$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/6D_DU4uzqOhQHa9zw8G04vABIJE.roa File: 6D_DU4uzqOhQHa9zw8G04vABIJE.roa (raw, json) Hash identifier: giMkVmrFUeXvleY7MEAp/RX7syH5+pmqa5m9uFjbVg0= Subject key identifier: E8:3F:C3:53:8B:B3:A8:E8:50:1D:AF:73:C3:C1:B4:E2:F0:01:20:91 Certificate issuer: /CN=1A610A62A8A72CD36C1D22C7085EDF1809518994 Certificate serial: 0A18 Authority key identifier: 1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/6D_DU4uzqOhQHa9zw8G04vABIJE.roa Signing time: Mon 10 Feb 2025 13:47:26 +0000 ROA not before: Mon 10 Feb 2025 13:47:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131667 IP address blocks: 2405:a040::/32 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2584 (0xa18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A610A62A8A72CD36C1D22C7085EDF1809518994 Validity Not Before: Feb 10 13:47:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E83FC3538BB3A8E8501DAF73C3C1B4E2F0012091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:5c:5f:12:fd:f3:ad:61:9c:d3:7a:0b:99:09: d5:3e:2c:a3:f0:7f:97:4c:49:8c:77:30:e0:46:a3: 6f:b2:d1:db:7d:c6:ff:a9:f2:b8:e6:d7:50:3b:03: 88:35:a1:ae:23:7e:70:0c:d2:27:66:28:42:8c:ca: 1d:64:df:23:2c:10:11:28:08:de:cb:20:a5:80:a8: 7e:68:8f:2c:0e:4d:0a:a6:46:8b:ee:61:34:85:93: 8f:27:5c:6a:0f:c2:fd:c8:e5:7c:c1:3f:5f:a2:f2: c4:e7:9e:85:93:0f:97:ac:75:68:27:b9:b8:05:fd: 33:6d:7a:6d:c7:b0:b2:74:c4:e9:75:71:a7:fd:4c: f4:9f:f6:c1:8d:ee:ad:10:39:1d:1d:45:66:fb:74: b6:27:9b:b3:80:12:cc:e8:95:f4:2b:f9:c4:2b:0d: e9:55:6d:f9:12:9d:0f:c1:7b:4e:bc:79:f1:90:8f: 60:3f:9e:e5:df:56:d2:a9:b2:45:03:07:76:5e:28: bf:ca:91:f0:e7:74:f6:11:bc:9c:69:7b:6e:ca:d8: 5f:db:a8:d6:34:63:23:f8:5f:20:dc:5b:35:f4:f1: 06:0e:f8:14:53:11:61:13:d2:4d:9d:a7:14:7b:c7: 11:c1:ab:74:8a:f0:12:5f:b1:cf:bb:6c:ec:ec:6e: d6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:3F:C3:53:8B:B3:A8:E8:50:1D:AF:73:C3:C1:B4:E2:F0:01:20:91 X509v3 Authority Key Identifier: keyid:1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/6D_DU4uzqOhQHa9zw8G04vABIJE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a040::/32 Signature Algorithm: sha256WithRSAEncryption 94:3e:a2:9f:1b:de:73:ae:63:e8:6c:c1:ae:30:3f:aa:f9:ba: ed:c6:fc:de:16:8c:a1:8b:24:43:33:7f:1d:4d:12:82:e0:c2: 20:cd:ca:86:3c:d3:c8:49:cc:4a:b6:46:6c:56:ad:27:c7:90: 00:e3:84:cb:1c:95:9b:01:1d:d4:d0:8a:63:1a:1a:44:2c:4c: 52:98:6b:5e:4a:3b:87:a2:bd:10:81:02:7d:c1:6d:d3:3f:fa: 68:53:33:17:dc:26:dc:74:25:55:9a:0e:91:98:08:ab:48:fd: e3:32:74:b0:25:dc:c3:79:17:bb:d1:87:3c:59:10:09:6c:42: 70:91:51:ea:45:ba:54:9f:c7:1c:cd:d9:01:b9:30:47:2f:67: 22:4a:3c:16:3a:c7:2b:a5:21:80:c9:63:2e:4f:eb:03:f0:f0: 64:6a:fb:e7:02:8a:54:ab:b6:d3:e0:97:b1:29:b3:19:95:62: e9:0e:16:a4:f0:9c:c0:a1:df:e9:eb:db:ea:e1:04:55:b0:f7: 8f:23:c0:aa:3e:b9:71:27:3c:c4:3e:ec:ba:0b:23:91:70:6d: 8d:94:48:41:2d:9e:55:97:e6:f5:de:f4:c2:ed:38:4b:de:4f: 34:ae:76:d9:15:fd:cc:28:cd:7f:23:43:bd:9e:ef:18:e1:73: ec:59:71:55 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICChgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUE2 MTBBNjJBOEE3MkNEMzZDMUQyMkM3MDg1RURGMTgwOTUxODk5NDAeFw0yNTAyMTAx MzQ3MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4M0ZDMzUzOEJCM0E4 RTg1MDFEQUY3M0MzQzFCNEUyRjAwMTIwOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrXF8S/fOtYZzTeguZCdU+LKPwf5dMSYx3MOBGo2+y0dt9xv+p 8rjm11A7A4g1oa4jfnAM0idmKEKMyh1k3yMsEBEoCN7LIKWAqH5ojywOTQqmRovu YTSFk48nXGoPwv3I5XzBP1+i8sTnnoWTD5esdWgnubgF/TNtem3HsLJ0xOl1caf9 TPSf9sGN7q0QOR0dRWb7dLYnm7OAEszolfQr+cQrDelVbfkSnQ/Be068efGQj2A/ nuXfVtKpskUDB3ZeKL/KkfDndPYRvJxpe27K2F/bqNY0YyP4XyDcWzX08QYO+BRT EWET0k2dpxR7xxHBq3SK8BJfsc+7bOzsbtb9AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU6D/DU4uzqOhQHa9zw8G04vABIJEwHwYDVR0jBBgwFoAUGmEKYqinLNNsHSLH CF7fGAlRiZQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1JPTkVY VC9HbUVLWXFpbkxOTnNIU0xIQ0Y3ZkdBbFJpWlEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dtRUtZcWluTE5Oc0hTTEhDRjdmR0FsUmlaUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0dST05FWFQvNkRfRFU0dXpxT2hRSGE5 enc4RzA0dkFCSUpFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQFoEAwDQYJKoZIhvcNAQELBQADggEBAJQ+op8b3nOuY+hswa4wP6r5uu3G/N4W jKGLJEMzfx1NEoLgwiDNyoY808hJzEq2RmxWrSfHkADjhMsclZsBHdTQimMaGkQs TFKYa15KO4eivRCBAn3BbdM/+mhTMxfcJtx0JVWaDpGYCKtI/eMydLAl3MN5F7vR hzxZEAlsQnCRUepFulSfxxzN2QG5MEcvZyJKPBY6xyulIYDJYy5P6wPw8GRq++cC ilSrttPgl7EpsxmVYukOFqTwnMCh3+nr2+rhBFWw948jwKo+uXEnPMQ+7LoLI5Fw bY2USEEtnlWX5vXe9MLtOEveTzSudtkV/cwozX8jQ72e7xjhc+xZcVU= -----END CERTIFICATE-----Generated at Fri Apr 18 23:58:29 2025 by rpki-client