$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/pnl-9MozOtSusmGAz1OhVzorX0A.roa File: pnl-9MozOtSusmGAz1OhVzorX0A.roa (raw, json) Hash identifier: Gx06TmUncl+coumBNPPjHm0sEHr8P4Kyk+T6g5m0MGc= Subject key identifier: A6:79:7E:F4:CA:33:3A:D4:AE:B2:61:80:CF:53:A1:57:3A:2B:5F:40 Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 034F Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/pnl-9MozOtSusmGAz1OhVzorX0A.roa Signing time: Mon 10 Feb 2025 14:26:02 +0000 ROA not before: Mon 10 Feb 2025 14:26:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 103.158.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 22:56:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 847 (0x34f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Feb 10 14:26:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A6797EF4CA333AD4AEB26180CF53A1573A2B5F40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0d:94:ce:5c:5c:a7:d3:09:ba:90:9d:a8:52: 12:5c:8d:f3:33:2b:57:3f:ee:43:15:5d:85:dd:7f: a1:1f:43:c1:81:9c:cf:3d:03:17:aa:86:5b:90:98: a4:0d:0d:b0:87:a5:cc:02:6b:53:19:e1:36:0a:fb: 5a:87:d6:1f:0e:43:53:67:b7:f8:af:61:41:0a:72: 7d:74:7d:30:79:cf:ec:c0:44:22:0d:02:f1:5b:a3: f7:ac:4a:12:4a:e1:97:fa:65:b9:ff:8f:77:50:72: ff:a6:0b:81:bd:3c:9a:68:6a:be:f9:48:29:14:5d: c3:f7:d9:ac:15:d6:a4:cf:e4:f1:f5:d6:0c:33:41: 60:3c:29:7a:9e:75:ef:51:a7:11:70:d3:49:9d:f1: cf:55:88:1d:34:9f:7f:a3:82:55:81:0c:c9:0f:95: 2f:5d:ef:dd:dc:08:d6:f5:d6:52:2f:f1:fd:24:11: 79:f2:94:6b:a3:e2:3a:61:84:db:04:10:5f:1c:98: db:25:94:3d:c6:7a:91:50:f5:41:d7:b3:cf:12:b0: c4:cf:df:19:e9:28:fc:34:b2:d8:ee:9a:0e:96:47: c7:2e:62:07:ca:77:12:65:39:b2:26:87:16:11:4b: 0a:eb:65:ac:3e:b2:e8:3e:ac:92:6c:d2:a3:e4:66: 92:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:79:7E:F4:CA:33:3A:D4:AE:B2:61:80:CF:53:A1:57:3A:2B:5F:40 X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/pnl-9MozOtSusmGAz1OhVzorX0A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.158.186.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:99:3b:8e:68:a1:86:7c:bf:ac:86:af:8a:f0:40:43:d6:10: a2:be:22:15:0f:5e:0d:82:6b:65:a0:02:b2:41:77:67:94:8d: 76:7c:a0:3a:82:f7:8a:48:76:b5:65:c8:a8:05:cf:be:c3:1d: 32:86:cb:d6:56:76:68:2d:23:06:c6:38:13:f2:32:d5:e2:72: da:2f:51:d7:b7:cf:8d:06:47:02:30:30:92:8a:5a:da:9f:bc: 4e:b0:ec:f4:94:dd:a6:13:05:cc:a1:bd:83:3e:f0:a8:9d:72: a9:3f:2d:95:05:e9:8d:1a:ef:5f:c7:22:92:cc:e9:a3:ba:08: cf:57:cc:1b:6d:d8:da:73:a8:3f:d9:ca:17:25:d2:72:2a:1a: 45:fc:51:4c:68:e3:98:6e:6e:0f:2d:df:d4:7d:98:52:d3:b2: 25:f3:09:5c:15:5c:66:de:27:83:f4:9a:0b:71:2a:6c:af:51: 7c:e8:7e:36:7c:eb:00:63:65:c7:27:19:2b:2d:0c:67:34:73: db:41:d8:dd:cb:ca:05:2a:a2:eb:f9:33:fc:b6:d6:61:b7:2d: b1:dd:91:36:6f:b6:65:6b:59:dd:86:ab:1c:a2:f8:8e:89:84: 92:a6:e2:b1:70:65:4c:50:b5:d0:e5:3c:f3:64:7d:6e:40:d3: 9f:de:ad:47 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICA08wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNTAyMTAx NDI2MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2Nzk3RUY0Q0EzMzNB RDRBRUIyNjE4MENGNTNBMTU3M0EyQjVGNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0DZTOXFyn0wm6kJ2oUhJcjfMzK1c/7kMVXYXdf6EfQ8GBnM89 AxeqhluQmKQNDbCHpcwCa1MZ4TYK+1qH1h8OQ1Nnt/ivYUEKcn10fTB5z+zARCIN AvFbo/esShJK4Zf6Zbn/j3dQcv+mC4G9PJpoar75SCkUXcP32awV1qTP5PH11gwz QWA8KXqede9RpxFw00md8c9ViB00n3+jglWBDMkPlS9d793cCNb11lIv8f0kEXny lGuj4jphhNsEEF8cmNsllD3GepFQ9UHXs88SsMTP3xnpKPw0stjumg6WR8cuYgfK dxJlObImhxYRSwrrZaw+sug+rJJs0qPkZpKRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUpnl+9MozOtSusmGAz1OhVzorX0AwHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvcG5sLTlNb3pPdFN1c21H QXoxT2hWem9yWDBBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeeujANBgkqhkiG9w0BAQsFAAOCAQEAX5k7jmihhny/rIavivBAQ9YQor4iFQ9e DYJrZaACskF3Z5SNdnygOoL3ikh2tWXIqAXPvsMdMobL1lZ2aC0jBsY4E/Iy1eJy 2i9R17fPjQZHAjAwkopa2p+8TrDs9JTdphMFzKG9gz7wqJ1yqT8tlQXpjRrvX8ci kszpo7oIz1fMG23Y2nOoP9nKFyXScioaRfxRTGjjmG5uDy3f1H2YUtOyJfMJXBVc Zt4ng/SaC3EqbK9RfOh+NnzrAGNlxycZKy0MZzRz20HY3cvKBSqi6/kz/LbWYbct sd2RNm+2ZWtZ3YarHKL4jomEkqbisXBlTFC10OU882R9bkDTn96tRw== -----END CERTIFICATE-----Generated at Wed Feb 19 20:35:26 2025 by rpki-client