$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINAN/PHv8W9OgFC9_QMM9HaD7nJXtMHs.roa File: PHv8W9OgFC9_QMM9HaD7nJXtMHs.roa (raw, json) Hash identifier: xv9vUee3qiONU+8p4ItP9/KDv86P5py2TJ9Ho/1PQl4= Subject key identifier: 3C:7B:FC:5B:D3:A0:14:2F:7F:40:C3:3D:1D:A0:FB:9C:95:ED:30:7B Certificate issuer: /CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Certificate serial: 0185 Authority key identifier: 27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/PHv8W9OgFC9_QMM9HaD7nJXtMHs.roa Signing time: Mon 10 Feb 2025 13:42:47 +0000 ROA not before: Mon 10 Feb 2025 13:42:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.64.20.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 17 Apr 2025 13:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27E1699C6CFBD770F943A6BDF38F6BF481BB1E97 Validity Not Before: Feb 10 13:42:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3C7BFC5BD3A0142F7F40C33D1DA0FB9C95ED307B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:81:4c:ab:17:cc:83:d2:89:86:00:4f:55:04: d9:fd:73:7c:9f:af:42:5a:63:9b:0e:56:3f:7b:9a: 4c:d1:30:6f:8f:c5:54:5e:5d:1f:86:7f:67:a7:eb: 88:d2:a9:a8:d7:c2:9d:87:f9:06:57:66:24:a6:55: 75:48:1a:cf:e3:45:b0:dd:ee:7c:74:d3:1c:81:11: 9a:a1:99:66:a0:53:b4:cc:59:d1:ef:11:84:0b:97: b1:fa:17:19:83:67:ba:76:ec:d2:9f:87:70:fb:6b: b1:7f:f1:c5:d7:d2:74:ee:90:b0:f1:d9:c2:e6:73: 13:c4:9d:56:3a:45:21:f5:2a:a5:a8:ce:03:55:99: 8c:85:ea:cb:9d:86:e9:e6:82:9d:52:06:cd:e5:22: 8e:11:71:d7:48:fc:b1:e1:4c:2d:d3:47:52:e4:34: 7a:0f:bf:6d:dc:d6:74:de:b8:89:25:17:d2:5d:54: 4d:5d:f4:cf:d0:45:4d:b8:d7:df:0b:43:2b:5b:e1: 43:b0:a2:7e:b3:78:0f:a3:a7:ce:6d:15:bf:e1:b1: 3e:f2:8a:c1:46:09:dd:b4:cc:04:32:1f:98:63:df: c0:f7:9d:f8:ff:24:37:83:49:bc:d5:66:ad:1a:da: 24:f7:ef:82:f9:b4:e8:89:86:e6:e6:73:8d:b3:d3: f1:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:7B:FC:5B:D3:A0:14:2F:7F:40:C3:3D:1D:A0:FB:9C:95:ED:30:7B X509v3 Authority Key Identifier: keyid:27:E1:69:9C:6C:FB:D7:70:F9:43:A6:BD:F3:8F:6B:F4:81:BB:1E:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/J-FpnGz713D5Q6a9849r9IG7Hpc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J-FpnGz713D5Q6a9849r9IG7Hpc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINAN/PHv8W9OgFC9_QMM9HaD7nJXtMHs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.64.20.0/23 Signature Algorithm: sha256WithRSAEncryption 65:60:cf:a8:2d:d7:65:1d:b8:aa:03:d7:e0:6d:7d:9a:35:e1: 8f:b6:39:d5:c5:6c:44:cf:6e:d3:b3:ad:28:9d:ae:56:67:9d: 67:9b:e7:bd:46:c0:1e:e1:1b:24:81:4a:51:4c:e4:de:d7:0e: 43:35:63:3b:cd:ad:31:d2:81:fb:40:ca:46:6e:3c:81:67:92: 4c:77:8c:4f:9d:94:35:14:20:ee:d6:b6:18:3a:aa:23:b9:31: 06:12:ea:70:b7:ba:23:2b:32:dc:81:78:7f:95:e2:46:49:78: 0c:9a:13:49:d7:d0:03:07:56:78:3d:3b:43:46:50:ee:9a:db: 1d:68:8b:48:f2:c0:9a:72:24:a4:f0:ea:12:6f:7e:d3:06:32: de:9f:f6:37:8c:84:74:e3:99:c9:2c:22:18:59:e7:35:8a:ec: 63:84:62:2a:85:6c:d2:f2:82:bc:7e:8d:bf:9a:f5:98:fd:61: 7a:90:94:fa:d2:99:31:c9:98:02:27:0a:1c:26:81:cb:a1:19: b9:74:49:da:1e:6b:99:81:d7:cd:f2:ca:e5:9b:67:0c:5f:ca: 6b:b3:0d:60:af:1f:9d:c4:e5:2c:a4:e7:63:d3:3b:f4:f7:c5: 11:bf:05:f5:de:2c:df:ec:75:15:99:9f:cd:4d:d7:de:45:00: 05:82:d7:4a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjdF MTY5OUM2Q0ZCRDc3MEY5NDNBNkJERjM4RjZCRjQ4MUJCMUU5NzAeFw0yNTAyMTAx MzQyNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDN0JGQzVCRDNBMDE0 MkY3RjQwQzMzRDFEQTBGQjlDOTVFRDMwN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCigUyrF8yD0omGAE9VBNn9c3yfr0JaY5sOVj97mkzRMG+PxVRe XR+Gf2en64jSqajXwp2H+QZXZiSmVXVIGs/jRbDd7nx00xyBEZqhmWagU7TMWdHv EYQLl7H6FxmDZ7p27NKfh3D7a7F/8cXX0nTukLDx2cLmcxPEnVY6RSH1KqWozgNV mYyF6sudhunmgp1SBs3lIo4RcddI/LHhTC3TR1LkNHoPv23c1nTeuIklF9JdVE1d 9M/QRU24198LQytb4UOwon6zeA+jp85tFb/hsT7yisFGCd20zAQyH5hj38D3nfj/ JDeDSbzVZq0a2iT374L5tOiJhubmc42z0/HrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUPHv8W9OgFC9/QMM9HaD7nJXtMHswHwYDVR0jBBgwFoAUJ+FpnGz713D5Q6a9 849r9IG7HpcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWElOQU4v Si1GcG5HejcxM0Q1UTZhOTg0OXI5SUc3SHBjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9KLUZwbkd6NzEzRDVRNmE5ODQ5cjlJRzdIcGMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTi9QSHY4VzlPZ0ZDOV9RTU05SGFE N25KWHRNSHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0AU MA0GCSqGSIb3DQEBCwUAA4IBAQBlYM+oLddlHbiqA9fgbX2aNeGPtjnVxWxEz27T s60ona5WZ51nm+e9RsAe4RskgUpRTOTe1w5DNWM7za0x0oH7QMpGbjyBZ5JMd4xP nZQ1FCDu1rYYOqojuTEGEupwt7ojKzLcgXh/leJGSXgMmhNJ19ADB1Z4PTtDRlDu mtsdaItI8sCaciSk8OoSb37TBjLen/Y3jIR045nJLCIYWec1iuxjhGIqhWzS8oK8 fo2/mvWY/WF6kJT60pkxyZgCJwocJoHLoRm5dEnaHmuZgdfN8srlm2cMX8prsw1g rx+dxOUspOdj0zv098URvwX13izf7HUVmZ/NTdfeRQAFgtdK -----END CERTIFICATE-----Generated at Thu Apr 17 13:00:28 2025 by rpki-client