$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/FdsellRQtbWIN2yGAmBjTCQPdZA.roa File: FdsellRQtbWIN2yGAmBjTCQPdZA.roa (raw, json) Hash identifier: GW+VjOQZnGLolwqmi9tGksnQrEVOaA6nlnnmdtl7nFY= Subject key identifier: 15:DB:1E:96:54:50:B5:B5:88:37:6C:86:02:60:63:4C:24:0F:75:90 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0D5E Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/FdsellRQtbWIN2yGAmBjTCQPdZA.roa Signing time: Mon 10 Feb 2025 14:12:18 +0000 ROA not before: Mon 10 Feb 2025 14:12:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 103.234.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3422 (0xd5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Feb 10 14:12:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=15DB1E965450B5B588376C860260634C240F7590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:46:f4:bd:7c:ad:75:02:86:b2:f6:26:d8:c3: 81:69:ed:1c:25:88:00:79:29:d6:df:ff:0f:87:9f: 5b:8d:1a:90:eb:5f:87:0a:9b:a8:ce:4a:4f:60:cf: 2b:98:b5:46:78:d5:db:69:fb:18:f7:2e:3a:dd:72: 6a:d0:d5:b3:18:3b:e8:de:78:e8:1d:28:ff:fc:dc: 4f:8a:7b:2a:b3:13:c7:d8:92:65:bb:bd:51:58:a6: 4b:8a:4d:d1:14:85:1b:ad:a5:95:c6:ac:e8:09:6f: 5b:48:16:b8:5f:57:f7:44:0b:15:b2:b7:cd:34:c6: 9f:15:d9:08:21:4c:bc:de:e5:82:01:8f:bb:66:fc: a8:40:6c:ec:28:85:8c:99:61:f6:96:04:fc:22:00: 0c:fb:19:7a:e6:b6:05:17:01:70:86:39:dd:49:5c: e4:d2:a8:0d:62:4c:b0:91:8a:1c:5c:77:50:77:a3: f4:61:9d:ed:07:7a:bf:3e:9f:bc:7b:f3:a4:b9:d0: 38:ca:c2:7c:f5:f5:37:64:31:a7:c2:02:fd:3c:02: 25:2e:b1:ee:9a:5d:98:a6:7e:9d:3c:a7:7f:08:af: 72:30:fe:4e:69:86:39:98:b6:63:73:de:07:eb:0b: 6b:be:ae:f1:10:c6:c1:0f:58:0d:2f:a1:c2:83:03: ed:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:DB:1E:96:54:50:B5:B5:88:37:6C:86:02:60:63:4C:24:0F:75:90 X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/FdsellRQtbWIN2yGAmBjTCQPdZA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.228.0/22 Signature Algorithm: sha256WithRSAEncryption 18:fd:02:48:b9:94:c0:33:31:85:75:36:86:13:d9:86:68:8e: 2b:be:5b:68:83:6e:2c:05:46:ca:76:42:a8:1a:31:5c:25:23: 8a:42:a2:06:69:6d:a4:cc:94:a9:15:ed:98:e4:f5:00:88:1f: 33:33:c8:a2:1d:09:98:ca:15:a3:f4:24:b2:b1:07:f0:4e:46: d9:ea:e6:97:8c:c2:f6:a4:48:51:a9:d8:e5:64:39:ab:42:33: 23:b8:3a:0f:c3:81:c7:c6:f7:e5:5a:95:e4:01:79:5b:00:cb: 7a:4d:50:11:51:01:75:a3:28:8f:58:12:01:c8:79:b2:a2:68: d3:f3:e8:39:a4:7a:9d:21:7f:a0:d8:7e:1f:50:7f:e7:e4:1f: ac:7d:cc:49:6d:7e:26:11:0c:1c:9f:e5:80:c3:d7:82:f7:44: 04:56:f1:3f:65:11:a9:ab:73:4c:86:99:57:d2:41:fc:1f:8e: 5c:7e:58:43:e8:60:80:ab:0c:0b:b7:2d:e1:fd:6e:11:8f:d0: 5f:8b:60:95:52:d9:cc:7a:b2:55:d8:40:32:0b:9b:4a:62:6e: 41:69:88:76:d0:0a:48:fc:35:10:18:ad:c5:61:1e:86:49:3a: a2:26:d4:1c:9f:4c:17:87:c3:33:a0:e8:11:3d:64:a2:27:81: 29:3a:0f:ef -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTAyMTAx NDEyMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1REIxRTk2NTQ1MEI1 QjU4ODM3NkM4NjAyNjA2MzRDMjQwRjc1OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnRvS9fK11Aoay9ibYw4Fp7RwliAB5Kdbf/w+Hn1uNGpDrX4cK m6jOSk9gzyuYtUZ41dtp+xj3LjrdcmrQ1bMYO+jeeOgdKP/83E+KeyqzE8fYkmW7 vVFYpkuKTdEUhRutpZXGrOgJb1tIFrhfV/dECxWyt800xp8V2QghTLze5YIBj7tm /KhAbOwohYyZYfaWBPwiAAz7GXrmtgUXAXCGOd1JXOTSqA1iTLCRihxcd1B3o/Rh ne0Her8+n7x786S50DjKwnz19TdkMafCAv08AiUuse6aXZimfp08p38Ir3Iw/k5p hjmYtmNz3gfrC2u+rvEQxsEPWA0vocKDA+0zAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUFdsellRQtbWIN2yGAmBjTCQPdZAwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9GZHNlbGxSUXRiV0lOMnlHQW1C alRDUVBkWkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+rk MA0GCSqGSIb3DQEBCwUAA4IBAQAY/QJIuZTAMzGFdTaGE9mGaI4rvltog24sBUbK dkKoGjFcJSOKQqIGaW2kzJSpFe2Y5PUAiB8zM8iiHQmYyhWj9CSysQfwTkbZ6uaX jML2pEhRqdjlZDmrQjMjuDoPw4HHxvflWpXkAXlbAMt6TVARUQF1oyiPWBIByHmy omjT8+g5pHqdIX+g2H4fUH/n5B+sfcxJbX4mEQwcn+WAw9eC90QEVvE/ZRGpq3NM hplX0kH8H45cflhD6GCAqwwLty3h/W4Rj9Bfi2CVUtnMerJV2EAyC5tKYm5BaYh2 0ApI/DUQGK3FYR6GSTqiJtQcn0wXh8MzoOgRPWSiJ4EpOg/v -----END CERTIFICATE-----Generated at Mon Apr 7 07:54:14 2025 by rpki-client