$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/2JJi-7EXsdRFhjSaEK5hj-GETe0.roa File: 2JJi-7EXsdRFhjSaEK5hj-GETe0.roa (raw, json) Hash identifier: yyHc43AGh/VNn9Ig9g4oy6I4TPOMSXEjmfMXKPefsq8= Subject key identifier: D8:92:62:FB:B1:17:B1:D4:45:86:34:9A:10:AE:61:8F:E1:84:4D:ED Certificate issuer: /CN=040D968303B364F772A753578220D3537E16166E Certificate serial: 031C Authority key identifier: 04:0D:96:83:03:B3:64:F7:72:A7:53:57:82:20:D3:53:7E:16:16:6E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BA2WgwOzZPdyp1NXgiDTU34WFm4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/2JJi-7EXsdRFhjSaEK5hj-GETe0.roa Signing time: Mon 10 Feb 2025 13:57:00 +0000 ROA not before: Mon 10 Feb 2025 13:57:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63897 IP address blocks: 103.175.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/BA2WgwOzZPdyp1NXgiDTU34WFm4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/BA2WgwOzZPdyp1NXgiDTU34WFm4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BA2WgwOzZPdyp1NXgiDTU34WFm4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 22:38:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 796 (0x31c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=040D968303B364F772A753578220D3537E16166E Validity Not Before: Feb 10 13:57:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D89262FBB117B1D44586349A10AE618FE1844DED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0f:5e:4f:5c:0c:1f:1c:0c:1f:bf:90:20:97: 88:ff:53:01:f5:d0:64:11:38:fe:6a:c0:38:36:83: de:1c:c5:24:8e:25:2b:55:9b:d1:09:0a:5f:a0:5b: 45:f4:cf:10:7e:2d:a5:89:03:08:33:8c:0f:78:80: a8:31:10:56:9c:71:b2:f6:3f:09:04:3e:0f:d4:63: 0e:80:39:6e:3c:0b:3d:42:f7:c6:66:99:e6:11:3e: c6:f8:48:cf:25:0b:49:ba:58:a3:91:ea:fd:8c:e2: ac:ad:00:21:fe:02:3c:9a:d2:07:dc:6d:81:ed:14: 01:56:19:a0:e4:bc:e4:29:c7:53:e0:03:66:53:4f: 3d:cf:d5:4d:7b:59:d3:5c:36:1a:d7:5d:a3:6d:f3: fb:d2:8f:2f:b5:41:a9:99:34:1b:36:0a:ae:32:6c: 34:e6:76:95:42:29:c3:8a:43:db:53:38:19:66:d9: d9:98:29:95:d0:0c:6f:09:4f:88:77:72:8f:4c:bf: 4c:f2:a9:b2:04:5b:59:79:fe:e4:33:4a:71:00:de: 80:70:02:0a:66:c8:0d:ae:77:41:b6:c5:37:65:a7: 3d:0e:ed:c3:a9:c8:75:22:dc:a7:d3:6c:ca:94:4c: 1b:ac:57:06:2e:37:e6:0e:46:4a:39:9c:72:5f:90: 15:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:92:62:FB:B1:17:B1:D4:45:86:34:9A:10:AE:61:8F:E1:84:4D:ED X509v3 Authority Key Identifier: keyid:04:0D:96:83:03:B3:64:F7:72:A7:53:57:82:20:D3:53:7E:16:16:6E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/BA2WgwOzZPdyp1NXgiDTU34WFm4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BA2WgwOzZPdyp1NXgiDTU34WFm4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIANGYU/2JJi-7EXsdRFhjSaEK5hj-GETe0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.175.254.0/24 Signature Algorithm: sha256WithRSAEncryption ab:94:2c:11:7f:e8:96:d5:f2:05:dd:ae:89:e1:d3:f8:54:43: b0:7a:f5:c7:df:26:2d:b1:5a:dd:56:06:e8:bf:5d:82:e2:d0: f3:4f:e8:8d:39:bc:33:02:be:e7:0e:57:0b:d5:3d:ef:8b:68: 04:fc:b2:f9:a4:e9:f1:98:ab:77:8a:88:47:0a:a0:71:12:b5: 92:9c:11:89:6a:23:60:ea:d0:64:a8:d9:f2:c7:16:5c:75:6a: 19:83:cc:e0:cb:03:56:90:04:d8:b3:31:72:1e:49:2f:25:8f: 95:48:03:19:12:fb:02:0a:6e:bc:67:a7:49:35:0d:95:ae:07: 10:b6:2d:c5:5f:2a:72:d4:37:47:f2:df:23:9c:15:54:77:55: ed:7a:e5:00:52:13:67:ad:85:d3:f7:f8:33:c8:a1:e0:d7:ff: 23:21:44:82:c7:31:f5:32:08:7e:4c:c1:22:15:94:21:b3:0b: 84:d3:ac:a1:24:1b:02:2e:35:2b:b4:57:1c:45:81:95:46:c7: 98:01:56:7d:fe:38:c5:65:2e:aa:1c:7e:e3:58:f3:10:00:de: 0b:61:94:79:e7:60:54:22:c8:f0:f4:39:f2:28:c2:ef:b2:b2: 1a:d9:57:76:df:cd:95:fb:2e:38:6d:b4:20:1a:26:c5:56:a0: de:1a:a6:a5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAxwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDQw RDk2ODMwM0IzNjRGNzcyQTc1MzU3ODIyMEQzNTM3RTE2MTY2RTAeFw0yNTAyMTAx MzU3MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4OTI2MkZCQjExN0Ix RDQ0NTg2MzQ5QTEwQUU2MThGRTE4NDRERUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1D15PXAwfHAwfv5Agl4j/UwH10GQROP5qwDg2g94cxSSOJStV m9EJCl+gW0X0zxB+LaWJAwgzjA94gKgxEFaccbL2PwkEPg/UYw6AOW48Cz1C98Zm meYRPsb4SM8lC0m6WKOR6v2M4qytACH+Ajya0gfcbYHtFAFWGaDkvOQpx1PgA2ZT Tz3P1U17WdNcNhrXXaNt8/vSjy+1QamZNBs2Cq4ybDTmdpVCKcOKQ9tTOBlm2dmY KZXQDG8JT4h3co9Mv0zyqbIEW1l5/uQzSnEA3oBwAgpmyA2ud0G2xTdlpz0O7cOp yHUi3KfTbMqUTBusVwYuN+YORko5nHJfkBVpAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU2JJi+7EXsdRFhjSaEK5hj+GETe0wHwYDVR0jBBgwFoAUBA2WgwOzZPdyp1NX giDTU34WFm4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lBTkdZ VS9CQTJXZ3dPelpQZHlwMU5YZ2lEVFUzNFdGbTQuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0JBMldnd096WlBkeXAxTlhnaURUVTM0V0ZtNC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NJQU5HWVUvMkpKaS03RVhzZFJGaGpT YUVLNWhqLUdFVGUwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGev/jANBgkqhkiG9w0BAQsFAAOCAQEAq5QsEX/oltXyBd2uieHT+FRDsHr1x98m LbFa3VYG6L9dguLQ80/ojTm8MwK+5w5XC9U974toBPyy+aTp8Zird4qIRwqgcRK1 kpwRiWojYOrQZKjZ8scWXHVqGYPM4MsDVpAE2LMxch5JLyWPlUgDGRL7AgpuvGen STUNla4HELYtxV8qctQ3R/LfI5wVVHdV7XrlAFITZ62F0/f4M8ih4Nf/IyFEgscx 9TIIfkzBIhWUIbMLhNOsoSQbAi41K7RXHEWBlUbHmAFWff44xWUuqhx+41jzEADe C2GUeedgVCLI8PQ58ijC77KyGtlXdt/NlfsuOG20IBomxVag3hqmpQ== -----END CERTIFICATE-----Generated at Thu Apr 17 22:15:54 2025 by rpki-client