$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/6QxN4V5B7sONJRCCcAbjY4Mfhaw.roa File: 6QxN4V5B7sONJRCCcAbjY4Mfhaw.roa (raw, json) Hash identifier: leXIbe7ri/BFOve7nH6nMjDOk/IoW5anbl597syYGTs= Subject key identifier: E9:0C:4D:E1:5E:41:EE:C3:8D:25:10:82:70:06:E3:63:83:1F:85:AC Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Certificate serial: 0135 Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/6QxN4V5B7sONJRCCcAbjY4Mfhaw.roa Signing time: Mon 10 Feb 2025 13:44:57 +0000 ROA not before: Mon 10 Feb 2025 13:44:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150760 IP address blocks: 180.94.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 01:07:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Validity Not Before: Feb 10 13:44:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E90C4DE15E41EEC38D2510827006E363831F85AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:81:74:25:02:d1:f6:b1:35:e1:53:f8:5d:07: f5:86:73:15:d1:ef:7d:1a:39:1d:70:33:c4:47:26: af:bf:a4:7f:24:93:a6:c9:c9:6d:73:a8:02:c2:ff: cd:de:72:23:ac:60:e5:b5:6b:f3:a8:12:75:81:4d: 42:1c:43:e8:3f:0f:7a:0a:2b:fa:79:3b:3c:79:70: 15:33:1f:b0:60:b9:4a:60:8a:4c:df:85:90:e7:df: a5:5d:f2:b0:5c:f7:c2:52:a8:fe:a7:93:96:cb:3c: f8:55:4b:6c:64:7d:57:0b:d9:c6:39:3c:e0:25:ce: e4:0a:32:cc:bb:04:c8:64:44:7b:0a:7f:73:ac:ef: 86:04:03:7f:85:04:82:31:13:be:c7:22:66:e8:80: 86:b8:6b:8b:32:a9:6a:c4:c0:16:18:c2:9c:eb:13: f0:44:09:4f:7f:ad:22:fd:e3:41:69:17:36:d2:f7: 71:bc:4d:a2:65:99:52:89:ff:78:7c:fa:b8:21:76: da:c8:e3:e8:34:3a:0f:c8:01:cf:6d:16:2b:fd:6e: bf:cd:95:c1:54:59:ee:5b:45:73:7c:55:58:bf:9e: fc:fe:66:eb:3f:7c:c6:fe:38:f8:ed:9a:8a:e0:b8: d0:b3:cf:4e:10:43:8f:1b:f6:4a:f9:a7:3c:91:0b: 79:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:0C:4D:E1:5E:41:EE:C3:8D:25:10:82:70:06:E3:63:83:1F:85:AC X509v3 Authority Key Identifier: keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/6QxN4V5B7sONJRCCcAbjY4Mfhaw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.94.30.0/23 Signature Algorithm: sha256WithRSAEncryption 16:b2:6f:f0:88:f6:98:86:6c:e7:6d:49:0b:dc:0d:7a:c1:85: c8:02:78:52:71:c5:da:10:5f:c6:d1:f1:42:0c:60:c4:79:30: 6a:1d:1c:33:96:7e:ec:a7:ca:37:b5:27:52:a3:b5:35:0a:4a: d2:d6:c0:85:ff:a9:70:dc:1b:03:28:3c:5c:6c:83:b5:a3:50: 05:74:48:3a:62:17:a1:93:71:2b:96:cd:5a:3f:5a:63:b3:a0: 23:4f:cb:6b:3b:f5:9d:f8:82:cc:b7:14:16:b3:1f:75:39:cc: 0d:96:62:f2:d8:30:9d:59:55:0f:ba:41:ed:e0:b7:d1:68:e8: 01:f5:c5:41:af:5e:9f:1a:9d:b6:05:cd:32:67:79:b8:1f:05: 58:e0:de:8a:d9:fb:63:e2:44:ea:6b:a0:7c:a8:5e:ee:ae:d6: 91:01:03:a0:f6:c7:1c:73:c5:0b:e5:1d:47:64:f4:21:b5:ee: fd:a3:e8:0d:91:4a:c8:91:51:f8:f4:ee:68:2f:07:58:58:b2: c0:a5:e3:d9:61:02:b7:e9:a3:98:9e:c0:f4:d3:20:1a:13:64: dc:fc:0b:fb:72:e0:56:7d:e4:48:ba:ca:ba:4c:30:a0:35:4d: 32:82:b5:50:38:18:83:42:43:ba:0b:df:98:2a:d6:f9:28:0b: df:9d:43:bf -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzJD NDM2QkU5MkFFMEFEQ0IzMTRFQkMxQUNFMzE5RkY3N0JEQTNGQzAeFw0yNTAyMTAx MzQ0NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5MEM0REUxNUU0MUVF QzM4RDI1MTA4MjcwMDZFMzYzODMxRjg1QUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvgXQlAtH2sTXhU/hdB/WGcxXR730aOR1wM8RHJq+/pH8kk6bJ yW1zqALC/83eciOsYOW1a/OoEnWBTUIcQ+g/D3oKK/p5Ozx5cBUzH7BguUpgikzf hZDn36Vd8rBc98JSqP6nk5bLPPhVS2xkfVcL2cY5POAlzuQKMsy7BMhkRHsKf3Os 74YEA3+FBIIxE77HImbogIa4a4syqWrEwBYYwpzrE/BECU9/rSL940FpFzbS93G8 TaJlmVKJ/3h8+rghdtrI4+g0Og/IAc9tFiv9br/NlcFUWe5bRXN8VVi/nvz+Zus/ fMb+OPjtmorguNCzz04QQ48b9kr5pzyRC3mXAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU6QxN4V5B7sONJRCCcAbjY4MfhawwHwYDVR0jBBgwFoAUcsQ2vpKuCtyzFOvB rOMZ/3e9o/wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaL2Nz UTJ2cEt1Q3R5ekZPdkJyT01aXzNlOW9fdy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Y3NRMnZwS3VDdHl6Rk92QnJPTVpfM2U5b193LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkdaLzZReE40VjVCN3NPTkpSQ0NjQWJqWTRN Zmhhdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0Xh4wDQYJ KoZIhvcNAQELBQADggEBABayb/CI9piGbOdtSQvcDXrBhcgCeFJxxdoQX8bR8UIM YMR5MGodHDOWfuynyje1J1KjtTUKStLWwIX/qXDcGwMoPFxsg7WjUAV0SDpiF6GT cSuWzVo/WmOzoCNPy2s79Z34gsy3FBazH3U5zA2WYvLYMJ1ZVQ+6Qe3gt9Fo6AH1 xUGvXp8anbYFzTJnebgfBVjg3orZ+2PiROproHyoXu6u1pEBA6D2xxxzxQvlHUdk 9CG17v2j6A2RSsiRUfj07mgvB1hYssCl49lhArfpo5iewPTTIBoTZNz8C/ty4FZ9 5Ei6yrpMMKA1TTKCtVA4GINCQ7oL35gq1vkoC9+dQ78= -----END CERTIFICATE-----Generated at Wed Apr 9 22:50:48 2025 by rpki-client