$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Ym72pS9dsfJ8Uluuevku4J3iHwg.roa File: Ym72pS9dsfJ8Uluuevku4J3iHwg.roa (raw, json) Hash identifier: FSzJ3AV6nOuO1lEYdaFPucNHC8zxEZLKx78/eLTClng= Subject key identifier: 62:6E:F6:A5:2F:5D:B1:F2:7C:52:5B:AE:7A:F9:2E:E0:9D:E2:1F:08 Certificate issuer: /CN=1AADEB4D45D7941D9B53EF4C2CC61B9602476FCA Certificate serial: 1161 Authority key identifier: 1A:AD:EB:4D:45:D7:94:1D:9B:53:EF:4C:2C:C6:1B:96:02:47:6F:CA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Gq3rTUXXlB2bU-9MLMYblgJHb8o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Ym72pS9dsfJ8Uluuevku4J3iHwg.roa Signing time: Mon 10 Feb 2025 13:56:20 +0000 ROA not before: Mon 10 Feb 2025 13:56:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 103.125.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Gq3rTUXXlB2bU-9MLMYblgJHb8o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Gq3rTUXXlB2bU-9MLMYblgJHb8o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Gq3rTUXXlB2bU-9MLMYblgJHb8o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4449 (0x1161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1AADEB4D45D7941D9B53EF4C2CC61B9602476FCA Validity Not Before: Feb 10 13:56:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=626EF6A52F5DB1F27C525BAE7AF92EE09DE21F08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ea:23:5a:16:d4:1d:39:68:eb:f8:88:24:74: 35:2b:e6:c0:e8:26:0a:30:fe:c4:6d:4a:ee:6b:60: ac:e5:7d:9b:8b:03:1b:e6:37:97:b8:27:34:b7:45: 9e:4b:6a:84:17:35:cd:00:3a:a4:be:a6:47:42:89: 98:fe:3b:44:fd:3d:b4:34:d3:86:cc:1e:9d:aa:4c: a5:97:11:e7:3d:c0:98:5b:b0:8b:bb:fb:52:f1:c1: 63:fc:f3:bf:fb:ae:b0:b0:13:19:4f:f3:cd:da:25: ef:0c:86:e0:46:71:18:ad:ff:f7:e8:8d:be:58:7c: 6d:f4:05:93:68:99:84:ec:52:2f:9e:7e:66:e0:78: ca:34:1d:8b:96:f3:4f:cf:a0:8e:3a:0a:88:7d:aa: f4:21:0f:03:91:2a:bb:2b:38:7e:94:ee:f0:b6:b1: 41:cd:df:e3:38:4c:c5:16:56:b3:e4:92:29:9e:ca: b8:a3:3e:e0:e5:b0:58:dc:73:70:28:b5:24:da:6a: cf:9d:02:e4:5e:50:f6:22:86:73:ba:78:b4:b8:41: 12:eb:2c:58:14:2f:7d:88:aa:eb:42:5e:4b:96:af: 1b:3d:5d:52:c9:4d:57:c8:f9:e1:3a:6c:4e:38:dd: c5:2b:25:51:8d:96:9d:17:3b:12:43:dd:19:f7:e7: cd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:6E:F6:A5:2F:5D:B1:F2:7C:52:5B:AE:7A:F9:2E:E0:9D:E2:1F:08 X509v3 Authority Key Identifier: keyid:1A:AD:EB:4D:45:D7:94:1D:9B:53:EF:4C:2C:C6:1B:96:02:47:6F:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Gq3rTUXXlB2bU-9MLMYblgJHb8o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Gq3rTUXXlB2bU-9MLMYblgJHb8o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BOOKS/Ym72pS9dsfJ8Uluuevku4J3iHwg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.125.228.0/22 Signature Algorithm: sha256WithRSAEncryption 43:ae:57:2d:f7:24:96:1f:d9:ba:9b:d6:8c:c4:4f:da:04:8d: ec:a1:81:3e:7f:f1:fc:f2:6e:d1:89:c5:0b:42:a0:a8:47:ec: cb:d5:3e:f5:42:0e:5b:63:9e:0b:ff:cf:3c:70:86:0c:9d:0f: 97:51:c5:82:91:34:0a:bd:9a:92:93:e6:08:cd:f1:b5:a1:a2: 9f:a9:df:b0:3d:0e:33:3f:0f:94:dc:4f:d4:78:f9:71:6b:bb: ca:26:04:d0:ad:5d:88:57:3c:73:f9:8c:b7:a3:a8:d0:40:2a: f9:6f:bd:94:21:b2:b8:a8:41:94:12:db:0d:36:16:fe:e7:e9: b8:0d:41:d4:17:c6:9e:79:ce:68:f7:e2:f3:5a:1b:d1:95:f0: 79:d2:7f:6c:1a:30:cc:04:cd:8f:30:e1:e5:fc:c6:3a:29:a8: e6:6c:7a:d5:2c:ba:fa:a5:95:bd:4d:4c:c3:d4:e6:58:8a:e0: 96:7c:89:86:48:25:41:e8:1b:dd:ea:dd:da:e5:2d:84:06:bf: 90:e0:09:3c:16:2f:04:b3:c1:33:e6:11:9c:3b:6a:1b:97:f2: 86:03:0e:b4:fa:8c:85:0f:5b:c1:23:86:62:f6:b4:82:7f:77: fa:69:08:b9:3f:00:e8:02:ac:53:2b:5d:21:fe:78:81:74:7b: b3:33:66:b8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUFB REVCNEQ0NUQ3OTQxRDlCNTNFRjRDMkNDNjFCOTYwMjQ3NkZDQTAeFw0yNTAyMTAx MzU2MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyNkVGNkE1MkY1REIx RjI3QzUyNUJBRTdBRjkyRUUwOURFMjFGMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDm6iNaFtQdOWjr+IgkdDUr5sDoJgow/sRtSu5rYKzlfZuLAxvm N5e4JzS3RZ5LaoQXNc0AOqS+pkdCiZj+O0T9PbQ004bMHp2qTKWXEec9wJhbsIu7 +1LxwWP887/7rrCwExlP883aJe8MhuBGcRit//fojb5YfG30BZNomYTsUi+efmbg eMo0HYuW80/PoI46Coh9qvQhDwORKrsrOH6U7vC2sUHN3+M4TMUWVrPkkimeyrij PuDlsFjcc3AotSTaas+dAuReUPYihnO6eLS4QRLrLFgUL32IqutCXkuWrxs9XVLJ TVfI+eE6bE443cUrJVGNlp0XOxJD3Rn3581NAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUYm72pS9dsfJ8Uluuevku4J3iHwgwHwYDVR0jBBgwFoAUGq3rTUXXlB2bU+9M LMYblgJHb8owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQk9PS1Mv R3EzclRVWFhsQjJiVS05TUxNWWJsZ0pIYjhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9HcTNyVFVYWGxCMmJVLTlNTE1ZYmxnSkhiOG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CT09LUy9ZbTcycFM5ZHNmSjhVbHV1ZXZr dTRKM2lId2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ33k MA0GCSqGSIb3DQEBCwUAA4IBAQBDrlct9ySWH9m6m9aMxE/aBI3soYE+f/H88m7R icULQqCoR+zL1T71Qg5bY54L/888cIYMnQ+XUcWCkTQKvZqSk+YIzfG1oaKfqd+w PQ4zPw+U3E/UePlxa7vKJgTQrV2IVzxz+Yy3o6jQQCr5b72UIbK4qEGUEtsNNhb+ 5+m4DUHUF8aeec5o9+LzWhvRlfB50n9sGjDMBM2PMOHl/MY6KajmbHrVLLr6pZW9 TUzD1OZYiuCWfImGSCVB6Bvd6t3a5S2EBr+Q4Ak8Fi8Es8Ez5hGcO2obl/KGAw60 +oyFD1vBI4Zi9rSCf3f6aQi5PwDoAqxTK10h/niBdHuzM2a4 -----END CERTIFICATE-----Generated at Sat Apr 26 14:36:59 2025 by rpki-client