$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/7mxWTwv3IBLORp7spaMYKpea2GQ.roa File: 7mxWTwv3IBLORp7spaMYKpea2GQ.roa (raw, json) Hash identifier: w/kX82+UzH333Fewygx7lvK0a+QgJawb78CA7U14CW4= Subject key identifier: EE:6C:56:4F:0B:F7:20:12:CE:46:9E:EC:A5:A3:18:2A:97:9A:D8:64 Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0F8B Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/7mxWTwv3IBLORp7spaMYKpea2GQ.roa Signing time: Mon 19 May 2025 03:07:43 +0000 ROA not before: Mon 19 May 2025 03:07:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 208932 IP address blocks: 103.135.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Jun 2025 03:57:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3979 (0xf8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: May 19 03:07:43 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE6C564F0BF72012CE469EECA5A3182A979AD864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:71:1f:56:b8:2c:e6:b3:f0:00:8d:93:7a:20: 41:56:01:b1:7d:6e:4d:a0:53:b1:fc:f8:9b:6b:79: 11:13:ff:4b:aa:eb:29:0c:f7:81:fa:76:26:9e:37: de:d0:d2:6e:57:b8:6a:49:fb:4f:94:e7:d8:4a:5c: 7f:34:f1:b6:b4:2d:95:07:45:68:40:bc:1a:a8:e0: 09:19:99:ad:ff:74:00:f9:9f:1d:db:5a:92:44:e8: 83:fa:46:c6:32:8a:95:9f:56:6d:cb:ce:9d:46:d3: 1e:11:d2:a8:2b:2e:b3:73:5f:e1:56:75:f3:1c:1b: c7:4e:7d:4f:8a:8d:41:41:d0:3c:2a:1f:d6:22:55: 94:26:45:9b:dc:b1:9a:da:e5:e5:a7:a1:39:87:45: 2f:ab:c8:91:73:87:11:71:c0:7f:b9:f0:96:39:d4: 72:c2:f9:ec:33:59:b7:29:99:1c:ba:10:72:8b:d8: 49:71:f6:61:16:1e:95:13:d3:b8:97:f1:49:cb:a3: 6e:08:f8:39:16:b8:48:01:3f:92:7e:93:61:75:fe: 45:3d:f2:34:85:77:05:a3:b7:96:fd:08:fa:ae:b7: 96:ea:e8:55:5a:69:bb:82:64:54:cc:58:fc:d2:b4: 90:8e:21:8f:12:25:2c:13:c4:e3:0e:d6:a6:b0:ff: c6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:6C:56:4F:0B:F7:20:12:CE:46:9E:EC:A5:A3:18:2A:97:9A:D8:64 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/7mxWTwv3IBLORp7spaMYKpea2GQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.20.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:c9:9d:29:82:3b:3e:f3:ef:75:76:bc:e8:61:47:c8:73:e0: 62:9c:92:cd:09:67:fe:f7:2e:9e:1d:d7:d9:07:fe:11:b5:1e: b7:01:1b:20:3d:aa:80:ee:61:1d:78:e1:31:b1:cc:2e:81:47: f7:7b:a2:73:c7:17:61:5d:6e:02:ee:65:83:05:64:dd:b5:23: d3:b5:26:9a:7e:81:b0:6b:fd:49:c0:6d:77:a1:56:83:23:34: d6:f8:73:19:5e:14:94:88:2a:84:53:d5:15:85:a4:2c:a5:79: 51:f0:68:6b:0f:c5:86:13:a4:07:54:5d:10:41:cf:00:7b:31: 23:4a:aa:06:e7:c8:4b:3f:bc:e3:d4:9b:1b:43:b7:34:89:cd: e1:f6:f7:1e:ba:ff:ca:7a:e7:df:73:c4:8d:4d:7e:2b:fa:35: 99:8c:f0:78:fe:59:d2:f4:e1:9c:74:da:f7:56:4b:a8:8e:b5: ba:dc:b4:06:9d:20:76:af:d0:d1:00:f5:10:fa:56:fd:68:91: 7b:51:66:a2:f3:77:95:65:85:4a:e8:85:30:ef:f7:8a:8c:47: e0:68:95:b2:1b:b8:9b:e1:2c:7d:2a:7f:81:ce:85:dd:38:4a: be:d5:f8:20:b0:7d:e2:d8:75:18:6e:56:05:3c:de:41:37:9e: e7:1a:fb:ca -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICD4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTA1MTkw MzA3NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFNkM1NjRGMEJGNzIw MTJDRTQ2OUVFQ0E1QTMxODJBOTc5QUQ4NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkcR9WuCzms/AAjZN6IEFWAbF9bk2gU7H8+JtreRET/0uq6ykM 94H6diaeN97Q0m5XuGpJ+0+U59hKXH808ba0LZUHRWhAvBqo4AkZma3/dAD5nx3b WpJE6IP6RsYyipWfVm3Lzp1G0x4R0qgrLrNzX+FWdfMcG8dOfU+KjUFB0DwqH9Yi VZQmRZvcsZra5eWnoTmHRS+ryJFzhxFxwH+58JY51HLC+ewzWbcpmRy6EHKL2Elx 9mEWHpUT07iX8UnLo24I+DkWuEgBP5J+k2F1/kU98jSFdwWjt5b9CPqut5bq6FVa abuCZFTMWPzStJCOIY8SJSwTxOMO1qaw/8YRAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU7mxWTwv3IBLORp7spaMYKpea2GQwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vN214V1R3djNJ QkxPUnA3c3BhTVlLcGVhMkdRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGeHFDANBgkqhkiG9w0BAQsFAAOCAQEAOsmdKYI7PvPvdXa86GFHyHPg YpySzQln/vcunh3X2Qf+EbUetwEbID2qgO5hHXjhMbHMLoFH93uic8cXYV1uAu5l gwVk3bUj07Ummn6BsGv9ScBtd6FWgyM01vhzGV4UlIgqhFPVFYWkLKV5UfBoaw/F hhOkB1RdEEHPAHsxI0qqBufISz+849SbG0O3NInN4fb3Hrr/ynrn33PEjU1+K/o1 mYzweP5Z0vThnHTa91ZLqI61uty0Bp0gdq/Q0QD1EPpW/WiRe1FmovN3lWWFSuiF MO/3ioxH4GiVshu4m+EsfSp/gc6F3ThKvtX4ILB94th1GG5WBTzeQTee5xr7yg== -----END CERTIFICATE-----Generated at Wed Jun 4 01:13:55 2025 by rpki-client