$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/3PXbCY4HJVuH098-jkhT1xyV52I.roa File: 3PXbCY4HJVuH098-jkhT1xyV52I.roa (raw, json) Hash identifier: nkU/svmv0y7UDx4Vy86ECgjU8r7zTI/N9WQYZK7rrHk= Subject key identifier: DC:F5:DB:09:8E:07:25:5B:87:D3:DF:3E:8E:48:53:D7:1C:95:E7:62 Certificate issuer: /CN=98A5C390143149481DE79BC17BB62DBA2271F61F Certificate serial: 03FA Authority key identifier: 98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/3PXbCY4HJVuH098-jkhT1xyV52I.roa Signing time: Mon 10 Feb 2025 14:19:18 +0000 ROA not before: Mon 10 Feb 2025 14:19:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.159.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 16:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1018 (0x3fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98A5C390143149481DE79BC17BB62DBA2271F61F Validity Not Before: Feb 10 14:19:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DCF5DB098E07255B87D3DF3E8E4853D71C95E762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:21:bb:73:fc:3b:d4:2b:32:22:98:f5:60: a4:a3:cb:dd:9e:74:a1:cc:8f:5b:43:e0:fe:32:1c: 98:ec:43:29:4c:f8:98:31:1f:f4:83:2d:73:96:ad: 9e:29:0d:96:32:4f:79:e3:a3:69:53:a4:9d:ee:1a: 0a:c0:ec:29:a5:7d:98:0f:44:b4:cc:15:d1:a1:97: d6:9a:9a:16:9c:9a:81:4f:78:25:5e:fe:04:0f:ad: bc:57:c1:b0:3e:b5:3f:bd:be:58:45:5e:d5:56:92: b5:65:6f:c4:7b:f8:1e:d3:30:2e:5b:83:eb:03:9a: 7e:59:e4:c7:93:98:8f:97:86:e5:7a:c0:a9:c1:5f: 7e:e6:e8:c3:16:b7:89:a4:23:29:bf:90:35:1b:ac: 5c:e9:e4:4f:e5:44:2a:59:04:b6:f0:fb:98:2b:a7: e6:b6:71:84:b7:5d:23:84:b3:ae:0a:db:39:67:4e: 56:53:c8:36:a9:f9:e6:d3:54:d4:b7:4e:bc:86:8e: 36:52:4b:3b:07:7e:a8:be:ce:5a:05:09:73:14:a4: 21:f4:ad:bf:a1:20:46:15:f7:e7:d2:76:18:2f:74: 87:68:64:fd:44:40:92:25:41:ee:01:3a:f5:52:97: e5:38:1d:3f:ed:28:3b:10:6c:1f:4c:2a:9a:d8:8d: b0:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F5:DB:09:8E:07:25:5B:87:D3:DF:3E:8E:48:53:D7:1C:95:E7:62 X509v3 Authority Key Identifier: keyid:98:A5:C3:90:14:31:49:48:1D:E7:9B:C1:7B:B6:2D:BA:22:71:F6:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/mKXDkBQxSUgd55vBe7YtuiJx9h8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mKXDkBQxSUgd55vBe7YtuiJx9h8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYSENSE/3PXbCY4HJVuH098-jkhT1xyV52I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.159.120.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:a7:ec:2a:7a:f2:b0:37:e3:ef:2a:ed:fa:4a:d4:0a:92:67: 30:47:13:f1:57:ac:ab:84:a5:57:09:3e:01:47:fa:52:15:e7: 77:c7:98:ed:a8:ea:3c:64:3f:48:03:ba:98:c3:a4:8d:ef:3d: 83:17:4d:70:3b:70:d1:0a:2e:d2:62:f9:5f:e0:a3:1b:13:65: e7:df:22:8e:46:73:50:42:8d:c3:fc:2d:60:b7:75:e4:36:3e: 3a:c5:de:30:63:67:05:19:9f:b6:1e:e1:87:07:4c:b2:6c:f8: 34:ab:db:43:a4:04:d1:86:df:58:0e:e8:c1:9b:f4:f4:a3:77: 40:98:09:cc:f8:ae:ac:d1:d6:77:5e:68:4f:06:73:71:40:e5: 6e:c9:77:12:02:29:ee:43:4f:19:f5:ef:d6:4e:fb:4b:2e:10: 41:e8:61:0f:1e:16:be:19:42:96:38:62:a6:04:05:2f:c6:da: 37:4f:9d:de:fa:d6:ca:61:09:6a:07:d1:b6:b8:3a:bc:77:5a: 58:c9:54:05:92:8d:84:2b:62:03:68:be:1b:40:13:da:47:73: 11:0a:cf:a3:b0:32:ab:40:9c:c6:42:41:83:f2:b8:34:e1:8d: fd:63:54:85:5f:5b:8c:41:c8:34:f0:f3:4f:16:49:ce:17:97: 18:31:95:28 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICA/owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOThB NUMzOTAxNDMxNDk0ODFERTc5QkMxN0JCNjJEQkEyMjcxRjYxRjAeFw0yNTAyMTAx NDE5MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDRjVEQjA5OEUwNzI1 NUI4N0QzREYzRThFNDg1M0Q3MUM5NUU3NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDElyG7c/w71CsyIpj1YKSjy92edKHMj1tD4P4yHJjsQylM+Jgx H/SDLXOWrZ4pDZYyT3njo2lTpJ3uGgrA7CmlfZgPRLTMFdGhl9aamhacmoFPeCVe /gQPrbxXwbA+tT+9vlhFXtVWkrVlb8R7+B7TMC5bg+sDmn5Z5MeTmI+XhuV6wKnB X37m6MMWt4mkIym/kDUbrFzp5E/lRCpZBLbw+5grp+a2cYS3XSOEs64K2zlnTlZT yDap+ebTVNS3TryGjjZSSzsHfqi+zloFCXMUpCH0rb+hIEYV9+fSdhgvdIdoZP1E QJIlQe4BOvVSl+U4HT/tKDsQbB9MKprYjbD/AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU3PXbCY4HJVuH098+jkhT1xyV52IwHwYDVR0jBBgwFoAUmKXDkBQxSUgd55vB e7YtuiJx9h8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVlTRU5T RS9tS1hEa0JReFNVZ2Q1NXZCZTdZdHVpSng5aDguY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL21LWERrQlF4U1VnZDU1dkJlN1l0dWlKeDloOC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01ZU0VOU0UvM1BYYkNZNEhKVnVIMDk4 LWpraFQxeHlWNTJJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWefeDANBgkqhkiG9w0BAQsFAAOCAQEADafsKnrysDfj7yrt+krUCpJnMEcT8Ves q4SlVwk+AUf6UhXnd8eY7ajqPGQ/SAO6mMOkje89gxdNcDtw0Qou0mL5X+CjGxNl 598ijkZzUEKNw/wtYLd15DY+OsXeMGNnBRmfth7hhwdMsmz4NKvbQ6QE0YbfWA7o wZv09KN3QJgJzPiurNHWd15oTwZzcUDlbsl3EgIp7kNPGfXv1k77Sy4QQehhDx4W vhlCljhipgQFL8baN0+d3vrWymEJagfRtrg6vHdaWMlUBZKNhCtiA2i+G0AT2kdz EQrPo7Ayq0CcxkJBg/K4NOGN/WNUhV9bjEHINPDzTxZJzheXGDGVKA== -----END CERTIFICATE-----Generated at Sun Apr 6 15:42:52 2025 by rpki-client