$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/yft2nxvELOwaTMq6a737aJkQunU.roa File: yft2nxvELOwaTMq6a737aJkQunU.roa (raw, json) Hash identifier: szg6+0W6jy1bSn6B+8qVZswVXyf/BWjGqiPnV7NFuOI= Subject key identifier: C9:FB:76:9F:1B:C4:2C:EC:1A:4C:CA:BA:6B:BD:FB:68:99:10:BA:75 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0D1B Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/yft2nxvELOwaTMq6a737aJkQunU.roa Signing time: Mon 10 Feb 2025 14:08:20 +0000 ROA not before: Mon 10 Feb 2025 14:08:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 124.199.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3355 (0xd1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Feb 10 14:08:20 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C9FB769F1BC42CEC1A4CCABA6BBDFB689910BA75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0c:42:07:14:9a:3c:11:57:eb:5b:b8:31:a0: d5:80:ea:1f:d2:16:37:e0:87:67:63:f4:e8:58:6f: 7d:06:ff:bc:ed:69:52:58:99:a2:89:f0:b3:3d:0d: 0f:c6:a9:2b:3a:3f:b9:a1:31:ff:03:0a:67:77:3d: b0:de:4a:7b:11:70:05:1a:48:38:9a:9a:8e:19:d4: 5a:b4:d6:ea:e9:b6:cd:30:09:ab:8f:85:4f:c9:32: e5:18:c8:2f:0e:e8:a3:03:72:0f:56:08:2a:23:56: a0:a9:bd:a9:26:88:9d:87:8f:dc:68:80:c0:62:dd: 18:89:01:e8:3e:70:c0:d8:4a:4d:f5:56:10:a2:0d: 19:ab:0d:a0:46:77:9b:ae:65:b3:1a:3f:9e:81:c9: 57:23:0d:e3:0c:77:45:3b:9c:7a:79:b5:c8:cd:aa: e9:89:88:d2:d4:14:23:ba:13:57:fb:85:33:55:d9: f1:32:23:f7:49:f5:c7:c1:06:0d:57:80:3a:cb:6d: 9e:00:3d:dc:69:3c:4a:13:24:cf:64:dc:9c:dd:f5: 42:0a:da:3c:98:7b:ad:1f:01:27:8c:de:ad:25:fe: 4b:93:8b:6d:c2:de:13:b2:a6:aa:88:a9:3c:18:ab: f8:c3:a5:3e:57:b9:7d:f1:65:5e:a4:4f:68:0c:8c: dd:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FB:76:9F:1B:C4:2C:EC:1A:4C:CA:BA:6B:BD:FB:68:99:10:BA:75 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/yft2nxvELOwaTMq6a737aJkQunU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.199.64.0/19 Signature Algorithm: sha256WithRSAEncryption af:18:c1:28:92:29:88:f8:83:14:65:5d:9b:af:a6:a1:b7:20: ea:67:e0:87:d8:05:ae:42:b6:a3:ed:5a:28:5b:64:57:04:c5: aa:59:a9:5d:09:70:82:3d:2e:ce:17:f5:6e:02:91:34:60:aa: 62:dc:a2:c7:3e:de:47:de:f5:c3:9e:cc:a1:93:0f:69:fb:f4: fd:81:ea:4e:b2:83:a6:16:cb:01:c7:7e:e9:f6:b7:26:fa:0a: 2b:f8:5e:ee:ef:2f:6f:18:fc:f1:02:25:2f:71:c0:e8:53:48: 07:6c:f5:2d:04:0e:8b:83:ce:73:f8:fa:12:41:a0:52:75:0c: cd:8c:ea:48:df:8f:2d:30:d5:71:97:c0:6e:c9:91:64:f1:62: a5:ec:e1:80:35:41:d3:62:ee:66:c0:c7:67:16:bc:79:a0:3a: db:0f:40:00:e1:3f:62:54:ad:5c:31:69:67:2c:95:ca:55:8a: 60:15:8b:ea:ff:62:1b:bd:83:58:0a:cb:93:f0:ae:67:c2:56: fa:09:53:41:79:ce:6b:c0:7d:52:16:7b:6f:da:6f:bc:2c:1c: 5d:9c:55:ab:f4:8f:7d:f6:99:a8:38:41:a3:d2:4b:cb:c4:81: 89:b1:e8:d9:d3:ec:bc:65:9c:a3:ef:11:9f:29:d4:0c:8a:c9: bb:e3:21:24 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDRswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNTAyMTAx NDA4MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5RkI3NjlGMUJDNDJD RUMxQTRDQ0FCQTZCQkRGQjY4OTkxMEJBNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvDEIHFJo8EVfrW7gxoNWA6h/SFjfgh2dj9OhYb30G/7ztaVJY maKJ8LM9DQ/GqSs6P7mhMf8DCmd3PbDeSnsRcAUaSDiamo4Z1Fq01urpts0wCauP hU/JMuUYyC8O6KMDcg9WCCojVqCpvakmiJ2Hj9xogMBi3RiJAeg+cMDYSk31VhCi DRmrDaBGd5uuZbMaP56ByVcjDeMMd0U7nHp5tcjNqumJiNLUFCO6E1f7hTNV2fEy I/dJ9cfBBg1XgDrLbZ4APdxpPEoTJM9k3Jzd9UIK2jyYe60fASeM3q0l/kuTi23C 3hOypqqIqTwYq/jDpT5XuX3xZV6kT2gMjN1hAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUyft2nxvELOwaTMq6a737aJkQunUwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL3lmdDJueHZFTE93YVRNcTZhNzM3YUpr UXVuVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8x0AwDQYJ KoZIhvcNAQELBQADggEBAK8YwSiSKYj4gxRlXZuvpqG3IOpn4IfYBa5CtqPtWihb ZFcExapZqV0JcII9Ls4X9W4CkTRgqmLcosc+3kfe9cOezKGTD2n79P2B6k6yg6YW ywHHfun2tyb6Civ4Xu7vL28Y/PECJS9xwOhTSAds9S0EDouDznP4+hJBoFJ1DM2M 6kjfjy0w1XGXwG7JkWTxYqXs4YA1QdNi7mbAx2cWvHmgOtsPQADhP2JUrVwxaWcs lcpVimAVi+r/Yhu9g1gKy5PwrmfCVvoJU0F5zmvAfVIWe2/ab7wsHF2cVav0j332 mag4QaPSS8vEgYmx6NnT7LxlnKPvEZ8p1AyKybvjISQ= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:37 2025 by rpki-client on console.sobornost.net