$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Q_nf7M_8i0qJON0w12mbOQh8hw.roa File: 2Q_nf7M_8i0qJON0w12mbOQh8hw.roa (raw, json) Hash identifier: WV+kKOH5ALD8PoB0xGTDmS/uSI7j45OnWDv7lDCw+c0= Subject key identifier: D9:0F:E7:7F:B3:3F:F2:2D:2A:24:E3:74:C3:5D:A6:6C:E4:21:F2:1C Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1775 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Q_nf7M_8i0qJON0w12mbOQh8hw.roa Signing time: Mon 10 Feb 2025 14:06:55 +0000 ROA not before: Mon 10 Feb 2025 14:06:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.105.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6005 (0x1775) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:06:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D90FE77FB33FF22D2A24E374C35DA66CE421F21C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:66:f9:d6:c3:be:09:73:e0:6b:99:d8:6f:cf: 09:4c:09:66:4f:cf:7f:51:95:ce:04:37:f7:1c:c1: 3c:9c:0f:22:87:50:72:2d:81:93:f7:54:a9:c4:cb: c0:68:45:cd:83:96:95:cd:11:d3:f8:4b:85:4e:d9: 41:7f:39:83:a0:8a:5c:51:ee:ba:bb:1c:b7:2f:eb: b4:2d:4f:66:b5:42:f5:a3:eb:2c:8a:6c:cf:f6:f0: 2f:01:5e:58:9a:e0:ad:ec:dd:e0:f6:22:41:9f:54: cc:14:05:ef:14:ca:cd:73:cb:44:6c:7d:e5:31:93: 5b:e7:2b:a1:c0:cd:7c:13:70:8a:e8:84:89:49:de: 25:32:46:b0:5e:44:7d:52:f8:98:81:89:09:df:b5: 4b:09:f0:d3:cf:8e:24:18:da:e0:e5:1f:c1:ba:15: a1:ac:c8:8d:f3:43:5f:8f:15:28:ed:8c:46:b3:7d: c9:3f:71:25:fe:30:c8:5f:dc:60:03:11:29:e5:3d: 72:56:a6:c6:bb:c6:6f:d4:ec:2b:c3:ed:54:6b:1a: fc:29:b9:1a:13:56:cb:1d:b9:8d:c2:ac:bc:78:f0: 9b:f4:0d:10:5e:ff:4e:c3:91:38:a3:06:07:da:ab: 5c:57:14:77:6d:d6:d0:bf:5e:36:2d:7e:01:23:db: 79:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0F:E7:7F:B3:3F:F2:2D:2A:24:E3:74:C3:5D:A6:6C:E4:21:F2:1C X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Q_nf7M_8i0qJON0w12mbOQh8hw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.64.0/19 Signature Algorithm: sha256WithRSAEncryption 8c:54:ab:5d:2a:3b:18:04:ef:b3:ed:6f:68:8c:a1:c9:c8:db: ad:e4:85:00:1e:6b:8c:6b:cc:44:1e:f1:9d:1e:79:fc:71:52: e3:e4:5c:3f:0e:0e:0f:b8:69:ed:9b:4d:6a:f9:d2:67:86:f3: 90:16:b5:93:39:fe:97:17:e2:48:55:92:83:01:86:67:4d:00: 22:de:3b:46:92:e7:3d:ea:14:42:9a:4b:58:a2:a0:e9:00:22: ba:6d:4b:fb:16:be:92:84:b1:0e:15:c3:b9:e0:3a:fe:84:ca: a8:14:3e:c0:7c:c6:7b:3c:40:0d:84:7f:d1:09:68:23:85:f8: 57:17:ea:3f:44:10:32:6b:71:c2:82:3b:53:6f:da:f5:2b:fa: d6:98:a5:75:7c:e4:e8:34:c4:84:d5:cf:49:6e:cd:58:bf:7d: 6e:00:9c:b1:18:c7:5d:7d:b2:1e:44:ab:21:ff:c1:c6:97:d3: fe:8c:d1:3a:f1:3e:92:21:b5:6d:34:92:75:27:19:9f:0c:87: c3:44:3b:c2:91:b7:07:26:20:34:3f:ec:89:ff:ef:b6:e3:e2: 0b:01:11:2c:70:78:7b:08:9a:3e:2d:0d:e8:cc:df:26:bd:22: 24:25:e7:6d:53:85:05:e2:fc:4d:f0:ec:d9:56:bc:79:5d:c3: db:87:3d:1d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICF3UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA2NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ5MEZFNzdGQjMzRkYy MkQyQTI0RTM3NEMzNURBNjZDRTQyMUYyMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+ZvnWw74Jc+BrmdhvzwlMCWZPz39Rlc4EN/ccwTycDyKHUHIt gZP3VKnEy8BoRc2DlpXNEdP4S4VO2UF/OYOgilxR7rq7HLcv67QtT2a1QvWj6yyK bM/28C8BXlia4K3s3eD2IkGfVMwUBe8Uys1zy0RsfeUxk1vnK6HAzXwTcIrohIlJ 3iUyRrBeRH1S+JiBiQnftUsJ8NPPjiQY2uDlH8G6FaGsyI3zQ1+PFSjtjEazfck/ cSX+MMhf3GADESnlPXJWpsa7xm/U7CvD7VRrGvwpuRoTVssduY3CrLx48Jv0DRBe /07DkTijBgfaq1xXFHdt1tC/XjYtfgEj23mLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU2Q/nf7M/8i0qJON0w12mbOQh8hwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMlFfbmY3TV84aTBxSk9OMHcxMm1i T1FoOGh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppQDAN BgkqhkiG9w0BAQsFAAOCAQEAjFSrXSo7GATvs+1vaIyhycjbreSFAB5rjGvMRB7x nR55/HFS4+RcPw4OD7hp7ZtNavnSZ4bzkBa1kzn+lxfiSFWSgwGGZ00AIt47RpLn PeoUQppLWKKg6QAium1L+xa+koSxDhXDueA6/oTKqBQ+wHzGezxADYR/0QloI4X4 VxfqP0QQMmtxwoI7U2/a9Sv61pildXzk6DTEhNXPSW7NWL99bgCcsRjHXX2yHkSr If/BxpfT/ozROvE+kiG1bTSSdScZnwyHw0Q7wpG3ByYgND/sif/vtuPiCwERLHB4 ewiaPi0N6MzfJr0iJCXnbVOFBeL8TfDs2Va8eV3D24c9HQ== -----END CERTIFICATE-----Generated at Mon Apr 7 08:10:28 2025 by rpki-client