$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gYDBalL9mZBRlmeOIkHcttzUbSM.roa File: gYDBalL9mZBRlmeOIkHcttzUbSM.roa (raw, json) Hash identifier: kG1UEOcugooE7cgZyxTPVRGwKFmz6S/KpPjTCNVTPrQ= Subject key identifier: 81:80:C1:6A:52:FD:99:90:51:96:67:8E:22:41:DC:B6:DC:D4:6D:23 Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 019D Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gYDBalL9mZBRlmeOIkHcttzUbSM.roa Signing time: Mon 10 Feb 2025 13:42:39 +0000 ROA not before: Mon 10 Feb 2025 13:42:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 123.253.140.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Feb 10 13:42:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8180C16A52FD99905196678E2241DCB6DCD46D23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5d:67:db:95:04:29:f9:a5:b5:b6:b6:36:92: ca:59:2c:a5:61:e2:8f:ce:65:61:73:c6:59:2a:22: ff:47:3e:5c:c5:8c:4e:49:cc:8a:5f:6d:41:4b:4a: 16:61:ee:88:49:77:7d:53:d7:2c:d6:6b:31:85:b5: 0c:e5:a6:70:01:b5:63:61:ab:23:6a:03:27:6c:00: 78:4d:eb:72:83:d3:fa:26:c5:fb:52:44:66:04:b2: 87:d0:2c:40:d8:a4:f3:81:89:bd:bb:b9:81:01:e7: e8:11:58:b6:19:8e:f5:33:e9:f7:02:91:7a:48:9d: ce:dc:01:44:e7:13:85:fd:1b:10:5b:b7:40:c2:42: 3b:1c:da:80:93:90:e4:ed:1d:54:d5:45:a8:d4:11: 96:61:ca:fc:fa:f1:b1:ea:81:e8:ac:09:ac:52:34: 0a:40:75:91:40:6f:75:88:58:85:83:c6:99:7b:6d: 0f:77:9c:5c:1b:fa:1f:4f:03:e3:8a:67:4b:4e:7c: 53:cf:b4:46:0c:e1:d5:a5:21:a4:df:d0:da:c2:d9: b8:24:cc:e4:42:d5:db:70:8a:f9:a5:00:2e:22:b8: ae:3e:95:f6:1f:42:e2:3e:1b:49:9c:41:aa:b1:b0: cd:26:49:10:65:ac:e7:fa:18:2e:26:a1:9d:e5:a4: 97:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:80:C1:6A:52:FD:99:90:51:96:67:8E:22:41:DC:B6:DC:D4:6D:23 X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/gYDBalL9mZBRlmeOIkHcttzUbSM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.253.140.0/23 Signature Algorithm: sha256WithRSAEncryption b0:b7:f5:4b:ef:53:af:75:90:ff:8a:38:f1:1a:1a:e7:1d:ae: b8:31:3e:e7:88:14:63:40:6e:e5:2b:cb:42:ba:65:2c:0d:80: 0b:8f:c0:f7:23:2e:00:70:3a:a5:04:6b:e8:e6:11:42:2c:7c: f4:42:09:f9:77:84:7f:1a:39:47:e4:f9:90:df:4a:2b:f4:f7: 54:12:29:63:55:29:22:7f:7a:d1:87:8d:2c:a7:cf:6c:b9:55: 02:e4:cf:e0:84:71:b2:a2:90:b6:9a:73:7a:c6:16:1f:34:12: 5c:d5:8d:b5:cf:96:08:1d:16:69:f4:45:cb:f0:e7:89:1e:60: fc:1e:92:7f:d0:46:88:c4:2c:86:a4:87:9d:82:ab:e5:87:0b: 7e:09:4c:a0:ad:d1:ce:83:be:c7:17:89:ba:47:d8:31:2b:23: b8:30:3a:b6:27:52:ed:83:7e:f6:93:2c:58:a7:72:9b:ce:a1: 75:b3:18:b3:f6:63:26:29:81:e4:ff:4b:9f:ea:e7:91:5c:c6: 04:a4:cf:bc:b9:42:a3:fb:1d:31:10:b6:e3:47:eb:40:54:74: cb:45:4b:32:94:f4:1b:f8:c5:0c:41:f3:26:cb:30:99:ba:7d: 17:80:83:1c:35:ba:75:24:a9:b3:80:37:8d:85:25:78:02:44: 0a:62:40:6f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNTAyMTAx MzQyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgxODBDMTZBNTJGRDk5 OTA1MTk2Njc4RTIyNDFEQ0I2RENENDZEMjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDXWfblQQp+aW1trY2kspZLKVh4o/OZWFzxlkqIv9HPlzFjE5J zIpfbUFLShZh7ohJd31T1yzWazGFtQzlpnABtWNhqyNqAydsAHhN63KD0/omxftS RGYEsofQLEDYpPOBib27uYEB5+gRWLYZjvUz6fcCkXpInc7cAUTnE4X9GxBbt0DC Qjsc2oCTkOTtHVTVRajUEZZhyvz68bHqgeisCaxSNApAdZFAb3WIWIWDxpl7bQ93 nFwb+h9PA+OKZ0tOfFPPtEYM4dWlIaTf0NrC2bgkzORC1dtwivmlAC4iuK4+lfYf QuI+G0mcQaqxsM0mSRBlrOf6GC4moZ3lpJf7AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUgYDBalL9mZBRlmeOIkHcttzUbSMwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvZ1lEQmFsTDltWkJSbG1l T0lrSGN0dHpVYlNNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AXv9jDANBgkqhkiG9w0BAQsFAAOCAQEAsLf1S+9Tr3WQ/4o48Roa5x2uuDE+54gU Y0Bu5SvLQrplLA2AC4/A9yMuAHA6pQRr6OYRQix89EIJ+XeEfxo5R+T5kN9KK/T3 VBIpY1UpIn960YeNLKfPbLlVAuTP4IRxsqKQtppzesYWHzQSXNWNtc+WCB0WafRF y/DniR5g/B6Sf9BGiMQshqSHnYKr5YcLfglMoK3RzoO+xxeJukfYMSsjuDA6tidS 7YN+9pMsWKdym86hdbMYs/ZjJimB5P9Ln+rnkVzGBKTPvLlCo/sdMRC240frQFR0 y0VLMpT0G/jFDEHzJsswmbp9F4CDHDW6dSSps4A3jYUleAJECmJAbw== -----END CERTIFICATE-----Generated at Sat Apr 5 09:33:27 2025 by rpki-client