$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/GGPVJwT2ROTuR5W8jgI9t2olrYI.roa File: GGPVJwT2ROTuR5W8jgI9t2olrYI.roa (raw, json) Hash identifier: LHPPyuoDZtl9+9pF4BMW3xf8ZoGjtt2BTQnre+DGD1w= Subject key identifier: 18:63:D5:27:04:F6:44:E4:EE:47:95:BC:8E:02:3D:B7:6A:25:AD:82 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0D17 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/GGPVJwT2ROTuR5W8jgI9t2olrYI.roa Signing time: Mon 10 Feb 2025 14:08:20 +0000 ROA not before: Mon 10 Feb 2025 14:08:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 163.29.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3351 (0xd17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Feb 10 14:08:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1863D52704F644E4EE4795BC8E023DB76A25AD82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:40:cd:e1:1d:da:69:51:4b:34:57:3c:f3:cb: 4d:ab:73:aa:a1:e9:5b:ba:2d:91:2a:4f:0c:8b:be: 39:ea:80:e8:13:cf:81:96:51:97:c7:b8:f2:e2:29: 1b:a2:47:dc:0e:51:78:0b:0f:59:59:8d:45:93:82: 62:6c:53:47:68:a2:26:f8:f8:33:14:d9:de:a1:d7: bb:69:5d:0e:f8:37:80:cb:61:51:73:e1:1e:c9:ef: b0:dc:93:7d:c9:c3:c7:ec:5a:d8:01:ca:b3:32:db: 8c:53:29:7e:cf:ab:32:94:87:81:c4:4b:1b:20:0e: 9b:61:74:a5:fe:20:05:a7:db:a4:f7:61:f1:3f:8b: b0:9a:ff:9d:df:51:66:80:6f:6a:4d:92:b2:7d:53: 75:3e:ca:3b:84:75:e6:a6:78:3f:4f:5f:27:e1:ee: 3f:03:44:5b:28:bc:14:ac:f0:e4:30:02:09:c9:be: 33:69:87:f0:e2:ed:8d:5c:53:39:26:97:07:36:6f: 6e:b7:0f:5e:cb:ea:ea:b6:fb:87:b3:c5:95:da:5b: ce:d2:b0:f2:17:4b:dc:46:77:16:77:b6:90:d2:fc: e7:93:57:2b:d9:20:a9:39:f2:aa:59:45:41:63:79: d3:d1:a6:a9:2f:96:d8:fb:15:f8:02:26:af:99:49: 86:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:63:D5:27:04:F6:44:E4:EE:47:95:BC:8E:02:3D:B7:6A:25:AD:82 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/GGPVJwT2ROTuR5W8jgI9t2olrYI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.29.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:b2:31:bb:e7:40:d9:b6:b1:5f:32:f4:90:c5:87:c3:74:77: de:56:e5:37:c6:97:bd:4b:45:3f:93:89:57:7f:46:31:56:b9: 57:eb:0b:bb:43:c9:47:fe:77:16:28:ab:d7:36:77:12:7e:e0: d5:6a:e8:cf:1a:76:6e:cf:4a:1d:83:22:e5:2b:4b:dc:4c:66: 06:9d:09:94:ed:ff:7a:78:e4:fe:71:db:13:34:ed:e6:a7:7d: b6:9a:12:de:d4:79:15:83:35:42:88:47:f8:93:41:9e:98:df: 81:61:70:20:e2:29:20:a3:dc:c1:11:99:35:aa:ab:bb:ee:13: 53:47:67:73:18:e3:01:37:5d:0d:d3:06:b6:bd:b2:1d:48:8c: 97:29:7e:84:98:e4:6c:4b:d3:46:0e:5d:9b:1c:5f:63:6d:57: 32:72:8f:81:d0:87:22:82:b6:d1:2c:b3:1b:eb:20:19:02:96: 44:ca:49:8a:4d:27:5c:cd:e0:b0:aa:e0:55:76:40:bb:5c:84: 61:1e:d3:ab:3a:2f:69:94:dc:80:a5:57:6a:47:c3:2f:a7:47: 71:ba:aa:30:29:b5:c1:05:51:27:fb:7e:77:1e:c0:65:72:e2: fa:f3:dc:23:fe:84:d7:27:27:b9:20:7d:8e:96:18:32:11:5a: a7:bd:92:c2 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDRcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTAyMTAx NDA4MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4NjNENTI3MDRGNjQ0 RTRFRTQ3OTVCQzhFMDIzREI3NkEyNUFEODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5QM3hHdppUUs0Vzzzy02rc6qh6Vu6LZEqTwyLvjnqgOgTz4GW UZfHuPLiKRuiR9wOUXgLD1lZjUWTgmJsU0dooib4+DMU2d6h17tpXQ74N4DLYVFz 4R7J77Dck33Jw8fsWtgByrMy24xTKX7PqzKUh4HESxsgDpthdKX+IAWn26T3YfE/ i7Ca/53fUWaAb2pNkrJ9U3U+yjuEdeameD9PXyfh7j8DRFsovBSs8OQwAgnJvjNp h/Di7Y1cUzkmlwc2b263D17L6uq2+4ezxZXaW87SsPIXS9xGdxZ3tpDS/OeTVyvZ IKk58qpZRUFjedPRpqkvltj7FfgCJq+ZSYZPAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUGGPVJwT2ROTuR5W8jgI9t2olrYIwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL0dHUFZKd1QyUk9UdVI1VzhqZ0k5dDJv bHJZSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwCjHTANBgkq hkiG9w0BAQsFAAOCAQEAJrIxu+dA2baxXzL0kMWHw3R33lblN8aXvUtFP5OJV39G MVa5V+sLu0PJR/53Fiir1zZ3En7g1Wrozxp2bs9KHYMi5StL3ExmBp0JlO3/enjk /nHbEzTt5qd9tpoS3tR5FYM1QohH+JNBnpjfgWFwIOIpIKPcwRGZNaqru+4TU0dn cxjjATddDdMGtr2yHUiMlyl+hJjkbEvTRg5dmxxfY21XMnKPgdCHIoK20SyzG+sg GQKWRMpJik0nXM3gsKrgVXZAu1yEYR7TqzovaZTcgKVXakfDL6dHcbqqMCm1wQVR J/t+dx7AZXLi+vPcI/6E1ycnuSB9jpYYMhFap72Swg== -----END CERTIFICATE-----Generated at Fri Apr 18 22:45:27 2025 by rpki-client