$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/edWiZq19JEHWo5-nlTLmS0ZMUNg.roa File: edWiZq19JEHWo5-nlTLmS0ZMUNg.roa (raw, json) Hash identifier: qxPx1nE/OxCa4VacbSWedc08BrE1LNW/jI7RTvZ2vmI= Subject key identifier: 79:D5:A2:66:AD:7D:24:41:D6:A3:9F:A7:95:32:E6:4B:46:4C:50:D8 Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1318 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/edWiZq19JEHWo5-nlTLmS0ZMUNg.roa Signing time: Mon 10 Feb 2025 14:26:07 +0000 ROA not before: Mon 10 Feb 2025 14:26:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 103.130.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4888 (0x1318) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Feb 10 14:26:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=79D5A266AD7D2441D6A39FA79532E64B464C50D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:bf:f2:76:43:b9:4f:13:a3:92:24:f7:d1: 5d:91:bf:3f:c9:96:cf:1d:d8:04:83:41:1a:44:d6: 87:a1:cb:2e:7b:82:bd:75:28:25:ef:28:30:68:5d: cd:fc:a6:ab:bf:2f:e5:d6:08:6a:c5:bd:ef:43:59: cf:4b:3a:6f:13:63:e6:d9:df:3c:e8:dd:f1:71:a6: 24:6a:b4:ac:4b:83:84:b2:81:92:0b:5a:f3:3a:7d: e0:0e:d6:7f:39:59:ed:23:2e:bd:8f:ee:22:7c:6e: bd:0e:42:0d:3c:56:31:2c:85:06:fa:87:54:53:d7: 40:01:69:f0:95:bf:0d:d8:40:f8:b8:26:bf:4a:14: d8:3a:9d:45:43:92:d8:e1:75:90:9b:a6:21:de:b1: cc:0c:04:d2:db:1c:ad:43:a2:49:99:06:bc:b7:9c: 10:54:58:1b:fe:3a:67:d2:76:58:0a:22:51:ff:17: 8c:f0:7e:c7:f8:b3:59:73:4e:9a:4d:ba:bb:aa:8a: 6c:e2:93:b4:e0:ca:a2:e2:8c:21:0f:c2:95:17:df: 6f:11:0e:7f:3f:15:1b:a4:61:6f:a9:c7:fd:ab:ad: 90:1a:26:b4:b1:a4:4d:a2:13:bf:3f:80:e4:7d:88: 92:1c:51:79:5f:4b:3c:14:6c:9f:60:17:92:64:72: 6f:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:D5:A2:66:AD:7D:24:41:D6:A3:9F:A7:95:32:E6:4B:46:4C:50:D8 X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/edWiZq19JEHWo5-nlTLmS0ZMUNg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.126.0/24 Signature Algorithm: sha256WithRSAEncryption 83:8a:0b:7a:41:67:b1:22:2e:97:da:1f:fe:09:18:b6:e2:c3: 64:e9:ad:e1:27:09:ad:12:0b:14:d5:a3:b1:04:65:da:56:f0: 58:3e:25:ea:d4:e1:7c:91:c9:60:6e:83:11:07:b8:41:6c:7f: d8:6c:21:05:81:48:21:ef:b5:b3:98:16:62:5c:0d:cc:f0:15: a8:13:67:57:c2:29:df:de:6d:9c:80:f1:09:da:47:1a:57:f7: 11:93:a8:c7:6d:fe:1a:40:60:42:6e:fa:32:3d:0a:a7:d6:35: df:a7:ac:b4:f6:7e:cf:77:0b:67:db:4b:db:7d:6c:b4:e2:af: 95:56:69:06:a0:81:00:a3:ef:80:20:91:84:eb:98:d3:f8:5f: bd:be:d2:83:76:43:b0:bf:8f:41:db:eb:a6:5d:63:f5:07:da: 84:a4:30:43:6c:46:6b:9b:10:8f:c6:be:79:40:e7:c0:31:99: 28:bf:47:3b:1e:02:2c:ee:a2:22:f0:f2:da:b6:85:af:d2:82: 9a:0b:64:24:f7:a8:a9:7c:75:51:c3:cf:ab:46:5c:8d:6b:16: e2:07:40:40:06:b0:9b:bb:be:ff:c2:c3:ba:d6:1b:31:91:2d: 8f:0a:77:93:63:6b:a0:23:51:e0:26:44:67:1c:25:7d:4f:9b: af:94:82:72 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICExgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTAyMTAx NDI2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5RDVBMjY2QUQ3RDI0 NDFENkEzOUZBNzk1MzJFNjRCNDY0QzUwRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE8L/ydkO5TxOjkiT30V2Rvz/Jls8d2ASDQRpE1oehyy57gr11 KCXvKDBoXc38pqu/L+XWCGrFve9DWc9LOm8TY+bZ3zzo3fFxpiRqtKxLg4SygZIL WvM6feAO1n85We0jLr2P7iJ8br0OQg08VjEshQb6h1RT10ABafCVvw3YQPi4Jr9K FNg6nUVDktjhdZCbpiHescwMBNLbHK1DokmZBry3nBBUWBv+OmfSdlgKIlH/F4zw fsf4s1lzTppNuruqimzik7TgyqLijCEPwpUX328RDn8/FRukYW+px/2rrZAaJrSx pE2iE78/gOR9iJIcUXlfSzwUbJ9gF5Jkcm8dAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUedWiZq19JEHWo5+nlTLmS0ZMUNgwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9lZFdpWnExOUpFSFdvNS1ubFRM bVMwWk1VTmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J+ MA0GCSqGSIb3DQEBCwUAA4IBAQCDigt6QWexIi6X2h/+CRi24sNk6a3hJwmtEgsU 1aOxBGXaVvBYPiXq1OF8kclgboMRB7hBbH/YbCEFgUgh77WzmBZiXA3M8BWoE2dX winf3m2cgPEJ2kcaV/cRk6jHbf4aQGBCbvoyPQqn1jXfp6y09n7Pdwtn20vbfWy0 4q+VVmkGoIEAo++AIJGE65jT+F+9vtKDdkOwv49B2+umXWP1B9qEpDBDbEZrmxCP xr55QOfAMZkov0c7HgIs7qIi8PLatoWv0oKaC2Qk96ipfHVRw8+rRlyNaxbiB0BA BrCbu77/wsO61hsxkS2PCneTY2ugI1HgJkRnHCV9T5uvlIJy -----END CERTIFICATE-----Generated at Thu Apr 17 12:10:33 2025 by rpki-client