$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/GRDhvttAK_nsVjb0wuOu792ljFM.roa File: GRDhvttAK_nsVjb0wuOu792ljFM.roa (raw, json) Hash identifier: yfrSa/AGfxcAyohh3uwnQcUrSWrXFyv3IhKlKO3WdwA= Subject key identifier: 19:10:E1:BE:DB:40:2B:F9:EC:56:36:F4:C2:E3:AE:EF:DD:A5:8C:53 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0DB4 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/GRDhvttAK_nsVjb0wuOu792ljFM.roa Signing time: Fri 22 Aug 2025 09:00:57 +0000 ROA not before: Fri 22 Aug 2025 09:00:57 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9264 IP address blocks: 117.103.96.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3508 (0xdb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Aug 22 09:00:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1910E1BEDB402BF9EC5636F4C2E3AEEFDDA58C53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4f:e9:6e:90:c5:a8:1b:cb:3c:67:72:e0:40: fa:eb:90:8e:cf:9a:5e:a9:ee:7b:df:f2:0e:d3:de: 8c:27:a2:e2:7c:8d:29:84:72:b2:e2:12:8b:ba:3b: 5c:56:38:2d:5a:b9:95:9a:ed:ae:68:d9:b9:e6:ad: 27:84:f4:4f:da:50:2f:a3:f5:85:fd:fe:78:e8:79: 6a:82:ea:c8:3c:60:56:34:4f:dd:a8:0b:f6:b0:2b: cb:ed:1d:44:32:75:46:86:65:4f:22:48:a3:8d:97: cf:5e:85:4d:2d:c8:42:91:0e:01:17:a7:7d:cc:48: e3:6f:af:13:cb:e0:8d:cd:be:6a:b6:ee:52:18:6b: 09:dc:12:ed:96:bf:9a:ec:99:f6:b6:69:c0:7c:e9: d4:6b:fa:e6:08:e7:00:22:68:df:22:66:2f:a3:c1: 7d:94:c6:5e:63:b5:b0:57:53:9e:32:d6:02:90:46: 3c:6a:da:c0:3f:0d:75:38:c2:50:31:5e:35:6c:bd: 95:5e:17:50:91:7d:d6:39:ba:51:07:b6:d6:b1:e5: 99:e0:94:dc:49:16:5d:36:be:a1:76:47:a9:95:16: 1f:37:ed:f2:04:ee:c5:9d:ca:29:45:1d:59:84:78: e7:d7:44:df:8e:72:20:a8:42:65:c1:b3:db:b0:35: f4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:10:E1:BE:DB:40:2B:F9:EC:56:36:F4:C2:E3:AE:EF:DD:A5:8C:53 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/GRDhvttAK_nsVjb0wuOu792ljFM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 117.103.96.0/20 Signature Algorithm: sha256WithRSAEncryption 90:bc:c2:9d:08:04:cd:6a:5e:54:f0:01:27:40:91:4b:5e:69: 9f:eb:8b:bb:80:00:a4:82:fb:4a:4d:9b:0a:33:f3:c6:b1:f9: c7:72:a4:79:57:81:03:cb:d1:e3:bb:11:c2:5f:9d:49:77:7a: 2b:65:77:84:61:08:6f:91:f6:d3:9c:2e:e3:ef:b8:8e:ef:ca: 2c:69:9f:84:91:1d:80:45:52:2b:11:96:ba:e5:ff:96:7c:f6: b2:50:b3:a8:72:2c:45:72:7c:02:20:52:d5:6f:a9:18:91:53: 03:28:aa:11:13:61:c5:c6:85:5a:80:f6:6e:ad:9e:5f:80:72: 67:c7:63:53:a1:98:a6:45:04:b0:dc:f4:2b:fd:3e:b7:18:ec: 67:c5:30:fa:05:9e:12:73:8d:ff:0e:c5:3c:b8:db:26:cb:69: e3:9d:3e:b3:f2:cb:20:98:8c:ac:a0:7b:29:a8:ea:17:0e:8c: 71:bb:f6:ed:ea:ac:16:6d:c4:af:5b:cc:6d:d3:5d:73:16:ee: 76:a2:91:e9:ab:70:48:25:8f:a5:c9:78:4e:70:f8:82:02:25: 58:86:f9:3c:bc:0d:8c:ae:f2:f7:58:67:41:5c:6e:d5:c7:a0: 29:2c:d0:dc:85:3d:0d:ef:d4:43:9f:8f:2e:af:eb:25:6a:17: 9b:5a:bf:4d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNTA4MjIw OTAwNTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5MTBFMUJFREI0MDJC RjlFQzU2MzZGNEMyRTNBRUVGRERBNThDNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDyT+lukMWoG8s8Z3LgQPrrkI7Pml6p7nvf8g7T3ownouJ8jSmE crLiEou6O1xWOC1auZWa7a5o2bnmrSeE9E/aUC+j9YX9/njoeWqC6sg8YFY0T92o C/awK8vtHUQydUaGZU8iSKONl89ehU0tyEKRDgEXp33MSONvrxPL4I3Nvmq27lIY awncEu2Wv5rsmfa2acB86dRr+uYI5wAiaN8iZi+jwX2Uxl5jtbBXU54y1gKQRjxq 2sA/DXU4wlAxXjVsvZVeF1CRfdY5ulEHttax5ZnglNxJFl02vqF2R6mVFh837fIE 7sWdyilFHVmEeOfXRN+OciCoQmXBs9uwNfSFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUGRDhvttAK/nsVjb0wuOu792ljFMwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9HUkRodnR0QUtfbnNWamIwd3VP dTc5MmxqRk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdWdg MA0GCSqGSIb3DQEBCwUAA4IBAQCQvMKdCATNal5U8AEnQJFLXmmf64u7gACkgvtK TZsKM/PGsfnHcqR5V4EDy9HjuxHCX51Jd3orZXeEYQhvkfbTnC7j77iO78osaZ+E kR2ARVIrEZa65f+WfPayULOocixFcnwCIFLVb6kYkVMDKKoRE2HFxoVagPZurZ5f gHJnx2NToZimRQSw3PQr/T63GOxnxTD6BZ4Sc43/DsU8uNsmy2njnT6z8ssgmIys oHspqOoXDoxxu/bt6qwWbcSvW8xt011zFu52opHpq3BIJY+lyXhOcPiCAiVYhvk8 vA2MrvL3WGdBXG7Vx6ApLNDchT0N79RDn48ur+slahebWr9N -----END CERTIFICATE-----Generated at Sun Aug 24 11:02:59 2025 by rpki-client