$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKMT/ENAVQ00JWNxxrW7sjVKCEOyrvHc.roa File: ENAVQ00JWNxxrW7sjVKCEOyrvHc.roa (raw, json) Hash identifier: H7dzNo5s+3FNFBAgqJuljfVE3/Kay5Mg7nkUENtKOWQ= Subject key identifier: 10:D0:15:43:4D:09:58:DC:71:AD:6E:EC:8D:52:82:10:EC:AB:BC:77 Certificate issuer: /CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5 Certificate serial: 0E1F Authority key identifier: 48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/ENAVQ00JWNxxrW7sjVKCEOyrvHc.roa Signing time: Mon 10 Feb 2025 13:47:30 +0000 ROA not before: Mon 10 Feb 2025 13:47:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131645 IP address blocks: 103.141.82.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3615 (0xe1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=48540E13F8B2CAE86CD1F8C7252839A5078F16A5 Validity Not Before: Feb 10 13:47:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10D015434D0958DC71AD6EEC8D528210ECABBC77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:f4:0c:00:f3:45:54:23:f2:d1:1d:1d:db:60: 34:2f:cb:46:69:0a:52:f4:f5:6e:71:40:7a:65:a8: 3c:94:6f:db:0e:57:52:eb:d4:4b:ba:31:62:fe:66: 82:a0:78:9d:86:a8:7b:78:a3:67:9c:2f:ef:3b:ea: e8:39:37:e5:21:12:a5:c0:5c:34:b0:89:2c:19:d5: ea:cf:27:e1:ae:55:68:0c:3f:e3:e9:18:9b:5a:2c: 0a:a3:a4:bc:54:10:ec:3a:c7:0e:27:b4:dd:fc:ab: d4:df:6d:87:da:e1:8b:49:b6:70:1d:f5:ce:85:5a: 8b:51:8c:b0:f1:53:80:26:b0:b3:8b:78:cc:6c:7a: 10:55:d4:56:a1:ac:ed:2a:ec:15:7b:44:16:0c:c1: df:87:bb:34:59:9a:2b:e6:b5:f2:74:cb:23:ed:93: d3:cd:db:fc:74:79:fd:fb:e7:cd:7f:9e:a8:a5:ed: 87:4f:eb:a1:3f:15:e8:f8:b1:c1:ca:21:8e:20:bd: 43:62:d4:a2:fc:6a:5e:10:61:bc:cc:b0:88:80:42: bf:fc:8a:1d:9f:56:4d:cc:68:92:cd:b6:ff:61:c8: 13:bc:66:d7:a9:af:81:3c:a8:3c:b3:e5:de:e2:dc: 39:da:09:d8:2d:b1:9c:39:ff:69:ae:c2:df:7d:ae: 4f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:D0:15:43:4D:09:58:DC:71:AD:6E:EC:8D:52:82:10:EC:AB:BC:77 X509v3 Authority Key Identifier: keyid:48:54:0E:13:F8:B2:CA:E8:6C:D1:F8:C7:25:28:39:A5:07:8F:16:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/SFQOE_iyyuhs0fjHJSg5pQePFqU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SFQOE_iyyuhs0fjHJSg5pQePFqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKMT/ENAVQ00JWNxxrW7sjVKCEOyrvHc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.141.82.0/23 Signature Algorithm: sha256WithRSAEncryption 72:1f:5a:ca:c0:e8:d1:14:40:08:98:86:36:b2:ec:9b:4b:9c: 61:35:d1:91:ed:7a:5c:6a:53:cc:02:10:3c:60:cc:05:fb:f9: 8a:27:92:5b:c8:59:8d:6c:5f:81:23:3c:9c:d9:13:d2:c7:4d: b9:a5:e5:5b:cd:71:b5:c0:35:3d:f3:eb:e6:24:5d:5e:e8:0a: 0b:4d:28:58:cb:36:04:5d:3a:6c:4a:76:21:db:1a:3b:c3:28: e5:4d:9d:b9:f1:ae:59:07:8f:fd:1d:e3:e3:9a:1a:24:a4:37: 28:aa:38:4a:53:0f:ce:8a:61:88:45:af:d5:0d:3c:bc:ea:7a: b7:21:7a:c6:14:98:88:97:2c:48:83:a1:d5:d4:b6:ee:3f:68: 05:c8:20:3b:7a:11:be:39:fe:be:c2:56:35:d6:72:4b:73:b9: 06:16:16:73:69:8e:78:37:a7:4f:a7:e0:92:0a:ec:ec:51:01: 18:19:46:5d:2d:4d:fb:6d:d2:67:b8:0a:07:e8:e3:11:18:d2: 83:8e:09:4f:bf:94:c3:1f:5d:48:d9:02:10:cf:6b:05:c8:c7: 38:6b:62:05:c2:a4:0e:12:3f:60:8a:0f:12:9d:a8:ad:1a:0e: 1f:aa:b4:ca:8e:5a:26:b7:95:c4:63:40:71:db:60:d0:d5:47: cd:14:bb:8c -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDg1 NDBFMTNGOEIyQ0FFODZDRDFGOEM3MjUyODM5QTUwNzhGMTZBNTAeFw0yNTAyMTAx MzQ3MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwRDAxNTQzNEQwOTU4 REM3MUFENkVFQzhENTI4MjEwRUNBQkJDNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDn9AwA80VUI/LRHR3bYDQvy0ZpClL09W5xQHplqDyUb9sOV1Lr 1Eu6MWL+ZoKgeJ2GqHt4o2ecL+876ug5N+UhEqXAXDSwiSwZ1erPJ+GuVWgMP+Pp GJtaLAqjpLxUEOw6xw4ntN38q9TfbYfa4YtJtnAd9c6FWotRjLDxU4AmsLOLeMxs ehBV1FahrO0q7BV7RBYMwd+HuzRZmivmtfJ0yyPtk9PN2/x0ef37581/nqil7YdP 66E/Fej4scHKIY4gvUNi1KL8al4QYbzMsIiAQr/8ih2fVk3MaJLNtv9hyBO8Ztep r4E8qDyz5d7i3DnaCdgtsZw5/2muwt99rk+RAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUENAVQ00JWNxxrW7sjVKCEOyrvHcwHwYDVR0jBBgwFoAUSFQOE/iyyuhs0fjH JSg5pQePFqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tNVC9T RlFPRV9peXl1aHMwZmpISlNnNXBRZVBGcVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1NGUU9FX2l5eXVoczBmakhKU2c1cFFlUEZxVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLTVQvRU5BVlEwMEpXTnh4clc3c2pWS0NF T3lydkhjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeNUjAN BgkqhkiG9w0BAQsFAAOCAQEAch9aysDo0RRACJiGNrLsm0ucYTXRke16XGpTzAIQ PGDMBfv5iieSW8hZjWxfgSM8nNkT0sdNuaXlW81xtcA1PfPr5iRdXugKC00oWMs2 BF06bEp2IdsaO8Mo5U2dufGuWQeP/R3j45oaJKQ3KKo4SlMPzophiEWv1Q08vOp6 tyF6xhSYiJcsSIOh1dS27j9oBcggO3oRvjn+vsJWNdZyS3O5BhYWc2mOeDenT6fg kgrs7FEBGBlGXS1N+23SZ7gKB+jjERjSg44JT7+Uwx9dSNkCEM9rBcjHOGtiBcKk DhI/YIoPEp2orRoOH6q0yo5aJreVxGNAcdtg0NVHzRS7jA== -----END CERTIFICATE-----Generated at Wed Feb 19 21:58:29 2025 by rpki-client