$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/gsaOmygCZTHw4by0W3NhUVX6xQU.roa File: gsaOmygCZTHw4by0W3NhUVX6xQU.roa (raw, json) Hash identifier: zx8sSI4j0Q1kfAZOBtl7cw+/Qicq1Qv6Lh282w8W7f8= Subject key identifier: 82:C6:8E:9B:28:02:65:31:F0:E1:BC:B4:5B:73:61:51:55:FA:C5:05 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 108C Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gsaOmygCZTHw4by0W3NhUVX6xQU.roa Signing time: Fri 22 Aug 2025 08:55:36 +0000 ROA not before: Fri 22 Aug 2025 08:55:36 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 1659 IP address blocks: 120.107.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4236 (0x108c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 22 08:55:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=82C68E9B28026531F0E1BCB45B73615155FAC505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:49:7c:65:d9:46:49:65:61:76:0c:b6:f3:a1: 28:57:31:20:90:93:fc:41:9e:2d:6b:61:e0:b9:7c: 24:3f:8f:c0:8d:8f:8e:ac:14:a4:27:59:50:99:cd: d5:0f:ee:25:cf:7f:27:2f:27:4c:91:2d:d1:84:11: 60:fd:ed:6b:29:4f:af:6c:29:31:ee:58:fd:93:0d: d4:fb:54:40:38:ea:c6:0e:34:bb:0a:cb:0e:9b:68: cb:d5:d1:8f:92:a3:0d:ba:29:ca:10:d9:cc:33:e1: 7d:db:8b:ed:35:e4:91:c5:25:8f:7f:36:68:f1:e9: 9d:1b:d8:b7:84:8e:70:14:3c:d2:34:db:74:c3:a3: 22:59:05:e6:e3:71:5a:1a:54:bd:14:24:1d:fd:7d: c8:57:8d:c2:f5:2c:20:77:c2:1c:30:ae:e5:b8:99: b8:f2:b3:b3:99:46:22:ef:aa:ac:6a:0f:2b:a9:1c: 93:2c:95:e5:c4:0b:88:80:54:e9:a8:91:7e:37:d7: 1c:77:5d:d5:db:ec:31:d9:4a:03:0b:73:85:b3:85: 0f:2d:10:88:55:7d:52:39:a5:09:84:9b:9f:51:8c: fd:f6:f0:d2:08:16:91:64:7a:5f:05:e0:9f:80:b3: 40:4b:53:77:d5:fc:d8:df:62:77:ae:3d:6a:c5:3d: 17:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:C6:8E:9B:28:02:65:31:F0:E1:BC:B4:5B:73:61:51:55:FA:C5:05 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gsaOmygCZTHw4by0W3NhUVX6xQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:72:e5:8f:d6:30:eb:c4:bf:e7:42:77:6d:d9:af:8a:ad:d1: d0:6c:5d:e3:fb:e9:25:bb:ab:e4:7e:f9:c0:dc:f4:0e:b7:f8: dd:56:33:5b:b8:d4:10:da:a0:b7:88:63:d2:3a:a2:7a:b9:a7: 8d:21:a2:4a:51:a8:12:c6:0b:36:76:1e:80:22:d6:cd:37:2d: 02:21:69:f0:39:3f:42:5d:52:81:22:d6:13:fb:51:ad:c4:0f: 4b:78:3a:3c:34:bb:4a:1a:62:07:b8:42:32:f7:47:12:68:a8: 63:8c:e9:83:c4:ef:0a:78:cd:8d:4e:91:8f:13:0c:30:23:1e: ed:b8:80:d5:79:5e:32:91:68:40:40:73:b6:13:1d:80:f9:9c: 72:68:79:d9:f0:b7:7d:2c:88:d0:02:bd:5b:93:0b:80:53:c6: ca:b6:16:36:31:f4:d2:be:db:a9:d9:c5:1e:f0:bf:6a:cf:c6: 35:b8:f0:46:14:80:cf:69:03:cd:e9:9f:de:9f:29:42:ab:94: 34:f5:8e:a3:b3:16:f0:72:41:ef:13:cf:3c:d8:dc:dd:85:05: 2e:78:22:c3:6e:2a:17:4f:0e:b0:1f:8b:c5:8b:93:ac:11:89: 16:d2:7a:90:ce:0f:8f:33:51:76:df:4f:6b:1a:ec:dc:6a:9e: 79:ac:81:63 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNTA4MjIw ODU1MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgyQzY4RTlCMjgwMjY1 MzFGMEUxQkNCNDVCNzM2MTUxNTVGQUM1MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/SXxl2UZJZWF2DLbzoShXMSCQk/xBni1rYeC5fCQ/j8CNj46s FKQnWVCZzdUP7iXPfycvJ0yRLdGEEWD97WspT69sKTHuWP2TDdT7VEA46sYONLsK yw6baMvV0Y+Sow26KcoQ2cwz4X3bi+015JHFJY9/Nmjx6Z0b2LeEjnAUPNI023TD oyJZBebjcVoaVL0UJB39fchXjcL1LCB3whwwruW4mbjys7OZRiLvqqxqDyupHJMs leXEC4iAVOmokX431xx3XdXb7DHZSgMLc4WzhQ8tEIhVfVI5pQmEm59RjP328NII FpFkel8F4J+As0BLU3fV/NjfYneuPWrFPRfHAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUgsaOmygCZTHw4by0W3NhUVX6xQUwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9nc2FPbXlnQ1pUSHc0YnkwVzNO aFVWWDZ4UVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAeGsw DQYJKoZIhvcNAQELBQADggEBAHly5Y/WMOvEv+dCd23Zr4qt0dBsXeP76SW7q+R+ +cDc9A63+N1WM1u41BDaoLeIY9I6onq5p40hokpRqBLGCzZ2HoAi1s03LQIhafA5 P0JdUoEi1hP7Ua3ED0t4Ojw0u0oaYge4QjL3RxJoqGOM6YPE7wp4zY1OkY8TDDAj Hu24gNV5XjKRaEBAc7YTHYD5nHJoednwt30siNACvVuTC4BTxsq2FjYx9NK+26nZ xR7wv2rPxjW48EYUgM9pA83pn96fKUKrlDT1jqOzFvByQe8TzzzY3N2FBS54IsNu KhdPDrAfi8WLk6wRiRbSepDOD48zUXbfT2sa7NxqnnmsgWM= -----END CERTIFICATE-----Generated at Sun Aug 24 07:57:18 2025 by rpki-client