$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/rYQdOZmNCNtQBDhc7veVS6e5BIE.roa File: rYQdOZmNCNtQBDhc7veVS6e5BIE.roa (raw, json) Hash identifier: i4K0MpZKeuMaorIu2hthmzN9sCX/lzEoqj3dRzy4K0k= Subject key identifier: AD:84:1D:39:99:8D:08:DB:50:04:38:5C:EE:F7:95:4B:A7:B9:04:81 Certificate issuer: /CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Certificate serial: 09 Authority key identifier: 92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/rYQdOZmNCNtQBDhc7veVS6e5BIE.roa Signing time: Wed 26 Feb 2025 03:01:01 +0000 ROA not before: Wed 26 Feb 2025 03:01:01 +0000 ROA not after: Fri 13 Feb 2026 15:30:28 +0000 asID: 131657 IP address blocks: 163.61.125.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Validity Not Before: Feb 26 03:01:01 2025 GMT Not After : Feb 13 15:30:28 2026 GMT Subject: CN=AD841D39998D08DB5004385CEEF7954BA7B90481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:10:01:63:50:1c:b2:ea:97:7e:14:79:ee:b4: 76:6e:d2:38:0a:15:bc:66:76:97:28:73:ec:6d:15: fb:11:85:ca:c6:7c:ab:95:e1:1a:2f:40:08:f1:57: dc:68:dc:71:6b:57:0a:74:36:b1:04:3c:58:07:11: 33:21:4a:2a:97:cd:30:90:7c:5e:10:f2:61:ec:5e: 87:30:06:44:fb:af:91:da:a1:20:9f:ac:eb:f5:14: 83:9a:30:33:0a:3c:f4:ce:d5:ae:62:3e:97:4c:64: ef:a4:85:de:11:78:fb:34:42:3b:23:7d:db:bc:69: 93:e1:26:9b:27:28:88:bf:3f:91:72:c6:f9:ec:b3: 19:c3:5e:9c:3f:6c:bc:34:f9:b2:c4:05:e6:b9:b9: ab:e5:99:ad:36:e9:78:39:8f:78:f4:83:86:f7:29: 30:12:a2:a5:d2:6f:b0:9c:fb:22:9d:3f:e9:79:70: f9:90:08:9c:da:ce:d4:62:2a:56:65:81:ab:63:92: 88:03:89:a6:9f:8c:66:d7:4e:fe:61:37:71:9e:06: 1f:13:8a:2a:0b:30:85:fe:2f:7a:2f:bc:db:cd:d7: 7c:a3:12:8c:e0:54:1c:59:50:ba:0d:f3:a7:92:4e: 96:36:d1:5d:3d:6f:f8:2f:4f:d2:d4:f8:c3:46:45: 9b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:84:1D:39:99:8D:08:DB:50:04:38:5C:EE:F7:95:4B:A7:B9:04:81 X509v3 Authority Key Identifier: keyid:92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/rYQdOZmNCNtQBDhc7veVS6e5BIE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.61.125.0/24 Signature Algorithm: sha256WithRSAEncryption 05:30:92:a9:8b:13:0c:45:e0:d9:ce:c0:ed:75:55:10:ec:c7: 67:b7:a6:3f:94:0f:72:0f:80:c3:d5:b0:97:71:ac:45:c6:9a: c4:00:7d:b0:c1:93:fd:e4:af:b2:4e:61:cd:a4:00:94:83:24: b9:cf:7f:83:8e:15:0c:68:c6:a3:ab:8c:c2:5b:47:30:cf:bd: 5b:42:eb:9e:c1:bb:f9:32:c0:6d:08:44:4f:0f:d0:2c:89:54: e2:0e:82:48:33:22:a8:3d:d8:f1:62:2c:d6:12:9c:e7:51:c1: c4:a4:04:83:c5:e6:be:d7:38:3c:60:78:9a:cf:67:cb:ba:4a: 16:ab:62:45:96:42:44:a3:24:91:82:14:1e:62:02:82:37:4a: 50:b8:c5:1c:19:75:0e:47:ad:df:b3:7d:73:e2:ac:f5:5f:fe: ec:f8:cd:6c:dc:b1:97:81:85:76:c4:9a:92:f4:d8:aa:9e:1a: 2a:b0:ee:44:1d:8d:20:72:fb:c9:1b:d4:fb:3a:6f:36:89:68: b8:ee:20:76:18:80:70:69:fc:ab:6a:4b:36:f1:bc:1e:9c:2a: 33:c8:50:ef:6a:d2:ed:7a:30:32:1c:61:dc:2b:d0:95:f2:4e: 0c:01:a2:6c:d2:c3:d5:9b:2d:f5:32:55:24:c2:da:79:0c:90: 8e:84:a3:ea -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5MjMw M0NFNjM2MkI1QTZGMUU3RTE2RDI1OEMxQzk2RkJCNjc0RDY4MB4XDTI1MDIyNjAz MDEwMVoXDTI2MDIxMzE1MzAyOFowMzExMC8GA1UEAxMoQUQ4NDFEMzk5OThEMDhE QjUwMDQzODVDRUVGNzk1NEJBN0I5MDQ4MTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAK8QAWNQHLLql34Uee60dm7SOAoVvGZ2lyhz7G0V+xGFysZ8q5Xh Gi9ACPFX3GjccWtXCnQ2sQQ8WAcRMyFKKpfNMJB8XhDyYexehzAGRPuvkdqhIJ+s 6/UUg5owMwo89M7VrmI+l0xk76SF3hF4+zRCOyN927xpk+EmmycoiL8/kXLG+eyz GcNenD9svDT5ssQF5rm5q+WZrTbpeDmPePSDhvcpMBKipdJvsJz7Ip0/6Xlw+ZAI nNrO1GIqVmWBq2OSiAOJpp+MZtdO/mE3cZ4GHxOKKgswhf4vei+8283XfKMSjOBU HFlQug3zp5JOljbRXT1v+C9P0tT4w0ZFm9cCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBSthB05mY0I21AEOFzu95VLp7kEgTAfBgNVHSMEGDAWgBSSMDzmNitabx5+FtJY wclvu2dNaDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NT1JOTUFQ TEUva2pBODVqWXJXbThlZmhiU1dNSEpiN3RuVFdnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rakE4NWpZcldtOGVmaGJTV01ISmI3dG5UV2cuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NT1JOTUFQTEUvcllRZE9abU5DTnRR QkRoYzd2ZVZTNmU1QklFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAKM9fTANBgkqhkiG9w0BAQsFAAOCAQEABTCSqYsTDEXg2c7A7XVVEOzHZ7em P5QPcg+Aw9Wwl3GsRcaaxAB9sMGT/eSvsk5hzaQAlIMkuc9/g44VDGjGo6uMwltH MM+9W0LrnsG7+TLAbQhETw/QLIlU4g6CSDMiqD3Y8WIs1hKc51HBxKQEg8Xmvtc4 PGB4ms9ny7pKFqtiRZZCRKMkkYIUHmICgjdKULjFHBl1Dket37N9c+Ks9V/+7PjN bNyxl4GFdsSakvTYqp4aKrDuRB2NIHL7yRvU+zpvNolouO4gdhiAcGn8q2pLNvG8 HpwqM8hQ72rS7XowMhxh3CvQlfJODAGibNLD1Zst9TJVJMLaeQyQjoSj6g== -----END CERTIFICATE-----Generated at Mon Apr 7 00:55:46 2025 by rpki-client