$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMCI/u0X-eNRgJ2PI7wTLnGD07I2fc7A.roa File: u0X-eNRgJ2PI7wTLnGD07I2fc7A.roa (raw, json) Hash identifier: zzFZ/I2tmXPQbjGSK8BmLlgZ1Klhs0iR1JS2DyTm/4U= Subject key identifier: BB:45:FE:78:D4:60:27:63:C8:EF:04:CB:9C:60:F4:EC:8D:9F:73:B0 Certificate issuer: /CN=8856EA5549A2F41D847CD86A460B5026C14A6EE3 Certificate serial: 02BA Authority key identifier: 88:56:EA:55:49:A2:F4:1D:84:7C:D8:6A:46:0B:50:26:C1:4A:6E:E3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/iFbqVUmi9B2EfNhqRgtQJsFKbuM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/u0X-eNRgJ2PI7wTLnGD07I2fc7A.roa Signing time: Mon 10 Feb 2025 13:55:38 +0000 ROA not before: Mon 10 Feb 2025 13:55:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63894 IP address blocks: 103.162.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/iFbqVUmi9B2EfNhqRgtQJsFKbuM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/iFbqVUmi9B2EfNhqRgtQJsFKbuM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/iFbqVUmi9B2EfNhqRgtQJsFKbuM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 698 (0x2ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8856EA5549A2F41D847CD86A460B5026C14A6EE3 Validity Not Before: Feb 10 13:55:38 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BB45FE78D4602763C8EF04CB9C60F4EC8D9F73B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:86:66:fe:d7:80:24:98:7a:5a:ea:db:f2:08: 36:02:46:6d:a9:6c:29:f5:b8:99:5d:24:0d:98:38: 73:2f:9c:fe:77:17:28:83:e7:f8:3a:92:56:a9:d5: 37:97:bb:20:fd:49:7d:25:ad:0c:83:fc:33:de:ea: 46:66:a2:cd:19:d9:7a:ae:58:7d:bb:72:73:bf:7c: 0c:39:95:96:1d:88:97:f3:c4:23:1f:6b:14:96:ad: 83:ac:d9:2e:eb:0b:64:41:86:8d:2c:55:26:ca:44: 7b:44:50:2b:e6:0f:dd:69:d7:27:70:d7:55:47:c9: ee:1e:71:02:91:90:da:56:93:32:0c:54:e4:75:13: 43:82:fb:36:ac:e2:f2:d7:67:59:ba:e6:ac:d7:fe: 82:08:b4:2f:7d:5b:09:c8:b5:5d:7c:e5:9d:46:c9: 1e:db:d0:5d:f4:80:9d:30:3c:5c:65:22:ba:17:cd: 02:68:e3:42:d5:67:8c:8d:db:73:0f:9a:b8:85:dc: 6c:4e:df:58:5d:9a:3b:ca:71:2d:c6:ba:66:44:99: 0a:c3:25:55:60:54:0e:94:42:e4:37:dd:fa:3d:c9: 6e:f6:02:a0:1e:8e:39:a1:f6:e5:d4:89:92:1b:9a: cd:50:92:df:84:d0:c2:6c:40:60:11:6e:e3:a5:0a: bc:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:45:FE:78:D4:60:27:63:C8:EF:04:CB:9C:60:F4:EC:8D:9F:73:B0 X509v3 Authority Key Identifier: keyid:88:56:EA:55:49:A2:F4:1D:84:7C:D8:6A:46:0B:50:26:C1:4A:6E:E3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/iFbqVUmi9B2EfNhqRgtQJsFKbuM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/iFbqVUmi9B2EfNhqRgtQJsFKbuM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMCI/u0X-eNRgJ2PI7wTLnGD07I2fc7A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.162.84.0/23 Signature Algorithm: sha256WithRSAEncryption 82:77:7a:01:bb:1f:b7:cf:77:72:54:c1:97:40:a9:43:ed:80: 3d:41:b2:2a:b3:35:1b:63:e0:15:50:8d:1a:95:2d:43:5d:08: 25:1f:30:54:bd:29:68:f2:5a:6f:6d:1e:23:a3:66:56:2f:5e: e8:1a:51:c4:ec:2e:d7:c8:25:c2:8c:c5:1d:9b:6e:78:99:b9: 58:1a:e2:2e:51:9b:68:72:f4:29:06:52:86:74:df:4d:01:36: a5:e5:51:3f:c5:7b:56:55:57:b2:fd:da:69:a1:05:07:78:69: d8:53:7a:87:77:60:25:e7:89:6d:85:84:cb:a3:87:9d:f6:80: 33:b6:7c:17:19:8d:1a:b3:3a:48:39:a9:ce:f9:b2:08:6e:05: 78:55:19:54:a2:68:a1:59:51:f3:fb:4f:68:a4:c1:82:b6:eb: 8f:22:3e:ee:07:9a:11:69:53:51:fd:83:c6:cb:85:dc:c5:0c: 41:53:68:5e:b5:de:6c:f4:a1:ed:87:23:a8:90:de:11:10:17: 59:bf:5a:96:c4:7e:ed:c8:10:02:4c:b6:ed:01:60:d7:72:a1: b0:8b:d5:c5:57:9c:3b:53:97:fc:e6:52:c2:cd:f0:f5:03:26: 34:fb:0f:e3:94:67:d2:2b:64:77:dd:7b:31:58:1a:ca:01:45: 57:f9:ea:3e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICArowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODg1 NkVBNTU0OUEyRjQxRDg0N0NEODZBNDYwQjUwMjZDMTRBNkVFMzAeFw0yNTAyMTAx MzU1MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJCNDVGRTc4RDQ2MDI3 NjNDOEVGMDRDQjlDNjBGNEVDOEQ5RjczQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvhmb+14AkmHpa6tvyCDYCRm2pbCn1uJldJA2YOHMvnP53FyiD 5/g6klap1TeXuyD9SX0lrQyD/DPe6kZmos0Z2XquWH27cnO/fAw5lZYdiJfzxCMf axSWrYOs2S7rC2RBho0sVSbKRHtEUCvmD91p1ydw11VHye4ecQKRkNpWkzIMVOR1 E0OC+zas4vLXZ1m65qzX/oIItC99WwnItV185Z1GyR7b0F30gJ0wPFxlIroXzQJo 40LVZ4yN23MPmriF3GxO31hdmjvKcS3GumZEmQrDJVVgVA6UQuQ33fo9yW72AqAe jjmh9uXUiZIbms1Qkt+E0MJsQGARbuOlCryBAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUu0X+eNRgJ2PI7wTLnGD07I2fc7AwHwYDVR0jBBgwFoAUiFbqVUmi9B2EfNhq RgtQJsFKbuMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU01DSS9p RmJxVlVtaTlCMkVmTmhxUmd0UUpzRktidU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2lGYnFWVW1pOUIyRWZOaHFSZ3RRSnNGS2J1TS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NNQ0kvdTBYLWVOUmdKMlBJN3dUTG5HRDA3 STJmYzdBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWeiVDAN BgkqhkiG9w0BAQsFAAOCAQEAgnd6Absft893clTBl0CpQ+2APUGyKrM1G2PgFVCN GpUtQ10IJR8wVL0paPJab20eI6NmVi9e6BpRxOwu18glwozFHZtueJm5WBriLlGb aHL0KQZShnTfTQE2peVRP8V7VlVXsv3aaaEFB3hp2FN6h3dgJeeJbYWEy6OHnfaA M7Z8FxmNGrM6SDmpzvmyCG4FeFUZVKJooVlR8/tPaKTBgrbrjyI+7geaEWlTUf2D xsuF3MUMQVNoXrXebPSh7YcjqJDeERAXWb9alsR+7cgQAky27QFg13KhsIvVxVec O1OX/OZSws3w9QMmNPsP45Rn0itkd917MVgaygFFV/nqPg== -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:40 2025 by rpki-client