$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/s0PZMCCc4R62OEmyCvv8lfxdvUs.roa File: s0PZMCCc4R62OEmyCvv8lfxdvUs.roa (raw, json) Hash identifier: nOgY5Z4rwX8PauASe5UNiKxDQNyIw4t6hH0T7D/a9p8= Subject key identifier: B3:43:D9:30:20:9C:E1:1E:B6:38:49:B2:0A:FB:FC:95:FC:5D:BD:4B Certificate issuer: /CN=1A610A62A8A72CD36C1D22C7085EDF1809518994 Certificate serial: 0A17 Authority key identifier: 1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/s0PZMCCc4R62OEmyCvv8lfxdvUs.roa Signing time: Mon 10 Feb 2025 13:47:26 +0000 ROA not before: Mon 10 Feb 2025 13:47:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131667 IP address blocks: 103.146.210.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2583 (0xa17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1A610A62A8A72CD36C1D22C7085EDF1809518994 Validity Not Before: Feb 10 13:47:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B343D930209CE11EB63849B20AFBFC95FC5DBD4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4d:93:99:97:9b:f4:e4:90:73:cf:e3:f0:d5: 42:e0:b7:f6:02:ec:e8:d5:2b:b2:3b:09:95:7e:1f: c2:a7:78:06:8d:2d:17:96:e3:7f:e0:fa:18:b6:25: 24:38:3d:7b:d3:46:1f:e1:48:ca:44:5e:b2:8e:9d: 85:a4:1d:3a:55:3d:8a:18:e0:a3:7d:cc:05:d6:09: 1b:d3:16:a8:6d:c0:11:41:41:74:59:e3:ee:a8:3a: de:b5:f2:7d:60:86:99:85:91:47:bd:4c:fa:22:a2: 0e:db:0b:ea:b6:a8:0b:c4:93:f7:1a:c8:94:c8:31: 5f:7c:52:fe:ac:dc:4a:cb:b6:47:66:c4:34:91:f3: c4:65:72:dd:b7:65:b6:3b:c6:29:e1:69:cf:ca:ca: 3b:52:d8:16:1f:8c:6e:25:5d:be:c5:fa:33:74:59: 6e:6c:8e:49:2b:5d:ac:de:da:f7:fb:43:97:42:e9: 21:a3:83:13:1c:37:32:08:fa:0e:79:1b:da:9b:9b: 7c:a6:b1:e4:8f:ac:a0:39:d2:35:e6:ed:b0:02:1c: 5a:e4:47:14:c8:35:d6:a0:71:a4:ab:7c:64:9f:70: 1f:fe:07:a7:fc:95:a1:16:36:0c:40:14:1c:07:5f: 4d:df:b2:c4:26:b1:67:b3:92:36:54:ce:d2:c4:3f: 91:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:43:D9:30:20:9C:E1:1E:B6:38:49:B2:0A:FB:FC:95:FC:5D:BD:4B X509v3 Authority Key Identifier: keyid:1A:61:0A:62:A8:A7:2C:D3:6C:1D:22:C7:08:5E:DF:18:09:51:89:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/GmEKYqinLNNsHSLHCF7fGAlRiZQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GmEKYqinLNNsHSLHCF7fGAlRiZQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GRONEXT/s0PZMCCc4R62OEmyCvv8lfxdvUs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.146.210.0/23 Signature Algorithm: sha256WithRSAEncryption 58:8f:72:f6:0b:50:8f:80:2d:b4:8f:9d:e8:51:49:d1:b4:4b: 3b:7b:16:95:ba:71:e2:c8:97:ad:69:ba:93:6a:ed:8f:0c:e8: 33:fe:8f:f7:70:03:a7:fc:28:52:31:aa:2b:d2:36:3a:46:32: bc:72:0e:a7:c7:98:30:a7:c5:93:7c:5a:d6:1a:1d:1a:a0:93: 27:35:5a:cd:da:55:a9:e1:c6:81:a6:41:bf:ec:ec:e3:8b:29: d9:f0:ae:1a:f5:5d:cf:dc:8e:df:c8:f8:7f:64:d1:88:b3:25: fc:92:2d:a7:18:44:4e:e5:42:6f:ea:d3:c9:2a:91:2e:38:39: 23:d1:39:c0:38:18:b9:62:7c:65:57:59:4a:e9:f1:5d:8b:cd: 43:60:88:ad:50:15:eb:5c:f6:2d:33:eb:c4:08:ce:f2:0e:de: 3b:2c:ab:ac:87:83:fe:d1:48:73:77:2f:a6:33:a9:98:0b:13: ed:df:f0:80:f2:26:bf:80:61:d6:e8:b1:02:5d:aa:4b:87:ab: 83:a7:5b:83:a7:e3:0d:3c:5e:b7:6a:a6:9b:18:18:b7:10:7f: 0d:45:97:3f:a3:07:99:07:d7:6b:96:e2:c2:82:ea:c8:a4:23: 10:6f:0c:5e:c4:55:d5:08:60:46:8e:0c:be:a5:a4:89:a6:08: d4:02:8d:7a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICChcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUE2 MTBBNjJBOEE3MkNEMzZDMUQyMkM3MDg1RURGMTgwOTUxODk5NDAeFw0yNTAyMTAx MzQ3MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzNDNEOTMwMjA5Q0Ux MUVCNjM4NDlCMjBBRkJGQzk1RkM1REJENEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNTZOZl5v05JBzz+Pw1ULgt/YC7OjVK7I7CZV+H8KneAaNLReW 43/g+hi2JSQ4PXvTRh/hSMpEXrKOnYWkHTpVPYoY4KN9zAXWCRvTFqhtwBFBQXRZ 4+6oOt618n1ghpmFkUe9TPoiog7bC+q2qAvEk/cayJTIMV98Uv6s3ErLtkdmxDSR 88Rlct23ZbY7xinhac/KyjtS2BYfjG4lXb7F+jN0WW5sjkkrXaze2vf7Q5dC6SGj gxMcNzII+g55G9qbm3ymseSPrKA50jXm7bACHFrkRxTINdagcaSrfGSfcB/+B6f8 laEWNgxAFBwHX03fssQmsWezkjZUztLEP5G1AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUs0PZMCCc4R62OEmyCvv8lfxdvUswHwYDVR0jBBgwFoAUGmEKYqinLNNsHSLH CF7fGAlRiZQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1JPTkVY VC9HbUVLWXFpbkxOTnNIU0xIQ0Y3ZkdBbFJpWlEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dtRUtZcWluTE5Oc0hTTEhDRjdmR0FsUmlaUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0dST05FWFQvczBQWk1DQ2M0UjYyT0Vt eUN2djhsZnhkdlVzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeS0jANBgkqhkiG9w0BAQsFAAOCAQEAWI9y9gtQj4AttI+d6FFJ0bRLO3sWlbpx 4siXrWm6k2rtjwzoM/6P93ADp/woUjGqK9I2OkYyvHIOp8eYMKfFk3xa1hodGqCT JzVazdpVqeHGgaZBv+zs44sp2fCuGvVdz9yO38j4f2TRiLMl/JItpxhETuVCb+rT ySqRLjg5I9E5wDgYuWJ8ZVdZSunxXYvNQ2CIrVAV61z2LTPrxAjO8g7eOyyrrIeD /tFIc3cvpjOpmAsT7d/wgPImv4Bh1uixAl2qS4erg6dbg6fjDTxet2qmmxgYtxB/ DUWXP6MHmQfXa5biwoLqyKQjEG8MXsRV1QhgRo4MvqWkiaYI1AKNeg== -----END CERTIFICATE-----Generated at Fri Apr 18 23:58:34 2025 by rpki-client