$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/XKDyMmC5zxhK7b3XebNG_KqR2Ec.roa File: XKDyMmC5zxhK7b3XebNG_KqR2Ec.roa (raw, json) Hash identifier: sMx+rQQHrrqsmrEquc4s8TPw2vikGSXyBeP5+V7FHBs= Subject key identifier: 5C:A0:F2:32:60:B9:CF:18:4A:ED:BD:D7:79:B3:46:FC:AA:91:D8:47 Certificate issuer: /CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8 Certificate serial: 0C39 Authority key identifier: 33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/XKDyMmC5zxhK7b3XebNG_KqR2Ec.roa Signing time: Mon 10 Feb 2025 14:26:13 +0000 ROA not before: Mon 10 Feb 2025 14:26:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.16.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/M6gOdbovKw_UMSGJp-Q-Q1Po06g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/M6gOdbovKw_UMSGJp-Q-Q1Po06g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3129 (0xc39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33A80E75BA2F2B0FD4312189A7E43E4353E8D3A8 Validity Not Before: Feb 10 14:26:12 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5CA0F23260B9CF184AEDBDD779B346FCAA91D847 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f7:50:e5:3d:ed:68:39:0a:d2:84:5b:7f:69: 16:59:7a:c8:ac:b2:27:6a:db:c1:06:91:2c:16:2f: 89:00:5f:59:05:08:a5:6d:32:82:1d:e4:64:2f:15: 26:ae:1f:50:20:84:dc:58:7e:5f:92:65:91:0f:30: c9:52:ff:db:08:1b:0a:d5:7e:17:81:e0:8b:45:76: 9c:4a:1c:ec:96:ff:69:2c:af:24:f6:16:79:62:6f: 31:7c:88:53:52:cc:2c:e2:d1:f9:2c:c3:d1:4f:d0: d9:98:de:3e:82:a5:0e:8e:6b:84:2e:bc:96:13:6b: 5d:a8:fe:2b:4e:93:9c:ef:ec:eb:7f:36:e6:25:05: 6d:9a:cb:33:68:42:67:4c:50:e8:79:67:76:da:61: 33:5d:00:d3:6e:47:40:a7:2c:54:fd:04:e6:3f:46: 5b:8e:46:88:a3:85:64:4c:57:a1:db:77:90:03:07: ce:80:9d:58:d8:d4:9e:f6:7d:1a:1e:6a:b6:f7:81: 27:87:89:1a:7c:c7:fb:81:64:d7:38:da:44:ea:c9: 2b:e3:50:2e:90:f9:df:03:fb:b3:15:15:e8:47:7b: ce:53:b7:e6:93:64:99:fb:f6:f3:92:52:3a:87:b3: 93:ea:51:be:31:4c:30:1d:d1:37:b1:6f:0f:c4:1f: 6a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:A0:F2:32:60:B9:CF:18:4A:ED:BD:D7:79:B3:46:FC:AA:91:D8:47 X509v3 Authority Key Identifier: keyid:33:A8:0E:75:BA:2F:2B:0F:D4:31:21:89:A7:E4:3E:43:53:E8:D3:A8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/M6gOdbovKw_UMSGJp-Q-Q1Po06g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M6gOdbovKw_UMSGJp-Q-Q1Po06g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIONISME/XKDyMmC5zxhK7b3XebNG_KqR2Ec.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.16.240.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:79:0e:7f:60:4a:b6:6b:af:87:0b:04:dc:59:75:de:ac:11: a3:97:6e:c1:8f:57:13:03:9b:b1:ac:1c:21:3d:59:46:49:0f: cd:5d:f1:e2:07:f6:46:d1:ec:95:36:f6:81:a8:37:a3:79:5c: 7a:0c:d1:67:66:a9:0c:18:e6:95:a7:a7:6e:7d:4a:2a:79:8e: 8d:ca:01:48:5b:68:73:fe:71:a3:5f:14:21:fe:51:d5:26:ee: 99:c7:2a:5d:86:64:93:80:47:bc:7a:0b:b5:96:65:4f:2e:8c: 8d:2b:05:d2:b6:5b:4d:0f:8f:74:0b:4c:cd:5d:d0:43:f4:70: 46:96:98:a4:a3:2d:21:e5:35:97:3a:04:6c:ce:87:d5:7b:5c: 26:72:94:f9:4c:0f:d6:b3:cc:97:41:d8:cb:5b:1a:bb:cf:d0: 14:c3:84:7b:55:fb:33:eb:70:98:62:8c:19:ed:3a:19:c9:4a: 2f:9d:fb:52:d8:e4:64:a5:e4:eb:19:b7:a9:ec:e0:03:14:60: 19:6a:e8:06:60:8e:e4:e5:36:40:34:28:71:8a:14:1a:03:6c: 45:69:c1:bc:6c:5a:fd:ea:05:b9:54:9a:d8:90:51:aa:d3:26: b1:49:e4:12:f8:15:6f:83:f9:36:ba:a3:bc:f0:41:ab:b6:9d: cb:81:ce:aa -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDDkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzNB ODBFNzVCQTJGMkIwRkQ0MzEyMTg5QTdFNDNFNDM1M0U4RDNBODAeFw0yNTAyMTAx NDI2MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDQTBGMjMyNjBCOUNG MTg0QUVEQkRENzc5QjM0NkZDQUE5MUQ4NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM91DlPe1oOQrShFt/aRZZesissidq28EGkSwWL4kAX1kFCKVt MoId5GQvFSauH1AghNxYfl+SZZEPMMlS/9sIGwrVfheB4ItFdpxKHOyW/2ksryT2 FnlibzF8iFNSzCzi0fksw9FP0NmY3j6CpQ6Oa4QuvJYTa12o/itOk5zv7Ot/NuYl BW2ayzNoQmdMUOh5Z3baYTNdANNuR0CnLFT9BOY/RluORoijhWRMV6Hbd5ADB86A nVjY1J72fRoearb3gSeHiRp8x/uBZNc42kTqySvjUC6Q+d8D+7MVFehHe85Tt+aT ZJn79vOSUjqHs5PqUb4xTDAd0Texbw/EH2qXAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUXKDyMmC5zxhK7b3XebNG/KqR2EcwHwYDVR0jBBgwFoAUM6gOdbovKw/UMSGJ p+Q+Q1Po06gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JT05J U01FL002Z09kYm92S3dfVU1TR0pwLVEtUTFQbzA2Zy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTTZnT2Rib3ZLd19VTVNHSnAtUS1RMVBvMDZnLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVU5JT05JU01FL1hLRHlNbUM1enho SzdiM1hlYk5HX0txUjJFYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJnEPAwDQYJKoZIhvcNAQELBQADggEBAF15Dn9gSrZrr4cLBNxZdd6sEaOX bsGPVxMDm7GsHCE9WUZJD81d8eIH9kbR7JU29oGoN6N5XHoM0WdmqQwY5pWnp259 Sip5jo3KAUhbaHP+caNfFCH+UdUm7pnHKl2GZJOAR7x6C7WWZU8ujI0rBdK2W00P j3QLTM1d0EP0cEaWmKSjLSHlNZc6BGzOh9V7XCZylPlMD9azzJdB2MtbGrvP0BTD hHtV+zPrcJhijBntOhnJSi+d+1LY5GSl5OsZt6ns4AMUYBlq6AZgjuTlNkA0KHGK FBoDbEVpwbxsWv3qBblUmtiQUarTJrFJ5BL4FW+D+Ta6o7zwQau2ncuBzqo= -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:22 2025 by rpki-client