$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G6wUlty2VI7S-jIUGpXeHEE9LF4.roa File: G6wUlty2VI7S-jIUGpXeHEE9LF4.roa (raw, json) Hash identifier: 7FD7Zyf2O2ywbLiGyy1oTik+0Mc1v/Fnshn8sXVTxYs= Subject key identifier: 1B:AC:14:96:DC:B6:54:8E:D2:FA:32:14:1A:95:DE:1C:41:3D:2C:5E Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1290 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G6wUlty2VI7S-jIUGpXeHEE9LF4.roa Signing time: Mon 10 Feb 2025 14:15:00 +0000 ROA not before: Mon 10 Feb 2025 14:15:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4752 (0x1290) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:15:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1BAC1496DCB6548ED2FA32141A95DE1C413D2C5E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:34:08:b8:08:d3:a2:9e:b2:54:3a:b9:d3: f8:de:9e:0b:a8:07:85:c7:02:18:5b:23:b6:bf:52: 8d:05:27:cf:13:88:1e:36:d5:39:6f:8a:06:ec:25: 1e:c4:98:80:34:ab:f0:3f:61:46:79:84:32:ea:50: ee:59:89:91:77:dc:77:29:88:79:93:b6:7a:1c:ec: 29:16:e6:5e:f9:0d:00:c3:8c:4a:d8:be:ed:4f:74: 0a:e0:f6:f5:11:3d:de:9d:20:73:8c:56:66:fc:6a: 6f:22:fa:9f:f9:03:b2:dd:c9:66:0d:d3:24:52:f2: f2:9a:32:e1:93:06:61:e4:bc:98:23:eb:cb:9c:15: a5:ca:a6:04:e0:8b:bb:66:d5:72:74:e7:39:bb:f1: 14:e4:55:25:ab:97:75:92:c8:23:d0:50:f8:43:2f: 91:69:e0:d1:81:21:52:7b:f6:75:f2:46:51:d5:0d: 00:8b:aa:9b:a8:8b:82:82:50:33:b5:ab:53:72:53: 39:75:44:2a:53:f9:f6:10:35:bd:36:d5:23:ba:de: bb:36:8b:6c:a6:72:65:57:6d:6a:4e:56:0d:76:da: 55:f8:a4:39:16:ad:7e:7d:1b:74:8c:03:51:ad:c5: 50:d4:79:29:12:45:ee:dc:bd:70:e7:2a:b9:57:1f: 14:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:AC:14:96:DC:B6:54:8E:D2:FA:32:14:1A:95:DE:1C:41:3D:2C:5E X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/G6wUlty2VI7S-jIUGpXeHEE9LF4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.4.0/24 Signature Algorithm: sha256WithRSAEncryption 47:a1:78:ce:82:14:3c:72:86:16:4a:4a:b9:4c:98:ee:b8:a1: d8:d5:04:ea:2c:1d:83:bc:4b:dc:6d:27:2d:dd:75:d7:c6:1a: dd:5b:87:71:d0:3d:bd:3e:b5:5e:4d:b0:51:6c:76:21:85:39: 88:4d:df:10:62:2a:ad:0b:da:6f:45:97:a8:db:c3:e4:6b:ee: 1c:46:87:98:7d:d4:7f:49:76:22:52:a7:7f:7e:51:c5:e0:5d: d4:bb:fb:2b:b1:53:38:07:c4:df:56:0a:22:1c:d5:e8:9c:37: 45:e1:8c:1c:ac:5e:76:50:1b:97:eb:e4:8b:e3:91:e2:93:6f: 46:eb:af:4e:bf:ac:b6:75:92:67:b6:89:f5:cc:1c:45:73:01: e2:f4:11:f3:a4:6b:b0:55:4b:f8:57:33:73:ea:e9:f0:2e:f7: 9e:8a:41:f1:2b:c3:b4:85:b1:5d:0e:d0:ff:b0:ea:dd:5a:7c: 7a:d2:9c:5b:10:20:36:f2:ed:71:e4:d9:35:b5:8b:a9:22:e6: 08:a0:2d:55:22:0e:3d:a5:11:51:9a:88:d0:39:15:fb:ec:da: 3e:48:96:5d:6a:b6:84:e3:e1:8f:2a:db:5b:5e:49:42:b1:ba: 27:67:d4:08:e7:73:a1:9c:03:6b:72:1f:49:0c:b9:90:3a:ea: 0f:6e:97:54 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEpAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE1MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCQUMxNDk2RENCNjU0 OEVEMkZBMzIxNDFBOTVERTFDNDEzRDJDNUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMlDQIuAjTop6yVDq50/jenguoB4XHAhhbI7a/Uo0FJ88TiB42 1TlvigbsJR7EmIA0q/A/YUZ5hDLqUO5ZiZF33HcpiHmTtnoc7CkW5l75DQDDjErY vu1PdArg9vURPd6dIHOMVmb8am8i+p/5A7LdyWYN0yRS8vKaMuGTBmHkvJgj68uc FaXKpgTgi7tm1XJ05zm78RTkVSWrl3WSyCPQUPhDL5Fp4NGBIVJ79nXyRlHVDQCL qpuoi4KCUDO1q1NyUzl1RCpT+fYQNb021SO63rs2i2ymcmVXbWpOVg122lX4pDkW rX59G3SMA1GtxVDUeSkSRe7cvXDnKrlXHxSpAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUG6wUlty2VI7S+jIUGpXeHEE9LF4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9HNndVbHR5MlZJN1Mt aklVR3BYZUhFRTlMRjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQEMA0GCSqGSIb3DQEBCwUAA4IBAQBHoXjOghQ8coYWSkq5TJjuuKHY1QTq LB2DvEvcbSct3XXXxhrdW4dx0D29PrVeTbBRbHYhhTmITd8QYiqtC9pvRZeo28Pk a+4cRoeYfdR/SXYiUqd/flHF4F3Uu/srsVM4B8TfVgoiHNXonDdF4YwcrF52UBuX 6+SL45Hik29G669Ov6y2dZJnton1zBxFcwHi9BHzpGuwVUv4VzNz6unwLveeikHx K8O0hbFdDtD/sOrdWnx60pxbECA28u1x5Nk1tYupIuYIoC1VIg49pRFRmojQORX7 7No+SJZdaraE4+GPKttbXklCsbonZ9QI53OhnANrch9JDLmQOuoPbpdU -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:12 2025 by rpki-client