$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/o6wcyO6LeBJZAtlnCUjvTnsiSmg.roa File: o6wcyO6LeBJZAtlnCUjvTnsiSmg.roa (raw, json) Hash identifier: 9zH0vpne1bl4ijcw+KDiRLmPDDUkhjKWIILtRj2JGmM= Subject key identifier: A3:AC:1C:C8:EE:8B:78:12:59:02:D9:67:09:48:EF:4E:7B:22:4A:68 Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 0385 Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/o6wcyO6LeBJZAtlnCUjvTnsiSmg.roa Signing time: Mon 10 Feb 2025 13:46:52 +0000 ROA not before: Mon 10 Feb 2025 13:46:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.170.14.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 901 (0x385) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Feb 10 13:46:52 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3AC1CC8EE8B78125902D9670948EF4E7B224A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:63:d0:ee:ad:bd:89:6d:0e:ca:31:30:3e:1f: 62:4f:ef:aa:9e:c3:83:50:ab:eb:3b:fd:ea:3c:2b: 85:f8:03:d9:b1:ce:be:a2:71:e6:1a:4d:49:86:0d: c5:94:2a:17:7e:8d:61:00:bc:97:27:d7:e6:94:e6: 5b:f5:af:c0:22:66:dd:da:8a:71:1b:2c:8d:6e:5e: e8:bd:1f:ef:73:70:c7:57:27:40:8c:a6:9a:a6:ac: a7:a4:61:05:be:93:d8:b4:a9:b9:e5:c5:46:da:2c: 68:58:8b:2b:ae:6b:c9:e5:4e:ae:ea:9b:43:e7:13: 82:b4:e7:b7:c4:f7:00:80:0d:bb:5e:90:ae:be:f8: c0:6f:ee:ef:c9:3b:7c:df:35:11:84:a3:c8:47:0a: af:20:23:7a:4f:08:62:1b:20:20:01:c7:04:fc:4c: 1e:9c:01:91:25:ff:98:d1:e4:3d:1f:45:89:66:3b: 4d:92:ac:98:d7:df:57:55:f6:07:68:2d:5d:19:41: cd:fd:44:0a:c7:25:4f:36:d5:b1:80:c4:64:6c:b9: 97:24:5b:a1:36:7e:38:da:b5:ba:62:3f:08:e6:91: e4:71:f3:c7:f3:b4:d0:ee:dd:00:97:30:20:0a:7d: d1:ce:e9:b0:28:fa:8a:90:d8:66:2a:95:49:2b:7b: af:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:AC:1C:C8:EE:8B:78:12:59:02:D9:67:09:48:EF:4E:7B:22:4A:68 X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/o6wcyO6LeBJZAtlnCUjvTnsiSmg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.14.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:1c:d4:73:fd:73:14:a1:b5:55:23:72:4c:04:3c:ff:e4:5a: ee:34:e7:d9:4c:3a:ea:d3:c7:92:ae:74:8a:cf:6c:65:37:81: f7:b7:4b:88:1c:dd:d3:3a:12:ec:69:d9:d3:29:50:7c:ed:06: 35:e0:46:89:29:f3:dc:ce:ac:7e:75:8c:29:1f:35:cc:8c:7d: e3:aa:1e:c4:2f:77:db:66:5f:8d:94:da:b3:06:aa:ea:1d:70: 30:51:a2:ec:6a:e5:7d:2d:64:46:b9:35:ac:68:02:9c:5a:9d: e7:93:21:d5:d1:6f:51:4a:cb:31:69:3d:96:b3:96:bc:05:86: 47:d7:95:d4:93:fd:4b:73:f8:a0:55:09:1f:83:22:9f:c7:c4: 2f:1d:36:c1:d4:2e:05:f0:a2:8c:4f:1d:4e:e8:9f:0a:04:27: 1b:d2:70:ad:3c:7d:f8:02:2b:73:30:ce:ba:bc:58:7b:8c:1a: 29:c6:12:8e:85:71:58:96:cd:b0:4d:12:49:b7:c0:10:29:51: a2:90:4c:d2:2b:2e:01:4b:cc:84:f2:22:89:68:98:b1:97:87: a5:2e:9e:fa:64:b8:33:b1:b5:58:12:77:f7:49:26:4f:3b:62: 05:5d:4c:b5:89:61:6f:ef:7f:aa:2b:17:01:bc:65:04:04:dc: 1b:42:4b:a6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICA4UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yNTAyMTAx MzQ2NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzQUMxQ0M4RUU4Qjc4 MTI1OTAyRDk2NzA5NDhFRjRFN0IyMjRBNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEY9Durb2JbQ7KMTA+H2JP76qew4NQq+s7/eo8K4X4A9mxzr6i ceYaTUmGDcWUKhd+jWEAvJcn1+aU5lv1r8AiZt3ainEbLI1uXui9H+9zcMdXJ0CM ppqmrKekYQW+k9i0qbnlxUbaLGhYiyuua8nlTq7qm0PnE4K057fE9wCADbtekK6+ +MBv7u/JO3zfNRGEo8hHCq8gI3pPCGIbICABxwT8TB6cAZEl/5jR5D0fRYlmO02S rJjX31dV9gdoLV0ZQc39RArHJU821bGAxGRsuZckW6E2fjjatbpiPwjmkeRx88fz tNDu3QCXMCAKfdHO6bAo+oqQ2GYqlUkre69vAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUo6wcyO6LeBJZAtlnCUjvTnsiSmgwHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZL282d2N5TzZMZUJKWkF0bG5D VWp2VG5zaVNtZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn qg4wDQYJKoZIhvcNAQELBQADggEBAGsc1HP9cxShtVUjckwEPP/kWu4059lMOurT x5KudIrPbGU3gfe3S4gc3dM6Euxp2dMpUHztBjXgRokp89zOrH51jCkfNcyMfeOq HsQvd9tmX42U2rMGquodcDBRouxq5X0tZEa5NaxoApxaneeTIdXRb1FKyzFpPZaz lrwFhkfXldST/Utz+KBVCR+DIp/HxC8dNsHULgXwooxPHU7onwoEJxvScK08ffgC K3Mwzrq8WHuMGinGEo6FcViWzbBNEkm3wBApUaKQTNIrLgFLzITyIolomLGXh6Uu nvpkuDOxtVgSd/dJJk87YgVdTLWJYW/vf6orFwG8ZQQE3BtCS6Y= -----END CERTIFICATE-----Generated at Fri Apr 18 23:52:42 2025 by rpki-client