$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/GnyyDpm3mmdAbCCQVhzVRnw6x0M.roa File: GnyyDpm3mmdAbCCQVhzVRnw6x0M.roa (raw, json) Hash identifier: APtmjKoACUfAq/x3gki3kLBJ0COWTpLHdikKUYku2G8= Subject key identifier: 1A:7C:B2:0E:99:B7:9A:67:40:6C:20:90:56:1C:D5:46:7C:3A:C7:43 Certificate issuer: /CN=09C34B8ACA620F628C7A1E6821440EEE680E4CD8 Certificate serial: 28 Authority key identifier: 09:C3:4B:8A:CA:62:0F:62:8C:7A:1E:68:21:44:0E:EE:68:0E:4C:D8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CcNLispiD2KMeh5oIUQO7mgOTNg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/GnyyDpm3mmdAbCCQVhzVRnw6x0M.roa Signing time: Mon 10 Feb 2025 14:31:47 +0000 ROA not before: Mon 10 Feb 2025 14:31:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131683 IP address blocks: 103.161.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/CcNLispiD2KMeh5oIUQO7mgOTNg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/CcNLispiD2KMeh5oIUQO7mgOTNg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CcNLispiD2KMeh5oIUQO7mgOTNg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 23 Apr 2025 06:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40 (0x28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09C34B8ACA620F628C7A1E6821440EEE680E4CD8 Validity Not Before: Feb 10 14:31:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1A7CB20E99B79A67406C2090561CD5467C3AC743 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:73:8f:08:ba:2c:a1:42:6d:b0:e7:54:1f:ae: e0:80:5e:a8:11:ee:b9:71:7c:8d:54:42:69:cc:67: 70:1a:28:e9:12:a0:24:98:26:cd:49:29:d5:e7:9c: 27:68:21:11:93:2f:b9:b4:cd:08:85:60:f4:1e:07: 3a:0a:de:bf:be:5b:d8:f0:3e:63:cf:83:8a:8b:70: 0a:bb:23:1d:f2:d2:d5:98:f5:c4:91:32:3a:a9:d8: b5:04:f8:9c:30:ea:a8:2f:7d:44:56:30:34:b2:37: 85:fd:84:6a:c1:9d:54:07:08:49:28:61:ff:80:1f: f3:2a:cd:cd:4b:55:b5:04:4b:0c:94:00:f1:e9:be: de:fa:57:3f:d9:d8:06:78:cb:9d:07:c2:2a:bf:6d: 08:34:e8:c9:ba:2a:c9:b2:73:cb:31:28:f6:63:dc: 6a:22:0b:e8:a8:e8:da:2a:a5:90:50:58:93:d7:b7: fc:95:9c:d5:c3:a4:c3:71:60:62:87:3e:92:ae:51: 7e:46:ab:61:98:90:63:4b:04:4c:b3:0b:eb:9b:3a: 0e:4e:4d:d7:99:a3:03:65:bf:e0:03:66:81:ae:04: da:3b:a9:59:32:14:18:95:ff:3c:c8:0d:4a:38:91: 82:a7:c8:66:4c:9a:cf:77:a2:d5:9b:f0:7b:56:67: f4:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7C:B2:0E:99:B7:9A:67:40:6C:20:90:56:1C:D5:46:7C:3A:C7:43 X509v3 Authority Key Identifier: keyid:09:C3:4B:8A:CA:62:0F:62:8C:7A:1E:68:21:44:0E:EE:68:0E:4C:D8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/CcNLispiD2KMeh5oIUQO7mgOTNg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CcNLispiD2KMeh5oIUQO7mgOTNg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INNOLUX/GnyyDpm3mmdAbCCQVhzVRnw6x0M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.161.90.0/23 Signature Algorithm: sha256WithRSAEncryption 72:2b:e7:e6:09:26:68:0c:91:b9:16:9b:2b:f7:6d:c9:89:e9: 2f:67:9f:d9:6a:03:14:d1:9e:d1:28:98:be:07:19:c3:cc:a5: d6:f9:cc:4f:3c:13:12:ab:60:84:8e:5d:56:56:8a:a0:ac:b7: e8:dd:d7:ee:3f:c0:89:5f:13:6b:c3:b7:51:db:28:b2:86:69: 49:6a:38:b8:58:9b:95:02:87:6c:08:ec:28:18:d2:bf:39:68: c1:ce:46:5d:7e:ae:f4:c5:df:07:52:17:d6:40:88:f9:9d:e1: 50:3e:c8:7f:48:50:21:1a:ba:94:91:15:c8:0b:fe:f4:5a:fa: bc:5e:db:a8:4c:ee:39:4a:0e:99:db:52:0a:64:0b:38:56:fc: 51:d0:6a:d3:24:03:25:9a:33:25:0a:10:3e:85:22:f1:fc:cd: 41:86:32:f7:8d:68:7d:79:fc:75:0e:c9:e2:78:53:77:55:61: 1e:2a:a6:03:a3:8c:b8:c7:34:1e:46:e4:60:0e:7c:ea:68:37: a4:29:a8:c0:81:ab:a3:8c:1a:cd:ff:15:7f:bc:f5:30:5a:83: a0:49:41:56:29:fe:85:e8:77:51:52:a3:82:63:2d:6a:06:a3: 1d:61:62:69:b3:c1:e1:a9:be:81:96:29:76:24:f5:36:96:b0: ca:7f:1b:8e -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIBKDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwOUMz NEI4QUNBNjIwRjYyOEM3QTFFNjgyMTQ0MEVFRTY4MEU0Q0Q4MB4XDTI1MDIxMDE0 MzE0N1oXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoMUE3Q0IyMEU5OUI3OUE2 NzQwNkMyMDkwNTYxQ0Q1NDY3QzNBQzc0MzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKNzjwi6LKFCbbDnVB+u4IBeqBHuuXF8jVRCacxncBoo6RKgJJgm zUkp1eecJ2ghEZMvubTNCIVg9B4HOgrev75b2PA+Y8+DiotwCrsjHfLS1Zj1xJEy OqnYtQT4nDDqqC99RFYwNLI3hf2EasGdVAcISShh/4Af8yrNzUtVtQRLDJQA8em+ 3vpXP9nYBnjLnQfCKr9tCDToyboqybJzyzEo9mPcaiIL6Kjo2iqlkFBYk9e3/JWc 1cOkw3FgYoc+kq5RfkarYZiQY0sETLML65s6Dk5N15mjA2W/4ANmga4E2jupWTIU GJX/PMgNSjiRgqfIZkyaz3ei1Zvwe1Zn9MECAwEAAaOCAfAwggHsMB0GA1UdDgQW BBQafLIOmbeaZ0BsIJBWHNVGfDrHQzAfBgNVHSMEGDAWgBQJw0uKymIPYox6Hmgh RA7uaA5M2DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTk5PTFVY L0NjTkxpc3BpRDJLTWVoNW9JVVFPN21nT1ROZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ2NOTGlzcGlEMktNZWg1b0lVUU83bWdPVE5nLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5OT0xVWC9Hbnl5RHBtM21tZEFiQ0NR Vmh6VlJudzZ4ME0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB Z6FaMA0GCSqGSIb3DQEBCwUAA4IBAQByK+fmCSZoDJG5Fpsr923JiekvZ5/ZagMU 0Z7RKJi+BxnDzKXW+cxPPBMSq2CEjl1WVoqgrLfo3dfuP8CJXxNrw7dR2yiyhmlJ aji4WJuVAodsCOwoGNK/OWjBzkZdfq70xd8HUhfWQIj5neFQPsh/SFAhGrqUkRXI C/70Wvq8XtuoTO45Sg6Z21IKZAs4VvxR0GrTJAMlmjMlChA+hSLx/M1BhjL3jWh9 efx1DsnieFN3VWEeKqYDo4y4xzQeRuRgDnzqaDekKajAgaujjBrN/xV/vPUwWoOg SUFWKf6F6HdRUqOCYy1qBqMdYWJps8Hhqb6Blil2JPU2lrDKfxuO -----END CERTIFICATE-----Generated at Wed Apr 23 04:41:01 2025 by rpki-client