$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/Kml9gxp3jTxpeXOJ4wPjk-x-WJI.roa File: Kml9gxp3jTxpeXOJ4wPjk-x-WJI.roa (raw, json) Hash identifier: 6OmSylpKPvVh2bo0WitAzOcvqx8IG3QCbjYr6N+CND4= Subject key identifier: 2A:69:7D:83:1A:77:8D:3C:69:79:73:89:E3:03:E3:93:EC:7E:58:92 Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 019C Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/Kml9gxp3jTxpeXOJ4wPjk-x-WJI.roa Signing time: Mon 10 Feb 2025 13:42:39 +0000 ROA not before: Mon 10 Feb 2025 13:42:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.137.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Feb 10 13:42:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2A697D831A778D3C69797389E303E393EC7E5892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b8:44:40:70:11:5b:80:7d:68:89:cf:bb:66: c9:bc:0c:29:0f:ab:7a:dc:ec:88:01:38:6f:40:81: 10:0c:9b:e1:a4:70:9f:2c:43:24:d0:e7:69:83:86: 9f:38:91:94:4c:35:06:c5:27:8d:28:80:09:77:9f: 06:6e:5f:31:d2:7e:40:d5:3c:01:12:b0:31:3d:b2: 20:60:fe:0b:f2:b9:dc:f8:87:33:c5:58:63:cd:d0: 64:86:d2:5f:5e:ed:cd:57:3f:79:05:50:65:cc:ad: 84:5d:d6:e9:f2:5f:7b:4d:f2:6d:cd:67:31:33:b9: a1:a4:d0:fb:f3:70:41:63:f4:8b:77:48:16:30:9d: 3e:5e:4b:9b:07:d6:12:9a:40:23:22:32:70:0f:59: db:85:03:a2:0a:66:ba:42:58:eb:55:9e:5b:87:36: 38:2b:b9:b5:c4:33:be:e1:6f:9b:30:ff:00:8b:44: 0a:13:67:9c:68:21:59:f7:b8:c7:9d:f4:c7:6c:4b: f0:cf:55:23:1c:3a:e6:74:60:ec:33:7f:e8:af:8e: b8:6a:96:85:d0:b8:bd:30:a3:e0:76:94:70:f3:1c: a3:0c:99:b2:04:74:6f:c1:0c:b3:da:93:78:b5:c8: 15:3d:79:79:a0:7d:ee:03:4d:dc:88:dd:75:c1:f7: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:69:7D:83:1A:77:8D:3C:69:79:73:89:E3:03:E3:93:EC:7E:58:92 X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/Kml9gxp3jTxpeXOJ4wPjk-x-WJI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.137.22.0/23 Signature Algorithm: sha256WithRSAEncryption b2:7f:5e:f6:4b:dc:68:aa:45:c7:26:9a:81:49:da:77:b0:70: 46:8d:1d:12:86:df:d3:76:9a:fb:d4:64:0e:a3:ce:06:d6:d2: 48:35:6f:dd:0f:0c:78:73:32:64:3e:73:44:83:f8:ad:c9:ce: b0:4c:8c:42:ca:e5:0d:9b:cb:8e:3a:b9:55:3c:62:1c:58:4b: 2e:47:98:c3:ed:b9:ee:5f:dd:18:ca:1d:f2:28:d3:2b:d1:38: 2c:2f:be:f6:30:c3:ae:a5:c1:be:5a:16:18:35:22:8e:bd:bb: fa:6f:b1:e8:3c:6f:15:1f:f1:fe:9d:b2:59:2e:ea:e3:95:c3: 8e:d8:ca:6e:2a:d3:68:5f:18:7a:0d:6f:c4:f3:c5:c4:e4:69: cf:a6:ba:e1:d0:cc:1d:3c:77:dd:05:d1:06:bc:23:f2:fa:82: a3:24:fd:28:8c:60:ea:73:63:52:01:e9:f3:b7:b8:d0:bc:5e: 81:2c:54:a6:91:31:f1:2a:df:28:8b:e2:4c:9e:b8:9a:fb:8c: 6a:6f:d6:00:95:ec:a0:74:2a:35:92:cf:b3:89:c8:25:28:de: 86:74:8e:a2:56:10:42:bd:74:a8:66:74:10:15:91:0a:59:c0: 50:33:f4:43:ed:c2:b4:b4:a6:66:5f:21:60:a6:9f:e5:86:2d: a8:a7:37:67 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTAyMTAx MzQyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBNjk3RDgzMUE3NzhE M0M2OTc5NzM4OUUzMDNFMzkzRUM3RTU4OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9uERAcBFbgH1oic+7Zsm8DCkPq3rc7IgBOG9AgRAMm+GkcJ8s QyTQ52mDhp84kZRMNQbFJ40ogAl3nwZuXzHSfkDVPAESsDE9siBg/gvyudz4hzPF WGPN0GSG0l9e7c1XP3kFUGXMrYRd1unyX3tN8m3NZzEzuaGk0PvzcEFj9It3SBYw nT5eS5sH1hKaQCMiMnAPWduFA6IKZrpCWOtVnluHNjgrubXEM77hb5sw/wCLRAoT Z5xoIVn3uMed9MdsS/DPVSMcOuZ0YOwzf+ivjrhqloXQuL0wo+B2lHDzHKMMmbIE dG/BDLPak3i1yBU9eXmgfe4DTdyI3XXB91jdAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUKml9gxp3jTxpeXOJ4wPjk+x+WJIwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvS21sOWd4cDNqVHhwZVhP SjR3UGprLXgtV0pJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeJFjANBgkqhkiG9w0BAQsFAAOCAQEAsn9e9kvcaKpFxyaagUnad7BwRo0dEobf 03aa+9RkDqPOBtbSSDVv3Q8MeHMyZD5zRIP4rcnOsEyMQsrlDZvLjjq5VTxiHFhL LkeYw+257l/dGMod8ijTK9E4LC++9jDDrqXBvloWGDUijr27+m+x6DxvFR/x/p2y WS7q45XDjtjKbirTaF8Yeg1vxPPFxORpz6a64dDMHTx33QXRBrwj8vqCoyT9KIxg 6nNjUgHp87e40LxegSxUppEx8SrfKIviTJ64mvuMam/WAJXsoHQqNZLPs4nIJSje hnSOolYQQr10qGZ0EBWRClnAUDP0Q+3CtLSmZl8hYKaf5YYtqKc3Zw== -----END CERTIFICATE-----Generated at Sat Apr 5 09:33:35 2025 by rpki-client