3O9LBHhncSauKzCKKRxaxFFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmc0NGujw0NZIMQfezcA2d3SkdWYwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL21jME5HdWp3ME5aSU1RZmV6 Y0EyZDNTa2RXWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBAKySSNh8KfZSiNANfeuhkD8bLKVabHHyYiHP RMzbS26bKSKlycddvGkMwu1pY4imDiSANBRMQxycIw2VUMTa4uWr3SGh/4x+W+V9 UrdmjcWSHpKriPvt4twEEMhrJ2Q+mhFWPuigGxLGimWEpQoQ91SV5VwyGl97slVC EuVY3A+WeXh+7IeFM9UlaYEsPQGu9YzV1uI2ADdfdcw6RiRSjnkGo2FCmTrkWPo1 F9jrSQtAJLpJFCj99vIyg1sluhDah61jEW5pvHp19HHXBYAbnuqRIjqlrnvOJqgX PRiEdH3J276MZUTcTFH2DICUFCN+tn94udp3yUloYEf17hsgsuE= -----END CERTIFICATE-----Generated at Sat Apr 5 23:00:53 2025 by rpki-client