$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Kt144IxNF1SF__VsAGar25xhvc4.roa File: Kt144IxNF1SF__VsAGar25xhvc4.roa (raw, json) Hash identifier: Bc/T5aHsxR2ugC/sj/rS8yp41XbrwYfCvCMaJi1a2SA= Subject key identifier: 2A:DD:78:E0:8C:4D:17:54:85:FF:F5:6C:00:66:AB:DB:9C:61:BD:CE Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 1418 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Kt144IxNF1SF__VsAGar25xhvc4.roa Signing time: Fri 09 May 2025 01:07:20 +0000 ROA not before: Fri 09 May 2025 01:07:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 101.102.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 May 2025 21:51:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5144 (0x1418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: May 9 01:07:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2ADD78E08C4D175485FFF56C0066ABDB9C61BDCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:53:3e:dd:e9:5a:2d:6c:fe:92:38:9c:29:82: 6a:51:41:c2:6f:53:a7:9e:4d:e3:aa:ef:2c:d8:f2: d7:a4:42:7c:78:eb:88:ae:69:c6:15:b9:f7:c4:13: ff:26:7f:83:8c:ef:4f:1b:eb:30:75:9e:43:88:c7: b9:ed:98:5c:7f:fc:54:78:69:16:06:34:e8:a5:d5: 51:16:47:ee:e8:e7:6a:26:2e:8f:2e:77:b6:5d:db: a4:c7:3b:0a:0e:2e:03:b2:96:42:c2:9d:95:28:8a: eb:09:19:5e:1a:77:64:89:af:32:7d:e0:82:21:aa: 64:c7:c3:f2:63:cb:91:66:98:d8:57:06:18:1f:bd: 5c:14:e8:64:3b:20:23:77:f2:7c:bd:27:0c:5b:90: 2b:9e:2d:e1:80:39:46:34:b9:56:43:42:ce:43:ff: 31:96:ff:2d:eb:55:c9:e5:93:c0:1e:bd:23:ae:88: 0c:9d:0b:7d:09:83:d8:4c:21:0b:8b:0a:9e:61:46: 03:68:38:8d:55:f2:1b:e5:5e:96:3a:1c:32:0e:32: 0c:10:f7:55:e4:38:f0:d1:f2:64:c7:aa:89:a0:af: f3:61:0e:c0:8d:78:b4:11:a8:cd:0d:87:15:7b:f1: 04:db:6e:76:6a:ff:41:71:93:b0:3c:77:51:6d:43: 07:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:DD:78:E0:8C:4D:17:54:85:FF:F5:6C:00:66:AB:DB:9C:61:BD:CE X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/Kt144IxNF1SF__VsAGar25xhvc4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.102.103.0/24 Signature Algorithm: sha256WithRSAEncryption 28:c6:43:e6:57:fd:ff:3e:26:7b:6e:1a:1e:04:21:4f:07:22: 22:29:fe:1f:8f:f6:a7:4a:35:6c:f5:28:e8:1b:ff:ab:f8:41: 40:2d:46:65:74:07:b0:e9:15:85:31:24:0a:b2:56:d6:1b:32: c3:17:f5:07:64:c7:5f:e5:db:30:d3:7c:60:49:84:45:79:5a: 52:f3:b6:a1:e5:45:62:04:3d:1f:72:26:0d:6e:bd:d7:27:3a: 9c:a1:17:33:37:08:07:e5:93:8d:5b:1e:d7:eb:76:c5:42:e8: 08:39:62:04:8a:10:e0:dd:e7:81:5c:43:dd:c0:cd:d7:b6:c2: 0f:50:ce:bc:5d:1f:f7:3a:d6:ca:f1:95:a2:47:e4:36:75:1d: 07:a1:c2:ea:37:1a:38:fe:41:fe:a5:bc:37:61:01:51:50:d9: 9a:97:e0:e7:d8:5f:47:d1:0e:a4:86:27:f2:5c:55:13:ed:71: 9c:e2:c7:5f:03:42:8d:9d:e3:23:37:f8:2f:6a:12:66:a1:9f: 66:c0:60:47:8d:48:f2:5d:10:cb:76:ae:a7:63:15:2c:df:16: 12:f2:b1:33:f6:47:3d:04:0f:93:f0:ba:ee:59:de:f2:0f:64: f1:be:8f:91:e3:b1:a9:c1:9b:ef:63:e3:22:c3:75:26:50:07: 56:fd:12:b3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA1MDkw MTA3MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBREQ3OEUwOEM0RDE3 NTQ4NUZGRjU2QzAwNjZBQkRCOUM2MUJEQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2Uz7d6VotbP6SOJwpgmpRQcJvU6eeTeOq7yzY8tekQnx464iu acYVuffEE/8mf4OM708b6zB1nkOIx7ntmFx//FR4aRYGNOil1VEWR+7o52omLo8u d7Zd26THOwoOLgOylkLCnZUoiusJGV4ad2SJrzJ94IIhqmTHw/Jjy5FmmNhXBhgf vVwU6GQ7ICN38ny9JwxbkCueLeGAOUY0uVZDQs5D/zGW/y3rVcnlk8AevSOuiAyd C30Jg9hMIQuLCp5hRgNoOI1V8hvlXpY6HDIOMgwQ91XkOPDR8mTHqomgr/NhDsCN eLQRqM0NhxV78QTbbnZq/0Fxk7A8d1FtQwe9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUKt144IxNF1SF//VsAGar25xhvc4wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9LdDE0NEl4TkYxU0ZfX1ZzQUdh cjI1eGh2YzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWZn MA0GCSqGSIb3DQEBCwUAA4IBAQAoxkPmV/3/PiZ7bhoeBCFPByIiKf4fj/anSjVs 9SjoG/+r+EFALUZldAew6RWFMSQKslbWGzLDF/UHZMdf5dsw03xgSYRFeVpS87ah 5UViBD0fciYNbr3XJzqcoRczNwgH5ZONWx7X63bFQugIOWIEihDg3eeBXEPdwM3X tsIPUM68XR/3OtbK8ZWiR+Q2dR0HocLqNxo4/kH+pbw3YQFRUNmal+Dn2F9H0Q6k hifyXFUT7XGc4sdfA0KNneMjN/gvahJmoZ9mwGBHjUjyXRDLdq6nYxUs3xYS8rEz 9kc9BA+T8LruWd7yD2Txvo+R47GpwZvvY+Miw3UmUAdW/RKz -----END CERTIFICATE-----Generated at Fri May 9 19:49:03 2025 by rpki-client