$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/T9W76-iEka7NzMSRQDWWikf1-M8.roa File: T9W76-iEka7NzMSRQDWWikf1-M8.roa (raw, json) Hash identifier: jcMZ97BfyUFcEf4xV2Gu686DMfgskBc9OhYB74eW5s8= Subject key identifier: 4F:D5:BB:EB:E8:84:91:AE:CD:CC:C4:91:40:35:96:8A:47:F5:F8:CF Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Certificate serial: 0A12 Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/T9W76-iEka7NzMSRQDWWikf1-M8.roa Signing time: Mon 10 Feb 2025 14:09:48 +0000 ROA not before: Mon 10 Feb 2025 14:09:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131677 IP address blocks: 103.147.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2578 (0xa12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Validity Not Before: Feb 10 14:09:48 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4FD5BBEBE88491AECDCCC4914035968A47F5F8CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c2:64:20:42:fe:1d:48:3b:95:a7:5f:75:43: f4:ee:ac:a2:6f:9f:2e:88:e6:7f:b2:94:be:47:db: f0:eb:d5:b2:e3:05:71:49:9f:45:47:8b:25:47:48: 57:f5:3e:e9:6d:87:d5:1e:fe:e9:0b:c6:b3:b8:ad: a8:db:b8:46:8d:a1:d4:c5:0b:d8:9e:a4:9e:32:ae: c2:78:a1:d8:53:0f:bc:d2:aa:d7:0c:90:b0:16:90: 51:29:b6:5d:c9:9f:df:30:15:d3:7e:32:e9:8f:08: f0:e3:d1:c3:5e:71:fd:76:c7:5d:9e:6e:17:54:4d: b3:76:cd:07:00:22:52:b0:2c:a6:dd:34:a7:64:da: 19:1f:86:b9:8f:fe:a8:61:70:74:02:a9:ed:7b:95: b0:30:98:a9:c0:de:40:8f:58:b6:78:36:a6:9b:9b: 3b:61:a3:b3:c9:f6:c0:7e:2e:f6:37:e1:f8:0e:b8: 53:48:bc:a6:b4:91:3a:9e:6d:0c:35:d7:a0:30:82: fd:ca:2d:46:7a:fc:f8:4e:c5:e7:c1:11:e9:96:39: 43:7e:87:e3:fd:4a:a9:c7:0c:40:b9:a3:0c:9e:0e: b9:c6:b2:13:e6:80:63:d6:5f:8b:e6:fd:ab:6e:5b: 08:1c:c2:0c:69:2e:22:f9:af:42:55:3e:55:48:17: 24:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D5:BB:EB:E8:84:91:AE:CD:CC:C4:91:40:35:96:8A:47:F5:F8:CF X509v3 Authority Key Identifier: keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/T9W76-iEka7NzMSRQDWWikf1-M8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.147.130.0/23 Signature Algorithm: sha256WithRSAEncryption c2:e8:14:35:67:a3:41:87:b0:af:c1:15:ce:a3:e2:ec:09:26: 67:f9:9a:55:70:c7:5d:14:b6:03:82:02:00:1b:79:14:7f:bd: 21:89:ea:06:46:f4:d7:2a:42:eb:66:25:8d:bf:64:6a:9d:72: 46:3f:2d:b1:95:6b:6a:2d:75:7c:46:31:6e:2e:16:23:a3:54: 92:5d:e9:f7:17:c9:c2:2f:13:1a:20:9c:1a:4f:3a:4d:fb:3e: 53:e1:4f:aa:61:c8:dd:9d:36:59:53:00:39:d3:c0:89:ef:7d: 6e:d7:70:37:1a:79:6f:c5:87:f4:65:e1:23:97:39:36:e6:f4: 62:8e:d1:c0:d7:21:98:7b:21:b5:2f:50:94:67:57:a7:b3:a0: d5:87:71:31:3c:ab:12:d2:87:6b:7c:9d:be:3c:5f:c7:05:99: 92:b0:08:b4:bc:00:b3:2c:d7:c1:76:6b:72:08:d1:fb:ae:9b: 8d:5c:8a:d7:63:4d:38:bf:c2:3f:da:d5:c0:3b:d5:b5:08:d9: 4a:c2:0e:48:08:78:b8:28:b9:c9:8d:4a:8d:6d:18:6c:bf:f9: 73:f9:1e:1a:58:ee:30:95:14:dd:b9:3d:58:64:42:f7:02:e0: e7:e7:2c:a9:41:21:f1:bd:d8:e9:cb:3d:74:17:1b:b9:d6:54: b8:f6:16:7a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICChIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUz OThDNTJDQzJBMDc5REE5MDE0ODIxMEFDODUzMjhDMTFCQkU5NjAeFw0yNTAyMTAx NDA5NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGRDVCQkVCRTg4NDkx QUVDRENDQzQ5MTQwMzU5NjhBNDdGNUY4Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrwmQgQv4dSDuVp191Q/TurKJvny6I5n+ylL5H2/Dr1bLjBXFJ n0VHiyVHSFf1Pulth9Ue/ukLxrO4rajbuEaNodTFC9iepJ4yrsJ4odhTD7zSqtcM kLAWkFEptl3Jn98wFdN+MumPCPDj0cNecf12x12ebhdUTbN2zQcAIlKwLKbdNKdk 2hkfhrmP/qhhcHQCqe17lbAwmKnA3kCPWLZ4Nqabmztho7PJ9sB+LvY34fgOuFNI vKa0kTqebQw116Awgv3KLUZ6/PhOxefBEemWOUN+h+P9SqnHDEC5owyeDrnGshPm gGPWX4vm/atuWwgcwgxpLiL5r0JVPlVIFyQjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUT9W76+iEka7NzMSRQDWWikf1+M8wHwYDVR0jBBgwFoAUbjmMUswqB52pAUgh CshTKMEbvpYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTlJJ Q0gvYmptTVVzd3FCNTJwQVVnaENzaFRLTUVidnBZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9iam1NVXN3cUI1MnBBVWdoQ3NoVEtNRWJ2cFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9PUEVOUklDSC9UOVc3Ni1pRWthN056 TVNSUURXV2lrZjEtTTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5OCMA0GCSqGSIb3DQEBCwUAA4IBAQDC6BQ1Z6NBh7CvwRXOo+LsCSZn+ZpV cMddFLYDggIAG3kUf70hieoGRvTXKkLrZiWNv2RqnXJGPy2xlWtqLXV8RjFuLhYj o1SSXen3F8nCLxMaIJwaTzpN+z5T4U+qYcjdnTZZUwA508CJ731u13A3GnlvxYf0 ZeEjlzk25vRijtHA1yGYeyG1L1CUZ1ens6DVh3ExPKsS0odrfJ2+PF/HBZmSsAi0 vACzLNfBdmtyCNH7rpuNXIrXY004v8I/2tXAO9W1CNlKwg5ICHi4KLnJjUqNbRhs v/lz+R4aWO4wlRTduT1YZEL3AuDn5yypQSHxvdjpyz10Fxu51lS49hZ6 -----END CERTIFICATE-----Generated at Wed Feb 19 21:58:10 2025 by rpki-client