$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/oW2b6Frim7BzpjWh0yoMjeG6EaI.roa File: oW2b6Frim7BzpjWh0yoMjeG6EaI.roa (raw, json) Hash identifier: KoM7TKJ0noVcKeixxHKVWbb06GYncGp37mrPoHQc/zU= Subject key identifier: A1:6D:9B:E8:5A:E2:9B:B0:73:A6:35:A1:D3:2A:0C:8D:E1:BA:11:A2 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 0795 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/oW2b6Frim7BzpjWh0yoMjeG6EaI.roa Signing time: Mon 10 Feb 2025 13:44:34 +0000 ROA not before: Mon 10 Feb 2025 13:44:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.122.188.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A16D9BE85AE29BB073A635A1D32A0C8DE1BA11A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9a:c0:a8:0e:a5:44:ff:25:ff:06:e8:a3:8b: 5f:f6:13:ed:2f:3f:7f:f8:73:94:8a:f6:4b:d1:f5: f7:26:c6:82:05:10:5c:82:3d:45:7a:3d:6c:d0:3d: fc:ff:31:ed:40:17:89:07:bb:5e:ce:87:2f:62:46: 95:81:c5:84:88:1a:80:2a:1f:66:22:d9:75:7d:27: 94:3d:82:5d:a1:0c:47:50:34:55:ea:84:cc:ea:4f: 3f:82:4f:28:fb:85:f8:19:f7:26:25:b2:d8:2c:6d: 07:a0:af:e0:10:e2:4d:59:5f:8f:92:e7:b2:2a:5c: 95:e9:23:2b:85:96:2c:73:26:c0:80:a4:f8:ca:2f: f4:cd:a3:c0:e8:05:34:51:8b:fa:94:2a:5e:c7:e4: a4:0c:ac:bf:5b:4f:d2:71:57:ec:cc:71:19:6a:7a: 0b:2a:01:98:5a:7d:db:04:1e:98:f8:52:33:15:6f: 04:da:11:01:ca:78:9d:40:d5:34:8c:b9:25:e2:39: 2e:3b:4e:24:7c:cf:94:14:b3:4d:a7:75:69:13:01: 40:f9:13:0c:53:9a:b5:6e:15:45:41:58:c7:7d:15: 75:a7:36:35:9c:f5:1f:bd:51:9a:20:55:1f:d2:1a: e0:48:95:39:d6:ea:c2:c3:70:64:26:a3:95:26:d1: 2e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:6D:9B:E8:5A:E2:9B:B0:73:A6:35:A1:D3:2A:0C:8D:E1:BA:11:A2 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/oW2b6Frim7BzpjWh0yoMjeG6EaI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:f7:73:a9:a6:81:ee:8c:e0:40:32:2c:a5:88:74:20:cc:b4: 66:33:28:55:4a:11:47:b2:2f:bc:cd:45:f4:a4:51:42:cc:a1: 06:fb:59:56:8f:c1:c1:d3:88:a1:30:c7:7b:d5:85:ad:14:b0: 5c:ba:dd:8d:f2:69:a9:f5:66:eb:f2:4a:cd:07:aa:57:ec:56: 1a:fd:82:51:62:ca:e7:df:e1:47:d2:02:01:a5:71:d5:88:be: 07:c0:d4:0d:39:98:8f:61:31:33:cd:63:41:f3:54:ad:00:13: 37:2c:13:a4:21:b7:1a:d6:05:e5:9e:b9:46:7d:f5:8f:62:d2: 09:fc:7b:32:56:4c:55:bc:f7:c7:92:b5:4c:d2:a8:74:fe:3a: 90:08:f4:eb:a3:87:2f:d1:51:9e:15:da:d8:c3:37:0e:df:f0: f9:bd:71:0c:e1:13:8a:91:f9:6f:cc:b8:72:01:76:d2:6b:c5: ca:4b:ae:e3:0f:f8:bb:8d:d4:f6:da:08:92:cb:be:6d:bd:91: 1c:7f:f8:93:08:b8:32:cf:1f:ae:ac:ae:40:34:cf:2c:4c:cf: 62:07:49:ce:1a:95:3b:0a:1f:48:66:94:2d:13:01:58:da:dc: 9f:dd:26:f3:9b:3c:e5:98:1d:36:b3:78:0e:fb:12:99:2f:e1: c0:ad:11:fe -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExNkQ5QkU4NUFFMjlC QjA3M0E2MzVBMUQzMkEwQzhERTFCQTExQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGmsCoDqVE/yX/Buiji1/2E+0vP3/4c5SK9kvR9fcmxoIFEFyC PUV6PWzQPfz/Me1AF4kHu17Ohy9iRpWBxYSIGoAqH2Yi2XV9J5Q9gl2hDEdQNFXq hMzqTz+CTyj7hfgZ9yYlstgsbQegr+AQ4k1ZX4+S57IqXJXpIyuFlixzJsCApPjK L/TNo8DoBTRRi/qUKl7H5KQMrL9bT9JxV+zMcRlqegsqAZhafdsEHpj4UjMVbwTa EQHKeJ1A1TSMuSXiOS47TiR8z5QUs02ndWkTAUD5EwxTmrVuFUVBWMd9FXWnNjWc 9R+9UZogVR/SGuBIlTnW6sLDcGQmo5Um0S6hAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUoW2b6Frim7BzpjWh0yoMjeG6EaIwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL29XMmI2RnJpbTdCenBqV2gw eW9NamVHNkVhSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBAG33c6mmge6M4EAyLKWIdCDMtGYzKFVKEUey L7zNRfSkUULMoQb7WVaPwcHTiKEwx3vVha0UsFy63Y3yaan1ZuvySs0HqlfsVhr9 glFiyuff4UfSAgGlcdWIvgfA1A05mI9hMTPNY0HzVK0AEzcsE6QhtxrWBeWeuUZ9 9Y9i0gn8ezJWTFW898eStUzSqHT+OpAI9Oujhy/RUZ4V2tjDNw7f8Pm9cQzhE4qR +W/MuHIBdtJrxcpLruMP+LuN1PbaCJLLvm29kRx/+JMIuDLPH66srkA0zyxMz2IH Sc4alTsKH0hmlC0TAVja3J/dJvObPOWYHTazeA77Epkv4cCtEf4= -----END CERTIFICATE-----Generated at Sat Apr 5 09:33:29 2025 by rpki-client