$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NETEASE/GNQAXO6jsI1VqrNbDJ02pqvk7V8.roa File: GNQAXO6jsI1VqrNbDJ02pqvk7V8.roa (raw, json) Hash identifier: FjeKfRZpaAarToZNIvGp6RXxUr2rM+raP+avZPyUqnY= Subject key identifier: 18:D4:00:5C:EE:A3:B0:8D:55:AA:B3:5B:0C:9D:36:A6:AB:E4:ED:5F Certificate issuer: /CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00 Certificate serial: 12DA Authority key identifier: DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/GNQAXO6jsI1VqrNbDJ02pqvk7V8.roa Signing time: Mon 10 Feb 2025 13:47:05 +0000 ROA not before: Mon 10 Feb 2025 13:47:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131659 IP address blocks: 103.131.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 18 Apr 2025 22:47:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4826 (0x12da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DEA0948BB7791C4710993A8F1FCCE967ADA09C00 Validity Not Before: Feb 10 13:47:05 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=18D4005CEEA3B08D55AAB35B0C9D36A6ABE4ED5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:56:80:de:17:ec:16:a6:30:4c:ca:b5:31:ab: 83:da:c5:c6:97:3e:25:0c:a5:5a:ce:ea:cc:7a:4d: f8:6c:b1:87:87:08:84:58:a0:17:6f:7e:24:2b:20: 9f:be:eb:11:41:fd:a5:61:c7:19:8b:d9:31:cd:85: 8c:8f:9b:4c:43:28:e2:a5:a3:02:73:ce:fb:14:61: 62:79:03:bc:30:4a:4a:56:f1:a4:68:bc:74:d1:8a: 28:28:27:8d:7b:ab:f7:e6:45:89:e1:61:29:51:bf: b9:a8:73:4b:3f:87:0e:75:ce:ce:5d:e0:dc:eb:0a: a9:1a:28:8e:fa:6a:29:9f:38:95:05:f3:ee:91:14: 35:1b:09:af:8b:28:a8:ef:a9:b1:02:6e:56:7d:a2: ea:92:36:fa:39:0c:1b:a0:50:22:77:55:e1:e0:37: a6:7e:5e:37:9d:6e:1a:c7:58:48:60:11:d7:ec:7b: 2d:fe:5a:70:29:52:0e:69:d2:19:50:6c:9b:d8:9a: 30:f5:95:d2:bc:3a:f5:e8:41:ee:9c:d3:47:23:27: c2:05:91:01:e0:48:78:9b:57:23:13:ed:f8:9d:9d: 7b:81:b3:86:43:74:72:97:2a:d9:02:49:f1:54:aa: 3d:e0:81:fc:7c:b1:e8:d8:47:6c:13:af:e1:09:ff: 0c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D4:00:5C:EE:A3:B0:8D:55:AA:B3:5B:0C:9D:36:A6:AB:E4:ED:5F X509v3 Authority Key Identifier: keyid:DE:A0:94:8B:B7:79:1C:47:10:99:3A:8F:1F:CC:E9:67:AD:A0:9C:00 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/3qCUi7d5HEcQmTqPH8zpZ62gnAA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3qCUi7d5HEcQmTqPH8zpZ62gnAA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NETEASE/GNQAXO6jsI1VqrNbDJ02pqvk7V8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.252.0/22 Signature Algorithm: sha256WithRSAEncryption 50:f8:ce:d4:2e:d5:75:f0:4f:59:ff:09:2a:d2:02:e7:5b:fb: 75:bb:f9:5a:7e:f8:70:39:83:15:d2:06:bf:ba:82:7e:9e:38: 1f:b3:13:19:ad:cb:19:51:dc:f1:ba:a6:b2:2e:f6:02:19:57: 6e:45:d2:d2:fd:0b:2a:98:0b:fc:41:65:2b:f9:96:89:9b:a6: d8:1b:cc:46:32:78:1f:72:0f:25:b4:97:73:b3:05:61:7b:96: 24:c6:89:3d:08:58:13:66:29:00:dd:58:a3:b4:45:44:65:59: e9:d0:07:5d:7c:5c:7d:51:ff:b9:5e:73:68:e3:ea:37:ce:8a: 9b:9c:ce:49:e3:b8:13:9e:e2:f9:c7:19:60:4d:a0:cb:93:de: 4a:e7:de:d1:b8:2d:c2:1c:6a:3b:09:ed:d7:a7:4f:3f:be:2a: 38:73:d8:9e:75:8e:59:c8:87:bb:24:af:22:9c:56:c1:88:f5: 42:c4:0d:d8:d7:45:da:51:d6:35:64:ff:9b:1c:db:27:39:6b: 6e:9c:23:79:46:67:0d:66:ab:11:d0:34:3c:fd:5b:02:08:81: 95:e8:3e:35:0c:d7:a2:76:08:f6:fd:b1:c3:40:fb:77:06:2a: 0b:a5:30:fa:8c:08:44:ca:b8:0c:f8:6e:ce:75:8b:27:b1:23: 94:d1:68:ff -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEtowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREVB MDk0OEJCNzc5MUM0NzEwOTkzQThGMUZDQ0U5NjdBREEwOUMwMDAeFw0yNTAyMTAx MzQ3MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4RDQwMDVDRUVBM0Iw OEQ1NUFBQjM1QjBDOUQzNkE2QUJFNEVENUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWVoDeF+wWpjBMyrUxq4PaxcaXPiUMpVrO6sx6TfhssYeHCIRY oBdvfiQrIJ++6xFB/aVhxxmL2THNhYyPm0xDKOKlowJzzvsUYWJ5A7wwSkpW8aRo vHTRiigoJ417q/fmRYnhYSlRv7moc0s/hw51zs5d4NzrCqkaKI76aimfOJUF8+6R FDUbCa+LKKjvqbECblZ9ouqSNvo5DBugUCJ3VeHgN6Z+XjedbhrHWEhgEdfsey3+ WnApUg5p0hlQbJvYmjD1ldK8OvXoQe6c00cjJ8IFkQHgSHibVyMT7fidnXuBs4ZD dHKXKtkCSfFUqj3ggfx8sejYR2wTr+EJ/wxZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUGNQAXO6jsI1VqrNbDJ02pqvk7V8wHwYDVR0jBBgwFoAU3qCUi7d5HEcQmTqP H8zpZ62gnAAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVURUFT RS8zcUNVaTdkNUhFY1FtVHFQSDh6cFo2MmduQUEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBLzNxQ1VpN2Q1SEVjUW1UcVBIOHpwWjYyZ25BQS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FVEVBU0UvR05RQVhPNmpzSTFWcXJO YkRKMDJwcXZrN1Y4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeD/DANBgkqhkiG9w0BAQsFAAOCAQEAUPjO1C7VdfBPWf8JKtIC51v7dbv5Wn74 cDmDFdIGv7qCfp44H7MTGa3LGVHc8bqmsi72AhlXbkXS0v0LKpgL/EFlK/mWiZum 2BvMRjJ4H3IPJbSXc7MFYXuWJMaJPQhYE2YpAN1Yo7RFRGVZ6dAHXXxcfVH/uV5z aOPqN86Km5zOSeO4E57i+ccZYE2gy5PeSufe0bgtwhxqOwnt16dPP74qOHPYnnWO WciHuySvIpxWwYj1QsQN2NdF2lHWNWT/mxzbJzlrbpwjeUZnDWarEdA0PP1bAgiB leg+NQzXonYI9v2xw0D7dwYqC6Uw+owIRMq4DPhuznWLJ7EjlNFo/w== -----END CERTIFICATE-----Generated at Fri Apr 18 21:20:18 2025 by rpki-client