$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/zU3YWZyStlpE4HJAmVRL-a8PZnA.roa File: zU3YWZyStlpE4HJAmVRL-a8PZnA.roa (raw, json) Hash identifier: Ju978NYbKQWyYohWneIrqjr9OFZSneCb3ZOEyykXteQ= Subject key identifier: CD:4D:D8:59:9C:92:B6:5A:44:E0:72:40:99:54:4B:F9:AF:0F:66:70 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 07A6 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/zU3YWZyStlpE4HJAmVRL-a8PZnA.roa Signing time: Mon 10 Feb 2025 13:44:37 +0000 ROA not before: Mon 10 Feb 2025 13:44:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.153.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 07:36:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1958 (0x7a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Feb 10 13:44:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CD4DD8599C92B65A44E0724099544BF9AF0F6670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:73:e3:f0:ba:67:14:19:df:35:78:77:33:14: 4b:18:d2:04:58:1f:eb:23:be:cd:22:6f:f0:5c:57: 3a:13:fd:ba:de:c6:24:8c:63:fa:5f:b7:aa:23:c2: 0c:bf:ce:4b:95:ce:ec:2a:67:a1:7d:a2:25:6a:0b: 5c:4f:03:d2:c6:bf:22:5b:14:3c:b7:54:7a:72:c5: 8c:44:1f:71:19:68:d0:c9:53:6d:66:65:25:24:f1: d3:08:e0:0d:37:89:2c:64:58:e3:d2:b8:9a:03:17: 4e:65:5d:4d:18:b6:6b:3e:be:75:3a:c1:fc:8c:ff: 21:6c:d4:b3:85:4c:b0:1b:23:29:58:bf:94:d4:55: ac:1a:78:82:9b:1b:0b:36:72:01:bf:e8:2c:db:5d: 21:f2:98:ff:0f:6f:23:31:9a:17:7f:06:71:19:ab: 9b:25:9b:9d:33:78:c8:8b:23:39:d7:09:21:8b:2f: 65:64:80:08:6d:71:11:9a:4d:58:f3:95:81:cf:8b: 2d:d0:35:41:47:ef:54:10:ee:fd:c2:72:67:12:31: 01:6d:b5:77:31:e2:fa:47:65:1e:31:20:9a:98:2c: 8f:85:ef:25:6a:8f:91:fa:f1:e3:f9:6d:d8:fb:5f: b6:ca:d0:10:bd:fa:cc:37:f4:94:c3:1a:91:ef:48: a7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:4D:D8:59:9C:92:B6:5A:44:E0:72:40:99:54:4B:F9:AF:0F:66:70 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/zU3YWZyStlpE4HJAmVRL-a8PZnA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption b3:a5:4e:57:d6:74:48:05:13:a9:06:e0:46:8a:c2:c9:11:d1: a3:1e:4a:39:e5:1b:8d:34:ee:00:39:aa:b5:d5:4e:8f:14:53: 1f:46:2d:75:36:ad:ff:69:99:28:d0:67:ce:05:3c:0a:6f:30: 5b:12:43:07:d8:f3:99:7c:ee:5b:f7:58:64:a5:fb:b1:ac:ce: 2c:17:1c:4a:17:f3:10:49:cd:27:77:3b:51:c0:a9:20:40:99: e1:78:0f:08:c0:ba:7f:45:0a:03:07:1b:4e:a2:24:84:40:52: d2:a5:2d:a2:ce:6b:2b:54:0f:23:80:36:1e:99:d2:c6:a8:12: 80:c5:f4:6e:5c:71:61:26:40:84:8b:7a:f6:5a:e2:e7:1d:74: b0:62:79:d6:2d:1f:17:96:b3:e8:b8:9a:af:21:b2:ae:5f:97: 54:0d:81:bb:d4:51:27:ea:9e:0c:59:dd:bd:1c:9a:2e:23:4a: 6b:6f:1e:8b:c8:83:7b:d7:36:b8:da:05:61:a9:e7:b9:d8:0e: 95:e1:d1:d1:8d:95:82:db:33:3d:67:fd:4b:86:1b:8b:b8:aa: ca:20:0b:2b:c3:67:18:06:c9:cd:8b:4b:82:36:df:83:83:8b: a3:98:1a:51:eb:5e:6f:49:79:21:5a:fd:4e:be:8e:3a:4e:f6: 42:05:ba:e3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICB6YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNTAyMTAx MzQ0MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENENEREODU5OUM5MkI2 NUE0NEUwNzI0MDk5NTQ0QkY5QUYwRjY2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDc+PwumcUGd81eHczFEsY0gRYH+sjvs0ib/BcVzoT/brexiSM Y/pft6ojwgy/zkuVzuwqZ6F9oiVqC1xPA9LGvyJbFDy3VHpyxYxEH3EZaNDJU21m ZSUk8dMI4A03iSxkWOPSuJoDF05lXU0Ytms+vnU6wfyM/yFs1LOFTLAbIylYv5TU VawaeIKbGws2cgG/6CzbXSHymP8PbyMxmhd/BnEZq5slm50zeMiLIznXCSGLL2Vk gAhtcRGaTVjzlYHPiy3QNUFH71QQ7v3CcmcSMQFttXcx4vpHZR4xIJqYLI+F7yVq j5H68eP5bdj7X7bK0BC9+sw39JTDGpHvSKdPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzU3YWZyStlpE4HJAmVRL+a8PZnAwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3pVM1lXWnlTdGxwRTRISkFt VlJMLWE4UFpuQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBALOlTlfWdEgFE6kG4EaKwskR0aMeSjnlG400 7gA5qrXVTo8UUx9GLXU2rf9pmSjQZ84FPApvMFsSQwfY85l87lv3WGSl+7GsziwX HEoX8xBJzSd3O1HAqSBAmeF4DwjAun9FCgMHG06iJIRAUtKlLaLOaytUDyOANh6Z 0saoEoDF9G5ccWEmQISLevZa4ucddLBiedYtHxeWs+i4mq8hsq5fl1QNgbvUUSfq ngxZ3b0cmi4jSmtvHovIg3vXNrjaBWGp57nYDpXh0dGNlYLbMz1n/UuGG4u4qsog CyvDZxgGyc2LS4I234ODi6OYGlHrXm9JeSFa/U6+jjpO9kIFuuM= -----END CERTIFICATE-----Generated at Sun Apr 6 06:35:36 2025 by rpki-client