$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GTBC/JLaoFxSG68O42AncCMUmaEQ-DHc.roa File: JLaoFxSG68O42AncCMUmaEQ-DHc.roa (raw, json) Hash identifier: oFn5eZKICHRK4lsz3dT9o3Egx5ERfIyiQ10WwgSAIRs= Subject key identifier: 24:B6:A8:17:14:86:EB:C3:B8:D8:09:DC:08:C5:26:68:44:3E:0C:77 Certificate issuer: /CN=DBA793D0FFE611AC397F197570E19785046EE739 Certificate serial: 0C90 Authority key identifier: DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/JLaoFxSG68O42AncCMUmaEQ-DHc.roa Signing time: Mon 10 Feb 2025 13:46:24 +0000 ROA not before: Mon 10 Feb 2025 13:46:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18413 IP address blocks: 61.65.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 01:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3216 (0xc90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBA793D0FFE611AC397F197570E19785046EE739 Validity Not Before: Feb 10 13:46:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=24B6A8171486EBC3B8D809DC08C52668443E0C77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:f1:60:dc:eb:fb:1e:3a:0e:4d:76:90:56:53: 18:1b:9d:90:09:d5:9f:15:61:ca:3d:c9:f5:a1:0e: 7e:c8:b1:39:39:d0:01:ef:5d:28:87:51:fc:9d:78: 67:50:d5:6d:5d:66:26:91:db:3e:d3:cd:08:a8:33: 22:d7:e9:54:87:cd:34:5b:81:c0:b0:2f:0c:d6:37: 51:74:67:13:56:8b:7a:15:4f:f7:fa:76:f1:75:10: 50:81:89:3b:e4:b6:47:6e:91:a8:0a:73:75:51:a3: 5f:0f:96:b6:f5:79:87:e8:66:0f:ae:e3:2d:ee:29: 2e:04:56:d0:49:2e:63:61:15:06:1e:5c:2f:63:ba: 69:05:33:77:c6:7e:2b:f5:c0:fe:9f:43:a6:ad:f2: 02:5c:78:00:47:a4:ea:2c:da:c1:23:88:e4:be:31: fc:55:67:59:47:ab:0d:a4:67:6b:16:f3:0d:91:3b: fe:b9:a3:7c:f7:76:0c:e3:6c:c3:bf:00:9a:89:03: 49:fc:e7:53:30:94:57:99:c0:18:c6:4b:44:63:fc: be:d3:83:d8:82:d8:2e:c4:41:be:1f:c7:d2:62:52: 8e:7e:37:63:3e:97:3b:91:b9:23:1e:1a:57:fd:2b: 40:0b:b5:81:40:69:71:af:a6:f5:8b:e6:0d:62:aa: 46:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:B6:A8:17:14:86:EB:C3:B8:D8:09:DC:08:C5:26:68:44:3E:0C:77 X509v3 Authority Key Identifier: keyid:DB:A7:93:D0:FF:E6:11:AC:39:7F:19:75:70:E1:97:85:04:6E:E7:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/26eT0P_mEaw5fxl1cOGXhQRu5zk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/26eT0P_mEaw5fxl1cOGXhQRu5zk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GTBC/JLaoFxSG68O42AncCMUmaEQ-DHc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.192.0/19 Signature Algorithm: sha256WithRSAEncryption 57:33:c4:99:7b:05:22:30:22:a6:b5:72:e7:01:d3:d5:fd:35: a4:0b:fd:aa:5b:79:5a:72:de:91:b1:35:45:bc:5b:9b:72:8b: dc:a1:7c:3c:5f:5c:04:87:c1:8a:26:98:0b:07:ff:f6:4f:1b: de:fa:fd:56:6a:7d:88:bc:2f:2e:11:cb:72:d1:b9:45:db:49: 84:3d:2f:db:3a:5e:fb:13:a7:39:31:5a:b4:27:47:c3:e8:f3: ce:32:80:ed:33:32:ca:c3:5c:be:97:61:d8:c3:27:59:ca:94: 95:c8:85:cf:aa:c9:4d:5f:3f:b3:03:b1:75:8b:e2:61:e6:d9: a9:7e:67:70:33:6f:2f:6f:e6:3f:d2:4c:56:b4:48:81:26:fc: 0b:e4:53:63:3e:ef:87:8b:9a:b0:76:6f:1c:c0:05:f5:30:8d: a0:b3:45:ea:5a:66:aa:bb:e1:e8:bd:44:5e:46:4c:36:c7:66: 69:5f:0a:13:db:18:08:c9:51:97:fc:7a:7c:ce:9d:39:2b:e7: 3a:4d:f8:c8:9a:08:d1:f6:83:c1:2e:ab:1c:14:97:eb:b0:8c: b2:d0:13:8e:27:5f:69:a9:5e:72:66:ef:8a:b2:df:f6:bf:ec: ed:2e:99:b4:9b:74:0f:01:6b:fd:3f:6f:93:37:d3:46:51:60: 64:d0:0d:a6 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREJB NzkzRDBGRkU2MTFBQzM5N0YxOTc1NzBFMTk3ODUwNDZFRTczOTAeFw0yNTAyMTAx MzQ2MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0QjZBODE3MTQ4NkVC QzNCOEQ4MDlEQzA4QzUyNjY4NDQzRTBDNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDX8WDc6/seOg5NdpBWUxgbnZAJ1Z8VYco9yfWhDn7IsTk50AHv XSiHUfydeGdQ1W1dZiaR2z7TzQioMyLX6VSHzTRbgcCwLwzWN1F0ZxNWi3oVT/f6 dvF1EFCBiTvktkdukagKc3VRo18Plrb1eYfoZg+u4y3uKS4EVtBJLmNhFQYeXC9j umkFM3fGfiv1wP6fQ6at8gJceABHpOos2sEjiOS+MfxVZ1lHqw2kZ2sW8w2RO/65 o3z3dgzjbMO/AJqJA0n851MwlFeZwBjGS0Rj/L7Tg9iC2C7EQb4fx9JiUo5+N2M+ lzuRuSMeGlf9K0ALtYFAaXGvpvWL5g1iqkb9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJLaoFxSG68O42AncCMUmaEQ+DHcwHwYDVR0jBBgwFoAU26eT0P/mEaw5fxl1 cOGXhQRu5zkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1RCQy8y NmVUMFBfbUVhdzVmeGwxY09HWGhRUnU1emsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzI2ZVQwUF9tRWF3NWZ4bDFjT0dYaFFSdTV6ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0dUQkMvSkxhb0Z4U0c2OE80MkFuY0NNVW1h RVEtREhjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT1BwDAN BgkqhkiG9w0BAQsFAAOCAQEAVzPEmXsFIjAiprVy5wHT1f01pAv9qlt5WnLekbE1 Rbxbm3KL3KF8PF9cBIfBiiaYCwf/9k8b3vr9Vmp9iLwvLhHLctG5RdtJhD0v2zpe +xOnOTFatCdHw+jzzjKA7TMyysNcvpdh2MMnWcqUlciFz6rJTV8/swOxdYviYebZ qX5ncDNvL2/mP9JMVrRIgSb8C+RTYz7vh4uasHZvHMAF9TCNoLNF6lpmqrvh6L1E XkZMNsdmaV8KE9sYCMlRl/x6fM6dOSvnOk34yJoI0faDwS6rHBSX67CMstATjidf aalecmbvirLf9r/s7S6ZtJt0DwFr/T9vkzfTRlFgZNANpg== -----END CERTIFICATE-----Generated at Wed Apr 23 00:32:50 2025 by rpki-client