$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/ltagCafAA_U1XnMkaC-yca9On4c.roa File: ltagCafAA_U1XnMkaC-yca9On4c.roa (raw, json) Hash identifier: YllRyZ8wGA4FOUl/d/bpDm9qJM9x15pii0++0d0JfXc= Subject key identifier: 96:D6:A0:09:A7:C0:03:F5:35:5E:73:24:68:2F:B2:71:AF:4E:9F:87 Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0C8D Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/ltagCafAA_U1XnMkaC-yca9On4c.roa Signing time: Mon 10 Feb 2025 14:06:20 +0000 ROA not before: Mon 10 Feb 2025 14:06:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18464 IP address blocks: 103.122.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3213 (0xc8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Feb 10 14:06:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=96D6A009A7C003F5355E7324682FB271AF4E9F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:1d:63:b1:c9:0d:d3:43:62:e7:87:fe:af:bb: 14:d5:a9:f3:ab:09:56:b4:da:f3:d1:0c:55:87:51: c7:72:27:0c:ac:86:c0:8e:9b:48:a8:90:57:76:9d: c5:2f:75:12:19:74:bb:8f:22:8d:ad:db:d5:db:e7: 6d:7a:9b:39:bb:f2:19:6c:a5:8b:4a:8c:bf:5e:3d: 82:78:08:a5:33:6e:19:ff:00:b6:0c:5d:b1:84:3e: a1:d0:66:7e:89:79:f3:ed:65:d5:3a:1f:f0:d8:7a: 7f:01:83:43:99:8c:46:61:02:1f:f7:0d:31:e6:9d: 46:4a:95:4b:e5:07:99:53:e1:c5:c6:ac:24:17:65: 4a:36:59:76:0a:84:77:b3:cc:5a:b2:38:29:73:7a: df:25:75:4a:25:b0:86:a9:48:e6:bb:fe:9f:4a:e5: f3:a0:49:83:64:20:85:2e:0e:e0:2a:d5:52:f7:a8: d2:66:ec:a5:6b:d2:06:66:6e:c2:a2:b9:68:ae:5a: ec:33:da:71:2c:59:36:d0:5e:56:55:80:7b:19:07: 05:e5:d5:98:3c:a9:1e:70:dd:88:22:7c:28:b5:16: af:65:4c:57:29:87:28:19:ba:f0:a0:79:28:5d:63: 74:1f:c1:96:e7:8d:a6:6e:76:aa:f7:5a:9e:fb:02: e4:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:D6:A0:09:A7:C0:03:F5:35:5E:73:24:68:2F:B2:71:AF:4E:9F:87 X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/ltagCafAA_U1XnMkaC-yca9On4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.22.0/23 Signature Algorithm: sha256WithRSAEncryption a6:d7:01:1b:52:90:53:3a:54:2f:f0:64:43:3a:d4:ca:35:d5: 3b:38:51:97:11:02:ef:d2:3c:8d:1f:8e:d6:14:26:64:48:75: 57:ed:63:53:14:d8:63:db:c5:68:9b:5d:0a:8f:56:96:35:de: 82:1b:c6:62:1d:40:b5:1e:cd:ca:39:a9:93:e2:d1:e4:96:95: e2:d7:b3:3f:c4:b1:00:b6:20:c0:a8:6e:d3:a2:af:d4:1b:04: 32:5d:5d:e5:53:10:27:a7:6d:db:a2:29:db:4f:9e:35:64:d7: 02:9c:90:79:15:d9:96:48:ff:20:38:b7:b0:f7:13:f0:63:65: 7c:16:ca:97:3c:87:25:97:2d:a0:8f:01:86:c2:86:42:8c:4d: 46:2c:ba:d0:e1:97:e4:f0:c0:84:fe:b9:96:ed:81:41:ba:17: aa:6c:44:a8:59:85:f0:30:b9:46:d4:18:2a:4b:48:67:3d:e3: b6:04:07:1f:73:c3:27:b3:60:de:39:57:18:0f:90:d7:e8:b8: 75:64:97:03:8d:d5:80:36:7e:52:f9:bb:7e:9b:4e:14:78:17: 9d:a5:4f:c4:fd:03:c1:ee:91:b4:d7:1c:ee:88:02:b6:c5:71: 4c:39:06:10:8b:e0:6a:fc:7a:1e:39:2d:a8:bd:37:55:c3:dc: 56:62:fa:c1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDI0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNTAyMTAx NDA2MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk2RDZBMDA5QTdDMDAz RjUzNTVFNzMyNDY4MkZCMjcxQUY0RTlGODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeHWOxyQ3TQ2Lnh/6vuxTVqfOrCVa02vPRDFWHUcdyJwyshsCO m0iokFd2ncUvdRIZdLuPIo2t29Xb5216mzm78hlspYtKjL9ePYJ4CKUzbhn/ALYM XbGEPqHQZn6JefPtZdU6H/DYen8Bg0OZjEZhAh/3DTHmnUZKlUvlB5lT4cXGrCQX ZUo2WXYKhHezzFqyOClzet8ldUolsIapSOa7/p9K5fOgSYNkIIUuDuAq1VL3qNJm 7KVr0gZmbsKiuWiuWuwz2nEsWTbQXlZVgHsZBwXl1Zg8qR5w3YgifCi1Fq9lTFcp hygZuvCgeShdY3QfwZbnjaZudqr3Wp77AuRdAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUltagCafAA/U1XnMkaC+yca9On4cwHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvbHRhZ0NhZkFB X1UxWG5Na2FDLXljYTlPbjRjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWd6FjANBgkqhkiG9w0BAQsFAAOCAQEAptcBG1KQUzpUL/BkQzrUyjXV OzhRlxEC79I8jR+O1hQmZEh1V+1jUxTYY9vFaJtdCo9WljXeghvGYh1AtR7Nyjmp k+LR5JaV4tezP8SxALYgwKhu06Kv1BsEMl1d5VMQJ6dt26Ip20+eNWTXApyQeRXZ lkj/IDi3sPcT8GNlfBbKlzyHJZctoI8BhsKGQoxNRiy60OGX5PDAhP65lu2BQboX qmxEqFmF8DC5RtQYKktIZz3jtgQHH3PDJ7Ng3jlXGA+Q1+i4dWSXA43VgDZ+Uvm7 fptOFHgXnaVPxP0Dwe6RtNcc7ogCtsVxTDkGEIvgavx6HjktqL03VcPcVmL6wQ== -----END CERTIFICATE-----Generated at Wed Feb 19 22:03:48 2025 by rpki-client