$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/UuCR0wm1kCNWyk_4inV3kg4YOQc.roa File: UuCR0wm1kCNWyk_4inV3kg4YOQc.roa (raw, json) Hash identifier: aT5J4s1rcLkU6tIY4QCiMb4+WOiEKtvlvO6aJIimICE= Subject key identifier: 52:E0:91:D3:09:B5:90:23:56:CA:4F:F8:8A:75:77:92:0E:18:39:07 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 11B9 Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/UuCR0wm1kCNWyk_4inV3kg4YOQc.roa Signing time: Mon 10 Feb 2025 14:27:11 +0000 ROA not before: Mon 10 Feb 2025 14:27:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 208932 IP address blocks: 103.127.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 22:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4537 (0x11b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Feb 10 14:27:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=52E091D309B5902356CA4FF88A7577920E183907 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:bc:e8:fa:a3:2e:5a:7e:e9:12:8f:c8:a2:1c: 01:88:54:6d:ca:09:26:c9:99:8b:e0:e2:51:d6:7d: b7:18:22:ed:fc:f3:39:d4:a2:48:96:61:de:9f:37: f3:ad:06:81:d7:65:b3:fc:8b:c6:c5:a7:00:e1:55: cb:bb:dd:c9:ec:e6:72:ff:3c:f7:b6:3e:d4:77:a7: 76:c0:b7:8f:bd:bd:ff:31:df:ce:cd:3a:f5:e9:80: be:5c:98:33:8c:cb:c5:01:05:a0:eb:20:a1:48:b8: 26:de:ea:7d:33:c8:74:87:2e:cd:4f:f2:da:4c:4d: e9:19:e3:bb:12:a8:7a:33:51:1d:da:d8:28:1b:de: bf:a6:cd:2e:2d:96:e1:69:72:93:9c:ad:5b:d6:a6: 77:3f:0b:84:9c:29:30:16:df:cf:d6:01:6d:4c:2e: 2b:63:79:f1:df:5e:d4:e1:8b:35:11:eb:c9:ab:af: 24:15:dd:83:81:19:39:a5:20:7c:0b:00:70:16:5d: c2:8d:68:bc:04:e9:06:46:ff:ab:48:61:73:de:b4: 1e:c5:ba:5b:7d:71:15:68:91:a8:f9:34:bf:df:c2: 77:94:5f:78:63:cc:6c:a1:e8:6c:e7:a1:ac:55:16: 2c:e5:34:11:d9:b3:c9:93:e1:14:ab:61:27:60:9b: b3:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E0:91:D3:09:B5:90:23:56:CA:4F:F8:8A:75:77:92:0E:18:39:07 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/UuCR0wm1kCNWyk_4inV3kg4YOQc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.236.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:72:27:9f:1f:2a:0a:71:af:fb:9a:b2:55:0c:69:65:d9:0c: 90:ac:ee:09:40:6a:e1:e7:9b:21:15:9a:a8:d3:c8:16:55:95: 28:c8:8a:08:3c:3a:2f:d3:47:51:f4:36:cf:62:d4:6e:77:fb: d7:a8:75:6f:5d:63:b9:f2:c1:af:c0:43:f1:7f:16:fd:34:13: 3f:8c:c3:1e:3b:68:f8:d7:4b:2a:d0:e6:10:d2:a6:1e:7e:9e: bf:53:1d:d0:b7:60:d8:01:f0:52:38:f4:7f:d3:ad:18:b1:fc: a4:46:77:f5:35:fa:d3:38:14:b1:05:35:4c:f5:c5:66:4c:47: 9a:dd:d9:d8:12:dd:f3:d2:a8:b7:f5:db:90:12:3a:2f:89:0c: 41:e1:a8:12:68:a6:b1:b5:9e:0f:01:46:af:3b:fd:29:66:6d: 44:00:81:3b:53:2f:61:58:61:39:83:e3:da:87:5e:8a:ff:46: 80:15:70:48:52:57:eb:5f:8c:a8:14:10:96:ae:0d:3b:c2:51: 45:66:7f:90:f0:ae:e8:79:02:9e:ec:78:69:cc:bb:2b:c8:5b: 5e:df:c4:69:17:b8:df:c9:c2:c8:b4:93:9e:aa:8b:7f:5a:c8: bd:0a:df:9a:88:da:1b:88:a5:c1:90:5c:30:ae:c8:3f:21:48: 53:10:d6:26 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNTAyMTAx NDI3MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyRTA5MUQzMDlCNTkw MjM1NkNBNEZGODhBNzU3NzkyMEUxODM5MDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDivOj6oy5afukSj8iiHAGIVG3KCSbJmYvg4lHWfbcYIu388znU okiWYd6fN/OtBoHXZbP8i8bFpwDhVcu73cns5nL/PPe2PtR3p3bAt4+9vf8x387N OvXpgL5cmDOMy8UBBaDrIKFIuCbe6n0zyHSHLs1P8tpMTekZ47sSqHozUR3a2Cgb 3r+mzS4tluFpcpOcrVvWpnc/C4ScKTAW38/WAW1MLitjefHfXtThizUR68mrryQV 3YOBGTmlIHwLAHAWXcKNaLwE6QZG/6tIYXPetB7Fult9cRVokaj5NL/fwneUX3hj zGyh6GznoaxVFizlNBHZs8mT4RSrYSdgm7NZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUuCR0wm1kCNWyk/4inV3kg4YOQcwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9VdUNSMHdtMWtDTld5 a180aW5WM2tnNFlPUWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/sMA0GCSqGSIb3DQEBCwUAA4IBAQCMciefHyoKca/7mrJVDGll2QyQrO4J QGrh55shFZqo08gWVZUoyIoIPDov00dR9DbPYtRud/vXqHVvXWO58sGvwEPxfxb9 NBM/jMMeO2j410sq0OYQ0qYefp6/Ux3Qt2DYAfBSOPR/060YsfykRnf1NfrTOBSx BTVM9cVmTEea3dnYEt3z0qi39duQEjoviQxB4agSaKaxtZ4PAUavO/0pZm1EAIE7 Uy9hWGE5g+Pah16K/0aAFXBIUlfrX4yoFBCWrg07wlFFZn+Q8K7oeQKe7HhpzLsr yFte38RpF7jfycLItJOeqot/Wsi9Ct+aiNobiKXBkFwwrsg/IUhTENYm -----END CERTIFICATE-----Generated at Fri Apr 11 21:32:43 2025 by rpki-client