$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/lFcPhldx_HTxFb6kcFVifn6g4N8.roa File: lFcPhldx_HTxFb6kcFVifn6g4N8.roa (raw, json) Hash identifier: a8998Kefl2ylS1lPDOmyfl7MaxYsX4PgWmiQTaYNjUg= Subject key identifier: 94:57:0F:86:57:71:FC:74:F1:15:BE:A4:70:55:62:7E:7E:A0:E0:DF Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1315 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/lFcPhldx_HTxFb6kcFVifn6g4N8.roa Signing time: Mon 10 Feb 2025 14:26:07 +0000 ROA not before: Mon 10 Feb 2025 14:26:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 103.130.124.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4885 (0x1315) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Feb 10 14:26:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=94570F865771FC74F115BEA47055627E7EA0E0DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:ac:4b:09:4e:e3:cb:22:ee:8d:15:66:a2:39: 7b:5c:2f:6f:f4:da:56:89:33:d5:a5:09:90:40:af: 1e:f5:d1:2e:46:84:f7:1c:23:7f:f0:8a:1e:67:82: e7:22:fa:c2:4e:f1:90:d4:e0:c1:97:8c:c6:a6:51: 87:e1:48:b4:c5:4c:02:37:ea:6d:97:ec:fd:d2:0a: 6a:84:e6:cc:be:27:1b:22:5f:b7:f0:42:67:4b:79: 2f:6b:6b:4c:22:bc:23:1a:30:b4:65:68:d9:35:1c: 2e:f5:f4:cc:0d:93:b9:b5:9c:b5:6b:e4:4c:d4:aa: 79:20:57:f0:01:7a:20:8c:a8:68:21:b7:6f:17:4c: 28:b6:17:90:f1:e3:ef:2d:b7:6e:ad:ef:6f:d9:0e: 7b:27:8b:de:e9:80:fe:9a:e2:f2:91:4b:8d:b4:79: 71:12:79:31:24:ac:71:ad:53:ac:98:04:ad:10:2d: c6:aa:6e:11:17:03:08:44:67:7c:33:68:10:0f:bd: 00:70:8d:fd:12:d2:8b:9b:ff:a6:8a:a9:a6:7d:67: 81:62:e1:79:02:cf:e3:35:0d:9d:41:44:91:53:6a: 45:52:a9:d8:c5:fe:52:5c:a4:cb:8b:a5:4d:a5:eb: 41:a7:19:6a:11:6f:70:64:81:2a:ea:e5:fe:62:d8: 36:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:57:0F:86:57:71:FC:74:F1:15:BE:A4:70:55:62:7E:7E:A0:E0:DF X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/lFcPhldx_HTxFb6kcFVifn6g4N8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.124.0/22 Signature Algorithm: sha256WithRSAEncryption 33:b7:17:cd:6d:c1:ef:67:04:35:c7:21:87:c8:86:6f:10:5f: f0:64:76:f0:52:7c:cb:cd:f7:b8:38:35:8d:27:55:f5:ce:b2: a7:57:f3:b5:4a:a4:6d:e7:f8:5a:8c:80:91:66:d0:57:57:ab: e6:72:d3:0f:c7:20:a4:be:d6:fc:a2:83:db:55:cf:4e:15:96: 8e:7c:81:a4:dd:59:70:aa:8a:d4:a5:b6:c9:8b:5b:64:63:d6: 7e:7b:ff:26:9b:33:ff:9e:5b:80:d9:50:5f:ba:5a:72:85:d9: e4:43:8e:fa:33:6c:b5:1b:ff:41:92:5a:7e:29:57:3e:67:4c: f1:47:71:74:a0:eb:2f:da:a5:9b:49:fa:c7:e9:97:86:59:81: af:6c:b1:1e:9e:67:12:7d:25:ce:8e:73:c5:71:9a:3e:f3:52: fa:80:66:de:36:1f:19:82:44:69:4f:a6:c5:22:60:a9:a4:b3: 15:fb:66:57:9a:10:79:19:43:16:20:5c:dd:2c:65:86:3d:59: d5:6c:25:0c:e2:8c:c6:12:ac:c7:62:bf:bf:79:e2:59:b3:5f: 75:90:e2:63:a7:3e:23:d6:3a:88:01:f8:70:0d:be:23:66:01: 04:b8:88:a5:00:6a:ca:37:66:dc:3d:96:e4:5b:6a:e7:f6:6d: 80:14:8b:65 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICExUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTAyMTAx NDI2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0NTcwRjg2NTc3MUZD NzRGMTE1QkVBNDcwNTU2MjdFN0VBMEUwREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBrEsJTuPLIu6NFWaiOXtcL2/02laJM9WlCZBArx710S5GhPcc I3/wih5nguci+sJO8ZDU4MGXjMamUYfhSLTFTAI36m2X7P3SCmqE5sy+JxsiX7fw QmdLeS9ra0wivCMaMLRlaNk1HC719MwNk7m1nLVr5EzUqnkgV/ABeiCMqGght28X TCi2F5Dx4+8tt26t72/ZDnsni97pgP6a4vKRS420eXESeTEkrHGtU6yYBK0QLcaq bhEXAwhEZ3wzaBAPvQBwjf0S0oub/6aKqaZ9Z4Fi4XkCz+M1DZ1BRJFTakVSqdjF /lJcpMuLpU2l60GnGWoRb3BkgSrq5f5i2DZZAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUlFcPhldx/HTxFb6kcFVifn6g4N8wHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9sRmNQaGxkeF9IVHhGYjZrY0ZW aWZuNmc0Tjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4J8 MA0GCSqGSIb3DQEBCwUAA4IBAQAztxfNbcHvZwQ1xyGHyIZvEF/wZHbwUnzLzfe4 ODWNJ1X1zrKnV/O1SqRt5/hajICRZtBXV6vmctMPxyCkvtb8ooPbVc9OFZaOfIGk 3VlwqorUpbbJi1tkY9Z+e/8mmzP/nluA2VBfulpyhdnkQ476M2y1G/9Bklp+KVc+ Z0zxR3F0oOsv2qWbSfrH6ZeGWYGvbLEenmcSfSXOjnPFcZo+81L6gGbeNh8ZgkRp T6bFImCppLMV+2ZXmhB5GUMWIFzdLGWGPVnVbCUM4ozGEqzHYr+/eeJZs191kOJj pz4j1jqIAfhwDb4jZgEEuIilAGrKN2bcPZbkW2rn9m2AFItl -----END CERTIFICATE-----Generated at Thu Apr 17 12:10:30 2025 by rpki-client