$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/mLVsoewU7rIWBGX08zzaLYzjhjg.roa File: mLVsoewU7rIWBGX08zzaLYzjhjg.roa (raw, json) Hash identifier: dgb+jhHMqjlYpdqKGY+wENPRNKLrt+sIT7tlDI+zFuo= Subject key identifier: 98:B5:6C:A1:EC:14:EE:B2:16:04:65:F4:F3:3C:DA:2D:8C:E3:86:38 Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Certificate serial: 0CA5 Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/mLVsoewU7rIWBGX08zzaLYzjhjg.roa Signing time: Mon 10 Feb 2025 14:24:16 +0000 ROA not before: Mon 10 Feb 2025 14:24:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.122.226.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3237 (0xca5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Validity Not Before: Feb 10 14:24:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=98B56CA1EC14EEB2160465F4F33CDA2D8CE38638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:62:3b:43:05:e9:60:ce:ed:19:39:3f:f2:80: e0:6a:f0:1e:00:ec:b1:19:df:4f:4d:18:ea:70:14: e5:5f:4b:ef:db:a3:da:af:e4:fc:78:1e:68:3a:77: 1e:af:be:b4:1c:34:17:63:38:07:6b:95:eb:13:f6: 0d:18:ee:e5:f5:7b:31:ef:ea:be:7c:b8:d4:63:bd: 73:9e:94:1f:7e:dd:93:4d:ff:27:be:78:9e:09:bd: 31:a2:1e:61:23:90:50:1d:7a:9f:85:3e:21:bc:0f: 80:fe:92:68:92:aa:98:1f:25:ec:27:a9:e1:c0:5e: 72:dc:8a:0d:2d:ad:a7:70:5f:2e:31:5b:47:7a:5c: c7:68:f2:0a:2a:2a:e1:6e:47:ec:7e:b1:93:00:ad: df:76:15:18:1a:52:13:ee:9b:c7:3a:cd:b7:29:1e: d5:db:0e:45:01:17:f2:a7:1a:a6:8b:eb:2b:a9:60: 38:bd:a9:d3:cd:5e:b0:15:b0:5d:e7:db:f8:da:7b: c2:7c:1d:78:75:80:46:7f:16:2f:1c:e4:e8:f6:4d: 48:5f:af:da:c3:71:2e:1f:27:b9:fa:3d:90:05:b7: 4d:f1:18:75:0e:44:63:73:0a:4a:f3:a1:3f:04:7e: 52:73:54:6e:6f:d2:c1:50:24:7d:94:1b:55:75:5f: a7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B5:6C:A1:EC:14:EE:B2:16:04:65:F4:F3:3C:DA:2D:8C:E3:86:38 X509v3 Authority Key Identifier: keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/mLVsoewU7rIWBGX08zzaLYzjhjg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.226.0/24 Signature Algorithm: sha256WithRSAEncryption b3:40:74:91:2a:e0:99:bb:6b:57:8c:12:cd:85:b3:e9:ce:5c: d9:ff:f9:b3:a1:52:38:19:50:c5:17:e4:57:f1:c8:77:11:bd: f4:3f:a3:58:cb:22:b3:d7:8b:ad:92:05:9f:31:67:3f:cd:34: d9:d3:84:5e:1d:29:f5:15:63:cc:f5:74:5b:17:ec:dd:7d:51: df:8f:21:00:58:53:20:bf:0a:ec:24:ea:0c:e0:07:ba:a8:c6: 85:97:cf:4b:0c:74:9e:48:22:36:e7:30:53:9c:53:04:0f:f1: 1c:34:45:3d:77:e5:aa:38:78:76:e4:0a:db:f8:30:51:fd:28: 81:1d:18:40:b5:e0:f7:25:ae:d8:44:f3:73:b0:fa:45:4f:ca: 66:2b:e6:b8:44:87:7a:82:9b:03:71:4d:ed:dc:f3:52:ec:2b: dc:b6:3d:4c:ed:03:c7:dc:31:24:e4:b4:5d:74:8a:4e:b7:ce: 36:7c:b0:b4:7e:ba:4a:94:75:05:5a:2c:5d:90:7a:3f:16:b8: e5:6e:ae:00:75:89:aa:d4:5e:d6:d8:2b:4d:d1:04:37:ae:18: 7d:29:17:9c:3e:f2:a7:5c:08:74:0b:9e:82:e0:64:cb:10:ad: 1b:ce:1b:09:bd:a8:53:5b:0e:c8:af:05:1d:c1:ea:c7:4d:21: 91:80:8f:4b -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjM0 MDBBQTZFNkM2OEIxM0REREM5QzAwQjgyNTg2MTI0MjczRkE5QjAeFw0yNTAyMTAx NDI0MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4QjU2Q0ExRUMxNEVF QjIxNjA0NjVGNEYzM0NEQTJEOENFMzg2MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbYjtDBelgzu0ZOT/ygOBq8B4A7LEZ309NGOpwFOVfS+/bo9qv 5Px4Hmg6dx6vvrQcNBdjOAdrlesT9g0Y7uX1ezHv6r58uNRjvXOelB9+3ZNN/ye+ eJ4JvTGiHmEjkFAdep+FPiG8D4D+kmiSqpgfJewnqeHAXnLcig0tradwXy4xW0d6 XMdo8goqKuFuR+x+sZMArd92FRgaUhPum8c6zbcpHtXbDkUBF/KnGqaL6yupYDi9 qdPNXrAVsF3n2/jae8J8HXh1gEZ/Fi8c5Oj2TUhfr9rDcS4fJ7n6PZAFt03xGHUO RGNzCkrzoT8EflJzVG5v0sFQJH2UG1V1X6fvAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUmLVsoewU7rIWBGX08zzaLYzjhjgwHwYDVR0jBBgwFoAUY0AKpubGixPd3JwA uCWGEkJz+pswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklTSU9O NFlFUy9ZMEFLcHViR2l4UGQzSndBdUNXR0VrSnotcHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1kwQUtwdWJHaXhQZDNKd0F1Q1dHRWtKei1wcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1ZJU0lPTjRZRVMvbUxWc29ld1U3 cklXQkdYMDh6emFMWXpqaGpnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd64jANBgkqhkiG9w0BAQsFAAOCAQEAs0B0kSrgmbtrV4wSzYWz6c5c 2f/5s6FSOBlQxRfkV/HIdxG99D+jWMsis9eLrZIFnzFnP8002dOEXh0p9RVjzPV0 Wxfs3X1R348hAFhTIL8K7CTqDOAHuqjGhZfPSwx0nkgiNucwU5xTBA/xHDRFPXfl qjh4duQK2/gwUf0ogR0YQLXg9yWu2ETzc7D6RU/KZivmuESHeoKbA3FN7dzzUuwr 3LY9TO0Dx9wxJOS0XXSKTrfONnywtH66SpR1BVosXZB6Pxa45W6uAHWJqtRe1tgr TdEEN64YfSkXnD7yp1wIdAueguBkyxCtG84bCb2oU1sOyK8FHcHqx00hkYCPSw== -----END CERTIFICATE-----Generated at Mon Apr 7 00:58:01 2025 by rpki-client