$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/vT8Jj02I9Y7oHFCyuEQKSLD_BTI.roa File: vT8Jj02I9Y7oHFCyuEQKSLD_BTI.roa (raw, json) Hash identifier: 6Eu5I+LkUIcvvutEeVotwhPXvj1cufe77CJBUb3ATcE= Subject key identifier: BD:3F:09:8F:4D:88:F5:8E:E8:1C:50:B2:B8:44:0A:48:B0:FF:05:32 Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 1317 Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/vT8Jj02I9Y7oHFCyuEQKSLD_BTI.roa Signing time: Mon 10 Feb 2025 14:26:07 +0000 ROA not before: Mon 10 Feb 2025 14:26:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 103.130.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4887 (0x1317) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Feb 10 14:26:07 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BD3F098F4D88F58EE81C50B2B8440A48B0FF0532 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:9f:20:a0:72:fe:ad:81:ec:cc:5c:0d:e8:c7: fe:a7:e5:a9:63:85:f2:a3:3a:a4:07:03:2d:5b:81: 13:94:17:4f:0d:4a:d6:22:24:cb:7c:bb:20:bf:cc: be:2f:ab:d8:a2:4e:d5:ae:b5:1a:d2:af:bd:ee:90: d9:dc:6d:3a:ab:80:8d:65:ec:8a:f7:37:8c:93:5f: 5e:8f:27:e4:a4:5a:e9:f7:8c:ab:22:68:c9:79:4d: 1e:fc:5f:1e:1e:c3:20:70:f2:d2:43:df:d9:83:e9: 6b:a5:b3:c2:63:cc:fa:72:8f:7a:ed:7d:8d:3c:2b: d2:ee:8f:8f:b9:8a:3a:86:97:cb:d6:b8:8a:5b:0e: 17:d2:51:d1:74:6f:07:fb:25:d3:d3:5c:29:95:42: 43:c5:f5:9c:8d:f3:df:e1:14:f1:99:32:d9:b9:0f: 85:65:91:79:99:ac:2a:5e:c4:fd:06:31:92:4d:f8: ab:e4:04:c9:3d:ec:85:d6:6d:62:30:79:ad:33:98: 14:c9:32:9d:2e:fe:70:73:2a:98:56:79:1e:e3:14: 55:19:0e:36:d5:6a:b6:23:8d:89:18:05:4e:4a:8c: 60:6d:38:b0:b2:49:8d:bd:5c:b1:3d:54:bf:d0:83: 68:9b:3a:34:65:21:5c:a9:04:e0:dd:ab:07:45:5f: 83:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:3F:09:8F:4D:88:F5:8E:E8:1C:50:B2:B8:44:0A:48:B0:FF:05:32 X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/vT8Jj02I9Y7oHFCyuEQKSLD_BTI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.124.0/24 Signature Algorithm: sha256WithRSAEncryption 70:66:33:76:95:17:74:e9:5e:c5:08:8f:66:bb:bd:e6:d9:2a: 31:84:c7:ce:8f:55:b3:3b:c2:9f:7f:31:cd:19:a1:f1:4c:f3: 2e:8d:03:01:c5:a5:cc:e4:f6:3d:b3:d7:4a:6c:73:e4:18:7d: 2c:80:ca:91:26:4f:36:a1:b2:0f:f8:d3:41:20:8d:e4:9a:19: f0:77:bc:55:79:fd:8c:1e:5b:0b:be:3c:08:1b:6e:17:ac:b3: 24:78:10:2f:30:6c:bf:05:a5:28:5f:99:bf:47:ee:71:48:99: d6:4e:dd:d8:91:86:0e:18:2c:72:e7:e6:a6:35:8c:f0:f4:66: 74:fd:05:2e:b9:30:d7:e2:7b:e6:2f:d9:c3:e0:71:ee:6a:a4: 9b:77:15:04:19:59:c1:50:68:0e:f6:35:cb:58:88:ba:cb:1d: fe:a3:2a:76:e7:c9:91:69:60:6d:a0:9a:eb:d4:c9:a7:4b:ce: 17:ca:c2:fa:84:d1:89:b9:14:67:d1:f2:d3:aa:c5:ef:10:f2: 8e:9f:f8:91:82:43:19:3b:43:13:74:e7:66:3e:18:b0:8e:1b: 97:16:4f:ac:9b:3a:96:a0:89:ca:2c:29:81:f4:17:42:fa:83: 0a:2b:60:d0:dd:d1:55:7a:99:41:91:a3:c4:1d:e5:8f:27:00: 81:88:85:e8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICExcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNTAyMTAx NDI2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJEM0YwOThGNEQ4OEY1 OEVFODFDNTBCMkI4NDQwQTQ4QjBGRjA1MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjnyCgcv6tgezMXA3ox/6n5aljhfKjOqQHAy1bgROUF08NStYi JMt8uyC/zL4vq9iiTtWutRrSr73ukNncbTqrgI1l7Ir3N4yTX16PJ+SkWun3jKsi aMl5TR78Xx4ewyBw8tJD39mD6Wuls8JjzPpyj3rtfY08K9Luj4+5ijqGl8vWuIpb DhfSUdF0bwf7JdPTXCmVQkPF9ZyN89/hFPGZMtm5D4VlkXmZrCpexP0GMZJN+Kvk BMk97IXWbWIwea0zmBTJMp0u/nBzKphWeR7jFFUZDjbVarYjjYkYBU5KjGBtOLCy SY29XLE9VL/Qg2ibOjRlIVypBODdqwdFX4MPAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUvT8Jj02I9Y7oHFCyuEQKSLD/BTIwHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi92VDhKajAySTlZN29IRkN5dUVR S1NMRF9CVEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ4J8 MA0GCSqGSIb3DQEBCwUAA4IBAQBwZjN2lRd06V7FCI9mu73m2SoxhMfOj1WzO8Kf fzHNGaHxTPMujQMBxaXM5PY9s9dKbHPkGH0sgMqRJk82obIP+NNBII3kmhnwd7xV ef2MHlsLvjwIG24XrLMkeBAvMGy/BaUoX5m/R+5xSJnWTt3YkYYOGCxy5+amNYzw 9GZ0/QUuuTDX4nvmL9nD4HHuaqSbdxUEGVnBUGgO9jXLWIi6yx3+oyp258mRaWBt oJrr1MmnS84XysL6hNGJuRRn0fLTqsXvEPKOn/iRgkMZO0MTdOdmPhiwjhuXFk+s mzqWoInKLCmB9BdC+oMKK2DQ3dFVeplBkaPEHeWPJwCBiIXo -----END CERTIFICATE-----Generated at Thu Apr 17 12:02:47 2025 by rpki-client