$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/ZYlq_FTW0esZ6B4aobJNmgXVO14.roa File: ZYlq_FTW0esZ6B4aobJNmgXVO14.roa (raw, json) Hash identifier: GIjGiulTxZln+8kviw6Ojk9GNgQyBp/cLtHx91O4gME= Subject key identifier: 65:89:6A:FC:54:D6:D1:EB:19:E8:1E:1A:A1:B2:4D:9A:05:D5:3B:5E Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0D10 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ZYlq_FTW0esZ6B4aobJNmgXVO14.roa Signing time: Mon 10 Feb 2025 14:08:18 +0000 ROA not before: Mon 10 Feb 2025 14:08:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 210.69.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 19 Apr 2025 03:17:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3344 (0xd10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Feb 10 14:08:18 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=65896AFC54D6D1EB19E81E1AA1B24D9A05D53B5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:3e:b5:ce:89:99:ba:63:b5:18:fb:69:02:ef: 79:62:23:94:e8:a0:cc:c0:0a:d1:69:ed:18:67:92: 24:09:58:76:42:76:5d:76:9d:b8:83:55:e5:d4:68: ce:d8:26:29:75:9f:99:e5:e8:fd:a5:aa:53:11:41: ff:3a:2c:6c:b0:f3:18:66:d6:ff:9f:5e:08:90:2e: 8a:a1:fe:07:d1:8f:b2:fc:02:26:41:e6:cd:ad:26: c3:a6:fa:01:ca:be:a0:cc:25:04:e6:24:9c:95:3d: 2c:61:06:7f:2b:3e:21:83:e9:88:a2:dd:ad:d0:34: 97:32:ba:be:94:0f:ef:97:8d:fa:10:80:99:6c:d2: 5c:b9:65:8a:18:a7:68:12:6f:fb:34:59:cd:37:42: 4d:a3:67:11:21:3a:6e:a8:b3:ee:a5:d6:36:2d:cb: 13:43:cf:37:a7:e2:75:5e:10:37:31:de:fa:1f:d1: b0:95:64:68:d6:bd:88:8b:be:db:cb:0e:2c:f9:2e: 8c:d9:5d:fc:31:39:8c:ad:d7:cd:c7:34:11:0c:b1: 97:88:a0:2a:e8:17:45:fe:0c:15:d4:a8:87:1d:6a: a7:f5:39:75:86:74:9a:90:a9:46:27:74:0e:f1:9d: 6e:9c:a1:c7:f1:0c:6b:6f:1b:21:c7:b2:56:83:87: 7d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:89:6A:FC:54:D6:D1:EB:19:E8:1E:1A:A1:B2:4D:9A:05:D5:3B:5E X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ZYlq_FTW0esZ6B4aobJNmgXVO14.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.69.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:9d:97:eb:4d:ca:a1:b4:6d:4f:d7:2f:4d:25:fa:20:88:d9: 75:0f:ff:af:d6:b9:d9:90:47:2b:7b:c0:89:1d:ad:b4:0f:cf: c7:55:e0:2e:45:44:cf:d7:e3:9b:1f:d1:77:6d:0e:d1:6a:ec: 1f:01:2c:ae:50:33:8d:f4:03:c1:eb:5d:5c:75:59:f7:d1:9b: ee:b6:bd:58:82:cf:32:a0:76:49:3f:06:fa:2d:fb:a3:08:0c: bb:91:0d:bf:7d:0b:c1:92:5d:1d:e4:69:a7:77:c8:62:7b:2c: 04:c3:49:3f:85:c5:ab:8a:3b:a1:2d:d5:5d:c0:8a:50:97:f0: a9:87:71:6b:e7:4a:d9:43:6f:85:91:48:dd:6b:d9:a1:31:41: a6:fe:f7:8a:5a:80:53:24:59:f2:7d:84:72:e6:5d:24:18:a5: 91:1e:5e:63:a7:58:88:b6:9c:56:59:55:a7:6b:03:5d:5e:93: 86:29:6e:8c:4f:24:1a:c2:f5:2e:a2:4f:01:7d:d2:e8:83:74: c9:8f:2f:7a:e0:e9:4d:85:37:32:83:68:3b:c9:d2:31:03:d5: d2:2d:75:2f:a5:be:4d:0c:f1:be:48:5c:58:94:8a:68:89:b6: 0a:e8:64:80:40:2d:80:94:c8:65:90:79:4c:33:de:3b:a5:06: ad:89:29:8d -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDRAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTAyMTAx NDA4MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1ODk2QUZDNTRENkQx RUIxOUU4MUUxQUExQjI0RDlBMDVENTNCNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsPrXOiZm6Y7UY+2kC73liI5TooMzACtFp7RhnkiQJWHZCdl12 nbiDVeXUaM7YJil1n5nl6P2lqlMRQf86LGyw8xhm1v+fXgiQLoqh/gfRj7L8AiZB 5s2tJsOm+gHKvqDMJQTmJJyVPSxhBn8rPiGD6Yii3a3QNJcyur6UD++XjfoQgJls 0ly5ZYoYp2gSb/s0Wc03Qk2jZxEhOm6os+6l1jYtyxNDzzen4nVeEDcx3vof0bCV ZGjWvYiLvtvLDiz5LozZXfwxOYyt183HNBEMsZeIoCroF0X+DBXUqIcdaqf1OXWG dJqQqUYndA7xnW6cocfxDGtvGyHHslaDh31RAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUZYlq/FTW0esZ6B4aobJNmgXVO14wHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1pZbHFfRlRXMGVzWjZCNGFvYkpObWdY Vk8xNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSRTANBgkq hkiG9w0BAQsFAAOCAQEAOp2X603KobRtT9cvTSX6IIjZdQ//r9a52ZBHK3vAiR2t tA/Px1XgLkVEz9fjmx/Rd20O0WrsHwEsrlAzjfQDwetdXHVZ99Gb7ra9WILPMqB2 ST8G+i37owgMu5ENv30LwZJdHeRpp3fIYnssBMNJP4XFq4o7oS3VXcCKUJfwqYdx a+dK2UNvhZFI3WvZoTFBpv73ilqAUyRZ8n2EcuZdJBilkR5eY6dYiLacVllVp2sD XV6ThilujE8kGsL1LqJPAX3S6IN0yY8veuDpTYU3MoNoO8nSMQPV0i11L6W+TQzx vkhcWJSKaIm2CuhkgEAtgJTIZZB5TDPeO6UGrYkpjQ== -----END CERTIFICATE-----Generated at Fri Apr 18 23:14:34 2025 by rpki-client