$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/gk1s1en4RsjOdSQTnANqyVYLXzQ.roa File: gk1s1en4RsjOdSQTnANqyVYLXzQ.roa (raw, json) Hash identifier: yMi1lIWTlCa4rQn3oOdJVqb4QZEYLmak3n5Tk4gu4t0= Subject key identifier: 82:4D:6C:D5:E9:F8:46:C8:CE:75:24:13:9C:03:6A:C9:56:0B:5F:34 Certificate issuer: /CN=625D845D7953519D719EBDCC92C17632177022CF Certificate serial: 93 Authority key identifier: 62:5D:84:5D:79:53:51:9D:71:9E:BD:CC:92:C1:76:32:17:70:22:CF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/gk1s1en4RsjOdSQTnANqyVYLXzQ.roa Signing time: Mon 10 Feb 2025 14:25:35 +0000 ROA not before: Mon 10 Feb 2025 14:25:35 +0000 ROA not after: Fri 09 Jan 2026 15:30:37 +0000 asID: 152620 IP address blocks: 161.248.134.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 10:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=625D845D7953519D719EBDCC92C17632177022CF Validity Not Before: Feb 10 14:25:35 2025 GMT Not After : Jan 9 15:30:37 2026 GMT Subject: CN=824D6CD5E9F846C8CE7524139C036AC9560B5F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:fe:12:19:c1:ef:7a:13:ff:5e:dd:82:26:51: 7f:60:fe:e5:e0:df:76:09:f2:8d:6a:03:f2:62:21: 70:a2:cf:00:c2:f5:72:90:ad:85:83:bc:bd:08:b7: 75:8d:f6:3c:20:ba:88:ac:4c:86:a6:c3:a6:f0:81: 2d:7a:d3:73:b6:b0:dd:bd:3e:ca:6a:84:29:48:37: aa:8b:0a:6a:ca:fb:ed:86:d0:ef:80:83:e1:53:e4: 37:20:74:f3:f9:80:31:a5:a9:04:36:40:d4:2c:0f: cc:00:7e:21:ec:2d:80:76:05:3b:30:ef:7a:e5:90: 19:37:1a:b4:2e:3f:63:66:69:4a:9e:73:68:58:38: cc:fa:96:fd:0f:c2:db:0f:be:a3:7f:7e:7d:9f:66: 70:cd:09:76:34:d4:de:80:52:95:2d:a6:f3:6c:68: be:31:00:2a:c4:df:d5:fc:41:5f:d8:f8:34:8a:99: c0:fa:85:1b:26:b4:23:72:46:f8:cb:94:dd:2b:ce: bf:c8:6a:56:39:08:9e:3b:c4:0b:4d:e6:2f:2e:c1: ef:75:cb:92:1b:e3:14:aa:7e:12:da:6d:58:cc:79: b6:ec:de:74:90:52:e9:57:d2:25:05:7f:89:d5:43: 2a:27:41:66:ac:01:10:9d:72:9b:5a:d7:67:5a:04: ec:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4D:6C:D5:E9:F8:46:C8:CE:75:24:13:9C:03:6A:C9:56:0B:5F:34 X509v3 Authority Key Identifier: keyid:62:5D:84:5D:79:53:51:9D:71:9E:BD:CC:92:C1:76:32:17:70:22:CF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yl2EXXlTUZ1xnr3MksF2MhdwIs8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINEPAYTW/gk1s1en4RsjOdSQTnANqyVYLXzQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 161.248.134.0/23 Signature Algorithm: sha256WithRSAEncryption 56:c1:6c:a4:12:be:f0:2b:63:4f:59:6b:06:86:51:d7:26:5c: 05:0a:73:30:71:d2:96:dd:54:26:d3:0e:61:f7:a7:d9:bc:77: ce:54:42:9b:ae:60:95:1e:06:11:ee:3b:c5:11:48:87:ff:be: 23:5a:3d:f3:25:56:7a:b8:0c:5b:de:fd:46:f1:d9:79:59:a7: 49:62:0f:e9:35:14:7e:9d:6f:96:2a:bb:16:c2:66:52:a6:e9: af:65:1d:dd:89:03:a3:3a:cd:9e:37:9f:0b:95:88:78:fd:96: 44:d1:4c:17:3c:7c:dc:9b:b5:24:98:42:6d:23:b3:9e:9a:26: 72:bf:f3:71:ec:64:54:8c:91:9f:32:4c:da:7b:b5:c2:e2:59: a8:fb:07:66:d3:12:ab:47:99:0d:b4:2f:40:6c:62:17:4d:7b: 23:87:00:6f:35:14:69:7a:6e:87:0a:a0:eb:db:45:27:28:f7: d4:bf:90:24:41:6b:d8:43:b6:ec:9e:af:5f:a5:79:be:1c:75: 51:5a:93:86:45:46:c4:ff:a6:d7:c5:78:52:00:17:aa:60:b5: 09:8b:cd:34:29:4a:47:53:89:a2:77:37:da:ec:a7:49:15:60: 91:2a:de:cf:d8:c0:dc:7a:dc:f2:f5:41:a9:bb:6d:21:58:45: 4b:7e:3f:1c -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjI1 RDg0NUQ3OTUzNTE5RDcxOUVCRENDOTJDMTc2MzIxNzcwMjJDRjAeFw0yNTAyMTAx NDI1MzVaFw0yNjAxMDkxNTMwMzdaMDMxMTAvBgNVBAMTKDgyNEQ2Q0Q1RTlGODQ2 QzhDRTc1MjQxMzlDMDM2QUM5NTYwQjVGMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3/hIZwe96E/9e3YImUX9g/uXg33YJ8o1qA/JiIXCizwDC9XKQ rYWDvL0It3WN9jwguoisTIamw6bwgS1603O2sN29PspqhClIN6qLCmrK++2G0O+A g+FT5DcgdPP5gDGlqQQ2QNQsD8wAfiHsLYB2BTsw73rlkBk3GrQuP2NmaUqec2hY OMz6lv0PwtsPvqN/fn2fZnDNCXY01N6AUpUtpvNsaL4xACrE39X8QV/Y+DSKmcD6 hRsmtCNyRvjLlN0rzr/IalY5CJ47xAtN5i8uwe91y5Ib4xSqfhLabVjMebbs3nSQ UulX0iUFf4nVQyonQWasARCdcpta12daBOz9AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUgk1s1en4RsjOdSQTnANqyVYLXzQwHwYDVR0jBBgwFoAUYl2EXXlTUZ1xnr3M ksF2MhdwIs8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElORVBB WVRXL1lsMkVYWGxUVVoxeG5yM01rc0YyTWhkd0lzOC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWWwyRVhYbFRVWjF4bnIzTWtzRjJNaGR3SXM4LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElORVBBWVRXL2drMXMxZW40UnNq T2RTUVRuQU5xeVZZTFh6US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGh+IYwDQYJKoZIhvcNAQELBQADggEBAFbBbKQSvvArY09ZawaGUdcmXAUK czBx0pbdVCbTDmH3p9m8d85UQpuuYJUeBhHuO8URSIf/viNaPfMlVnq4DFve/Ubx 2XlZp0liD+k1FH6db5YquxbCZlKm6a9lHd2JA6M6zZ43nwuViHj9lkTRTBc8fNyb tSSYQm0js56aJnK/83HsZFSMkZ8yTNp7tcLiWaj7B2bTEqtHmQ20L0BsYhdNeyOH AG81FGl6bocKoOvbRSco99S/kCRBa9hDtuyer1+leb4cdVFak4ZFRsT/ptfFeFIA F6pgtQmLzTQpSkdTiaJ3N9rsp0kVYJEq3s/YwNx63PL1Qam7bSFYRUt+Pxw= -----END CERTIFICATE-----Generated at Mon Apr 7 09:18:01 2025 by rpki-client