$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/I9fiyIHlLcPHhazEyrgxKcpDf88.roa File: I9fiyIHlLcPHhazEyrgxKcpDf88.roa (raw, json) Hash identifier: nL9urdw5HHU3Sgdk6gW2cVQzHLXOct93sFs/E2G6oJg= Subject key identifier: 23:D7:E2:C8:81:E5:2D:C3:C7:85:AC:C4:CA:B8:31:29:CA:43:7F:CF Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Certificate serial: 0CC8 Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/I9fiyIHlLcPHhazEyrgxKcpDf88.roa Signing time: Mon 10 Feb 2025 14:15:25 +0000 ROA not before: Mon 10 Feb 2025 14:15:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 103.123.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 13:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B Validity Not Before: Feb 10 14:15:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=23D7E2C881E52DC3C785ACC4CAB83129CA437FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a4:b6:b1:1d:59:1e:0b:c8:00:b4:f3:4f:b2: bb:79:dc:06:1a:61:e7:c0:cf:6d:94:f1:c3:cf:27: ce:20:f1:28:19:cb:bd:84:3d:3c:34:b3:0d:46:85: 67:54:dd:c3:c4:af:b7:60:36:b0:9d:d1:4f:8b:44: fc:f8:96:4d:29:08:75:8e:32:9e:46:09:55:13:6c: da:7d:b2:60:13:c2:52:aa:a7:d0:3c:94:59:3d:0f: f7:fd:f3:ea:8c:ca:8c:9c:0f:0a:84:b5:03:dd:7f: 2c:6d:a6:1b:f1:ec:51:11:a2:45:04:e2:49:e3:22: 24:82:97:ca:5b:60:ae:4d:4b:83:78:ba:b4:cf:cd: 73:2e:b1:a0:4c:5a:9a:48:71:4b:11:1c:1b:0c:e3: 64:d1:ca:a2:69:2f:c7:61:7b:b4:b2:c9:eb:77:14: f0:89:af:f0:73:dd:76:04:c5:fd:26:d2:20:ad:e3: fa:20:aa:d1:8e:dd:63:c0:ed:99:72:2d:7f:a6:ad: 02:23:c8:f9:3a:67:91:ab:bf:65:f1:0e:fd:54:df: 9f:f4:09:0a:06:c8:8e:99:5b:2b:ec:4a:a0:15:eb: 61:f9:a9:ba:ae:32:2c:07:36:2e:42:1c:3c:9f:2e: 8d:8a:20:09:ae:86:5f:9d:09:d4:d9:53:55:0b:e5: bf:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D7:E2:C8:81:E5:2D:C3:C7:85:AC:C4:CA:B8:31:29:CA:43:7F:CF X509v3 Authority Key Identifier: keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/I9fiyIHlLcPHhazEyrgxKcpDf88.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.252.0/22 Signature Algorithm: sha256WithRSAEncryption 48:aa:64:4f:17:18:2c:c8:f7:c1:8a:0a:bd:ef:e5:5a:ac:67: 1f:59:b2:a6:62:0e:52:e9:e0:4d:52:d3:20:00:f9:6e:05:a4: 81:10:da:ae:fb:d3:c2:a5:f9:2f:fa:d0:73:f3:1b:66:92:cc: b9:2a:84:87:f5:2e:a8:5d:fd:ea:95:f8:d9:15:12:d2:d6:3a: 55:7a:4d:fa:69:29:4e:20:4d:82:9e:56:ad:ae:e8:5c:e5:f2: ff:d5:16:d3:ed:b9:be:3b:f9:85:5d:d5:74:53:7e:ae:d6:2a: df:f5:24:d4:11:4c:24:d2:92:96:87:7d:91:c4:9e:10:3f:aa: 54:a9:1c:8c:84:ab:2a:d5:83:45:a0:40:bb:7e:14:ee:db:92: 83:b9:e4:ad:44:44:2d:58:1a:d2:89:b7:96:67:bb:95:c4:30: 6d:84:4d:75:00:05:d8:3c:a9:7a:96:77:d2:50:39:e1:c7:34: 96:3d:1c:1d:af:ef:ee:49:36:5c:dd:fd:8e:c5:64:e7:d7:94: 64:46:9b:de:94:c2:b5:01:68:3d:dd:0d:5d:56:2f:94:8d:a4: 7c:9e:02:e5:85:48:5b:b1:87:bf:41:01:8c:d4:00:a6:df:ef: c2:2b:2c:df:06:ea:1a:85:fe:05:aa:cc:f2:27:8b:5e:a2:ba: 6f:22:a1:d7 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzkw QTA0MTJGOEI1RUM0RjNGOUZEQkIzQTYxMjcwREJEMEVBOUU2QjAeFw0yNTAyMTAx NDE1MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIzRDdFMkM4ODFFNTJE QzNDNzg1QUNDNENBQjgzMTI5Q0E0MzdGQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClpLaxHVkeC8gAtPNPsrt53AYaYefAz22U8cPPJ84g8SgZy72E PTw0sw1GhWdU3cPEr7dgNrCd0U+LRPz4lk0pCHWOMp5GCVUTbNp9smATwlKqp9A8 lFk9D/f98+qMyoycDwqEtQPdfyxtphvx7FERokUE4knjIiSCl8pbYK5NS4N4urTP zXMusaBMWppIcUsRHBsM42TRyqJpL8dhe7Syyet3FPCJr/Bz3XYExf0m0iCt4/og qtGO3WPA7ZlyLX+mrQIjyPk6Z5Grv2XxDv1U35/0CQoGyI6ZWyvsSqAV62H5qbqu MiwHNi5CHDyfLo2KIAmuhl+dCdTZU1UL5b8JAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUI9fiyIHlLcPHhazEyrgxKcpDf88wHwYDVR0jBBgwFoAUOQoEEvi17E8/n9uz phJw29DqnmswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JR0FU RS9PUW9FRXZpMTdFOF9uOXV6cGhKdzI5RHFubXMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL09Rb0VFdmkxN0U4X245dXpwaEp3MjlEcW5tcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1VOSUdBVEUvSTlmaXlJSGxMY1BIaGF6 RXlyZ3hLY3BEZjg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Amd7/DANBgkqhkiG9w0BAQsFAAOCAQEASKpkTxcYLMj3wYoKve/lWqxnH1mypmIO UungTVLTIAD5bgWkgRDarvvTwqX5L/rQc/MbZpLMuSqEh/UuqF396pX42RUS0tY6 VXpN+mkpTiBNgp5Wra7oXOXy/9UW0+25vjv5hV3VdFN+rtYq3/Uk1BFMJNKSlod9 kcSeED+qVKkcjISrKtWDRaBAu34U7tuSg7nkrURELVga0om3lme7lcQwbYRNdQAF 2DypepZ30lA54cc0lj0cHa/v7kk2XN39jsVk59eUZEab3pTCtQFoPd0NXVYvlI2k fJ4C5YVIW7GHv0EBjNQApt/vwiss3wbqGoX+BarM8ieLXqK6byKh1w== -----END CERTIFICATE-----Generated at Sat Apr 5 11:26:04 2025 by rpki-client