$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/8OPVz2oNXctK2-mpFRtq41YB1tw.roa File: 8OPVz2oNXctK2-mpFRtq41YB1tw.roa (raw, json) Hash identifier: MyxOu5EQWBB4Z6W9V3M+vkK9hLvrLHvG/hFS9Gqx2fA= Subject key identifier: F0:E3:D5:CF:6A:0D:5D:CB:4A:DB:E9:A9:15:1B:6A:E3:56:01:D6:DC Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Certificate serial: 06B5 Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/8OPVz2oNXctK2-mpFRtq41YB1tw.roa Signing time: Mon 10 Feb 2025 14:09:39 +0000 ROA not before: Mon 10 Feb 2025 14:09:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9678 IP address blocks: 103.152.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7 Validity Not Before: Feb 10 14:09:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F0E3D5CF6A0D5DCB4ADBE9A9151B6AE35601D6DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:2d:cb:a4:a2:4e:1c:76:60:94:21:cc:01:b2: 41:4e:8c:8a:27:6e:11:10:71:b5:29:d0:b0:22:23: d6:80:86:bc:7c:2c:46:44:7d:b8:3e:4c:eb:44:0a: fb:ef:5c:73:a1:6b:4f:08:a0:6d:2e:d3:83:f1:66: 25:0f:7a:29:16:f6:42:b3:bf:25:5e:da:cd:9d:8b: e2:ab:9d:53:76:3e:31:00:fa:84:64:b5:bc:d4:74: 47:5d:1b:93:62:f2:13:97:3f:c1:51:9f:c1:5c:12: a6:8d:0c:36:4e:90:a0:0f:53:ec:da:0c:fb:43:3e: b7:f1:b9:a4:af:3f:19:ed:68:51:66:15:75:c0:3a: 39:88:fc:41:4f:6a:c0:d4:5b:d8:e6:06:a8:d5:2a: 22:02:1e:e0:f6:f8:05:b4:ba:07:01:be:64:65:2e: 19:92:b2:45:75:f5:df:10:8d:b3:d0:72:fe:cc:0b: 4a:07:88:93:0f:86:b1:fa:5f:14:8c:11:6b:60:13: c8:c3:31:9a:53:64:ce:e2:5c:29:bd:81:b3:9b:e8: 3d:10:83:54:6a:b7:5a:a5:76:7f:c9:6d:50:3a:29: da:28:66:0e:68:5e:3c:93:22:d3:4d:26:85:e7:a2: 54:ff:94:b6:5e:80:57:cf:f5:e9:83:41:54:47:9e: b2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:E3:D5:CF:6A:0D:5D:CB:4A:DB:E9:A9:15:1B:6A:E3:56:01:D6:DC X509v3 Authority Key Identifier: keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/8OPVz2oNXctK2-mpFRtq41YB1tw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.151.0/24 Signature Algorithm: sha256WithRSAEncryption aa:c2:58:cd:58:ae:55:3f:c7:36:32:c6:e1:52:3f:8d:6e:a6: 37:9d:68:03:5d:18:00:7c:84:55:63:3d:2e:d6:a2:98:e9:65: 1f:1d:15:5b:3c:2d:4b:4d:3f:95:3b:b8:b4:b8:a6:e7:be:75: be:e0:2a:2b:83:92:cd:f8:0a:f9:cf:f0:4e:c1:f2:30:14:96: 17:c1:4c:82:4d:50:40:b3:02:9e:7b:7f:8e:55:d3:2f:aa:8a: 7b:63:01:4e:d9:0f:b8:66:37:16:e2:6a:90:27:48:df:8d:3c: 6a:fc:f6:2d:a6:fe:bb:11:da:70:b6:46:61:7d:f3:9c:6d:1c: bf:3b:76:ae:a6:91:29:47:17:65:76:36:38:c8:f7:0f:bb:09: 72:aa:11:75:e3:5b:4b:a7:90:5f:b0:2c:b3:b2:50:14:83:30: ff:05:eb:18:ba:dc:4f:d0:31:04:89:2b:ee:f6:02:73:3e:c9: dc:36:6c:cf:c6:81:9d:d7:2c:d8:81:5d:91:80:28:6c:8d:13: 47:bc:bf:3a:0a:33:54:cb:07:82:2c:49:92:65:f1:86:d0:26: f4:12:01:e8:52:08:89:f4:f2:3d:c7:7e:59:2d:da:4c:05:17: 05:69:bf:7d:47:df:89:73:e7:b9:83:55:10:ba:3c:01:45:95: e9:66:ca:71 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjI4 MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFCNzAeFw0yNTAyMTAx NDA5MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYwRTNENUNGNkEwRDVE Q0I0QURCRTlBOTE1MUI2QUUzNTYwMUQ2REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZLcukok4cdmCUIcwBskFOjIonbhEQcbUp0LAiI9aAhrx8LEZE fbg+TOtECvvvXHOha08IoG0u04PxZiUPeikW9kKzvyVe2s2di+KrnVN2PjEA+oRk tbzUdEddG5Ni8hOXP8FRn8FcEqaNDDZOkKAPU+zaDPtDPrfxuaSvPxntaFFmFXXA OjmI/EFPasDUW9jmBqjVKiICHuD2+AW0ugcBvmRlLhmSskV19d8QjbPQcv7MC0oH iJMPhrH6XxSMEWtgE8jDMZpTZM7iXCm9gbOb6D0Qg1Rqt1qldn/JbVA6KdooZg5o XjyTItNNJoXnolT/lLZegFfP9emDQVRHnrIhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU8OPVz2oNXctK2+mpFRtq41YB1twwHwYDVR0jBBgwFoAUsoOb96bGsX58/LNz SjbA6Yw3obcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRS QS9zb09iOTZiR3NYNThfTE56U2piQTZZdzNvYmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NVTUFUUkEvOE9QVnoyb05YY3RLMi1t cEZSdHE0MVlCMXR3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeYlzANBgkqhkiG9w0BAQsFAAOCAQEAqsJYzViuVT/HNjLG4VI/jW6mN51oA10Y AHyEVWM9LtaimOllHx0VWzwtS00/lTu4tLim5751vuAqK4OSzfgK+c/wTsHyMBSW F8FMgk1QQLMCnnt/jlXTL6qKe2MBTtkPuGY3FuJqkCdI3408avz2Lab+uxHacLZG YX3znG0cvzt2rqaRKUcXZXY2OMj3D7sJcqoRdeNbS6eQX7Ass7JQFIMw/wXrGLrc T9AxBIkr7vYCcz7J3DZsz8aBndcs2IFdkYAobI0TR7y/OgozVMsHgixJkmXxhtAm 9BIB6FIIifTyPcd+WS3aTAUXBWm/fUffiXPnuYNVELo8AUWV6WbKcQ== -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:00 2025 by rpki-client