$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/I7b0BNyl-yExsyh78gk1RU4QDLM.roa File: I7b0BNyl-yExsyh78gk1RU4QDLM.roa (raw, json) Hash identifier: GNi0fC/ZzNuigsGjC4eVEr29bxTJmQCk5gFZJXwagJA= Subject key identifier: 23:B6:F4:04:DC:A5:FB:21:31:B3:28:7B:F2:09:35:45:4E:10:0C:B3 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0D93 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/I7b0BNyl-yExsyh78gk1RU4QDLM.roa Signing time: Wed 18 Jun 2025 10:18:49 +0000 ROA not before: Wed 18 Jun 2025 10:18:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 197537 IP address blocks: 103.43.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 07:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3475 (0xd93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Jun 18 10:18:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=23B6F404DCA5FB2131B3287BF20935454E100CB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ac:84:aa:5d:3d:1e:3d:c6:21:3a:18:6d:15: 08:21:5b:41:7b:43:d2:41:1d:5b:60:a9:00:43:01: 49:8d:62:79:4e:f6:9a:28:e4:ba:20:26:4b:4f:ae: 01:bf:94:9a:68:7b:3b:4f:72:a6:ba:4b:dc:f3:a8: 8c:47:fd:40:66:a6:c6:5f:33:5b:11:af:38:3c:27: 41:fb:90:fb:c2:9f:3a:4e:d0:a2:23:af:68:7e:26: 2a:0e:2e:81:d8:0f:21:35:c5:7a:ec:15:13:94:e2: fb:9e:2e:20:56:ac:ea:a2:37:ac:00:84:cf:8b:a1: 92:18:27:5c:3c:eb:17:86:43:29:7a:bc:15:44:57: 0b:c0:e8:41:79:f1:11:66:d3:76:1c:38:e1:7f:ea: 8a:3b:88:99:6a:f3:52:79:f8:79:97:f0:77:60:63: 89:37:c2:31:b3:7d:53:8a:e5:34:5f:52:d4:0b:c8: d7:76:03:00:13:5d:16:fd:25:ed:34:df:fd:ae:25: d5:33:9f:34:c9:fc:14:c5:b7:cf:3c:79:72:58:32: 3f:dd:20:ec:20:1e:fa:4f:af:01:97:ad:37:5a:e4: 13:16:b3:9c:25:4c:a7:77:f2:ca:93:b0:4c:e5:10: 5d:81:8d:34:38:25:0f:a6:21:ba:17:88:1e:95:71: 08:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B6:F4:04:DC:A5:FB:21:31:B3:28:7B:F2:09:35:45:4E:10:0C:B3 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/I7b0BNyl-yExsyh78gk1RU4QDLM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.43.49.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:d8:97:1c:86:1a:8d:06:08:2a:79:eb:63:a6:ec:84:e4:c8: f0:96:ef:ff:7f:22:0b:81:bc:32:31:ae:22:25:5d:97:db:bc: d0:de:73:9b:2f:96:32:0b:2f:35:91:85:40:b1:75:1f:cd:1d: cf:0b:5e:23:f3:63:21:b2:0f:48:f3:0e:ac:ae:84:2e:9d:51: 8a:3d:a8:93:b7:bc:62:03:17:36:18:26:5a:72:e1:f9:c8:fe: 79:6a:2c:c4:6b:cd:da:96:00:bc:3f:e6:51:d4:c3:30:9d:b7: 32:af:3c:eb:ed:5d:80:72:fa:09:78:cf:6a:52:9f:44:91:fa: a1:2a:7e:2d:c4:15:b1:64:b0:37:2e:fb:ba:a3:8a:e6:68:d7: a0:13:75:60:21:f5:00:3b:19:06:05:92:63:1a:7d:0e:f2:61: 29:68:ba:b0:55:84:39:a0:d3:29:bf:3f:62:a0:55:e0:6c:c6: db:7b:e3:20:36:8e:49:c9:98:96:a5:a9:37:f4:2e:09:81:cf: 4a:d2:3e:b5:2b:04:ab:4d:85:b5:0e:b0:50:46:d2:e5:6f:35: d7:2b:ca:d2:72:62:2f:af:7f:8e:22:f8:ac:83:10:e5:62:4c: 06:3b:d3:b7:7e:b4:48:41:ab:4c:68:f2:40:9c:69:bb:57:8c: 80:02:82:69 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDZMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNTA2MTgx MDE4NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIzQjZGNDA0RENBNUZC MjEzMUIzMjg3QkYyMDkzNTQ1NEUxMDBDQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMrISqXT0ePcYhOhhtFQghW0F7Q9JBHVtgqQBDAUmNYnlO9poo 5LogJktPrgG/lJpoeztPcqa6S9zzqIxH/UBmpsZfM1sRrzg8J0H7kPvCnzpO0KIj r2h+JioOLoHYDyE1xXrsFROU4vueLiBWrOqiN6wAhM+LoZIYJ1w86xeGQyl6vBVE VwvA6EF58RFm03YcOOF/6oo7iJlq81J5+HmX8HdgY4k3wjGzfVOK5TRfUtQLyNd2 AwATXRb9Je003/2uJdUznzTJ/BTFt888eXJYMj/dIOwgHvpPrwGXrTda5BMWs5wl TKd38sqTsEzlEF2BjTQ4JQ+mIboXiB6VcQh7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUI7b0BNyl+yExsyh78gk1RU4QDLMwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9JN2IwQk55bC15RXhzeWg3OGdr MVJVNFFETE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZysx MA0GCSqGSIb3DQEBCwUAA4IBAQCc2JcchhqNBggqeetjpuyE5Mjwlu//fyILgbwy Ma4iJV2X27zQ3nObL5YyCy81kYVAsXUfzR3PC14j82Mhsg9I8w6sroQunVGKPaiT t7xiAxc2GCZacuH5yP55aizEa83algC8P+ZR1MMwnbcyrzzr7V2AcvoJeM9qUp9E kfqhKn4txBWxZLA3Lvu6o4rmaNegE3VgIfUAOxkGBZJjGn0O8mEpaLqwVYQ5oNMp vz9ioFXgbMbbe+MgNo5JyZiWpak39C4Jgc9K0j61KwSrTYW1DrBQRtLlbzXXK8rS cmIvr3+OIvisgxDlYkwGO9O3frRIQatMaPJAnGm7V4yAAoJp -----END CERTIFICATE-----Generated at Wed Jun 25 03:29:24 2025 by rpki-client