$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/zdnKzBBTuT6jn4y2d50eWgk-vAU.roa File: zdnKzBBTuT6jn4y2d50eWgk-vAU.roa (raw, json) Hash identifier: xw9Q4z5PZgNObdTHExdawhNihqNFJHEAsBzeqeIPLtI= Subject key identifier: CD:D9:CA:CC:10:53:B9:3E:A3:9F:8C:B6:77:9D:1E:5A:09:3E:BC:05 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0CD0 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/zdnKzBBTuT6jn4y2d50eWgk-vAU.roa Signing time: Mon 10 Feb 2025 14:12:57 +0000 ROA not before: Mon 10 Feb 2025 14:12:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.130.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 21:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Feb 10 14:12:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CDD9CACC1053B93EA39F8CB6779D1E5A093EBC05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:86:75:96:ed:f2:4a:d6:8c:89:59:ae:f6:de: 58:c4:5b:b4:b4:fc:0b:60:d7:3b:fb:ee:d1:7d:02: 08:94:80:c7:29:78:b5:2d:20:10:e8:14:82:10:c8: e0:af:6a:8c:cb:d3:e2:96:84:c7:86:c2:9e:af:d6: 83:76:52:5e:87:04:31:68:91:a2:ef:ab:4d:6e:0e: 46:ce:4d:bf:66:ac:0a:e0:36:77:19:3b:75:1d:01: 4c:45:4f:f5:b2:02:d2:bf:2b:10:99:7f:0e:87:00: 88:dc:8c:86:0a:f8:7d:25:06:1f:ff:7e:20:61:3f: e0:2e:6b:e8:01:4a:b1:09:ab:54:d6:bb:c4:1c:ce: dd:78:4a:e7:d2:87:39:4c:d6:0b:19:98:30:a8:b0: a2:b6:f7:e0:45:30:3b:a2:15:f1:48:6d:03:af:7b: 31:75:30:fa:d9:5b:ec:1d:a4:c0:c7:d4:99:c0:f8: 20:68:99:0d:11:b9:63:55:eb:f0:93:11:1e:bf:e5: ca:c7:ec:8f:c1:f3:d7:30:fd:14:e8:2a:82:03:2b: 21:eb:9e:59:17:af:13:d3:6d:fb:78:c7:d9:ff:69: d4:62:e4:61:8d:8c:ab:4d:db:58:16:6d:62:f6:ca: 32:ed:44:b2:8e:f4:3f:be:91:81:49:8e:3a:bd:ed: 3b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:D9:CA:CC:10:53:B9:3E:A3:9F:8C:B6:77:9D:1E:5A:09:3E:BC:05 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/zdnKzBBTuT6jn4y2d50eWgk-vAU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.20.0/22 Signature Algorithm: sha256WithRSAEncryption b0:a2:37:93:32:9b:06:e4:48:12:ed:6f:b7:83:ab:99:fe:c1: 4e:36:3b:be:c5:b1:26:17:42:96:f5:95:e9:c5:5c:4d:82:0f: 48:f4:e9:fc:ba:18:4b:6d:6b:44:5d:06:79:14:45:61:36:79: 9c:a0:bd:63:b5:33:5c:1d:38:92:60:25:2e:42:fb:75:48:d8: 3d:b0:e7:d2:ef:a7:bf:0a:d3:ce:78:10:cb:d0:e0:c0:99:41: fa:b8:15:85:52:2a:b9:f1:e7:d8:5a:bb:c3:34:ac:e5:dd:ea: 8f:25:3f:16:39:73:73:e8:9a:73:24:a3:b4:cd:b0:43:76:41: 5a:d3:7d:4e:78:0e:26:8d:22:66:60:a6:d5:ee:84:94:3d:a1: 6a:ba:a3:ab:c7:12:06:4c:fa:b0:4b:62:4b:dc:ad:95:cb:39: d6:ae:bf:49:46:ae:16:2a:4f:f4:af:08:90:70:0d:91:09:dc: e8:8f:91:71:e4:8d:c2:e6:a1:5a:6c:ce:f6:fc:df:33:ba:df: 00:bd:98:a6:6d:f6:61:65:ae:8a:57:0e:6b:1a:e5:60:46:9c: 21:3f:de:b9:f3:b9:68:40:bc:03:20:f8:eb:5e:da:b4:39:cb: 9e:b6:a2:70:35:d3:8b:a2:0f:de:55:ba:e1:d9:11:94:02:12: e4:70:95:d8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNTAyMTAx NDEyNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENERDlDQUNDMTA1M0I5 M0VBMzlGOENCNjc3OUQxRTVBMDkzRUJDMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrhnWW7fJK1oyJWa723ljEW7S0/Atg1zv77tF9AgiUgMcpeLUt IBDoFIIQyOCvaozL0+KWhMeGwp6v1oN2Ul6HBDFokaLvq01uDkbOTb9mrArgNncZ O3UdAUxFT/WyAtK/KxCZfw6HAIjcjIYK+H0lBh//fiBhP+Aua+gBSrEJq1TWu8Qc zt14SufShzlM1gsZmDCosKK29+BFMDuiFfFIbQOvezF1MPrZW+wdpMDH1JnA+CBo mQ0RuWNV6/CTER6/5crH7I/B89cw/RToKoIDKyHrnlkXrxPTbft4x9n/adRi5GGN jKtN21gWbWL2yjLtRLKO9D++kYFJjjq97TvhAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUzdnKzBBTuT6jn4y2d50eWgk+vAUwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvemRuS3pCQlR1VDZqbjR5 MmQ1MGVXZ2stdkFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCFDANBgkqhkiG9w0BAQsFAAOCAQEAsKI3kzKbBuRIEu1vt4Ormf7BTjY7vsWx JhdClvWV6cVcTYIPSPTp/LoYS21rRF0GeRRFYTZ5nKC9Y7UzXB04kmAlLkL7dUjY PbDn0u+nvwrTzngQy9DgwJlB+rgVhVIqufHn2Fq7wzSs5d3qjyU/Fjlzc+iacySj tM2wQ3ZBWtN9TngOJo0iZmCm1e6ElD2harqjq8cSBkz6sEtiS9ytlcs51q6/SUau FipP9K8IkHANkQnc6I+RceSNwuahWmzO9vzfM7rfAL2Ypm32YWWuilcOaxrlYEac IT/eufO5aEC8AyD4617atDnLnraicDXTi6IP3lW64dkRlAIS5HCV2A== -----END CERTIFICATE-----Generated at Sun Apr 6 19:56:49 2025 by rpki-client