$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/F8I9by-q3NXkPi951EPt3Zd05pw.roa File: F8I9by-q3NXkPi951EPt3Zd05pw.roa (raw, json) Hash identifier: Nrtuc4ifpMUcO+65wfnW9GKSOozJxPYr6IsSo0YmkaU= Subject key identifier: 17:C2:3D:6F:2F:AA:DC:D5:E4:3E:2F:79:D4:43:ED:DD:97:74:E6:9C Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 17D7 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/F8I9by-q3NXkPi951EPt3Zd05pw.roa Signing time: Mon 10 Feb 2025 14:07:19 +0000 ROA not before: Mon 10 Feb 2025 14:07:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 60.245.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6103 (0x17d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:19 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=17C23D6F2FAADCD5E43E2F79D443EDDD9774E69C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:07:47:40:ef:17:46:f9:b4:da:df:ce:84:2a: fc:e9:23:bf:05:4b:42:ee:56:78:5d:d2:6e:fb:47: 75:fa:97:ff:57:c0:be:19:29:83:ae:dc:4f:cc:0b: ff:01:e3:2b:29:a1:36:4b:c8:27:1c:c7:7a:16:4f: 49:be:1b:d9:b7:0c:23:d2:2c:19:bd:80:5a:f7:d9: dd:3d:ff:c7:95:76:7c:fe:78:a9:c0:5f:85:76:58: b1:26:e4:ab:a3:7d:b5:61:28:18:19:7c:73:81:b3: 23:9c:20:5c:74:fd:db:19:62:4e:f3:ba:18:44:69: 4a:9b:7b:40:94:90:64:f9:2f:5f:59:fe:6a:14:dc: cd:ba:d1:2f:36:52:c2:28:e5:6c:42:93:30:27:15: 9c:12:a5:ff:1a:d4:ae:a5:c8:35:97:ba:7c:ea:1d: 0f:9a:c5:3f:7c:44:1c:6d:3e:10:be:a6:86:6c:3c: 7c:78:fb:b4:b2:1a:fd:83:69:a3:dc:a7:c6:ad:42: a6:5a:1c:d3:6f:be:25:ea:54:92:86:30:67:e3:6d: 60:cd:09:7b:47:e3:8f:c9:bd:6c:1a:d5:e1:2c:c3: c9:70:1e:df:61:63:1c:75:cc:8f:28:0f:83:56:82: e8:ba:8c:c0:b6:08:fb:37:ed:c0:7c:07:54:06:38: 50:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:C2:3D:6F:2F:AA:DC:D5:E4:3E:2F:79:D4:43:ED:DD:97:74:E6:9C X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/F8I9by-q3NXkPi951EPt3Zd05pw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.245.120.0/21 Signature Algorithm: sha256WithRSAEncryption 06:5d:b1:16:82:93:72:8e:12:8b:3a:19:ec:98:c3:95:26:d1: 03:20:e1:e9:0d:60:8a:f2:36:4d:b1:fd:60:18:26:cf:76:90: 5b:03:a2:1b:1e:01:13:c8:5a:93:e1:68:15:64:29:59:21:0a: ec:ed:8d:64:ae:85:5a:3e:f1:22:ab:fe:06:f4:a7:4f:05:9c: 53:00:9f:fc:74:bd:d7:b5:0d:bb:6b:61:2c:39:6d:d5:e3:ec: 22:13:60:28:3b:b3:64:57:1d:a2:71:ef:98:42:26:46:29:02: f2:e5:6b:ad:00:0f:7d:7d:e8:50:88:73:88:30:e2:ef:d0:46: 47:6b:ce:bc:62:cd:70:de:77:e6:46:90:df:e5:0d:49:d2:49: 21:ce:66:63:69:9f:8e:aa:db:90:f5:18:0b:b5:09:22:2d:c1: d0:a1:1e:74:ac:90:f7:21:d5:b5:0b:3c:c3:53:4a:b4:94:df: 2f:cf:72:48:1d:dd:b3:ee:f4:0c:e2:61:67:54:b0:2f:b4:c6: 76:a6:fc:11:38:18:96:f7:15:ad:87:10:db:22:12:dc:32:1e: c3:fd:ab:09:48:9f:03:eb:fe:bb:f8:f5:16:17:0b:4a:ab:1a: 8c:5e:c4:28:57:fa:9a:de:e3:49:8c:bf:b4:5d:4d:fe:56:25: c9:1c:fe:85 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICF9cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE3QzIzRDZGMkZBQURD RDVFNDNFMkY3OUQ0NDNFREREOTc3NEU2OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsB0dA7xdG+bTa386EKvzpI78FS0LuVnhd0m77R3X6l/9XwL4Z KYOu3E/MC/8B4yspoTZLyCccx3oWT0m+G9m3DCPSLBm9gFr32d09/8eVdnz+eKnA X4V2WLEm5KujfbVhKBgZfHOBsyOcIFx0/dsZYk7zuhhEaUqbe0CUkGT5L19Z/moU 3M260S82UsIo5WxCkzAnFZwSpf8a1K6lyDWXunzqHQ+axT98RBxtPhC+poZsPHx4 +7SyGv2DaaPcp8atQqZaHNNvviXqVJKGMGfjbWDNCXtH44/JvWwa1eEsw8lwHt9h Yxx1zI8oD4NWgui6jMC2CPs37cB8B1QGOFCNAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUF8I9by+q3NXkPi951EPt3Zd05pwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRjhJOWJ5LXEzTlhrUGk5NTFFUHQz WmQwNXB3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAzz1eDAN BgkqhkiG9w0BAQsFAAOCAQEABl2xFoKTco4SizoZ7JjDlSbRAyDh6Q1givI2TbH9 YBgmz3aQWwOiGx4BE8hak+FoFWQpWSEK7O2NZK6FWj7xIqv+BvSnTwWcUwCf/HS9 17UNu2thLDlt1ePsIhNgKDuzZFcdonHvmEImRikC8uVrrQAPfX3oUIhziDDi79BG R2vOvGLNcN535kaQ3+UNSdJJIc5mY2mfjqrbkPUYC7UJIi3B0KEedKyQ9yHVtQs8 w1NKtJTfL89ySB3ds+70DOJhZ1SwL7TGdqb8ETgYlvcVrYcQ2yIS3DIew/2rCUif A+v+u/j1FhcLSqsajF7EKFf6mt7jSYy/tF1N/lYlyRz+hQ== -----END CERTIFICATE-----Generated at Mon Apr 7 01:48:47 2025 by rpki-client