$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/ocK9dvpC-X1Q2jPuRD00Zm-mG9A.roa File: ocK9dvpC-X1Q2jPuRD00Zm-mG9A.roa (raw, json) Hash identifier: JUpZL1vjxUzZiJdR8292WVkkif8Z/Nt0KXMuvG3QNXQ= Subject key identifier: A1:C2:BD:76:FA:42:F9:7D:50:DA:33:EE:44:3D:34:66:6F:A6:1B:D0 Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Certificate serial: 0A30 Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/ocK9dvpC-X1Q2jPuRD00Zm-mG9A.roa Signing time: Mon 10 Feb 2025 13:46:33 +0000 ROA not before: Mon 10 Feb 2025 13:46:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131671 IP address blocks: 103.146.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2608 (0xa30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Validity Not Before: Feb 10 13:46:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A1C2BD76FA42F97D50DA33EE443D34666FA61BD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:38:ca:d2:ef:c4:5f:29:04:ce:f7:d0:4f:9b: fa:e8:d4:ed:e0:e9:02:2a:50:1b:b5:b2:62:88:4a: 34:d3:0a:28:5b:a6:92:9f:ba:d3:5a:52:1f:cc:74: 35:4c:39:01:d3:6e:95:22:a6:83:b7:9a:a0:7c:f2: c0:93:8a:f3:64:46:1f:6a:ea:ee:e4:a0:8f:fd:2d: 91:e1:b9:98:47:71:a5:a4:65:ff:70:ef:df:50:ef: 3c:84:90:ac:40:e9:31:15:47:51:b3:f6:3e:12:46: 55:bb:c1:f3:54:0f:69:32:91:de:1b:09:85:4f:57: 9e:68:76:d0:8a:d3:83:03:86:3b:05:5a:45:b6:6f: 9b:1b:ee:d4:7d:1a:66:78:c7:10:08:1a:ac:70:64: e5:fb:d1:bd:6d:02:1c:a2:e1:1b:56:f7:bd:61:a6: a1:49:af:95:94:ee:f9:6b:48:6d:9b:80:73:7f:63: 83:51:45:f1:31:40:4c:7c:b9:b2:36:35:5b:12:87: bd:3b:d2:63:8f:26:94:5e:a4:e5:75:c2:0f:b5:6a: aa:bf:5d:56:61:54:20:8c:0f:bb:da:25:70:2a:10: b6:45:c8:d6:ad:b1:c5:74:c3:0e:a1:cc:12:91:04: 45:48:9d:69:f3:50:d5:2f:51:55:89:63:97:87:7a: a6:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:C2:BD:76:FA:42:F9:7D:50:DA:33:EE:44:3D:34:66:6F:A6:1B:D0 X509v3 Authority Key Identifier: keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/ocK9dvpC-X1Q2jPuRD00Zm-mG9A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.146.212.0/24 Signature Algorithm: sha256WithRSAEncryption 65:31:bd:b6:ac:93:02:a8:a7:48:9f:a1:d1:36:4a:16:9d:c0: fc:b0:b5:6d:1d:a5:93:76:51:c2:98:4d:6b:fd:8f:44:45:ef: 89:d5:47:05:1f:fe:1d:6e:6d:f0:68:6f:14:0a:22:19:43:de: 86:bd:04:49:90:6a:c2:21:6b:16:7c:78:a4:ce:cd:20:c0:5c: 5a:dc:0a:5d:4f:87:f8:70:a6:1f:90:ba:6f:f8:1b:68:a7:2f: a9:f0:2f:83:9e:d2:61:56:59:67:17:38:3e:88:f9:d9:23:37: 34:9b:08:4a:8b:f1:0c:65:a1:ee:a6:0b:15:d7:db:b7:11:48: 4b:f6:c9:aa:91:5d:2d:7c:c8:ca:de:6b:6e:e7:60:24:29:47: 7d:4c:78:de:d1:6e:b2:f3:65:9d:51:2a:e1:9a:4e:a8:a5:7b: d9:94:d7:46:9c:d2:85:05:c5:91:7f:ed:57:55:d7:5f:d0:8d: b6:c6:97:fb:35:79:8e:e7:88:3a:93:4f:56:08:b6:77:9f:59: cf:61:0e:75:61:d5:fd:5c:de:c0:5a:c1:cc:9e:92:0f:13:1a: 58:ec:2d:88:d7:f7:15:f1:0c:f1:13:bc:0c:f9:e2:99:95:96: c0:bb:e8:67:a2:5f:3d:51:1a:5e:07:02:d2:59:c9:6f:aa:ec: 78:ff:6d:b3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yNTAyMTAx MzQ2MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExQzJCRDc2RkE0MkY5 N0Q1MERBMzNFRTQ0M0QzNDY2NkZBNjFCRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyOMrS78RfKQTO99BPm/ro1O3g6QIqUBu1smKISjTTCihbppKf utNaUh/MdDVMOQHTbpUipoO3mqB88sCTivNkRh9q6u7koI/9LZHhuZhHcaWkZf9w 799Q7zyEkKxA6TEVR1Gz9j4SRlW7wfNUD2kykd4bCYVPV55odtCK04MDhjsFWkW2 b5sb7tR9GmZ4xxAIGqxwZOX70b1tAhyi4RtW971hpqFJr5WU7vlrSG2bgHN/Y4NR RfExQEx8ubI2NVsSh7070mOPJpRepOV1wg+1aqq/XVZhVCCMD7vaJXAqELZFyNat scV0ww6hzBKRBEVInWnzUNUvUVWJY5eHeqanAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUocK9dvpC+X1Q2jPuRD00Zm+mG9AwHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0 JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kvb2NLOWR2cEMtWDFRMmpQ dVJEMDBabS1tRzlBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeS1DANBgkqhkiG9w0BAQsFAAOCAQEAZTG9tqyTAqinSJ+h0TZKFp3A/LC1bR2l k3ZRwphNa/2PREXvidVHBR/+HW5t8GhvFAoiGUPehr0ESZBqwiFrFnx4pM7NIMBc WtwKXU+H+HCmH5C6b/gbaKcvqfAvg57SYVZZZxc4Poj52SM3NJsISovxDGWh7qYL FdfbtxFIS/bJqpFdLXzIyt5rbudgJClHfUx43tFusvNlnVEq4ZpOqKV72ZTXRpzS hQXFkX/tV1XXX9CNtsaX+zV5jueIOpNPVgi2d59Zz2EOdWHV/VzewFrBzJ6SDxMa WOwtiNf3FfEM8RO8DPnimZWWwLvoZ6JfPVEaXgcC0lnJb6rseP9tsw== -----END CERTIFICATE-----Generated at Fri Apr 18 23:41:24 2025 by rpki-client