$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G-7lCEJUWHpVkn38BN3Iw7vq0co.roa File: G-7lCEJUWHpVkn38BN3Iw7vq0co.roa (raw, json) Hash identifier: 8L78xkqildy4HJ7vYaHS2FILiVX31eoQIKZ6CqRBn58= Subject key identifier: 1B:EE:E5:08:42:54:58:7A:55:92:7D:FC:04:DD:C8:C3:BB:EA:D1:CA Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 12B0 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G-7lCEJUWHpVkn38BN3Iw7vq0co.roa Signing time: Mon 10 Feb 2025 14:15:08 +0000 ROA not before: Mon 10 Feb 2025 14:15:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131600 IP address blocks: 223.26.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4784 (0x12b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:15:08 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1BEEE5084254587A55927DFC04DDC8C3BBEAD1CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:66:1b:0b:d3:b3:c3:45:9b:d3:d9:d1:e9:59: d5:56:28:bb:1b:8d:c8:57:13:09:37:75:d9:b3:a4: 96:f7:9a:99:bb:2e:52:20:84:72:1c:79:57:87:9c: e1:c0:63:da:a2:04:16:1e:b5:e1:f9:eb:b0:2c:4f: 14:74:68:f5:4e:86:c3:6b:56:55:39:52:4d:54:98: 69:1a:4f:de:80:9a:4a:2e:bb:e2:aa:f2:a4:5b:2e: 89:2e:39:78:7b:54:1a:6c:06:24:cd:d5:81:37:5f: dc:59:ba:bb:5a:a9:7e:3c:3b:aa:81:f7:0d:f8:cc: 6f:d3:d8:32:a6:99:90:d0:c4:94:95:e9:08:98:01: 8a:05:bd:88:7f:80:b7:d2:c9:f0:ef:f0:16:18:55: ef:f3:44:70:d3:0d:e4:27:fd:8f:52:dc:57:14:57: 1c:0d:2b:2f:95:8f:3f:ff:4c:1c:78:bc:a4:b6:6b: 22:13:60:9b:d8:5d:28:6e:a5:2b:81:c6:f3:f5:bc: 3a:72:00:9a:04:e8:d5:b4:2f:ec:ef:65:07:41:50: 0e:9a:46:2c:68:78:6a:67:30:a9:3c:a2:76:5d:56: 2f:ec:e9:db:0d:1e:f3:3a:68:39:02:da:8a:41:a3: 7c:53:19:94:9e:be:a4:9a:f8:18:19:f5:6b:f2:eb: 87:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:EE:E5:08:42:54:58:7A:55:92:7D:FC:04:DD:C8:C3:BB:EA:D1:CA X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G-7lCEJUWHpVkn38BN3Iw7vq0co.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.68.0/24 Signature Algorithm: sha256WithRSAEncryption 18:84:3e:47:f0:f5:4f:7b:9c:bd:40:01:57:de:03:fe:93:6a: 34:5b:b1:e4:ee:a7:24:49:2c:f2:18:f5:4f:ca:2f:17:c2:c0: bf:04:71:68:d0:b2:65:3b:cd:26:00:d8:10:62:4f:b0:6e:ab: d9:16:22:d9:f8:f9:ad:87:52:52:d0:d5:c9:d6:69:a6:39:8b: c9:a3:da:fc:1b:f3:0d:ad:59:71:f8:c7:f0:ed:3f:25:55:b1: 82:3b:08:8f:7f:4a:fd:47:2f:c7:0a:5b:99:cb:98:56:d4:81: 6d:ae:05:7c:e3:07:4a:4e:0c:59:3c:94:24:a2:36:ca:32:59: 47:73:50:ef:f8:88:59:37:4d:c3:3e:74:ee:66:38:73:ac:15: 11:7f:fa:44:11:7d:43:88:83:60:e5:41:7f:66:53:8d:e3:f4: e4:09:90:90:b1:a9:77:31:a1:4a:7a:40:90:04:c8:e4:57:72: 1b:cc:79:46:58:1f:c8:ab:21:c9:25:71:d4:27:d0:02:cb:3b: 0a:be:da:d6:4a:d3:0c:2a:28:80:71:c1:34:7f:a4:11:ab:37: e1:b4:7c:ad:8c:25:c9:c0:48:1b:9c:a7:43:37:57:84:93:f2: a1:61:95:ad:b6:3f:5e:09:d2:14:02:a6:31:94:ba:db:4a:e0: 66:95:c6:54 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICErAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE1MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCRUVFNTA4NDI1NDU4 N0E1NTkyN0RGQzA0RERDOEMzQkJFQUQxQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOZhsL07PDRZvT2dHpWdVWKLsbjchXEwk3ddmzpJb3mpm7LlIg hHIceVeHnOHAY9qiBBYeteH567AsTxR0aPVOhsNrVlU5Uk1UmGkaT96Amkouu+Kq 8qRbLokuOXh7VBpsBiTN1YE3X9xZurtaqX48O6qB9w34zG/T2DKmmZDQxJSV6QiY AYoFvYh/gLfSyfDv8BYYVe/zRHDTDeQn/Y9S3FcUVxwNKy+Vjz//TBx4vKS2ayIT YJvYXShupSuBxvP1vDpyAJoE6NW0L+zvZQdBUA6aRixoeGpnMKk8onZdVi/s6dsN HvM6aDkC2opBo3xTGZSevqSa+BgZ9Wvy64fdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUG+7lCEJUWHpVkn38BN3Iw7vq0cowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9HLTdsQ0VKVVdIcFZr bjM4Qk4zSXc3dnEwY28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQA3xpEMA0GCSqGSIb3DQEBCwUAA4IBAQAYhD5H8PVPe5y9QAFX3gP+k2o0W7Hk 7qckSSzyGPVPyi8XwsC/BHFo0LJlO80mANgQYk+wbqvZFiLZ+Pmth1JS0NXJ1mmm OYvJo9r8G/MNrVlx+Mfw7T8lVbGCOwiPf0r9Ry/HCluZy5hW1IFtrgV84wdKTgxZ PJQkojbKMllHc1Dv+IhZN03DPnTuZjhzrBURf/pEEX1DiINg5UF/ZlON4/TkCZCQ sal3MaFKekCQBMjkV3IbzHlGWB/IqyHJJXHUJ9ACyzsKvtrWStMMKiiAccE0f6QR qzfhtHytjCXJwEgbnKdDN1eEk/KhYZWttj9eCdIUAqYxlLrbSuBmlcZU -----END CERTIFICATE-----Generated at Sun Apr 6 19:52:28 2025 by rpki-client