$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/1wHRAQnQEW_7tIaKg7pUVLN-CF0.roa File: 1wHRAQnQEW_7tIaKg7pUVLN-CF0.roa (raw, json) Hash identifier: MEWzf3O5JdXCpxBr/p7o4PLpUI4nsRKrUvbLl6Hv6e8= Subject key identifier: D7:01:D1:01:09:D0:11:6F:FB:B4:86:8A:83:BA:54:54:B3:7E:08:5D Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Certificate serial: 0E39 Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/1wHRAQnQEW_7tIaKg7pUVLN-CF0.roa Signing time: Mon 10 Feb 2025 13:56:03 +0000 ROA not before: Mon 10 Feb 2025 13:56:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.138.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3641 (0xe39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Validity Not Before: Feb 10 13:56:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D701D10109D0116FFBB4868A83BA5454B37E085D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:20:71:0e:84:9e:a0:6e:45:8c:b2:bc:22:9b: 32:b6:27:97:08:98:45:1c:02:e7:4a:89:89:c0:b2: d2:9a:fa:bc:e6:8f:db:01:61:6e:d4:60:6f:f9:83: 10:ba:84:4f:1c:48:fc:38:7f:df:20:16:67:17:0a: b1:69:c3:f1:ba:82:05:14:71:99:9b:2a:53:34:00: 10:81:4f:41:c2:7a:2c:2e:71:b8:38:c9:a7:77:ce: c4:49:85:06:97:d2:18:06:d6:70:f9:d9:01:12:8c: ce:68:65:5b:c5:6f:2a:fb:d6:b2:0b:4b:68:10:e6: cc:16:6a:2f:56:08:6f:94:aa:8d:93:5a:76:99:24: 4d:94:59:3d:4d:fa:ed:3d:f1:97:c4:f9:ec:b0:96: f6:f7:31:9a:92:6c:d6:7b:f3:58:a4:89:0a:fe:c2: 58:83:8a:0f:b0:11:46:23:47:ed:3d:c8:4e:6e:62: ff:78:e3:8b:3d:5d:e3:fc:2f:e0:8b:c7:1a:dc:04: cd:ca:d2:5d:91:9f:84:f0:a0:0e:51:d3:12:c1:a3: f0:05:7f:63:17:61:c9:6f:c8:2b:ae:39:1c:b6:2d: 6f:e2:4e:40:a2:6b:ea:91:52:7a:ab:2d:25:bd:ad: 45:78:48:f5:d6:04:24:a0:76:2b:0f:38:d0:b4:68: 58:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:01:D1:01:09:D0:11:6F:FB:B4:86:8A:83:BA:54:54:B3:7E:08:5D X509v3 Authority Key Identifier: keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/1wHRAQnQEW_7tIaKg7pUVLN-CF0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.138.194.0/23 Signature Algorithm: sha256WithRSAEncryption 61:ff:3d:7a:51:74:33:7f:8e:eb:97:e1:07:fb:b9:89:90:69: 01:7f:79:56:32:bf:8a:4c:cc:53:d2:0e:68:b0:63:22:c1:b4: 7f:98:bd:8f:b9:04:16:a6:c6:b3:2e:2d:24:30:c6:8b:a6:62: ae:8c:a2:9e:40:2a:5e:2c:d3:a4:fc:c7:8a:ea:8c:07:a2:b5: a7:3a:01:56:0d:a0:36:66:00:1d:4a:58:bd:90:52:8a:a2:cc: 45:21:fe:d3:d3:b3:c6:71:45:89:7c:e9:06:66:9d:00:b8:ca: 6d:ed:ed:3d:73:02:60:10:a9:f3:c8:71:96:d3:82:38:56:0a: 9a:f1:28:b5:3c:2c:c6:4a:72:f5:66:79:7e:29:df:08:dd:c0: fb:73:b6:84:36:33:cb:58:79:63:ad:45:c7:b2:c2:f5:0c:b0: c7:2c:af:3c:75:2d:35:ce:b0:c2:9c:9c:c6:f5:e5:99:51:d4: 3b:52:70:c9:ba:4e:70:50:54:37:4a:72:69:88:47:14:76:62: 29:ba:5f:5b:c6:0b:f1:ae:68:ea:bf:dc:0a:2f:94:d2:04:ca: 09:03:b0:d1:c9:c4:5f:35:d1:45:d8:f3:c0:71:c3:c7:5b:59: 37:0a:f3:f5:e6:7f:cb:7f:bb:9c:fd:97:49:39:3d:23:60:51: 36:79:77:2e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTU5 RDVGODk3Mjc2RjBERUM4NTdFN0UyREVERDY0OTg3NkU4QTQ4MjAeFw0yNTAyMTAx MzU2MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3MDFEMTAxMDlEMDEx NkZGQkI0ODY4QTgzQkE1NDU0QjM3RTA4NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDIHEOhJ6gbkWMsrwimzK2J5cImEUcAudKiYnAstKa+rzmj9sB YW7UYG/5gxC6hE8cSPw4f98gFmcXCrFpw/G6ggUUcZmbKlM0ABCBT0HCeiwucbg4 yad3zsRJhQaX0hgG1nD52QESjM5oZVvFbyr71rILS2gQ5swWai9WCG+Uqo2TWnaZ JE2UWT1N+u098ZfE+eywlvb3MZqSbNZ781ikiQr+wliDig+wEUYjR+09yE5uYv94 44s9XeP8L+CLxxrcBM3K0l2Rn4TwoA5R0xLBo/AFf2MXYclvyCuuORy2LW/iTkCi a+qRUnqrLSW9rUV4SPXWBCSgdisPONC0aFhVAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU1wHRAQnQEW/7tIaKg7pUVLN+CF0wHwYDVR0jBBgwFoAUFZ1fiXJ28N7IV+fi 3t1kmHbopIIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9SREFU Vy9GWjFmaVhKMjhON0lWLWZpM3Qxa21IYm9wSUkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0ZaMWZpWEoyOE43SVYtZmkzdDFrbUhib3BJSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PUkRBVFcvMXdIUkFRblFFV183dElh S2c3cFVWTE4tQ0YwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeKwjANBgkqhkiG9w0BAQsFAAOCAQEAYf89elF0M3+O65fhB/u5iZBpAX95VjK/ ikzMU9IOaLBjIsG0f5i9j7kEFqbGsy4tJDDGi6ZiroyinkAqXizTpPzHiuqMB6K1 pzoBVg2gNmYAHUpYvZBSiqLMRSH+09OzxnFFiXzpBmadALjKbe3tPXMCYBCp88hx ltOCOFYKmvEotTwsxkpy9WZ5finfCN3A+3O2hDYzy1h5Y61Fx7LC9QywxyyvPHUt Nc6wwpycxvXlmVHUO1JwybpOcFBUN0pyaYhHFHZiKbpfW8YL8a5o6r/cCi+U0gTK CQOw0cnEXzXRRdjzwHHDx1tZNwrz9eZ/y3+7nP2XSTk9I2BRNnl3Lg== -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:57 2025 by rpki-client