$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/zZvi7CaDqsRI3a8gFXloPi1vna4.roa File: zZvi7CaDqsRI3a8gFXloPi1vna4.roa (raw, json) Hash identifier: WAFO1g1ZR3BJEhhAV08tZCwYanqtXnrCEGFoIEJQB4c= Subject key identifier: CD:9B:E2:EC:26:83:AA:C4:48:DD:AF:20:15:79:68:3E:2D:6F:9D:AE Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1355 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/zZvi7CaDqsRI3a8gFXloPi1vna4.roa Signing time: Mon 10 Feb 2025 14:03:37 +0000 ROA not before: Mon 10 Feb 2025 14:03:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 396982 IP address blocks: 101.101.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Apr 2025 23:36:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4949 (0x1355) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Feb 10 14:03:37 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CD9BE2EC2683AAC448DDAF201579683E2D6F9DAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c3:77:16:8c:84:d3:9e:de:90:0c:b3:85:62: 56:53:34:07:91:50:7f:ce:57:e0:ef:8d:2d:36:e4: 32:09:7b:1d:35:4c:08:e5:f9:45:62:a7:8c:ec:05: 5d:ec:42:9a:a6:96:2c:f8:bc:ea:c6:4e:a1:6d:88: e3:12:0d:70:72:4e:75:bf:ca:e1:37:18:fe:95:01: 89:ec:37:80:1f:a5:14:6d:a9:11:ea:4b:8e:d7:c6: 09:d2:3f:c3:90:36:7d:97:3c:18:22:36:52:af:c5: f8:1e:0b:63:f3:a9:f5:b0:1c:46:80:19:66:c5:d6: df:6e:48:95:9f:0d:bb:9f:96:7c:61:b7:d4:3d:d9: 7a:14:26:2f:0b:3c:38:fb:d1:2b:b9:84:48:15:64: 1f:5d:cc:c6:f8:98:ef:af:53:1f:a9:23:6a:db:97: 0c:ff:ef:22:5f:a3:90:f8:cd:98:ea:9b:c2:34:8e: 1d:85:05:5f:b7:df:26:e2:d3:02:d0:33:aa:b9:e4: c3:9d:c5:bb:6c:b2:d6:c7:8f:69:ee:dd:55:f7:fc: 1b:fb:09:a8:d2:02:ae:6a:d6:70:d2:db:00:51:a2: 2d:08:1e:01:d8:a4:d3:2f:a6:5f:d4:02:b0:99:ee: a8:04:52:85:38:71:d1:ab:7f:a5:57:82:ec:5e:98: 1d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9B:E2:EC:26:83:AA:C4:48:DD:AF:20:15:79:68:3E:2D:6F:9D:AE X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/zZvi7CaDqsRI3a8gFXloPi1vna4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.101.101.0/24 Signature Algorithm: sha256WithRSAEncryption 51:2d:2c:17:43:d1:0c:e7:82:05:1f:42:de:da:25:58:58:63: 02:d2:d3:6f:03:94:64:be:85:2d:99:01:a9:39:89:f0:ea:67: a0:31:58:e2:7c:6b:7b:8c:2f:24:c3:3a:79:63:86:46:f2:71: 5a:80:77:78:9b:9a:1a:8d:e2:d6:05:92:3a:27:e3:6f:c9:66: c5:d6:c1:00:98:6d:8c:52:6f:65:46:4a:2d:0b:5f:de:9a:19: 51:08:85:e4:ac:e6:30:fa:a2:44:0e:5d:80:ae:40:0f:56:d6: a0:7e:7f:b9:2e:1f:b5:36:cf:20:60:b9:0f:58:9a:db:bb:b1: 6b:38:b0:69:8b:50:82:df:49:5d:0d:0b:3e:4a:4c:d4:28:06: c9:a5:5b:76:7c:c0:5b:8c:8d:55:59:3a:be:8e:44:0c:f1:50: 86:20:5b:7c:a1:5c:73:da:81:bf:48:45:39:39:5d:1f:33:d4: 1c:67:01:28:8f:5d:38:1c:02:e8:0b:ca:86:e5:7c:e5:6a:5b: 2e:5b:34:7e:35:69:71:0b:7f:5c:10:0a:e3:c5:26:74:69:41: e8:8a:ed:eb:eb:8d:a9:98:6f:ec:be:27:53:93:23:11:48:01: 81:0b:48:27:98:03:6c:c2:3d:b9:7b:f0:8a:37:28:fe:72:ad: 5e:f4:09:fe -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTAyMTAx NDAzMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENEOUJFMkVDMjY4M0FB QzQ0OEREQUYyMDE1Nzk2ODNFMkQ2RjlEQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIw3cWjITTnt6QDLOFYlZTNAeRUH/OV+DvjS025DIJex01TAjl +UVip4zsBV3sQpqmliz4vOrGTqFtiOMSDXByTnW/yuE3GP6VAYnsN4AfpRRtqRHq S47XxgnSP8OQNn2XPBgiNlKvxfgeC2PzqfWwHEaAGWbF1t9uSJWfDbuflnxht9Q9 2XoUJi8LPDj70Su5hEgVZB9dzMb4mO+vUx+pI2rblwz/7yJfo5D4zZjqm8I0jh2F BV+33ybi0wLQM6q55MOdxbtsstbHj2nu3VX3/Bv7CajSAq5q1nDS2wBRoi0IHgHY pNMvpl/UArCZ7qgEUoU4cdGrf6VXguxemB2ZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUzZvi7CaDqsRI3a8gFXloPi1vna4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy96WnZpN0NhRHFzUkkzYThnRlhs b1BpMXZuYTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl MA0GCSqGSIb3DQEBCwUAA4IBAQBRLSwXQ9EM54IFH0Le2iVYWGMC0tNvA5RkvoUt mQGpOYnw6megMVjifGt7jC8kwzp5Y4ZG8nFagHd4m5oajeLWBZI6J+NvyWbF1sEA mG2MUm9lRkotC1/emhlRCIXkrOYw+qJEDl2ArkAPVtagfn+5Lh+1Ns8gYLkPWJrb u7FrOLBpi1CC30ldDQs+SkzUKAbJpVt2fMBbjI1VWTq+jkQM8VCGIFt8oVxz2oG/ SEU5OV0fM9QcZwEoj104HALoC8qG5XzlalsuWzR+NWlxC39cEArjxSZ0aUHoiu3r 642pmG/svidTkyMRSAGBC0gnmANswj25e/CKNyj+cq1e9An+ -----END CERTIFICATE-----Generated at Fri Apr 4 20:50:14 2025 by rpki-client