$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VOCOM/NLmCakol6VoVMn173s8TMwqQxiY.roa File: NLmCakol6VoVMn173s8TMwqQxiY.roa (raw, json) Hash identifier: SSZIOQo/9oaj9A1rKr5+xOcTZeyY8ic285SRB9s/X1Q= Subject key identifier: 34:B9:82:6A:4A:25:E9:5A:15:32:7D:7B:DE:CF:13:33:0A:90:C6:26 Certificate issuer: /CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Certificate serial: 01C5 Authority key identifier: 9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/NLmCakol6VoVMn173s8TMwqQxiY.roa Signing time: Mon 10 Feb 2025 14:17:16 +0000 ROA not before: Mon 10 Feb 2025 14:17:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63897 IP address blocks: 103.178.36.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E847108EBA0B550BC020FD9B1DC6DEB29E0DBEF Validity Not Before: Feb 10 14:17:16 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=34B9826A4A25E95A15327D7BDECF13330A90C626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1f:e4:87:bc:0d:7a:29:09:24:ae:34:7b:75: b6:4f:67:0f:98:03:04:b3:10:56:a1:07:b2:d6:23: ee:61:e8:58:e5:92:78:e7:c2:c9:c9:c7:75:3f:01: 63:85:bb:23:ec:53:78:8f:43:be:db:47:1c:90:7e: 00:a0:93:f5:1a:8d:7d:50:f5:d7:79:3b:90:4d:19: 76:b2:7f:56:bd:2b:9f:fa:b4:e7:97:89:08:2a:8c: aa:b9:f6:b0:45:bc:10:37:df:76:87:7b:56:1d:09: 65:f9:8a:71:b6:a3:19:20:a4:b8:3e:f4:c2:53:cb: 27:f7:27:55:54:b0:b2:20:fb:d9:6c:5a:22:e2:5a: 62:59:71:c8:7e:ea:3e:d1:c6:ce:c2:e1:0d:37:b1: 18:ef:f7:8a:9d:77:ae:fc:9c:3b:db:26:24:99:1d: 3c:8c:66:42:9d:d5:8f:d3:02:9b:91:3a:dc:1f:72: 71:fb:72:ef:11:26:df:e2:2e:e5:84:be:62:03:0b: bf:dd:7d:46:8a:8d:b0:28:11:69:00:45:5f:43:eb: f7:9c:c3:31:f6:97:a4:74:c7:5b:d5:13:04:cf:bc: da:a8:3e:7e:b7:33:ae:12:4c:19:f4:29:41:55:bc: fd:f8:b7:ae:77:1b:e8:ab:ae:d7:10:c9:b8:20:63: 2b:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:B9:82:6A:4A:25:E9:5A:15:32:7D:7B:DE:CF:13:33:0A:90:C6:26 X509v3 Authority Key Identifier: keyid:9E:84:71:08:EB:A0:B5:50:BC:02:0F:D9:B1:DC:6D:EB:29:E0:DB:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/noRxCOugtVC8Ag_Zsdxt6yng2-8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/noRxCOugtVC8Ag_Zsdxt6yng2-8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VOCOM/NLmCakol6VoVMn173s8TMwqQxiY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.178.36.0/23 Signature Algorithm: sha256WithRSAEncryption 32:a6:0d:f3:d4:f3:0e:a3:25:cb:9b:da:6b:9c:28:99:87:59: e7:a5:bd:cb:ad:c7:8e:7f:cd:97:da:aa:78:67:d1:1a:18:73: 01:42:ec:d7:56:08:da:b6:ef:99:39:7d:3b:5a:3c:57:5c:13: 25:ec:fe:30:9b:8c:f0:9f:6e:dd:12:2b:f0:74:12:6a:98:f4: 1b:7c:53:eb:53:aa:04:69:bb:b8:f3:4d:24:89:42:49:12:0d: e1:7e:3b:45:d3:88:26:16:70:fc:a6:dd:00:94:ba:16:d5:84: f2:69:fe:22:30:50:48:bf:e4:d3:49:9b:8d:2a:e7:d4:2c:b1: 7a:ff:36:d3:5c:11:67:b2:21:ee:01:7e:05:72:49:69:0d:ce: 5b:79:20:f7:e5:8e:a3:a5:cf:41:34:fd:6c:e9:05:66:84:8f: 17:12:fd:0e:83:b5:6a:cd:10:f8:79:8c:90:3f:35:8a:f2:9f: aa:f2:89:74:88:5c:24:6f:25:25:fe:c2:9c:60:83:98:89:32: 19:d7:10:2e:2e:5d:bb:cc:00:1c:ed:f5:31:2e:6c:f5:6b:cb: 78:27:d9:9d:e8:2e:90:bc:ef:1d:83:26:07:aa:18:b4:5f:1f: 57:d3:7e:61:59:29:bc:f1:69:c7:9e:36:2d:63:fd:3e:9b:c8: 9a:60:af:7e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUU4 NDcxMDhFQkEwQjU1MEJDMDIwRkQ5QjFEQzZERUIyOUUwREJFRjAeFw0yNTAyMTAx NDE3MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM0Qjk4MjZBNEEyNUU5 NUExNTMyN0Q3QkRFQ0YxMzMzMEE5MEM2MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDH+SHvA16KQkkrjR7dbZPZw+YAwSzEFahB7LWI+5h6Fjlknjn wsnJx3U/AWOFuyPsU3iPQ77bRxyQfgCgk/UajX1Q9dd5O5BNGXayf1a9K5/6tOeX iQgqjKq59rBFvBA333aHe1YdCWX5inG2oxkgpLg+9MJTyyf3J1VUsLIg+9lsWiLi WmJZcch+6j7Rxs7C4Q03sRjv94qdd678nDvbJiSZHTyMZkKd1Y/TApuROtwfcnH7 cu8RJt/iLuWEvmIDC7/dfUaKjbAoEWkARV9D6/ecwzH2l6R0x1vVEwTPvNqoPn63 M64STBn0KUFVvP34t653G+irrtcQybggYysbAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUNLmCakol6VoVMn173s8TMwqQxiYwHwYDVR0jBBgwFoAUnoRxCOugtVC8Ag/Z sdxt6yng2+8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVk9DT00v bm9SeENPdWd0VkM4QWdfWnNkeHQ2eW5nMi04LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ub1J4Q091Z3RWQzhBZ19ac2R4dDZ5bmcyLTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WT0NPTS9OTG1DYWtvbDZWb1ZNbjE3M3M4 VE13cVF4aVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7Ik MA0GCSqGSIb3DQEBCwUAA4IBAQAypg3z1PMOoyXLm9prnCiZh1nnpb3LrceOf82X 2qp4Z9EaGHMBQuzXVgjatu+ZOX07WjxXXBMl7P4wm4zwn27dEivwdBJqmPQbfFPr U6oEabu4800kiUJJEg3hfjtF04gmFnD8pt0AlLoW1YTyaf4iMFBIv+TTSZuNKufU LLF6/zbTXBFnsiHuAX4FcklpDc5beSD35Y6jpc9BNP1s6QVmhI8XEv0Og7VqzRD4 eYyQPzWK8p+q8ol0iFwkbyUl/sKcYIOYiTIZ1xAuLl27zAAc7fUxLmz1a8t4J9md 6C6QvO8dgyYHqhi0Xx9X035hWSm88WnHnjYtY/0+m8iaYK9+ -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:56 2025 by rpki-client on console.sobornost.net