$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/mDbR5R0imlnqjO3pZR9c4WDYs6M.roa File: mDbR5R0imlnqjO3pZR9c4WDYs6M.roa (raw, json) Hash identifier: jyvPxhfbAhC/56SiEQPPQ6PT89q8GcgjTDlqHFknTao= Subject key identifier: 98:36:D1:E5:1D:22:9A:59:EA:8C:ED:E9:65:1F:5C:E1:60:D8:B3:A3 Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 131A Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/mDbR5R0imlnqjO3pZR9c4WDYs6M.roa Signing time: Mon 10 Feb 2025 14:26:08 +0000 ROA not before: Mon 10 Feb 2025 14:26:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 103.130.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4890 (0x131a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Feb 10 14:26:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9836D1E51D229A59EA8CEDE9651F5CE160D8B3A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:08:2a:11:58:b6:0d:bb:c5:93:77:91:8e:4e: a0:f5:45:d8:20:a2:1a:23:d4:04:89:f1:85:5e:fe: d5:31:1d:6b:17:82:db:17:91:da:8f:aa:f6:b9:50: 27:68:0a:ba:78:1c:d9:f6:22:75:c2:eb:54:71:32: 2c:c9:3a:40:3d:0b:63:de:46:13:33:3c:d7:1f:6d: 41:bd:4d:b1:b2:8b:03:09:58:aa:f1:ef:2c:e0:ac: 9a:d3:70:1d:fc:3e:12:28:9e:93:3f:6f:08:60:55: 98:67:57:f1:db:c6:ec:71:d8:bf:4e:a3:ea:ea:df: 09:a7:5a:40:97:f1:c8:15:3e:d9:49:72:98:1f:14: 8f:99:5a:a0:f2:9e:a4:4f:76:e6:9f:6f:76:5d:46: 08:c4:ae:e6:87:66:af:3d:f3:5c:85:40:c0:6e:57: 42:df:3e:0b:39:22:e2:cb:8f:93:b5:49:fc:72:6b: 4b:08:b4:59:e0:54:8a:25:5e:71:98:4b:46:aa:71: 9e:a0:86:4f:80:8f:92:05:c8:86:f1:06:14:c9:f6: 8b:48:55:a9:ff:95:96:15:89:fe:47:b0:f7:a2:4a: 74:3e:7f:fb:24:2d:2f:dd:35:d6:09:e8:bd:3d:15: ae:46:11:f1:ce:65:16:f4:84:c3:1e:c8:54:c0:7c: 67:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:36:D1:E5:1D:22:9A:59:EA:8C:ED:E9:65:1F:5C:E1:60:D8:B3:A3 X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/mDbR5R0imlnqjO3pZR9c4WDYs6M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.127.0/24 Signature Algorithm: sha256WithRSAEncryption 39:21:c2:e0:20:93:e3:99:ac:cb:ed:fc:f4:ae:c6:30:17:98: dd:94:84:c4:e4:1c:a2:85:f1:91:21:b7:b5:66:85:fd:c9:19: 23:e3:ee:81:37:2e:7a:d2:d8:41:22:92:c9:6d:ea:ff:4d:0d: e7:6e:76:b7:1a:b2:58:7a:66:2c:b5:57:54:8a:5c:e5:69:5c: 9c:16:be:9d:9e:be:bb:7b:b0:9e:24:e8:e8:ca:b6:b5:68:41: 3a:38:f2:3a:80:aa:20:58:77:6b:51:ef:86:d7:3a:97:6f:ee: 8b:0a:a7:d4:4e:9f:27:d3:8e:9c:70:ae:92:a6:14:39:98:5c: b7:03:ce:4d:07:9a:bb:5c:81:00:0e:76:5f:ba:bd:0c:fe:6a: b9:8c:a7:cd:e9:2b:ba:9a:8b:0a:db:7b:42:9a:17:6e:3d:12: e2:49:d3:99:f2:d3:44:0b:1c:69:60:87:9c:b9:2e:80:00:a5: eb:a5:5a:34:42:f5:a9:a9:e0:e3:8f:16:b6:5b:4a:4f:1f:71: 51:50:f9:4a:d0:2c:c7:2e:69:ed:a6:00:8a:72:d4:bb:36:08: 39:9d:ad:18:38:33:74:0f:01:46:59:3a:0f:ab:9d:b0:65:26: 32:74:8a:89:ee:ae:29:30:c0:15:6d:e2:d2:b8:71:e2:f0:14: 1a:64:08:97 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICExowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTAyMTAx NDI2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4MzZEMUU1MUQyMjlB NTlFQThDRURFOTY1MUY1Q0UxNjBEOEIzQTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXCCoRWLYNu8WTd5GOTqD1Rdggohoj1ASJ8YVe/tUxHWsXgtsX kdqPqva5UCdoCrp4HNn2InXC61RxMizJOkA9C2PeRhMzPNcfbUG9TbGyiwMJWKrx 7yzgrJrTcB38PhIonpM/bwhgVZhnV/Hbxuxx2L9Oo+rq3wmnWkCX8cgVPtlJcpgf FI+ZWqDynqRPduafb3ZdRgjEruaHZq8981yFQMBuV0LfPgs5IuLLj5O1Sfxya0sI tFngVIolXnGYS0aqcZ6ghk+Aj5IFyIbxBhTJ9otIVan/lZYVif5HsPeiSnQ+f/sk LS/dNdYJ6L09Fa5GEfHOZRb0hMMeyFTAfGfJAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUmDbR5R0imlnqjO3pZR9c4WDYs6MwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9tRGJSNVIwaW1sbnFqTzNwWlI5 YzRXRFlzNk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J/ MA0GCSqGSIb3DQEBCwUAA4IBAQA5IcLgIJPjmazL7fz0rsYwF5jdlITE5ByihfGR Ibe1ZoX9yRkj4+6BNy560thBIpLJber/TQ3nbna3GrJYemYstVdUilzlaVycFr6d nr67e7CeJOjoyra1aEE6OPI6gKogWHdrUe+G1zqXb+6LCqfUTp8n046ccK6SphQ5 mFy3A85NB5q7XIEADnZfur0M/mq5jKfN6Su6mosK23tCmhduPRLiSdOZ8tNECxxp YIecuS6AAKXrpVo0QvWpqeDjjxa2W0pPH3FRUPlK0CzHLmntpgCKctS7Ngg5na0Y ODN0DwFGWToPq52wZSYydIqJ7q4pMMAVbeLSuHHi8BQaZAiX -----END CERTIFICATE-----Generated at Thu Apr 17 12:10:41 2025 by rpki-client