$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/EwtIB47Vz2kOYgMTqMLCipRvIEQ.roa File: EwtIB47Vz2kOYgMTqMLCipRvIEQ.roa (raw, json) Hash identifier: NeHcM5RxEl+YGhIhrZH16sM200HhPajoEFdP9GKLzuA= Subject key identifier: 13:0B:48:07:8E:D5:CF:69:0E:62:03:13:A8:C2:C2:8A:94:6F:20:44 Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739 Certificate serial: 0C91 Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/EwtIB47Vz2kOYgMTqMLCipRvIEQ.roa Signing time: Mon 10 Feb 2025 13:46:24 +0000 ROA not before: Mon 10 Feb 2025 13:46:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18413 IP address blocks: 61.67.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3217 (0xc91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739 Validity Not Before: Feb 10 13:46:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=130B48078ED5CF690E620313A8C2C28A946F2044 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:22:8c:18:ef:b4:87:0a:0e:c5:d6:67:25:f1: 3d:c5:b2:75:b6:1d:27:9d:4c:d8:82:cb:55:73:ef: 9f:9c:7e:e6:fb:d5:d9:4d:20:4a:c7:d8:b8:e9:e2: d9:c4:14:c3:49:f6:ed:dc:ac:00:ff:0f:8a:95:e2: 6c:45:59:71:cc:07:a3:6e:31:d0:ec:59:42:60:85: 84:d0:c7:71:56:df:65:bc:ae:6b:e3:d5:76:bd:5c: 51:cb:f4:77:44:80:8f:7c:56:44:07:c0:73:0b:fc: 2a:18:4a:85:27:a9:01:59:9a:03:80:57:37:f8:b6: 1f:65:8a:f0:58:b8:e1:41:f8:aa:be:24:5b:6d:a7: 82:a2:d0:e8:0a:ea:0e:ec:41:56:3d:5a:0b:44:d8: 28:a0:7e:1d:0c:02:04:f8:8c:57:2d:2d:64:03:bf: a1:a8:e9:c5:e3:df:a1:2e:be:3f:13:0b:b9:25:e6: a1:b7:87:03:24:dc:8f:7a:3b:b5:6d:a8:7f:d8:d8: cd:ac:34:93:54:c4:aa:dc:06:01:0e:58:29:3d:f4: 8e:8a:73:23:61:6d:09:79:d8:ac:8f:26:f5:61:f6: b7:23:30:32:ac:78:d3:fc:50:86:72:28:6f:88:80: 41:aa:19:02:69:c4:d3:4d:81:e3:52:40:f1:c4:c6: 43:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0B:48:07:8E:D5:CF:69:0E:62:03:13:A8:C2:C2:8A:94:6F:20:44 X509v3 Authority Key Identifier: keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/EwtIB47Vz2kOYgMTqMLCipRvIEQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.0.0/20 Signature Algorithm: sha256WithRSAEncryption 18:01:48:bc:6c:bc:73:52:da:22:69:09:6a:0d:f1:c8:7e:52: 84:64:17:5c:d1:52:5c:0d:8a:9b:ea:21:ec:36:bb:30:07:48: ac:18:c4:a7:47:4a:8f:da:14:8f:63:4f:8a:aa:da:16:f6:d0: de:5c:1f:84:09:7a:24:6c:c3:f4:b8:de:4b:4f:84:31:ae:ed: 24:31:2b:19:c2:6a:35:1a:b2:c9:38:29:be:c2:21:35:04:f1: 43:7d:41:40:9c:61:8f:2f:e0:f3:65:de:b6:8c:ff:cd:dc:b1: 56:db:27:3f:9a:9d:7d:74:b9:1e:25:cb:d3:f0:f5:8e:06:ba: e2:ab:31:93:05:df:8f:65:4b:98:74:f0:7c:66:88:97:66:1e: 8a:dd:ad:ea:a1:5e:df:9a:66:c3:51:07:1c:1e:a3:05:9f:6d: 50:1f:be:74:8a:90:42:61:8e:6e:63:91:36:d7:e3:2b:19:1d: ca:e1:ee:0c:23:7d:25:54:19:01:2e:57:5a:c4:55:c8:67:ce: 97:b2:11:b3:76:8e:b6:d3:11:90:da:dc:ee:5c:bf:c9:73:48: 22:29:ab:20:4f:7f:76:e1:36:43:1a:36:0f:e9:6f:85:03:2c: aa:25:0a:69:d4:d7:58:3d:e9:48:98:e2:a5:e2:57:f5:93:46: 2e:f8:e1:0f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDJEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJB NzkzRDBGRkU2MTFBQzM5N0YxOTc1NzBFMTk3ODUwNDZFRTczOTAeFw0yNTAyMTAx MzQ2MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEzMEI0ODA3OEVENUNG NjkwRTYyMDMxM0E4QzJDMjhBOTQ2RjIwNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEIowY77SHCg7F1mcl8T3FsnW2HSedTNiCy1Vz75+cfub71dlN IErH2Ljp4tnEFMNJ9u3crAD/D4qV4mxFWXHMB6NuMdDsWUJghYTQx3FW32W8rmvj 1Xa9XFHL9HdEgI98VkQHwHML/CoYSoUnqQFZmgOAVzf4th9livBYuOFB+Kq+JFtt p4Ki0OgK6g7sQVY9WgtE2Cigfh0MAgT4jFctLWQDv6Go6cXj36Euvj8TC7kl5qG3 hwMk3I96O7VtqH/Y2M2sNJNUxKrcBgEOWCk99I6KcyNhbQl52KyPJvVh9rcjMDKs eNP8UIZyKG+IgEGqGQJpxNNNgeNSQPHExkPtAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUEwtIB47Vz2kOYgMTqMLCipRvIEQwHwYDVR0jBBgwFoAU26eT0P/mEaw5fxl1 cOGXhQRu5zkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RCQy8y NmVUMFBfbUVhdzVmeGwxY09HWGhRUnU1emsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzI2ZVQwUF9tRWF3NWZ4bDFjT0dYaFFSdTV6ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0dUQkMvRXd0SUI0N1Z6MmtPWWdNVHFNTENp cFJ2SUVRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD1DADAN BgkqhkiG9w0BAQsFAAOCAQEAGAFIvGy8c1LaImkJag3xyH5ShGQXXNFSXA2Km+oh 7Da7MAdIrBjEp0dKj9oUj2NPiqraFvbQ3lwfhAl6JGzD9LjeS0+EMa7tJDErGcJq NRqyyTgpvsIhNQTxQ31BQJxhjy/g82Xetoz/zdyxVtsnP5qdfXS5HiXL0/D1jga6 4qsxkwXfj2VLmHTwfGaIl2Yeit2t6qFe35pmw1EHHB6jBZ9tUB++dIqQQmGObmOR NtfjKxkdyuHuDCN9JVQZAS5XWsRVyGfOl7IRs3aOttMRkNrc7ly/yXNIIimrIE9/ duE2Qxo2D+lvhQMsqiUKadTXWD3pSJjipeJX9ZNGLvjhDw== -----END CERTIFICATE-----Generated at Wed Apr 23 00:18:53 2025 by rpki-client