$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/bWwCw21pEtskGzyYMtXn1A2jQV0.roa File: bWwCw21pEtskGzyYMtXn1A2jQV0.roa (raw, json) Hash identifier: M7ZnADyfVjVtnb1/eITXDzIgYLq7OpcdSp5rJDGWyww= Subject key identifier: 6D:6C:02:C3:6D:69:12:DB:24:1B:3C:98:32:D5:E7:D4:0D:A3:41:5D Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 0323 Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/bWwCw21pEtskGzyYMtXn1A2jQV0.roa Signing time: Mon 10 Feb 2025 14:04:12 +0000 ROA not before: Mon 10 Feb 2025 14:04:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38042 IP address blocks: 103.177.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 803 (0x323) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Feb 10 14:04:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6D6C02C36D6912DB241B3C9832D5E7D40DA3415D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:1c:bd:e8:df:2f:87:93:95:72:4c:86:c4: c8:75:26:79:e9:8b:d7:35:57:9f:48:25:02:0f:3c: 5d:e7:25:9b:0a:56:ff:65:6f:97:9c:b7:03:1e:52: b0:3e:d0:f8:ff:9c:b7:89:6f:7c:87:ba:1f:32:4a: 3d:bb:16:4f:af:66:80:d9:c3:96:3f:95:e5:3f:60: 60:ce:02:ed:d2:02:8d:b6:8a:a2:e9:5c:be:5e:f6: 70:8d:d7:79:a7:57:0e:e0:cf:82:91:30:de:8f:67: d3:3d:42:ea:fd:5a:2d:80:df:9b:3b:7f:25:00:bc: 28:93:db:f1:62:47:60:f8:84:d1:69:4b:e9:14:fd: f3:c5:e5:01:eb:72:78:8f:41:f8:25:40:55:b6:2f: 7a:88:63:3f:93:49:76:9c:19:2b:be:6f:86:9b:d1: c5:0b:83:bd:74:e1:ca:95:76:d8:8e:f6:21:bf:56: 2c:78:0b:a3:d2:fd:fb:ec:6e:92:eb:90:f7:18:0b: 05:90:69:62:47:45:08:19:08:c3:7d:d2:b4:d1:c3: 3b:0c:59:9d:b2:9b:99:79:4b:94:33:bd:c3:5b:9d: 9c:c2:71:d2:87:35:9a:db:43:55:66:c3:2b:b5:2f: 9a:69:78:7d:4f:2d:19:71:2b:f4:8a:e9:c8:c6:da: 3d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6C:02:C3:6D:69:12:DB:24:1B:3C:98:32:D5:E7:D4:0D:A3:41:5D X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/bWwCw21pEtskGzyYMtXn1A2jQV0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.177.32.0/23 Signature Algorithm: sha256WithRSAEncryption e6:18:19:c6:8c:76:d3:a4:07:b3:1f:69:bc:38:cc:03:3f:1d: 79:ff:74:8b:d9:81:8c:77:b0:ee:3b:27:da:9e:9e:0c:ca:5a: 88:d9:51:7f:85:0a:e2:3a:99:a9:1f:c9:71:b0:b1:a0:0d:db: 73:4a:c9:8f:f0:3a:ec:50:99:8c:4f:58:84:ca:29:df:54:03: f8:e8:8f:31:d4:b4:13:d0:f7:e4:84:03:f2:b4:7c:bb:87:50: 50:95:47:1c:5f:2e:cf:b3:c3:a6:98:ef:56:30:2e:9b:b9:6d: 32:80:c8:a0:4d:3a:cc:b0:c9:1a:7c:64:2b:3a:38:a8:0b:d0: 68:1d:a2:ac:bc:50:7a:01:b3:fd:1a:93:ee:41:d2:d1:b3:ba: 38:9a:e5:cb:64:9d:7a:8b:e2:d3:3b:77:5f:c2:28:af:16:37: 17:6c:41:fc:46:ee:16:4e:61:8a:a2:6a:77:68:1c:00:64:b8: e0:62:47:a2:df:67:55:05:38:93:e0:c5:b1:29:2a:22:d6:0f: b8:d1:cb:5b:29:7a:ed:02:54:df:38:74:e3:c4:b0:e1:6f:ab: 26:3d:23:5a:41:77:b1:45:99:55:f0:55:34:2e:c0:dd:e0:00: 1b:5b:b0:57:bb:19:b8:59:21:c5:ca:1f:9f:5a:5f:64:23:15: 6f:db:cb:8c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAyMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTAyMTAx NDA0MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZENkMwMkMzNkQ2OTEy REIyNDFCM0M5ODMyRDVFN0Q0MERBMzQxNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4chy96N8vh5OVckyGxMh1Jnnpi9c1V59IJQIPPF3nJZsKVv9l b5ectwMeUrA+0Pj/nLeJb3yHuh8ySj27Fk+vZoDZw5Y/leU/YGDOAu3SAo22iqLp XL5e9nCN13mnVw7gz4KRMN6PZ9M9Qur9Wi2A35s7fyUAvCiT2/FiR2D4hNFpS+kU /fPF5QHrcniPQfglQFW2L3qIYz+TSXacGSu+b4ab0cULg7104cqVdtiO9iG/Vix4 C6PS/fvsbpLrkPcYCwWQaWJHRQgZCMN90rTRwzsMWZ2ym5l5S5QzvcNbnZzCcdKH NZrbQ1Vmwyu1L5ppeH1PLRlxK/SK6cjG2j0bAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUbWwCw21pEtskGzyYMtXn1A2jQV0wHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy9iV3dDdzIxcEV0c2tHenlZTXRY bjFBMmpRVjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7Eg MA0GCSqGSIb3DQEBCwUAA4IBAQDmGBnGjHbTpAezH2m8OMwDPx15/3SL2YGMd7Du Oyfanp4MylqI2VF/hQriOpmpH8lxsLGgDdtzSsmP8DrsUJmMT1iEyinfVAP46I8x 1LQT0PfkhAPytHy7h1BQlUccXy7Ps8OmmO9WMC6buW0ygMigTTrMsMkafGQrOjio C9BoHaKsvFB6AbP9GpPuQdLRs7o4muXLZJ16i+LTO3dfwiivFjcXbEH8Ru4WTmGK omp3aBwAZLjgYkei32dVBTiT4MWxKSoi1g+40ctbKXrtAlTfOHTjxLDhb6smPSNa QXexRZlV8FU0LsDd4AAbW7BXuxm4WSHFyh+fWl9kIxVv28uM -----END CERTIFICATE-----Generated at Thu Apr 17 09:49:13 2025 by rpki-client