$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/REpGVhkPyxV7zbCEqhgM18P72T8.roa File: REpGVhkPyxV7zbCEqhgM18P72T8.roa (raw, json) Hash identifier: urwpfYEJ3GAcnEqRhWVoDPeBuqzrs0qlupz4tjOSUrA= Subject key identifier: 44:4A:46:56:19:0F:CB:15:7B:CD:B0:84:AA:18:0C:D7:C3:FB:D9:3F Certificate issuer: /CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Certificate serial: 0169 Authority key identifier: 55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/REpGVhkPyxV7zbCEqhgM18P72T8.roa Signing time: Mon 10 Feb 2025 13:43:54 +0000 ROA not before: Mon 10 Feb 2025 13:43:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.99.138.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Validity Not Before: Feb 10 13:43:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=444A4656190FCB157BCDB084AA180CD7C3FBD93F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d3:85:3a:98:6b:d2:cf:03:c3:e8:f9:bf:c0: 04:05:4d:f6:f3:b8:89:20:f2:bc:30:9b:ac:36:4e: 0a:e8:90:a1:be:c5:43:d0:6d:3d:d1:08:fa:f5:91: 16:b6:05:f5:e7:72:5f:a9:b4:76:28:54:b9:be:f2: 86:b3:49:fc:60:0f:9e:4b:9e:6d:3b:a4:49:ab:b5: 0b:e7:70:40:43:6d:18:99:52:d8:47:b9:e8:a5:3e: 50:7d:e4:65:ac:26:bf:b0:3b:fe:b0:23:85:4b:f8: 7c:20:7e:dd:c2:02:e2:d7:bb:14:f1:1a:b0:1f:84: 4d:b4:47:1b:00:a0:7e:0f:f9:61:d2:1b:bf:ab:36: ed:68:ec:e5:d1:ae:b3:c9:bb:6e:ee:01:f7:92:8f: 38:48:5f:6f:cf:61:d5:81:da:39:88:ce:02:43:1b: d1:02:5e:0c:8d:13:0b:3a:4c:43:8c:61:3e:cc:70: 8a:bd:9b:5b:7c:d1:5b:69:5f:b0:d7:35:ee:1f:c5: f8:04:e4:7d:fb:8f:79:17:ca:4a:7f:9c:3e:64:83: 70:84:7e:77:0e:59:f8:31:50:3f:7a:de:8e:71:23: 3c:7f:de:30:0b:7f:bb:ef:08:2f:0a:6c:f1:d3:00: 88:38:ab:87:8a:2a:22:63:cf:01:d5:c8:8e:fe:fe: 1a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:4A:46:56:19:0F:CB:15:7B:CD:B0:84:AA:18:0C:D7:C3:FB:D9:3F X509v3 Authority Key Identifier: keyid:55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/REpGVhkPyxV7zbCEqhgM18P72T8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.99.138.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:d1:f1:a4:f0:5f:10:72:47:10:e6:06:78:af:c0:3f:00:2c: 85:eb:df:8e:b6:8e:07:c3:af:7f:f0:ce:9a:08:14:60:41:01: 80:e0:0c:68:3a:a8:fb:a8:49:26:77:02:1c:f6:ff:8b:57:45: b2:b0:f8:88:55:0c:41:b7:89:ea:00:51:4b:b2:19:c5:91:99: 44:e2:19:b5:ee:09:c9:e4:8d:25:5b:2a:e8:ee:e4:59:35:cf: d9:98:e7:37:ed:46:4b:ab:7d:4e:ce:b0:01:30:b1:5a:1d:36: c8:71:e5:0d:bd:4b:6b:ce:78:f7:88:95:10:3e:f1:59:d0:de: 08:7c:76:7c:e1:43:e9:d9:2f:49:a6:70:43:e7:d6:96:f5:4e: 95:9f:79:49:40:c1:3c:cd:07:42:b5:bc:e4:27:9f:18:52:2f: 18:aa:7a:8c:35:10:24:bf:4c:f6:5d:8e:d5:88:8f:bb:78:52: bc:80:f7:02:fb:fc:f7:c8:55:43:0c:79:11:87:8e:40:94:02: 90:13:54:9a:f4:b9:78:e9:3a:99:97:1e:ac:5c:54:93:bc:f2: d0:9d:fa:29:48:97:be:85:1e:12:2d:b2:a1:26:b5:ff:a4:0e: 70:64:f1:09:7c:28:4f:e0:9f:4e:f8:8d:6a:83:b3:61:1e:13: ed:f1:aa:59 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUw MUZFMEMzMDU2RjYxMTI2MUFDMUMwRURDNjdFMjM0NEQ3OTkzQTAeFw0yNTAyMTAx MzQzNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0NEE0NjU2MTkwRkNC MTU3QkNEQjA4NEFBMTgwQ0Q3QzNGQkQ5M0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx04U6mGvSzwPD6Pm/wAQFTfbzuIkg8rwwm6w2TgrokKG+xUPQ bT3RCPr1kRa2BfXncl+ptHYoVLm+8oazSfxgD55Lnm07pEmrtQvncEBDbRiZUthH ueilPlB95GWsJr+wO/6wI4VL+Hwgft3CAuLXuxTxGrAfhE20RxsAoH4P+WHSG7+r Nu1o7OXRrrPJu27uAfeSjzhIX2/PYdWB2jmIzgJDG9ECXgyNEws6TEOMYT7McIq9 m1t80VtpX7DXNe4fxfgE5H37j3kXykp/nD5kg3CEfncOWfgxUD963o5xIzx/3jAL f7vvCC8KbPHTAIg4q4eKKiJjzwHVyI7+/hqFAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUREpGVhkPyxV7zbCEqhgM18P72T8wHwYDVR0jBBgwFoAUVQH+DDBW9hEmGsHA 7cZ+I0TXmTowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElBTkdD QUkvVlFILUREQlc5aEVtR3NIQTdjWi1JMFRYbVRvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9WUUgtRERCVzloRW1Hc0hBN2NaLUkwVFhtVG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSUFOR0NBSS9SRXBHVmhrUHl4Vjd6 YkNFcWhnTTE4UDcyVDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ2OKMA0GCSqGSIb3DQEBCwUAA4IBAQCe0fGk8F8QckcQ5gZ4r8A/ACyF69+O to4Hw69/8M6aCBRgQQGA4AxoOqj7qEkmdwIc9v+LV0WysPiIVQxBt4nqAFFLshnF kZlE4hm17gnJ5I0lWyro7uRZNc/ZmOc37UZLq31OzrABMLFaHTbIceUNvUtrznj3 iJUQPvFZ0N4IfHZ84UPp2S9JpnBD59aW9U6Vn3lJQME8zQdCtbzkJ58YUi8YqnqM NRAkv0z2XY7ViI+7eFK8gPcC+/z3yFVDDHkRh45AlAKQE1Sa9Ll46TqZlx6sXFST vPLQnfopSJe+hR4SLbKhJrX/pA5wZPEJfChP4J9O+I1qg7NhHhPt8apZ -----END CERTIFICATE-----Generated at Thu Apr 17 13:07:57 2025 by rpki-client