$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/FCpOwqZePY6cvjJWAgjNVCB5y1E.roa File: FCpOwqZePY6cvjJWAgjNVCB5y1E.roa (raw, json) Hash identifier: CsKyc2N6i0LPg+12WoqaZliabjm7E5gb1xyE9ES9fNg= Subject key identifier: 14:2A:4E:C2:A6:5E:3D:8E:9C:BE:32:56:02:08:CD:54:20:79:CB:51 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 11BC Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/FCpOwqZePY6cvjJWAgjNVCB5y1E.roa Signing time: Mon 10 Feb 2025 14:27:12 +0000 ROA not before: Mon 10 Feb 2025 14:27:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152700 IP address blocks: 103.127.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Feb 10 14:27:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=142A4EC2A65E3D8E9CBE32560208CD542079CB51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4a:fe:03:83:cc:fb:1f:4a:9f:db:af:4c:6e: 89:e6:c8:4c:59:9e:ef:c9:55:bc:49:b6:19:2b:69: 2b:f8:ae:f3:cb:27:96:43:5e:c0:4b:06:0f:fe:b5: db:b2:b8:89:6f:13:cd:51:5d:c3:f6:27:9b:38:0b: a9:ed:9b:15:a0:94:0c:14:7e:ea:70:88:d4:43:9e: a3:79:34:d6:cb:05:eb:4b:40:88:e7:4d:69:fc:1c: f4:9a:57:7e:18:a0:dd:6c:e3:33:58:92:b0:1e:89: ec:61:4a:11:5f:64:ca:89:da:0b:86:75:b9:a4:a1: c2:32:63:e0:9c:8c:9f:63:46:d7:37:88:5d:9f:17: c6:e4:59:9c:66:d3:f9:d7:65:7d:7c:5c:95:54:eb: 76:61:32:96:97:75:03:48:89:a0:12:52:59:9b:80: 96:f4:48:9c:08:eb:1d:9f:dd:ba:9e:ea:c2:2d:28: 70:2c:77:9e:99:1d:2d:f3:90:5d:03:b8:6d:4f:e1: 38:ae:74:62:32:f1:52:a1:51:d5:cb:e2:1f:a1:fd: 2d:e1:34:cf:7d:4a:8f:fc:b7:0e:4e:76:e4:a2:d7: 62:fe:af:b5:24:7f:99:83:f7:c7:59:90:73:d9:30: 20:ad:6c:87:eb:1f:43:8c:c1:47:61:ea:77:73:76: d1:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:2A:4E:C2:A6:5E:3D:8E:9C:BE:32:56:02:08:CD:54:20:79:CB:51 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/FCpOwqZePY6cvjJWAgjNVCB5y1E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.238.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:7f:1b:28:b7:33:ce:89:a2:7f:20:db:55:44:9e:50:70:a9: f9:9d:1d:2a:11:5e:db:db:3b:4b:06:aa:3c:4c:2f:18:59:40: a5:65:8b:0e:78:0a:3f:73:b7:b5:7e:6d:89:e5:3f:a1:4c:16: bb:4b:f6:7f:e2:c1:ff:fb:f8:05:18:39:72:bf:92:dc:52:70: 58:d1:73:1b:81:c1:a9:d4:5d:52:da:16:7a:81:63:0d:d2:3c: 03:8a:32:66:15:ab:1e:e1:80:57:29:24:af:ee:6d:d8:c2:53: 84:54:02:b7:5f:bd:43:9e:55:fe:9c:c4:87:51:fd:98:f4:d3: df:8e:18:cd:ef:f8:29:77:bf:55:63:18:ae:f1:58:b1:41:f8: 2d:25:28:e1:3d:fa:c1:ad:b2:84:96:1f:16:a1:8d:f7:e5:f8: 52:cb:7b:ba:da:12:1d:e2:85:aa:11:a6:3a:2f:c0:22:32:41: 46:22:91:0b:00:40:ff:7f:f5:35:55:d4:bc:1b:b8:69:dc:65: 83:5b:e6:94:6a:e5:de:de:75:4e:be:a7:9f:74:29:60:be:e1: 5c:2d:dc:cc:ff:f3:e7:5b:c8:f3:58:a9:80:9d:4e:33:18:1a: b7:1d:5d:b0:70:9a:56:b8:c2:c5:03:65:2d:5f:14:9f:7e:a4: 02:79:b9:dd -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNTAyMTAx NDI3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0MkE0RUMyQTY1RTNE OEU5Q0JFMzI1NjAyMDhDRDU0MjA3OUNCNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuSv4Dg8z7H0qf269MbonmyExZnu/JVbxJthkraSv4rvPLJ5ZD XsBLBg/+tduyuIlvE81RXcP2J5s4C6ntmxWglAwUfupwiNRDnqN5NNbLBetLQIjn TWn8HPSaV34YoN1s4zNYkrAeiexhShFfZMqJ2guGdbmkocIyY+CcjJ9jRtc3iF2f F8bkWZxm0/nXZX18XJVU63ZhMpaXdQNIiaASUlmbgJb0SJwI6x2f3bqe6sItKHAs d56ZHS3zkF0DuG1P4TiudGIy8VKhUdXL4h+h/S3hNM99So/8tw5OduSi12L+r7Uk f5mD98dZkHPZMCCtbIfrH0OMwUdh6ndzdtHjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUFCpOwqZePY6cvjJWAgjNVCB5y1EwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9GQ3BPd3FaZVBZNmN2 akpXQWdqTlZDQjV5MUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/uMA0GCSqGSIb3DQEBCwUAA4IBAQCOfxsotzPOiaJ/INtVRJ5QcKn5nR0q EV7b2ztLBqo8TC8YWUClZYsOeAo/c7e1fm2J5T+hTBa7S/Z/4sH/+/gFGDlyv5Lc UnBY0XMbgcGp1F1S2hZ6gWMN0jwDijJmFase4YBXKSSv7m3YwlOEVAK3X71DnlX+ nMSHUf2Y9NPfjhjN7/gpd79VYxiu8VixQfgtJSjhPfrBrbKElh8WoY335fhSy3u6 2hId4oWqEaY6L8AiMkFGIpELAED/f/U1VdS8G7hp3GWDW+aUauXe3nVOvqefdClg vuFcLdzM//PnW8jzWKmAnU4zGBq3HV2wcJpWuMLFA2UtXxSffqQCebnd -----END CERTIFICATE-----Generated at Wed Feb 19 20:57:29 2025 by rpki-client