$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/3jx5GdUf5gMAK9-4ae9ojtZgcB0.roa File: 3jx5GdUf5gMAK9-4ae9ojtZgcB0.roa (raw, json) Hash identifier: atwhpbJyyBBSoDUx9t5hcvCTpc7kQ0JQR+wBQ2WQpqU= Subject key identifier: DE:3C:79:19:D5:1F:E6:03:00:2B:DF:B8:69:EF:68:8E:D6:60:70:1D Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Certificate serial: 12B3 Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/3jx5GdUf5gMAK9-4ae9ojtZgcB0.roa Signing time: Mon 10 Feb 2025 13:50:11 +0000 ROA not before: Mon 10 Feb 2025 13:50:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131663 IP address blocks: 2403:b7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4787 (0x12b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Validity Not Before: Feb 10 13:50:11 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DE3C7919D51FE603002BDFB869EF688ED660701D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ac:ab:d1:69:14:1a:1a:27:20:72:f0:8a:33: c7:64:bc:cb:76:9b:2a:64:f0:f1:7d:ba:2e:29:38: fe:49:8d:23:43:7b:7d:9f:cf:ba:9b:ab:43:ae:78: 8b:7c:c8:31:b3:f0:44:20:88:e9:24:2e:c4:05:70: 38:8d:c4:81:a8:80:7e:3f:87:6f:1e:34:0d:ef:8f: 36:57:1b:ec:f9:e0:7e:90:a3:de:f8:47:2d:c5:fa: e3:97:cc:a0:17:65:17:9e:da:7a:3f:8f:3e:52:39: 4f:0c:28:7c:89:e6:61:09:1a:5f:7a:07:ce:fe:0a: 24:07:e5:b0:b0:94:51:d1:65:cd:ed:52:05:1a:ad: 1f:3d:16:97:40:99:7f:93:3a:1b:a3:52:71:3b:3b: c8:53:6d:36:63:49:62:7a:5d:5d:d6:4d:f5:58:79: a5:c7:70:c3:b6:56:81:43:8a:a0:4d:fb:a0:df:40: 8d:66:2d:81:41:1f:07:58:50:91:aa:8f:68:ea:b3: 4f:c0:19:d5:b3:d6:67:1e:0a:d5:5d:eb:4a:61:28: 28:92:d3:2f:89:13:11:77:2b:7e:fc:17:3c:58:ff: 7b:03:e7:63:8a:60:38:29:e4:23:12:b8:49:cb:f2: 9f:f8:a7:19:ee:2a:5f:32:97:64:71:f1:09:c3:ee: 9e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:3C:79:19:D5:1F:E6:03:00:2B:DF:B8:69:EF:68:8E:D6:60:70:1D X509v3 Authority Key Identifier: keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/3jx5GdUf5gMAK9-4ae9ojtZgcB0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:b7c0::/32 Signature Algorithm: sha256WithRSAEncryption 7d:bf:b4:a5:1e:9d:f5:6e:a1:fa:50:3e:f1:42:9a:9a:73:9d: c1:92:3f:81:bf:5f:55:16:1b:b0:75:a7:c8:cb:8f:7e:95:cc: a4:de:f7:cb:64:d1:9e:b0:76:f5:c3:e2:d3:d6:75:bc:cf:46: 66:9a:44:97:46:33:54:07:8b:6f:e5:0f:a6:2f:3e:6a:6c:2c: 47:81:c6:84:a3:27:ad:57:aa:3a:24:94:bb:52:60:8a:bf:f6: d5:fb:26:b8:6c:4e:f4:60:fc:6b:12:11:bd:f6:3c:a3:04:b9: 55:0b:73:94:90:be:6c:cc:27:fd:2d:40:44:ca:bd:1b:fe:b1: 60:8b:c5:8b:54:02:4f:65:7e:7e:46:e7:2a:9f:01:9c:d0:0e: a7:17:88:18:ed:db:17:a5:06:ef:24:70:5e:de:11:92:9d:c3: d9:fd:a9:98:7e:4e:50:ac:0f:b5:cb:ea:76:de:21:24:6a:65: 93:f7:36:c0:33:3f:b4:a7:c5:e8:39:37:8f:2d:c1:fd:bf:0d: 8d:d6:b9:11:14:c5:3d:ee:40:c7:39:d4:3f:36:26:f3:88:b8: 27:bd:81:30:71:bd:03:89:4a:bf:01:06:4a:ae:8d:18:d4:cc: 60:0f:59:b1:a8:a8:6e:4d:60:8c:59:a1:14:e4:4b:b6:21:e3: b0:81:14:6b -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICErMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjhD QUMxRkEwNEQ4MENGRTNFMkJFOTdDN0FCMTg1MkI2NjU2NTM1RjAeFw0yNTAyMTAx MzUwMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERFM0M3OTE5RDUxRkU2 MDMwMDJCREZCODY5RUY2ODhFRDY2MDcwMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMrKvRaRQaGicgcvCKM8dkvMt2mypk8PF9ui4pOP5JjSNDe32f z7qbq0OueIt8yDGz8EQgiOkkLsQFcDiNxIGogH4/h28eNA3vjzZXG+z54H6Qo974 Ry3F+uOXzKAXZRee2no/jz5SOU8MKHyJ5mEJGl96B87+CiQH5bCwlFHRZc3tUgUa rR89FpdAmX+TOhujUnE7O8hTbTZjSWJ6XV3WTfVYeaXHcMO2VoFDiqBN+6DfQI1m LYFBHwdYUJGqj2jqs0/AGdWz1mceCtVd60phKCiS0y+JExF3K378FzxY/3sD52OK YDgp5CMSuEnL8p/4pxnuKl8yl2Rx8QnD7p6vAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU3jx5GdUf5gMAK9+4ae9ojtZgcB0wHwYDVR0jBBgwFoAUaMrB+gTYDP4+K+l8 erGFK2ZWU18wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0lHQUJZ VEUvYU1yQi1nVFlEUDQtSy1sOGVyR0ZLMlpXVTE4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9hTXJCLWdUWURQNC1LLWw4ZXJHRksyWldVMTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HSUdBQllURS8zang1R2RVZjVnTUFL OS00YWU5b2p0WmdjQjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAO3wDANBgkqhkiG9w0BAQsFAAOCAQEAfb+0pR6d9W6h+lA+8UKamnOdwZI/ gb9fVRYbsHWnyMuPfpXMpN73y2TRnrB29cPi09Z1vM9GZppEl0YzVAeLb+UPpi8+ amwsR4HGhKMnrVeqOiSUu1Jgir/21fsmuGxO9GD8axIRvfY8owS5VQtzlJC+bMwn /S1ARMq9G/6xYIvFi1QCT2V+fkbnKp8BnNAOpxeIGO3bF6UG7yRwXt4Rkp3D2f2p mH5OUKwPtcvqdt4hJGplk/c2wDM/tKfF6Dk3jy3B/b8Njda5ERTFPe5AxznUPzYm 84i4J72BMHG9A4lKvwEGSq6NGNTMYA9Zsaiobk1gjFmhFORLtiHjsIEUaw== -----END CERTIFICATE-----Generated at Fri Apr 18 23:56:45 2025 by rpki-client