$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/p9s6eNnU_cxDhgUCZ31ripJkHSY.roa File: p9s6eNnU_cxDhgUCZ31ripJkHSY.roa (raw, json) Hash identifier: pGxIHlm0F0bAixiPB4I0ToccTbAPeEheYpEfnmJgLCg= Subject key identifier: A7:DB:3A:78:D9:D4:FD:CC:43:86:05:02:67:7D:6B:8A:92:64:1D:26 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07A5 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/p9s6eNnU_cxDhgUCZ31ripJkHSY.roa Signing time: Mon 10 Feb 2025 13:44:37 +0000 ROA not before: Mon 10 Feb 2025 13:44:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.122.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1957 (0x7a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A7DB3A78D9D4FDCC43860502677D6B8A92641D26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:b5:38:06:3a:66:04:0a:df:e8:77:45:d0: 1c:b9:1e:3e:92:53:db:c2:32:a3:36:e5:e0:9d:36: 73:e5:df:5b:9c:a3:be:71:67:9e:a1:28:3e:b9:a5: 60:8c:9b:8c:db:e2:2f:49:26:d1:cc:fd:c3:3e:c2: b2:9d:58:dc:19:77:b5:41:5f:0f:96:76:4a:0f:50: ca:29:49:9d:07:89:2c:ab:bc:3f:97:bb:3b:7c:1d: b9:73:95:ed:bd:33:c1:72:d6:93:e6:8e:24:69:a0: 92:53:1f:ff:c3:85:49:64:e4:f1:4f:24:be:81:d3: 1f:36:ca:c8:6a:34:93:e1:05:6e:b6:3f:b5:b6:6b: 00:c2:76:28:d4:8e:6e:51:73:2d:16:01:a1:c9:43: 18:d5:99:1d:a2:61:d9:a4:62:85:4f:de:ec:c2:4c: 1c:72:91:ef:26:f2:e4:5f:a8:51:40:94:de:58:5c: 2c:b8:f3:17:72:1c:b4:e8:33:7d:73:be:4d:79:80: 21:91:74:08:39:ff:47:58:4d:79:31:94:e0:55:be: 4b:85:b7:3f:cb:f4:14:bf:93:61:40:ee:ae:61:70: dc:49:62:17:af:98:ab:71:be:04:c7:8f:c9:4c:8a: db:0a:ac:90:e6:da:9e:b0:e0:f2:0e:bb:2b:8d:49: eb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DB:3A:78:D9:D4:FD:CC:43:86:05:02:67:7D:6B:8A:92:64:1D:26 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/p9s6eNnU_cxDhgUCZ31ripJkHSY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:85:4f:a3:de:f1:b2:56:84:ea:91:e8:7f:54:70:dc:b9:25: 5f:c5:8e:d1:8d:e1:02:e7:0d:33:48:19:96:3d:1e:09:12:f8: ef:a1:13:21:9a:a3:11:3f:74:0c:b7:ba:ca:12:a5:d2:ee:39: 1e:75:f8:7f:3f:fc:29:d7:67:46:8f:75:e1:c8:00:fa:a7:3d: a2:1b:31:23:f3:a7:98:06:39:ca:45:db:a6:72:ff:d1:88:f4: 09:34:28:76:2b:3f:1a:65:1f:1e:8b:f8:25:15:b7:fc:ea:93: 2a:c5:5c:c3:2d:f2:4f:53:89:3e:7a:2e:e5:4b:ea:74:dd:c1: e2:db:2d:f5:12:65:4d:4d:62:00:50:48:fd:34:dc:3a:fd:dd: e7:0f:80:3f:a9:70:73:00:1b:6d:bf:48:d0:48:9c:5c:83:b2: ef:4d:bf:00:af:26:d8:ef:88:9b:52:39:f0:03:66:85:7b:72: 0f:2e:20:14:3d:82:f3:5f:be:9c:fd:bd:0c:41:19:41:2f:cb: 9c:e6:4a:8f:88:09:6a:85:b5:23:85:1f:61:7a:8a:e1:5b:bb: f5:0a:c9:af:f9:f0:93:53:e4:83:48:21:7f:be:68:f3:1f:5f: cc:ec:54:7c:1d:7b:09:0f:3b:11:15:c2:33:3d:b3:2b:dc:61: da:a6:f2:94 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB6UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3REIzQTc4RDlENEZE Q0M0Mzg2MDUwMjY3N0Q2QjhBOTI2NDFEMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOZ7U4BjpmBArf6HdF0By5Hj6SU9vCMqM25eCdNnPl31uco75x Z56hKD65pWCMm4zb4i9JJtHM/cM+wrKdWNwZd7VBXw+WdkoPUMopSZ0HiSyrvD+X uzt8Hblzle29M8Fy1pPmjiRpoJJTH//DhUlk5PFPJL6B0x82yshqNJPhBW62P7W2 awDCdijUjm5Rcy0WAaHJQxjVmR2iYdmkYoVP3uzCTBxyke8m8uRfqFFAlN5YXCy4 8xdyHLToM31zvk15gCGRdAg5/0dYTXkxlOBVvkuFtz/L9BS/k2FA7q5hcNxJYhev mKtxvgTHj8lMitsKrJDm2p6w4PIOuyuNSesxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUp9s6eNnU/cxDhgUCZ31ripJkHSYwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3A5czZlTm5VX2N4RGhnVUNa MzFyaXBKa0hTWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBADyFT6Pe8bJWhOqR6H9UcNy5JV/FjtGN4QLn DTNIGZY9HgkS+O+hEyGaoxE/dAy3usoSpdLuOR51+H8//CnXZ0aPdeHIAPqnPaIb MSPzp5gGOcpF26Zy/9GI9Ak0KHYrPxplHx6L+CUVt/zqkyrFXMMt8k9TiT56LuVL 6nTdweLbLfUSZU1NYgBQSP003Dr93ecPgD+pcHMAG22/SNBInFyDsu9NvwCvJtjv iJtSOfADZoV7cg8uIBQ9gvNfvpz9vQxBGUEvy5zmSo+ICWqFtSOFH2F6iuFbu/UK ya/58JNT5INIIX++aPMfX8zsVHwdewkPOxEVwjM9syvcYdqm8pQ= -----END CERTIFICATE-----Generated at Sat Apr 5 23:08:01 2025 by rpki-client