$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/WGMh2-qtfMLV7JGNrIs3JO39OQI.roa File: WGMh2-qtfMLV7JGNrIs3JO39OQI.roa (raw, json) Hash identifier: c0KTG0HrlfLImNTUqc06EtzsokorvHm1YEPb718gd7w= Subject key identifier: 58:63:21:DB:EA:AD:7C:C2:D5:EC:91:8D:AC:8B:37:24:ED:FD:39:02 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0CCA Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/WGMh2-qtfMLV7JGNrIs3JO39OQI.roa Signing time: Mon 10 Feb 2025 14:12:56 +0000 ROA not before: Mon 10 Feb 2025 14:12:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.130.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3274 (0xcca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Feb 10 14:12:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=586321DBEAAD7CC2D5EC918DAC8B3724EDFD3902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9c:da:d1:40:6a:06:5b:4f:7a:9b:a2:1a:fb: f6:77:6b:e7:31:9f:f5:02:7f:55:82:d8:ab:a6:87: 39:14:62:e8:49:50:1f:b1:d3:41:79:65:5c:82:a5: 57:55:0c:3f:e8:56:0f:de:f1:bd:8e:86:82:00:19: 65:c2:b8:41:e6:09:76:a3:a5:32:51:d0:59:88:7a: 8c:5b:b3:66:0c:b0:ae:53:7e:70:c3:cf:31:62:b0: c4:4b:1e:4f:c0:8a:f9:c5:14:87:82:50:e8:39:6c: 31:5b:c0:54:74:90:89:12:80:29:9a:68:63:d6:a8: 1b:5b:55:be:5e:85:2a:22:87:1c:75:3c:60:49:ad: 16:78:9f:cd:95:0c:db:6b:5e:e8:67:d6:c5:d9:1e: 65:04:9b:91:12:f6:34:4e:e4:a2:77:ac:b3:9d:cf: 3a:dc:9d:b3:a3:db:20:e4:ec:a2:9b:9f:19:0d:cc: a2:23:ca:c0:75:36:d9:ff:95:4e:54:5c:02:86:e7: 73:ca:60:05:e2:53:8a:05:d4:30:88:15:0a:87:cb: 0e:0e:d0:11:65:cb:dd:4c:19:a7:70:a3:ea:b7:99: 0e:60:c7:1b:3d:a2:df:16:8d:b8:e3:80:56:ca:86: 50:10:09:5d:e1:c9:61:a7:33:9a:ae:fa:55:b6:63: 80:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:63:21:DB:EA:AD:7C:C2:D5:EC:91:8D:AC:8B:37:24:ED:FD:39:02 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/WGMh2-qtfMLV7JGNrIs3JO39OQI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.36.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:76:8f:a1:bd:d5:02:a7:e6:7e:53:61:70:60:41:8b:6f:1c: 6a:ef:6b:da:3d:8f:7d:54:6f:c3:c4:f6:d2:7f:29:4e:c2:cf: 41:d7:68:c2:5e:4c:40:81:ca:c1:da:d1:96:94:d0:7f:b4:6e: 54:de:e6:45:04:7d:7b:67:83:4c:0a:c8:7a:15:c5:06:ed:e1: b9:49:ce:da:1a:4a:4b:c4:68:88:01:89:e6:0c:cf:2a:9f:d2: 51:24:80:85:08:39:68:5f:88:f6:83:72:06:7b:e4:64:10:a5: 86:4a:50:35:e7:40:b2:66:7f:d8:00:1c:70:6c:ff:e5:2c:58: 74:e7:11:00:81:25:a5:05:a2:d5:71:aa:50:51:e9:48:d9:0e: e9:1e:05:87:47:c9:99:6d:81:bd:31:52:4d:44:97:c2:98:fe: 42:fe:c7:cb:eb:ca:7e:b7:da:6e:92:2c:6b:84:95:0b:bb:cc: 5d:cc:30:70:9e:22:4e:7c:c6:0c:62:5c:ef:51:3e:e3:66:7e: 62:89:02:14:a8:ba:99:61:d0:75:34:0e:d5:20:a8:50:86:a7: b2:47:19:ec:a9:b0:e0:d9:82:08:a6:ec:86:e3:f2:1a:8a:09: 4e:7e:3c:64:36:5e:77:6d:c4:4b:27:2b:4b:6f:77:44:28:3f: 16:85:ac:d7 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDMowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTAyMTAx NDEyNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4NjMyMURCRUFBRDdD QzJENUVDOTE4REFDOEIzNzI0RURGRDM5MDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8nNrRQGoGW096m6Ia+/Z3a+cxn/UCf1WC2KumhzkUYuhJUB+x 00F5ZVyCpVdVDD/oVg/e8b2OhoIAGWXCuEHmCXajpTJR0FmIeoxbs2YMsK5TfnDD zzFisMRLHk/AivnFFIeCUOg5bDFbwFR0kIkSgCmaaGPWqBtbVb5ehSoihxx1PGBJ rRZ4n82VDNtrXuhn1sXZHmUEm5ES9jRO5KJ3rLOdzzrcnbOj2yDk7KKbnxkNzKIj ysB1Ntn/lU5UXAKG53PKYAXiU4oF1DCIFQqHyw4O0BFly91MGadwo+q3mQ5gxxs9 ot8WjbjjgFbKhlAQCV3hyWGnM5qu+lW2Y4A7AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUWGMh2+qtfMLV7JGNrIs3JO39OQIwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvV0dNaDItcXRmTUxWN0pH TnJJczNKTzM5T1FJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCJDANBgkqhkiG9w0BAQsFAAOCAQEAe3aPob3VAqfmflNhcGBBi28cau9r2j2P fVRvw8T20n8pTsLPQddowl5MQIHKwdrRlpTQf7RuVN7mRQR9e2eDTArIehXFBu3h uUnO2hpKS8RoiAGJ5gzPKp/SUSSAhQg5aF+I9oNyBnvkZBClhkpQNedAsmZ/2AAc cGz/5SxYdOcRAIElpQWi1XGqUFHpSNkO6R4Fh0fJmW2BvTFSTUSXwpj+Qv7Hy+vK frfabpIsa4SVC7vMXcwwcJ4iTnzGDGJc71E+42Z+YokCFKi6mWHQdTQO1SCoUIan skcZ7Kmw4NmCCKbshuPyGooJTn48ZDZed23ESycrS293RCg/FoWs1w== -----END CERTIFICATE-----Generated at Sun Apr 6 19:59:21 2025 by rpki-client