$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/PpTS4TwkiFAlqc2vkL2LTTvUC7s.roa File: PpTS4TwkiFAlqc2vkL2LTTvUC7s.roa (raw, json) Hash identifier: jWm5p/u7FXYha94p6E2bsPlJZTPTmnoO8xNghV4smZ8= Subject key identifier: 3E:94:D2:E1:3C:24:88:50:25:A9:CD:AF:90:BD:8B:4D:3B:D4:0B:BB Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 0386 Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/PpTS4TwkiFAlqc2vkL2LTTvUC7s.roa Signing time: Mon 10 Feb 2025 13:46:52 +0000 ROA not before: Mon 10 Feb 2025 13:46:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.170.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 902 (0x386) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Feb 10 13:46:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3E94D2E13C24885025A9CDAF90BD8B4D3BD40BBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a2:ea:1d:a2:8c:36:51:3d:1a:c7:75:92:df: 9c:b0:96:90:58:17:e5:22:62:7b:6e:fa:8e:a4:9a: d5:92:a6:d0:fe:1f:d3:85:20:71:e4:cc:7b:3c:50: c9:bd:0d:58:80:14:16:5f:c6:26:bd:ff:11:c2:a2: 73:cf:58:18:e3:ee:0f:e3:30:3d:b5:dd:b4:8f:d3: c0:58:08:ad:c3:60:88:ad:47:86:0b:7c:73:e3:7b: ac:c2:a2:09:e6:34:b7:c0:f7:47:30:e3:91:de:3a: 1d:b4:74:76:1c:f9:12:47:f4:31:f0:e1:a5:17:2c: aa:21:39:4a:f7:0c:b5:6a:4e:46:b9:cd:16:87:f4: 63:de:b7:53:f6:01:c0:c4:ed:94:09:89:c4:44:87: 95:09:90:bb:56:ce:bf:8b:67:9a:02:85:bd:d2:4e: f0:12:bd:cd:36:42:5a:5e:60:49:36:88:a7:b5:51: ae:7d:ad:38:a7:5f:ba:c5:fe:94:7c:49:ad:94:53: 45:f5:99:52:50:43:94:d5:27:1c:db:d0:30:d0:66: 41:46:b7:26:67:3a:ea:d2:25:0f:84:a4:9f:11:0e: 26:cc:10:ef:a7:9b:4e:db:04:80:0a:49:75:92:ab: 17:ef:d2:f0:d1:f2:a5:19:32:39:47:4b:91:6e:ee: 89:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:94:D2:E1:3C:24:88:50:25:A9:CD:AF:90:BD:8B:4D:3B:D4:0B:BB X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/PpTS4TwkiFAlqc2vkL2LTTvUC7s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.14.0/23 Signature Algorithm: sha256WithRSAEncryption 72:33:60:8f:c6:73:d2:e1:45:6e:a0:85:1d:cb:ad:9d:5a:fb: 63:22:77:26:e5:27:c0:31:50:95:4a:60:44:32:54:1a:9c:81: d3:11:3a:0a:8b:51:c9:82:1d:5d:21:04:44:7b:9f:f6:72:f7: c5:44:55:75:e3:86:b8:f1:64:a5:c8:18:ee:9b:5e:d2:2c:ed: bf:0a:6b:93:b4:f9:39:26:b4:44:d7:fc:07:98:2e:d1:96:5c: 39:b0:03:d9:5c:db:35:a4:ad:62:b4:32:45:38:16:73:8b:45: 6d:ef:77:ae:f4:cb:9a:59:94:07:b3:0c:42:f0:55:ee:12:30: 2e:47:c8:19:f8:f4:2b:c0:d2:f1:cf:21:9c:42:e4:fe:4b:91: 9f:6d:11:bb:77:db:98:29:38:c5:00:a4:23:c5:a5:e3:95:8f: fb:ab:38:87:ed:cc:6e:3b:eb:08:5b:2c:41:94:a6:e2:2f:fb: 03:04:8e:53:8b:1d:36:ce:2b:59:2c:75:73:6c:8e:4d:d5:6a: 1f:18:d9:b9:83:00:07:30:27:65:47:0f:10:59:40:e4:f0:9a: 2a:e2:3e:4b:eb:e2:e1:fd:7c:f3:55:f9:b9:63:65:3f:ea:76: ab:a5:fa:42:1c:40:33:3c:19:34:76:a2:ca:6f:95:5b:ac:e8: f7:35:d2:3a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yNTAyMTAx MzQ2NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNFOTREMkUxM0MyNDg4 NTAyNUE5Q0RBRjkwQkQ4QjREM0JENDBCQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/ouodoow2UT0ax3WS35ywlpBYF+UiYntu+o6kmtWSptD+H9OF IHHkzHs8UMm9DViAFBZfxia9/xHConPPWBjj7g/jMD213bSP08BYCK3DYIitR4YL fHPje6zCognmNLfA90cw45HeOh20dHYc+RJH9DHw4aUXLKohOUr3DLVqTka5zRaH 9GPet1P2AcDE7ZQJicREh5UJkLtWzr+LZ5oChb3STvASvc02QlpeYEk2iKe1Ua59 rTinX7rF/pR8Sa2UU0X1mVJQQ5TVJxzb0DDQZkFGtyZnOurSJQ+EpJ8RDibMEO+n m07bBIAKSXWSqxfv0vDR8qUZMjlHS5Fu7olFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPpTS4TwkiFAlqc2vkL2LTTvUC7swHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZL1BwVFM0VHdraUZBbHFjMnZr TDJMVFR2VUM3cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn qg4wDQYJKoZIhvcNAQELBQADggEBAHIzYI/Gc9LhRW6ghR3LrZ1a+2MidyblJ8Ax UJVKYEQyVBqcgdMROgqLUcmCHV0hBER7n/Zy98VEVXXjhrjxZKXIGO6bXtIs7b8K a5O0+TkmtETX/AeYLtGWXDmwA9lc2zWkrWK0MkU4FnOLRW3vd670y5pZlAezDELw Ve4SMC5HyBn49CvA0vHPIZxC5P5LkZ9tEbt325gpOMUApCPFpeOVj/urOIftzG47 6whbLEGUpuIv+wMEjlOLHTbOK1ksdXNsjk3Vah8Y2bmDAAcwJ2VHDxBZQOTwmiri Pkvr4uH9fPNV+bljZT/qdqul+kIcQDM8GTR2ospvlVus6Pc10jo= -----END CERTIFICATE-----Generated at Fri Apr 18 23:56:46 2025 by rpki-client