$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/9sufPFejSfUAn05KxvPcnEEYLR4.roa File: 9sufPFejSfUAn05KxvPcnEEYLR4.roa (raw, json) Hash identifier: zrRil9n+49ihHBccg/490A6dvL5t7ahycW5WlvpNiE0= Subject key identifier: F6:CB:9F:3C:57:A3:49:F5:00:9F:4E:4A:C6:F3:DC:9C:41:18:2D:1E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 17DA Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9sufPFejSfUAn05KxvPcnEEYLR4.roa Signing time: Mon 10 Feb 2025 14:07:19 +0000 ROA not before: Mon 10 Feb 2025 14:07:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 220.229.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6106 (0x17da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F6CB9F3C57A349F5009F4E4AC6F3DC9C41182D1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2b:ea:30:37:72:c0:83:2e:f1:f0:f9:8f:db: 4e:fb:7c:40:89:01:f2:9c:c9:3e:73:e1:db:89:32: 75:6e:f4:46:92:1e:72:f3:31:6f:5a:0f:6c:46:19: 64:a9:79:09:c6:94:0a:86:be:f5:be:cb:e4:82:fb: 97:2f:c5:f5:65:44:d4:89:89:a9:8e:c3:1f:cd:a8: 5a:d3:15:e9:10:0f:22:09:68:a2:44:e3:01:fa:5b: ff:dc:29:b0:f0:20:c1:c9:9f:eb:d3:dc:c2:71:52: c2:81:b6:a9:b2:28:34:94:cd:ee:83:0b:34:39:74: ce:68:ca:67:6a:55:16:ef:e7:15:5a:fe:04:ef:6b: a7:30:33:85:99:05:d4:4d:6c:0f:66:30:7e:4d:cd: b8:03:cd:9a:1d:af:6e:0d:e3:22:94:3e:80:cb:2f: 76:dc:af:9e:6f:bf:78:17:5e:90:29:f5:d3:46:bf: e9:00:10:bb:db:04:52:dc:ad:a6:11:d2:44:9f:58: 3f:b1:aa:38:fd:66:90:df:8f:30:ed:c2:4a:66:82: c5:8e:f6:2f:11:ee:d4:29:6a:ea:13:db:4c:db:90: 64:13:7d:f3:fd:71:b9:96:41:d5:34:30:5c:47:b6: 01:2a:c7:ec:e6:f5:7b:19:20:4c:4a:20:6e:b2:84: fd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CB:9F:3C:57:A3:49:F5:00:9F:4E:4A:C6:F3:DC:9C:41:18:2D:1E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/9sufPFejSfUAn05KxvPcnEEYLR4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:c2:59:22:cc:2a:5e:99:55:9c:9c:58:8f:73:b5:42:cb:8b: fc:c9:84:b4:d9:2b:e5:90:1e:9c:d1:9b:74:12:86:97:28:5b: 42:90:1f:a2:a6:b9:b8:e0:01:89:dc:50:d0:22:89:ee:db:ce: 9f:31:e4:7b:2b:78:4d:e9:6c:09:00:d4:6e:82:7f:87:7d:52: 9c:b9:5f:7e:8f:0b:ce:70:01:c3:06:62:86:46:ca:c5:f0:6a: f2:e9:61:56:a0:6c:fd:d0:61:52:f8:97:bb:a7:d4:cf:37:32: 87:8c:37:dd:dd:3c:86:0a:8b:09:c8:e7:95:38:31:02:5a:9c: cf:cc:e6:e9:39:d5:33:dd:73:f0:ad:a9:92:a3:3e:c1:b1:f2: f0:c5:e4:34:44:a3:23:cd:99:10:46:02:1d:fc:f2:3d:2c:8b: ac:7b:5a:82:eb:fd:29:43:4d:dc:49:1d:a4:1c:6a:4b:6c:6a: 30:6d:c9:28:c9:fe:e2:c2:0e:94:e3:19:e3:4d:ad:e3:7e:8a: 11:59:86:2f:44:36:90:af:ac:9a:93:1c:75:8e:17:25:9c:09: 3e:f6:67:d4:73:79:8f:e1:dd:59:fa:80:b3:ad:f0:28:0f:32: dc:28:38:c8:dc:14:e9:26:80:33:f8:e3:c1:7c:65:f5:61:87: 2a:75:26:d6 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICF9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2Q0I5RjNDNTdBMzQ5 RjUwMDlGNEU0QUM2RjNEQzlDNDExODJEMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjK+owN3LAgy7x8PmP2077fECJAfKcyT5z4duJMnVu9EaSHnLz MW9aD2xGGWSpeQnGlAqGvvW+y+SC+5cvxfVlRNSJiamOwx/NqFrTFekQDyIJaKJE 4wH6W//cKbDwIMHJn+vT3MJxUsKBtqmyKDSUze6DCzQ5dM5oymdqVRbv5xVa/gTv a6cwM4WZBdRNbA9mMH5NzbgDzZodr24N4yKUPoDLL3bcr55vv3gXXpAp9dNGv+kA ELvbBFLcraYR0kSfWD+xqjj9ZpDfjzDtwkpmgsWO9i8R7tQpauoT20zbkGQTffP9 cbmWQdU0MFxHtgEqx+zm9XsZIExKIG6yhP0RAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU9sufPFejSfUAn05KxvPcnEEYLR4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOXN1ZlBGZWpTZlVBbjA1S3h2UGNu RUVZTFI0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANzlMA0G CSqGSIb3DQEBCwUAA4IBAQA8wlkizCpemVWcnFiPc7VCy4v8yYS02SvlkB6c0Zt0 EoaXKFtCkB+iprm44AGJ3FDQIonu286fMeR7K3hN6WwJANRugn+HfVKcuV9+jwvO cAHDBmKGRsrF8Gry6WFWoGz90GFS+Je7p9TPNzKHjDfd3TyGCosJyOeVODECWpzP zObpOdUz3XPwramSoz7BsfLwxeQ0RKMjzZkQRgId/PI9LIuse1qC6/0pQ03cSR2k HGpLbGowbckoyf7iwg6U4xnjTa3jfooRWYYvRDaQr6yakxx1jhclnAk+9mfUc3mP 4d1Z+oCzrfAoDzLcKDjI3BTpJoAz+OPBfGX1YYcqdSbW -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:26 2025 by rpki-client