$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/GOQABUtCO_JalyBCm2JecyCOhC0.roa File: GOQABUtCO_JalyBCm2JecyCOhC0.roa (raw, json) Hash identifier: m5On71NAFLAaXbkjbhGSUeJTBsJ96FgZNr3eXDVHZ2w= Subject key identifier: 18:E4:00:05:4B:42:3B:F2:5A:97:20:42:9B:62:5E:73:20:8E:84:2D Certificate issuer: /CN=574D5FD459D0D01C338EF0236122C762EC83283C Certificate serial: 01AE Authority key identifier: 57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/GOQABUtCO_JalyBCm2JecyCOhC0.roa Signing time: Mon 10 Feb 2025 14:04:17 +0000 ROA not before: Mon 10 Feb 2025 14:04:17 +0000 ROA not after: Wed 08 Oct 2025 15:30:19 +0000 asID: 152615 IP address blocks: 160.187.198.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=574D5FD459D0D01C338EF0236122C762EC83283C Validity Not Before: Feb 10 14:04:17 2025 GMT Not After : Oct 8 15:30:19 2025 GMT Subject: CN=18E400054B423BF25A9720429B625E73208E842D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:7b:d5:6b:a3:5a:57:1a:c7:43:1a:e0:70:ff: a2:0a:27:5f:ab:52:ac:0b:14:04:b1:fd:a6:c7:df: f1:06:b7:e5:c4:96:d2:8f:f2:78:81:27:7b:77:3b: 79:56:3e:a1:4e:19:17:8d:d0:91:8b:63:9e:f8:9a: 56:1a:0a:70:5c:9b:dd:d7:8b:4f:f0:04:74:c8:0f: 8e:8a:9a:28:c8:10:cd:2b:e2:06:fd:a2:15:0e:f3: 13:29:d8:ee:16:1a:6e:d9:94:22:44:6f:39:0f:1a: b5:d1:12:ec:5e:a0:2d:47:14:23:38:60:bc:f2:a9: ff:c6:86:4b:fd:bb:b8:79:2d:23:5a:4d:bb:3c:5b: 82:a3:a2:e0:82:8e:a0:95:bf:8c:2e:65:ab:8f:70: 06:7a:c4:31:40:4c:83:16:b0:97:eb:fa:ab:ea:33: 86:0e:c0:7c:3a:3c:6f:ee:71:f5:3f:20:21:fb:21: df:39:c0:7d:00:d7:bd:9c:b2:71:fb:03:fc:b3:4c: a1:e3:27:83:67:c3:16:67:dc:f0:3c:d7:c6:91:db: 8f:65:44:70:19:3a:70:48:4c:45:61:df:e7:6f:f2: 2d:0b:73:37:5c:ac:7e:c9:3f:40:f8:7a:37:59:c3: 3b:12:67:bc:18:9b:45:56:16:36:65:3c:15:f1:c4: 2a:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E4:00:05:4B:42:3B:F2:5A:97:20:42:9B:62:5E:73:20:8E:84:2D X509v3 Authority Key Identifier: keyid:57:4D:5F:D4:59:D0:D0:1C:33:8E:F0:23:61:22:C7:62:EC:83:28:3C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/V01f1FnQ0BwzjvAjYSLHYuyDKDw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V01f1FnQ0BwzjvAjYSLHYuyDKDw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/GOQABUtCO_JalyBCm2JecyCOhC0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.198.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:92:69:55:09:59:94:1e:2c:24:e5:9e:91:00:fa:39:2e:04: c2:49:44:16:b9:8d:ce:af:b9:46:b2:1f:27:ad:12:eb:e2:17: 50:a1:2d:33:0b:31:06:dc:ba:c0:cb:03:1e:49:c9:af:e5:12: 2e:60:6f:68:ca:9d:2d:46:48:5b:98:48:42:f6:50:f1:b4:0c: 88:8b:d3:22:61:01:8c:e8:b2:fb:83:28:04:08:fb:72:cc:06: 65:2a:24:76:80:21:f3:9f:41:ba:f0:64:93:e7:db:60:65:af: 3e:ca:3e:67:c0:48:7c:5a:1e:67:fd:a9:df:35:05:25:20:54: 0a:3b:63:6e:c2:83:ae:d4:37:2b:b2:55:39:80:5c:7d:24:14: 6f:2b:d3:a9:cb:a7:42:04:97:7d:ec:a4:e8:fa:06:65:dd:d9: fc:65:54:9e:e2:5c:be:c8:49:21:2a:0e:ff:b6:ce:f7:8c:7f: db:96:4e:37:2d:8c:1d:f2:29:3c:7c:b4:b9:7b:00:c1:9b:77: c1:43:85:8b:0b:41:6f:ce:59:2f:78:c4:c0:6b:b5:bf:32:cf: a1:de:e2:90:56:72:b3:96:d4:ff:43:88:93:cb:e4:a6:f8:15: 28:89:d0:e5:c0:96:c9:a2:3a:ab:62:99:e2:6c:db:1a:b4:a8: 4c:10:7e:d4 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc0 RDVGRDQ1OUQwRDAxQzMzOEVGMDIzNjEyMkM3NjJFQzgzMjgzQzAeFw0yNTAyMTAx NDA0MTdaFw0yNTEwMDgxNTMwMTlaMDMxMTAvBgNVBAMTKDE4RTQwMDA1NEI0MjNC RjI1QTk3MjA0MjlCNjI1RTczMjA4RTg0MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDre9Vro1pXGsdDGuBw/6IKJ1+rUqwLFASx/abH3/EGt+XEltKP 8niBJ3t3O3lWPqFOGReN0JGLY574mlYaCnBcm93Xi0/wBHTID46KmijIEM0r4gb9 ohUO8xMp2O4WGm7ZlCJEbzkPGrXREuxeoC1HFCM4YLzyqf/Ghkv9u7h5LSNaTbs8 W4KjouCCjqCVv4wuZauPcAZ6xDFATIMWsJfr+qvqM4YOwHw6PG/ucfU/ICH7Id85 wH0A172csnH7A/yzTKHjJ4NnwxZn3PA818aR249lRHAZOnBITEVh3+dv8i0Lczdc rH7JP0D4ejdZwzsSZ7wYm0VWFjZlPBXxxCoZAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUGOQABUtCO/JalyBCm2JecyCOhC0wHwYDVR0jBBgwFoAUV01f1FnQ0BwzjvAj YSLHYuyDKDwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVTU1Z VEVDSC9WMDFmMUZuUTBCd3pqdkFqWVNMSFl1eURLRHcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1YwMWYxRm5RMEJ3emp2QWpZU0xIWXV5REtEdy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVU1NWVRFQ0gvR09RQUJVdENP X0phbHlCQ20ySmVjeUNPaEMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAaC7xjANBgkqhkiG9w0BAQsFAAOCAQEAm5JpVQlZlB4sJOWekQD6OS4E wklEFrmNzq+5RrIfJ60S6+IXUKEtMwsxBty6wMsDHknJr+USLmBvaMqdLUZIW5hI QvZQ8bQMiIvTImEBjOiy+4MoBAj7cswGZSokdoAh859BuvBkk+fbYGWvPso+Z8BI fFoeZ/2p3zUFJSBUCjtjbsKDrtQ3K7JVOYBcfSQUbyvTqcunQgSXfeyk6PoGZd3Z /GVUnuJcvshJISoO/7bO94x/25ZONy2MHfIpPHy0uXsAwZt3wUOFiwtBb85ZL3jE wGu1vzLPod7ikFZys5bU/0OIk8vkpvgVKInQ5cCWyaI6q2KZ4mzbGrSoTBB+1A== -----END CERTIFICATE-----Generated at Mon Apr 7 08:03:13 2025 by rpki-client