$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/MrBD703ol06ULqyxoIJXao-VvjI.roa File: MrBD703ol06ULqyxoIJXao-VvjI.roa (raw, json) Hash identifier: /E7aowAGcjdqcx883EHHiBai7ssqtd3OOhOJzhP4mzU= Subject key identifier: 32:B0:43:EF:4D:E8:97:4E:94:2E:AC:B1:A0:82:57:6A:8F:95:BE:32 Certificate issuer: /CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6 Certificate serial: 0F15 Authority key identifier: 27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/MrBD703ol06ULqyxoIJXao-VvjI.roa Signing time: Mon 10 Feb 2025 13:46:47 +0000 ROA not before: Mon 10 Feb 2025 13:46:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.136.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/JxCa4lDvLsr3m_SJDw1svl4tfMY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/JxCa4lDvLsr3m_SJDw1svl4tfMY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3861 (0xf15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27109AE250EF2ECAF79BF4890F0D6CBE5E2D7CC6 Validity Not Before: Feb 10 13:46:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=32B043EF4DE8974E942EACB1A082576A8F95BE32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:70:84:06:e6:c3:62:f5:c4:46:2c:13:c1: 5b:8b:bb:1c:4a:43:5d:48:76:9a:fb:1b:8d:ea:c5: e5:77:4d:96:c5:63:6e:fb:cf:28:e6:57:1e:34:11: 02:18:5f:fc:0b:d8:d1:85:e7:f2:bc:f9:eb:c9:1a: 1b:ca:f7:d7:af:1c:df:c1:ad:5a:3d:fc:63:a6:58: 86:75:67:6b:f9:25:f2:c6:0b:06:4b:94:9b:ab:61: 21:35:ab:22:f7:e5:29:33:d6:bc:93:a1:0f:2e:67: 55:e0:93:08:13:f3:7f:af:d4:7e:96:3b:51:11:b4: 64:0c:b5:e4:ee:84:85:a8:85:02:e2:1f:8e:d5:4d: ce:75:62:e0:90:87:ad:74:3a:8b:61:2d:98:25:b9: 79:5b:32:e4:a2:6f:3e:6f:ef:38:85:bc:5e:10:86: e2:fe:6c:c8:45:21:f5:51:c3:2c:88:86:2b:4e:40: 2c:93:11:08:8a:40:3a:7f:b2:9d:14:42:c1:4b:ec: 73:17:b6:5f:d9:84:30:f3:43:19:90:d1:7a:21:42: c7:7d:e0:ba:8b:ac:d1:3a:bb:ab:76:f7:83:5b:4f: a0:27:fc:92:e7:2d:f9:e1:10:33:d6:5e:26:14:ed: 43:d1:54:9d:92:2a:51:e4:26:f3:ed:1c:67:43:ea: 46:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B0:43:EF:4D:E8:97:4E:94:2E:AC:B1:A0:82:57:6A:8F:95:BE:32 X509v3 Authority Key Identifier: keyid:27:10:9A:E2:50:EF:2E:CA:F7:9B:F4:89:0F:0D:6C:BE:5E:2D:7C:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/JxCa4lDvLsr3m_SJDw1svl4tfMY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JxCa4lDvLsr3m_SJDw1svl4tfMY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUANGSHIH/MrBD703ol06ULqyxoIJXao-VvjI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.210.0/23 Signature Algorithm: sha256WithRSAEncryption 74:20:94:ae:b3:e1:1d:a0:26:25:00:cb:c1:96:de:7d:62:ee: 19:22:09:bd:be:19:6b:5e:3b:f9:8c:63:83:2c:07:cc:0c:87: d7:cc:68:6a:d8:55:be:cc:58:02:fa:5b:bd:6d:e6:c8:3b:ff: 66:be:4a:f4:a9:a6:fa:2e:32:fc:b1:a7:39:2d:b6:9f:ed:7c: f7:ab:de:70:67:cf:00:ad:1e:18:81:25:8e:41:e1:46:52:24: 10:23:b8:9e:51:c5:93:0f:b2:95:f8:ab:4c:16:e3:19:ed:ff: 03:2d:e6:50:16:fd:eb:6b:51:46:90:1e:90:6e:80:4a:c7:06: d1:81:67:fa:11:13:fe:b0:8c:1f:11:01:f5:04:c8:5d:c2:97: dc:aa:44:ea:6c:9d:50:6b:87:a8:10:a5:c5:87:8f:58:92:63: 55:05:ff:04:33:0b:cc:27:a7:dc:87:bf:df:f9:12:73:3b:d9: 9f:02:14:15:e2:92:14:31:b3:87:da:65:2d:88:5a:2c:0d:93: cb:d4:96:8c:fd:ef:64:ff:f7:04:53:95:12:56:97:a1:83:4b: 79:ee:0f:80:3a:9d:ad:72:2d:1a:f7:4e:8a:a5:ee:ba:23:19: 12:27:01:cc:2c:96:57:61:1e:72:7f:24:55:c6:1f:a8:45:45: 25:4e:3c:17 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDxUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjcx MDlBRTI1MEVGMkVDQUY3OUJGNDg5MEYwRDZDQkU1RTJEN0NDNjAeFw0yNTAyMTAx MzQ2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMyQjA0M0VGNERFODk3 NEU5NDJFQUNCMUEwODI1NzZBOEY5NUJFMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu3nCEBubDYvXERiwTwVuLuxxKQ11Idpr7G43qxeV3TZbFY277 zyjmVx40EQIYX/wL2NGF5/K8+evJGhvK99evHN/BrVo9/GOmWIZ1Z2v5JfLGCwZL lJurYSE1qyL35Skz1ryToQ8uZ1XgkwgT83+v1H6WO1ERtGQMteTuhIWohQLiH47V Tc51YuCQh610OothLZgluXlbMuSibz5v7ziFvF4QhuL+bMhFIfVRwyyIhitOQCyT EQiKQDp/sp0UQsFL7HMXtl/ZhDDzQxmQ0XohQsd94LqLrNE6u6t294NbT6An/JLn LfnhEDPWXiYU7UPRVJ2SKlHkJvPtHGdD6kZXAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUMrBD703ol06ULqyxoIJXao+VvjIwHwYDVR0jBBgwFoAUJxCa4lDvLsr3m/SJ Dw1svl4tfMYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1VBTkdT SElIL0p4Q2E0bER2THNyM21fU0pEdzFzdmw0dGZNWS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvSnhDYTRsRHZMc3IzbV9TSkR3MXN2bDR0Zk1ZLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1VBTkdTSElIL01yQkQ3MDNvbDA2 VUxxeXhvSUpYYW8tVnZqSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFniNIwDQYJKoZIhvcNAQELBQADggEBAHQglK6z4R2gJiUAy8GW3n1i7hki Cb2+GWteO/mMY4MsB8wMh9fMaGrYVb7MWAL6W71t5sg7/2a+SvSppvouMvyxpzkt tp/tfPer3nBnzwCtHhiBJY5B4UZSJBAjuJ5RxZMPspX4q0wW4xnt/wMt5lAW/etr UUaQHpBugErHBtGBZ/oRE/6wjB8RAfUEyF3Cl9yqROpsnVBrh6gQpcWHj1iSY1UF /wQzC8wnp9yHv9/5EnM72Z8CFBXikhQxs4faZS2IWiwNk8vUloz972T/9wRTlRJW l6GDS3nuD4A6na1yLRr3Toql7rojGRInAcwslldhHnJ/JFXGH6hFRSVOPBc= -----END CERTIFICATE-----Generated at Sat Apr 5 09:34:52 2025 by rpki-client