$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/3KvH1C10YjGR_CTiq0Paig8OeNA.roa File: 3KvH1C10YjGR_CTiq0Paig8OeNA.roa (raw, json) Hash identifier: jpMT0FBGX4b9lxXoNgglyy9sj59EWhuBhZq2UJaa1ec= Subject key identifier: DC:AB:C7:D4:2D:74:62:31:91:FC:24:E2:AB:43:DA:8A:0F:0E:78:D0 Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 02F4 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/3KvH1C10YjGR_CTiq0Paig8OeNA.roa Signing time: Mon 10 Feb 2025 13:57:58 +0000 ROA not before: Mon 10 Feb 2025 13:57:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 103.182.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 22:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 756 (0x2f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Feb 10 13:57:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DCABC7D42D74623191FC24E2AB43DA8A0F0E78D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4c:41:25:82:4a:78:f0:7b:d1:1c:cd:33:36: 7b:bd:81:11:84:41:57:28:11:35:f8:a2:24:7a:5d: d4:6b:bf:1c:dc:78:03:27:84:6c:7d:2a:d0:9e:b3: 9b:fe:12:f2:77:b5:66:b4:37:8c:b5:5e:fb:8c:eb: 85:83:53:26:bd:d8:c0:4f:49:1c:e4:78:ae:35:e2: c1:db:1d:0e:c7:09:61:a0:0e:61:36:77:3c:c0:31: c6:e7:4a:a7:77:01:c8:5f:c7:67:f9:97:ef:9a:91: c5:77:96:71:6e:0c:14:02:ed:bb:ab:70:47:5c:c6: e3:c2:20:b7:09:62:d0:fb:89:2b:d7:40:4f:91:55: b5:76:6a:53:f1:ff:83:5b:fa:17:88:a6:23:20:ac: a3:35:cf:9a:55:48:8b:0c:14:b0:c6:46:df:6f:b4: ad:e8:80:28:2e:b7:c5:4b:bb:f6:8e:64:46:16:a0: fa:cd:66:55:4a:5f:54:33:c4:1a:1d:51:e6:ad:c5: 92:64:18:b8:cd:4b:6f:c2:e5:50:ec:71:9a:98:72: 5d:28:d9:b8:fd:aa:12:0d:36:2b:47:82:c6:cd:c6: 68:27:98:03:9d:fe:e3:fa:c7:e7:12:96:38:40:2c: 8d:2c:43:33:94:34:1b:10:22:85:e5:d5:d3:f0:a3: f7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:AB:C7:D4:2D:74:62:31:91:FC:24:E2:AB:43:DA:8A:0F:0E:78:D0 X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/3KvH1C10YjGR_CTiq0Paig8OeNA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.182.227.0/24 Signature Algorithm: sha256WithRSAEncryption 20:63:09:b9:16:8f:6d:c1:5e:16:d0:86:c1:f1:7f:ac:61:d0: a7:f8:b2:b5:11:69:c3:31:d2:72:40:48:20:38:32:f6:04:5b: 26:0a:26:ee:05:73:00:ad:94:1d:ff:c6:0e:7d:04:b5:0f:de: 6b:27:41:cc:c7:60:7e:16:b9:02:14:0f:6b:7c:46:f1:32:79: e8:40:8c:39:fe:40:ef:07:3a:70:24:3c:13:1f:3e:57:ae:86: 88:80:d6:ce:e1:6d:f0:39:b5:28:8b:49:2b:bd:5c:c8:6f:3e: 6f:63:fe:e0:8a:94:26:ad:f8:7c:59:7d:d9:f1:77:21:02:7d: 26:95:bc:1f:4e:a2:c0:9d:89:a3:35:6e:c5:19:61:35:34:29: e7:45:ef:56:49:f8:05:3b:6f:f5:63:c9:b4:0d:dc:45:a8:57: 70:e1:0a:fa:75:2b:4e:64:45:bf:66:f0:ef:a0:c7:6a:82:09: ee:a6:a3:9d:05:76:53:81:b8:86:ef:97:7e:a7:3d:12:f7:ba: 4c:06:29:8d:6e:d8:be:41:17:72:26:72:44:5c:8c:74:63:a1: 7e:2a:6d:24:c3:34:f6:ca:20:d8:3b:e4:b7:35:d5:86:e7:3c: 79:45:ec:38:33:0e:43:1b:f7:2f:72:b0:e6:06:f0:58:7b:2f: e5:af:10:21 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAvQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNTAyMTAx MzU3NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDQUJDN0Q0MkQ3NDYy MzE5MUZDMjRFMkFCNDNEQThBMEYwRTc4RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxTEElgkp48HvRHM0zNnu9gRGEQVcoETX4oiR6XdRrvxzceAMn hGx9KtCes5v+EvJ3tWa0N4y1XvuM64WDUya92MBPSRzkeK414sHbHQ7HCWGgDmE2 dzzAMcbnSqd3Achfx2f5l++akcV3lnFuDBQC7burcEdcxuPCILcJYtD7iSvXQE+R VbV2alPx/4Nb+heIpiMgrKM1z5pVSIsMFLDGRt9vtK3ogCgut8VLu/aOZEYWoPrN ZlVKX1QzxBodUeatxZJkGLjNS2/C5VDscZqYcl0o2bj9qhINNitHgsbNxmgnmAOd /uP6x+cSljhALI0sQzOUNBsQIoXl1dPwo/c5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3KvH1C10YjGR/CTiq0Paig8OeNAwHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNILzNLdkgxQzEwWWpHUl9DVGlx MFBhaWc4T2VOQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn tuMwDQYJKoZIhvcNAQELBQADggEBACBjCbkWj23BXhbQhsHxf6xh0Kf4srURacMx 0nJASCA4MvYEWyYKJu4FcwCtlB3/xg59BLUP3msnQczHYH4WuQIUD2t8RvEyeehA jDn+QO8HOnAkPBMfPleuhoiA1s7hbfA5tSiLSSu9XMhvPm9j/uCKlCat+HxZfdnx dyECfSaVvB9OosCdiaM1bsUZYTU0KedF71ZJ+AU7b/VjybQN3EWoV3DhCvp1K05k Rb9m8O+gx2qCCe6mo50FdlOBuIbvl36nPRL3ukwGKY1u2L5BF3ImckRcjHRjoX4q bSTDNPbKINg75Lc11YbnPHlF7DgzDkMb9y9ysOYG8Fh7L+WvECE= -----END CERTIFICATE-----Generated at Sat Apr 12 20:22:31 2025 by rpki-client