$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/3Kf3vQjh77j-rovWseazIe2p3N0.roa File: 3Kf3vQjh77j-rovWseazIe2p3N0.roa (raw, json) Hash identifier: 07kUCJaDVepBYELuXGf6572F1XUmEmaBDfv569uoqAE= Subject key identifier: DC:A7:F7:BD:08:E1:EF:B8:FE:AE:8B:D6:B1:E6:B3:21:ED:A9:DC:DD Certificate issuer: /CN=830BC4410162A58D0DB17E0A351551FBB3D751A1 Certificate serial: 0CB8 Authority key identifier: 83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/3Kf3vQjh77j-rovWseazIe2p3N0.roa Signing time: Mon 10 Feb 2025 13:59:34 +0000 ROA not before: Mon 10 Feb 2025 13:59:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131619 IP address blocks: 103.116.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=830BC4410162A58D0DB17E0A351551FBB3D751A1 Validity Not Before: Feb 10 13:59:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DCA7F7BD08E1EFB8FEAE8BD6B1E6B321EDA9DCDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:06:2f:68:b7:ec:db:a6:87:66:1d:12:30:84: 59:00:f3:c8:5e:02:d5:bf:56:d5:33:9c:fc:8c:2d: 68:57:a3:41:ea:44:7d:da:06:31:73:f7:71:a7:25: bf:dc:92:76:d4:55:b9:0d:94:c6:9e:1a:40:15:9e: 36:94:a3:a7:8a:24:e3:b7:94:51:b5:49:03:7f:b6: fb:95:3b:1f:9b:dd:54:15:06:f5:83:5c:f7:3c:6b: 19:ee:07:78:ff:c4:28:65:85:d8:e0:70:b8:55:72: 17:d5:cf:3a:7b:4c:19:0b:74:85:19:36:46:76:1d: d4:a9:7f:4c:4a:b5:f7:32:f3:5d:48:33:c4:5a:6c: 11:a6:8d:64:f9:e9:1b:a2:2e:13:39:a2:82:4a:5f: 5d:e5:de:dd:02:7b:18:43:0d:b4:b1:6c:f6:10:7e: 56:34:9a:be:5b:f6:1f:2d:5e:b0:eb:8f:3b:d2:ef: ad:ef:d3:05:b3:13:53:88:c4:31:a1:94:e3:d2:c7: 9f:ea:88:64:81:7b:eb:c9:57:76:92:ba:bd:2a:a6: 65:c2:23:98:ca:94:41:7c:96:6c:9b:2f:9e:02:8c: 5a:55:a4:8d:8b:2c:8b:0e:e7:5e:3e:64:90:48:cb: 3c:ff:04:68:11:3c:5f:25:47:47:c3:8b:a8:db:8b: 27:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:A7:F7:BD:08:E1:EF:B8:FE:AE:8B:D6:B1:E6:B3:21:ED:A9:DC:DD X509v3 Authority Key Identifier: keyid:83:0B:C4:41:01:62:A5:8D:0D:B1:7E:0A:35:15:51:FB:B3:D7:51:A1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/gwvEQQFipY0NsX4KNRVR-7PXUaE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gwvEQQFipY0NsX4KNRVR-7PXUaE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JIGENTEC/3Kf3vQjh77j-rovWseazIe2p3N0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.96.0/24 Signature Algorithm: sha256WithRSAEncryption 35:11:b0:f7:7f:5f:5f:e6:aa:fc:a6:e6:3b:14:2c:28:b4:19: 96:84:75:51:2c:1a:ee:e2:1e:7e:d6:c2:f0:d6:45:e2:08:b7: e0:75:d7:24:08:b9:ea:65:80:66:3f:e1:18:ee:29:53:ed:bf: 0a:a3:eb:6d:14:be:c8:d8:bb:4b:98:69:ad:db:89:f7:67:36: a9:3a:a0:75:65:c7:b6:fe:1b:c7:fb:de:0e:ea:d3:d9:a0:d5: 8d:c0:3c:05:23:65:df:2b:7c:c2:37:af:09:15:a8:9a:40:be: e3:86:c3:7b:1c:b3:88:bf:7f:ca:ad:96:b9:94:a2:41:64:1d: bd:0a:fe:1d:a6:9d:11:f7:96:e8:28:8d:d9:0d:4a:36:ce:41: d2:7c:39:c8:e3:8a:23:9e:60:13:68:d4:59:d7:86:de:3f:24: 9a:8f:9f:15:28:cf:18:4c:8a:c1:90:00:d5:57:86:dd:5a:55: b6:31:22:47:ee:80:95:b2:79:7d:4a:bd:bd:b4:63:be:eb:0f: 7d:05:07:05:a9:8f:0c:ec:57:28:0b:96:01:f7:76:1d:29:d8: 8d:75:26:ad:62:ee:e2:36:51:31:bf:93:44:6a:d6:37:3c:c4: ce:11:5f:e8:02:9f:1c:f0:d8:8b:97:53:45:61:fc:8b:c7:28: cc:fe:34:c2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMw QkM0NDEwMTYyQTU4RDBEQjE3RTBBMzUxNTUxRkJCM0Q3NTFBMTAeFw0yNTAyMTAx MzU5MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDQTdGN0JEMDhFMUVG QjhGRUFFOEJENkIxRTZCMzIxRURBOURDREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDABi9ot+zbpodmHRIwhFkA88heAtW/VtUznPyMLWhXo0HqRH3a BjFz93GnJb/cknbUVbkNlMaeGkAVnjaUo6eKJOO3lFG1SQN/tvuVOx+b3VQVBvWD XPc8axnuB3j/xChlhdjgcLhVchfVzzp7TBkLdIUZNkZ2HdSpf0xKtfcy811IM8Ra bBGmjWT56RuiLhM5ooJKX13l3t0CexhDDbSxbPYQflY0mr5b9h8tXrDrjzvS763v 0wWzE1OIxDGhlOPSx5/qiGSBe+vJV3aSur0qpmXCI5jKlEF8lmybL54CjFpVpI2L LIsO514+ZJBIyzz/BGgRPF8lR0fDi6jbiycFAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU3Kf3vQjh77j+rovWseazIe2p3N0wHwYDVR0jBBgwFoAUgwvEQQFipY0NsX4K NRVR+7PXUaEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSklHRU5U RUMvZ3d2RVFRRmlwWTBOc1g0S05SVlItN1BYVWFFLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9nd3ZFUVFGaXBZME5zWDRLTlJWUi03UFhVYUUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KSUdFTlRFQy8zS2YzdlFqaDc3ai1y b3ZXc2VhekllMnAzTjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3RgMA0GCSqGSIb3DQEBCwUAA4IBAQA1EbD3f19f5qr8puY7FCwotBmWhHVR LBru4h5+1sLw1kXiCLfgddckCLnqZYBmP+EY7ilT7b8Ko+ttFL7I2LtLmGmt24n3 ZzapOqB1Zce2/hvH+94O6tPZoNWNwDwFI2XfK3zCN68JFaiaQL7jhsN7HLOIv3/K rZa5lKJBZB29Cv4dpp0R95boKI3ZDUo2zkHSfDnI44ojnmATaNRZ14bePySaj58V KM8YTIrBkADVV4bdWlW2MSJH7oCVsnl9Sr29tGO+6w99BQcFqY8M7FcoC5YB93Yd KdiNdSatYu7iNlExv5NEatY3PMTOEV/oAp8c8NiLl1NFYfyLxyjM/jTC -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:39 2025 by rpki-client on console.sobornost.net