$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/aH6pIl04_NUCgEQHZfx-pxyo0M4.roa File: aH6pIl04_NUCgEQHZfx-pxyo0M4.roa (raw, json) Hash identifier: dX0B1ckXuX8WCOcas/V+KdeSlhqHegwbfrUhY1tdMYk= Subject key identifier: 68:7E:A9:22:5D:38:FC:D5:02:80:44:07:65:FC:7E:A7:1C:A8:D0:CE Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0CCF Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/aH6pIl04_NUCgEQHZfx-pxyo0M4.roa Signing time: Mon 10 Feb 2025 14:12:57 +0000 ROA not before: Mon 10 Feb 2025 14:12:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.130.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 16:36:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3279 (0xccf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Feb 10 14:12:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=687EA9225D38FCD50280440765FC7EA71CA8D0CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:58:0d:ac:06:1d:4a:b4:a9:49:2e:76:6a:43: f1:68:2d:df:e3:67:18:e9:af:4f:88:23:1a:6f:cd: 66:43:b9:73:78:f9:73:3b:c6:33:ba:dd:28:6f:fd: d2:02:f0:c2:16:d8:4a:cb:28:3d:ff:86:d3:7e:9b: 04:19:d9:fd:ec:5f:50:bd:79:10:95:e8:dd:f5:46: 90:bf:ec:60:cb:55:cf:dc:a2:c2:46:20:85:5d:8f: 19:7b:68:dc:ab:c2:14:e0:8b:d7:6c:1f:f1:e0:30: 15:e6:82:6b:41:3e:28:81:98:84:ce:89:8a:72:5e: 54:cc:03:ee:11:2e:4d:05:33:b0:a0:fe:66:6b:a7: fe:fb:9f:bb:51:73:f6:e9:b8:3d:4c:4a:7b:c7:83: 63:0a:54:2e:ad:76:6d:f7:cf:76:30:57:52:94:ff: e1:3a:50:f4:0b:ae:d8:5e:80:68:a6:4f:0e:0d:a6: 47:e4:43:09:c8:2a:0b:02:22:08:14:92:70:08:a2: 9a:c9:fe:ee:6f:b4:82:17:b2:62:ec:88:9c:de:d5: b3:12:87:b3:48:27:0a:b9:d7:3c:e6:d2:b3:82:9a: 06:2d:f9:89:08:d8:d8:27:33:af:72:57:44:f5:7a: 75:45:90:d5:17:8f:1c:2e:dc:25:c2:52:cf:4b:aa: 6e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:7E:A9:22:5D:38:FC:D5:02:80:44:07:65:FC:7E:A7:1C:A8:D0:CE X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/aH6pIl04_NUCgEQHZfx-pxyo0M4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.32.0/22 Signature Algorithm: sha256WithRSAEncryption 51:4f:9d:d1:52:48:16:cc:40:b9:45:72:90:fc:90:c0:a1:f7: 06:ef:00:9e:a6:a8:13:15:47:42:4f:f5:a4:34:ab:a8:c4:c5: de:9b:21:12:ee:a4:d1:c4:ac:31:78:1e:39:4e:34:fe:cc:9f: 2a:ea:a6:70:1e:a0:05:b7:a5:af:7a:30:02:77:2d:02:a8:bb: 25:9c:53:07:0a:1a:13:5a:67:33:53:9d:07:75:c6:43:d6:ec: 85:89:6b:81:9e:98:3d:20:36:46:f1:5d:1b:96:3c:34:84:5a: c3:d8:26:54:37:ba:2d:a0:da:eb:6e:31:91:f4:fd:3f:a2:47: d5:5a:ff:37:8a:47:6f:39:67:09:04:e5:90:7d:8d:6c:fa:f9: fc:ce:4c:cf:18:5d:43:67:f5:3b:77:59:f6:f6:13:b2:11:f3: 89:0d:21:3c:9c:fa:7c:c1:10:f2:6c:cc:2f:93:b1:cb:39:e0: bd:bb:7f:0b:7f:f9:69:a4:2d:95:30:f1:dd:9a:7e:92:af:d6: e4:f4:0d:eb:d3:7f:e7:76:55:e1:c3:4e:55:1a:7f:5e:9d:0f: d4:fc:52:12:48:71:3b:51:04:16:fe:d3:81:39:0e:96:ab:ca: 1d:6a:97:4b:f1:79:7e:dd:4c:f4:98:0e:ff:5e:9c:3b:c6:65: 1a:7d:8c:9c -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTAyMTAx NDEyNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4N0VBOTIyNUQzOEZD RDUwMjgwNDQwNzY1RkM3RUE3MUNBOEQwQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLWA2sBh1KtKlJLnZqQ/FoLd/jZxjpr0+IIxpvzWZDuXN4+XM7 xjO63Shv/dIC8MIW2ErLKD3/htN+mwQZ2f3sX1C9eRCV6N31RpC/7GDLVc/cosJG IIVdjxl7aNyrwhTgi9dsH/HgMBXmgmtBPiiBmITOiYpyXlTMA+4RLk0FM7Cg/mZr p/77n7tRc/bpuD1MSnvHg2MKVC6tdm33z3YwV1KU/+E6UPQLrthegGimTw4Npkfk QwnIKgsCIggUknAIoprJ/u5vtIIXsmLsiJze1bMSh7NIJwq51zzm0rOCmgYt+YkI 2NgnM69yV0T1enVFkNUXjxwu3CXCUs9Lqm6ZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUaH6pIl04/NUCgEQHZfx+pxyo0M4wHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvYUg2cElsMDRfTlVDZ0VR SFpmeC1weHlvME00LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCIDANBgkqhkiG9w0BAQsFAAOCAQEAUU+d0VJIFsxAuUVykPyQwKH3Bu8Anqao ExVHQk/1pDSrqMTF3pshEu6k0cSsMXgeOU40/syfKuqmcB6gBbelr3owAnctAqi7 JZxTBwoaE1pnM1OdB3XGQ9bshYlrgZ6YPSA2RvFdG5Y8NIRaw9gmVDe6LaDa624x kfT9P6JH1Vr/N4pHbzlnCQTlkH2NbPr5/M5MzxhdQ2f1O3dZ9vYTshHziQ0hPJz6 fMEQ8mzML5Oxyzngvbt/C3/5aaQtlTDx3Zp+kq/W5PQN69N/53ZV4cNOVRp/Xp0P 1PxSEkhxO1EEFv7TgTkOlqvKHWqXS/F5ft1M9JgO/16cO8ZlGn2MnA== -----END CERTIFICATE-----Generated at Sun Apr 6 14:26:43 2025 by rpki-client