$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/IeFlUvn3F2LZ9rwpWnfxdt-G_kc.roa File: IeFlUvn3F2LZ9rwpWnfxdt-G_kc.roa (raw, json) Hash identifier: w0DN0xVgFfQrYblDJXmX0/PDZOPE1LkYa7dgo7p52WU= Subject key identifier: 21:E1:65:52:F9:F7:17:62:D9:F6:BC:29:5A:77:F1:76:DF:86:FE:47 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 11BB Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/IeFlUvn3F2LZ9rwpWnfxdt-G_kc.roa Signing time: Mon 10 Feb 2025 14:27:11 +0000 ROA not before: Mon 10 Feb 2025 14:27:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131633 IP address blocks: 103.127.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4539 (0x11bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Feb 10 14:27:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=21E16552F9F71762D9F6BC295A77F176DF86FE47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f6:2f:71:d3:73:84:b2:62:bc:1b:7e:60:de: 1e:21:16:dc:2c:73:a8:83:f6:99:3f:5d:5c:c1:93: 2f:09:f6:c3:ae:df:f2:a6:ee:6b:c4:9d:f0:d4:0f: 8f:84:19:c7:5a:5a:b8:fa:fb:8c:fb:a7:d7:ff:42: da:c3:d9:c4:da:c0:9d:c2:ee:3d:95:82:88:e4:a4: 21:99:4d:07:75:3d:33:38:6b:44:0e:c7:16:f4:f7: 66:39:35:b1:a3:7b:84:27:83:b6:af:a4:f7:42:9d: 56:40:6c:a6:65:81:79:8e:38:dc:87:bb:c4:ec:21: f9:a4:1c:25:96:f9:e4:e1:be:ef:87:f0:55:c9:bf: 3f:fc:68:7d:9b:22:f3:cd:8b:d8:70:6b:4b:f3:81: 71:85:74:01:ad:a0:57:09:25:e4:6f:b2:e2:70:a4: 93:f2:24:f2:d6:df:23:02:ce:ec:dc:ca:e7:0b:b8: 95:f8:9b:20:f1:97:5b:db:48:65:f7:f2:9a:48:60: 35:bf:e4:4f:d2:da:6c:d6:44:e5:6b:07:38:95:b6: 0e:c3:75:c5:76:0f:db:34:3e:64:71:cf:b6:37:78: 05:d9:b1:e9:59:4b:ef:80:16:1c:d2:ca:c0:42:bf: 86:f7:cb:33:44:cb:8e:fa:67:f3:92:1e:e8:53:2a: 3f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E1:65:52:F9:F7:17:62:D9:F6:BC:29:5A:77:F1:76:DF:86:FE:47 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/IeFlUvn3F2LZ9rwpWnfxdt-G_kc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.236.0/22 Signature Algorithm: sha256WithRSAEncryption 42:89:09:61:45:51:5d:22:12:29:16:fb:a2:46:3e:9d:7a:0a: 4b:55:48:c1:b6:c8:77:d0:86:7b:ae:87:ed:c3:39:3b:f7:28: 4b:48:46:84:eb:0f:6b:47:f4:f9:e1:3e:41:94:e5:07:08:4c: b7:32:60:e6:fe:9d:7d:30:bc:b1:13:55:27:99:e7:ef:98:1d: 94:b2:63:b8:4e:27:b6:79:ef:00:fe:80:c2:5d:a0:9f:8b:36: 71:a5:4e:5a:c9:62:6d:fd:88:ed:b2:2c:79:af:30:b5:86:40: 5e:48:ba:ad:d6:d9:8e:84:76:0b:62:8c:3c:ab:87:5f:78:fc: c2:ab:83:8c:72:9e:dc:a9:53:5e:ed:07:9d:77:1a:c9:46:d2: 7f:69:1b:60:19:91:1a:d9:a5:22:d1:6f:4f:dd:20:db:de:07: 1b:fd:7e:8e:a9:76:b1:96:a4:5a:46:e6:62:35:7e:82:62:1c: 72:df:34:e2:52:0f:c7:13:b8:9e:33:22:4a:ae:dc:4a:8c:d1: 02:12:ee:e1:a6:99:98:c8:dc:0f:b8:20:e9:4b:a9:04:0b:13: 84:f8:0a:12:e8:ad:94:75:45:2e:b5:0a:a1:38:21:ad:f2:5f: ca:a6:5b:7b:ed:cb:ab:e6:44:90:f9:08:72:ae:e2:12:31:d6: bf:cd:15:ee -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNTAyMTAx NDI3MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIxRTE2NTUyRjlGNzE3 NjJEOUY2QkMyOTVBNzdGMTc2REY4NkZFNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/9i9x03OEsmK8G35g3h4hFtwsc6iD9pk/XVzBky8J9sOu3/Km 7mvEnfDUD4+EGcdaWrj6+4z7p9f/QtrD2cTawJ3C7j2VgojkpCGZTQd1PTM4a0QO xxb092Y5NbGje4Qng7avpPdCnVZAbKZlgXmOONyHu8TsIfmkHCWW+eThvu+H8FXJ vz/8aH2bIvPNi9hwa0vzgXGFdAGtoFcJJeRvsuJwpJPyJPLW3yMCzuzcyucLuJX4 myDxl1vbSGX38ppIYDW/5E/S2mzWROVrBziVtg7DdcV2D9s0PmRxz7Y3eAXZselZ S++AFhzSysBCv4b3yzNEy476Z/OSHuhTKj8ZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUIeFlUvn3F2LZ9rwpWnfxdt+G/kcwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9JZUZsVXZuM0YyTFo5 cndwV25meGR0LUdfa2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQBCiQlhRVFdIhIpFvuiRj6degpLVUjB tsh30IZ7roftwzk79yhLSEaE6w9rR/T54T5BlOUHCEy3MmDm/p19MLyxE1Unmefv mB2UsmO4Tie2ee8A/oDCXaCfizZxpU5ayWJt/Yjtsix5rzC1hkBeSLqt1tmOhHYL Yow8q4dfePzCq4OMcp7cqVNe7QeddxrJRtJ/aRtgGZEa2aUi0W9P3SDb3gcb/X6O qXaxlqRaRuZiNX6CYhxy3zTiUg/HE7ieMyJKrtxKjNECEu7hppmYyNwPuCDpS6kE CxOE+AoS6K2UdUUutQqhOCGt8l/Kplt77cur5kSQ+QhyruISMda/zRXu -----END CERTIFICATE-----Generated at Fri Apr 11 21:32:45 2025 by rpki-client