$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa File: Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa (raw, json) Hash identifier: wzfLkb60K9w0a/3+U7yA+C8gD/bHhi3UsnjKh4eQrn4= Subject key identifier: 46:7F:E0:67:8A:32:F4:DF:FE:CB:14:58:E1:E3:0C:C2:AA:09:82:C9 Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0EDB Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa Signing time: Mon 10 Feb 2025 14:12:02 +0000 ROA not before: Mon 10 Feb 2025 14:12:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 208932 IP address blocks: 103.135.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3803 (0xedb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Feb 10 14:12:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=467FE0678A32F4DFFECB1458E1E30CC2AA0982C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f9:6a:53:02:bc:c0:81:00:e6:be:ed:7e:57: 97:97:56:2e:a4:f8:b4:97:aa:18:d3:e4:03:0d:1f: f8:db:96:48:95:d1:6c:eb:ca:5a:20:e1:a8:a0:80: 03:4e:32:aa:69:10:82:3a:5b:bd:9e:f3:98:b1:9d: 90:ff:f3:6b:eb:b4:a8:c8:53:87:7b:5d:8d:50:78: 77:6d:d0:0f:63:4a:51:c5:c6:8a:ee:be:80:42:37: fd:11:77:06:0f:94:85:c0:12:c5:06:13:d2:b9:46: 66:37:59:3a:77:f0:7a:0d:db:b0:3d:7c:f6:22:17: 7a:09:4b:b0:de:84:08:c1:36:1b:e9:0e:62:d2:68: bb:f5:d8:c3:ad:87:c0:99:14:ec:10:0c:28:2b:05: 8a:cf:fc:05:ec:26:9f:11:2e:34:1c:3f:34:c3:5a: 6c:0a:ec:49:44:5f:21:97:8e:b1:a4:70:4d:d3:90: 22:1d:23:e6:a6:0f:e0:6b:9c:62:ae:0a:08:d6:43: bc:b1:05:d6:0d:de:1d:f1:75:ac:e6:f4:66:f4:c6: 9b:87:02:f7:ba:ea:b9:07:6e:eb:c2:01:4f:e4:49: 9f:33:dd:79:53:cd:07:87:b4:ea:85:4a:96:07:37: 0a:dc:64:18:f1:52:db:03:89:12:8d:cd:86:b8:b3: e0:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:7F:E0:67:8A:32:F4:DF:FE:CB:14:58:E1:E3:0C:C2:AA:09:82:C9 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/Rn_gZ4oy9N_-yxRY4eMMwqoJgsk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.20.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:33:62:37:b8:b5:8d:e8:45:79:5c:76:fd:52:00:84:81:28: 00:89:03:a6:32:2b:52:9d:7b:69:fe:03:8d:26:e1:13:80:19: 2c:7b:61:d3:70:12:cc:fb:f2:e8:27:d4:32:51:ae:b9:7e:67: 09:1e:a6:9f:1d:9b:c6:1f:b2:89:b6:d4:8f:dd:fa:0a:7b:a3: a1:72:74:10:d0:1a:f7:99:bd:af:04:d2:29:9f:3c:d8:4f:9f: 4c:16:97:76:f6:c3:27:42:04:0c:ae:39:ba:43:02:1e:e9:92: c3:ec:0b:41:1f:b7:7a:96:b4:25:1d:ec:53:03:70:97:8a:34: ea:94:3c:ed:42:ce:cf:10:ef:eb:95:73:be:ac:f4:28:b2:c0: 7d:19:13:53:7d:5f:d4:81:69:0f:26:e5:1d:39:c8:42:cd:a4: aa:e0:7d:f9:6c:ed:59:86:84:7b:3b:2e:9c:1d:db:5e:e9:a4: b6:9a:0d:f0:1d:8b:1b:e3:02:15:e6:19:1e:97:95:b1:a1:4b: d0:4b:a7:95:25:8e:c4:bd:2e:78:ee:0f:c1:d6:5e:b3:ad:4c: 51:15:36:47:a3:52:14:ec:88:68:a1:9f:e4:1c:8b:1a:ca:89: 93:26:d4:6c:68:7f:8e:08:32:8b:ec:b5:ba:5d:fa:4a:34:09: 9f:1b:c9:d3 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNTAyMTAx NDEyMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2N0ZFMDY3OEEzMkY0 REZGRUNCMTQ1OEUxRTMwQ0MyQUEwOTgyQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ+WpTArzAgQDmvu1+V5eXVi6k+LSXqhjT5AMNH/jblkiV0Wzr ylog4aiggANOMqppEII6W72e85ixnZD/82vrtKjIU4d7XY1QeHdt0A9jSlHFxoru voBCN/0RdwYPlIXAEsUGE9K5RmY3WTp38HoN27A9fPYiF3oJS7DehAjBNhvpDmLS aLv12MOth8CZFOwQDCgrBYrP/AXsJp8RLjQcPzTDWmwK7ElEXyGXjrGkcE3TkCId I+amD+BrnGKuCgjWQ7yxBdYN3h3xdazm9Gb0xpuHAve66rkHbuvCAU/kSZ8z3XlT zQeHtOqFSpYHNwrcZBjxUtsDiRKNzYa4s+CzAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQURn/gZ4oy9N/+yxRY4eMMwqoJgskwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vUm5fZ1o0b3k5 Tl8teXhSWTRlTU13cW9KZ3NrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGeHFDANBgkqhkiG9w0BAQsFAAOCAQEAOzNiN7i1jehFeVx2/VIAhIEo AIkDpjIrUp17af4DjSbhE4AZLHth03ASzPvy6CfUMlGuuX5nCR6mnx2bxh+yibbU j936CnujoXJ0ENAa95m9rwTSKZ882E+fTBaXdvbDJ0IEDK45ukMCHumSw+wLQR+3 epa0JR3sUwNwl4o06pQ87ULOzxDv65Vzvqz0KLLAfRkTU31f1IFpDyblHTnIQs2k quB9+WztWYaEezsunB3bXumktpoN8B2LG+MCFeYZHpeVsaFL0EunlSWOxL0ueO4P wdZes61MURU2R6NSFOyIaKGf5ByLGsqJkybUbGh/jggyi+y1ul36SjQJnxvJ0w== -----END CERTIFICATE-----Generated at Mon Apr 7 01:55:16 2025 by rpki-client