$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/-W7fPtnMMTg-UGEEmsUoALhK_Og.roa File: -W7fPtnMMTg-UGEEmsUoALhK_Og.roa (raw, json) Hash identifier: 8QP0n45B22KgkQYCNabzPBdm1dQAG/XS6O0q/zCRbzw= Subject key identifier: F9:6E:DF:3E:D9:CC:31:38:3E:50:61:04:9A:C5:28:00:B8:4A:FC:E8 Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 0387 Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/-W7fPtnMMTg-UGEEmsUoALhK_Og.roa Signing time: Mon 10 Feb 2025 13:46:52 +0000 ROA not before: Mon 10 Feb 2025 13:46:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.170.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 903 (0x387) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Feb 10 13:46:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F96EDF3ED9CC31383E5061049AC52800B84AFCE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:4f:1f:20:f9:09:0b:28:a9:dd:67:78:f3:cb: b2:88:eb:d6:1b:0c:83:4a:b6:8d:1a:fb:bc:cb:58: e6:92:8a:df:59:30:4c:3b:a5:fb:50:5e:f8:d1:9a: 13:e8:fb:c8:eb:5d:47:81:72:d0:9e:8d:da:e9:53: 2f:2a:68:ee:98:66:24:7a:c5:2b:b3:0c:d5:b6:61: 77:9e:38:08:61:1c:b7:95:31:71:c8:95:54:f1:5f: b1:d5:d5:0e:c7:6a:84:30:22:6e:92:9a:65:71:e4: dd:cc:ae:7e:a2:78:ca:89:ac:11:6f:5e:62:da:3b: 92:33:65:86:2b:43:a7:82:cc:52:b3:8e:38:e3:07: 6b:5a:e2:1b:e0:9f:4d:0c:c1:8f:5c:d2:a0:1f:01: f1:e3:c1:e1:52:a0:98:78:12:00:ec:01:de:63:ec: 09:88:0f:6a:47:eb:5a:9c:4d:4b:3d:0e:56:ab:a0: 0a:54:24:95:4c:2a:38:b9:c9:df:84:d7:dc:83:f6: 01:03:43:a1:07:0a:6a:ba:e1:66:6d:9b:be:02:18: 3e:c8:64:77:f0:a0:88:40:78:4a:f1:55:7c:dc:71: 49:a1:5b:95:68:a3:02:a0:16:2d:81:c8:e9:a3:5a: 75:bf:8b:9e:5f:03:0e:cd:d9:22:df:62:01:a4:36: 33:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6E:DF:3E:D9:CC:31:38:3E:50:61:04:9A:C5:28:00:B8:4A:FC:E8 X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/-W7fPtnMMTg-UGEEmsUoALhK_Og.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.15.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:f1:4d:f7:57:c1:4e:a7:92:36:98:2f:4d:07:55:a4:ac:93: ec:e2:45:9f:e1:29:03:7c:2a:ab:09:f2:8b:c5:f6:2d:b0:9e: 3f:f5:a2:9a:68:17:53:23:ce:cb:c6:bb:8d:40:2e:9b:35:90: 58:ad:d0:a2:29:7a:80:a6:a4:cd:7a:e9:1d:78:20:48:0c:98: bf:6b:82:d1:0a:44:a9:84:79:c5:7d:f1:57:75:20:f7:d0:d0: 67:1a:27:e1:40:53:16:79:3b:f8:b4:6b:9b:0b:3a:72:8f:d6: 9d:dc:93:eb:63:fe:d3:01:79:e0:5c:e1:14:74:1b:61:27:ba: d8:be:d6:5c:0b:d3:3f:9b:97:9b:4a:8c:f5:65:55:81:16:2e: d2:93:30:07:9b:bf:4d:7d:18:2f:27:b7:eb:09:72:7c:49:6f: 56:da:d9:04:4a:d4:01:76:ef:0e:2f:de:5c:84:f5:e4:b6:45: 4d:ed:a0:6e:ae:f0:01:1c:59:5f:75:38:09:ef:08:55:9d:2b: a6:5d:3b:ef:35:0e:b3:bc:32:95:cd:da:b6:fa:14:1d:80:80: 4f:b2:f6:19:1f:52:00:03:3e:bc:25:1b:1c:33:21:f9:19:f4: c0:6c:70:78:81:dc:7a:1f:28:7b:df:be:06:eb:eb:4f:45:22: 36:1c:b8:38 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yNTAyMTAx MzQ2NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5NkVERjNFRDlDQzMx MzgzRTUwNjEwNDlBQzUyODAwQjg0QUZDRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSTx8g+QkLKKndZ3jzy7KI69YbDINKto0a+7zLWOaSit9ZMEw7 pftQXvjRmhPo+8jrXUeBctCejdrpUy8qaO6YZiR6xSuzDNW2YXeeOAhhHLeVMXHI lVTxX7HV1Q7HaoQwIm6SmmVx5N3Mrn6ieMqJrBFvXmLaO5IzZYYrQ6eCzFKzjjjj B2ta4hvgn00MwY9c0qAfAfHjweFSoJh4EgDsAd5j7AmID2pH61qcTUs9DlaroApU JJVMKji5yd+E19yD9gEDQ6EHCmq64WZtm74CGD7IZHfwoIhAeErxVXzccUmhW5Vo owKgFi2ByOmjWnW/i55fAw7N2SLfYgGkNjP5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+W7fPtnMMTg+UGEEmsUoALhK/OgwHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZLy1XN2ZQdG5NTVRnLVVHRUVt c1VvQUxoS19PZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn qg8wDQYJKoZIhvcNAQELBQADggEBAJrxTfdXwU6nkjaYL00HVaSsk+ziRZ/hKQN8 KqsJ8ovF9i2wnj/1oppoF1MjzsvGu41ALps1kFit0KIpeoCmpM166R14IEgMmL9r gtEKRKmEecV98Vd1IPfQ0GcaJ+FAUxZ5O/i0a5sLOnKP1p3ck+tj/tMBeeBc4RR0 G2Enuti+1lwL0z+bl5tKjPVlVYEWLtKTMAebv019GC8nt+sJcnxJb1ba2QRK1AF2 7w4v3lyE9eS2RU3toG6u8AEcWV91OAnvCFWdK6ZdO+81DrO8MpXN2rb6FB2AgE+y 9hkfUgADPrwlGxwzIfkZ9MBscHiB3HofKHvfvgbr609FIjYcuDg= -----END CERTIFICATE-----Generated at Fri Apr 18 23:50:54 2025 by rpki-client