$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/J4yiq8AsbZsZJkXL9ObiLemsZi4.roa File: J4yiq8AsbZsZJkXL9ObiLemsZi4.roa (raw, json) Hash identifier: Zik/0SbRXQ4lQWwbOaSpsgI8JdcMFnZzz0iIHEAwhCY= Subject key identifier: 27:8C:A2:AB:C0:2C:6D:9B:19:26:45:CB:F4:E6:E2:2D:E9:AC:66:2E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1863 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J4yiq8AsbZsZJkXL9ObiLemsZi4.roa Signing time: Mon 10 Feb 2025 14:07:54 +0000 ROA not before: Mon 10 Feb 2025 14:07:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131584 IP address blocks: 106.105.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6243 (0x1863) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=278CA2ABC02C6D9B192645CBF4E6E22DE9AC662E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a2:55:e1:18:46:ba:1c:bc:2f:dc:ef:1d:43: 20:0d:b4:0c:a3:ea:10:cf:dc:9e:e1:18:c2:ff:bb: 83:8f:89:bc:0c:52:44:c8:2c:f8:e1:22:b0:c7:ea: ee:ef:ab:55:6b:0d:dd:19:75:34:d9:d8:8b:f2:e8: 2b:b5:c0:dc:c8:8d:50:94:82:ec:83:d2:bc:7c:04: f4:64:7a:56:db:b9:fd:6a:70:6e:3d:80:2d:14:c3: a7:9b:8b:3d:e8:f7:6d:5d:33:57:bc:cb:fb:f3:51: 13:ec:62:f7:d7:36:d3:e3:da:bc:ea:63:79:b8:42: 70:3c:ad:33:c1:a5:f3:5e:dc:bb:78:45:3f:e9:03: 0b:5c:91:fb:c7:a6:0f:ec:b5:28:08:dd:37:bc:f7: ba:eb:60:f3:8f:fe:f2:a9:60:80:14:1a:6a:d2:58: 19:9e:d8:ac:d0:ac:7b:9c:56:df:9a:35:91:72:ea: bb:e7:4b:34:39:b3:9c:59:e9:b1:5e:9e:a1:5d:7f: 00:fc:81:95:ed:dc:db:e0:e0:e1:bf:b0:52:bb:16: f5:43:ff:82:0d:e9:a1:41:c2:8f:b0:4d:7f:44:0f: 63:a5:c9:d5:41:6d:5a:5b:99:30:02:9b:9c:df:a1: f0:32:ed:c4:2b:08:71:9e:ea:9f:7f:0c:24:fc:af: 87:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:8C:A2:AB:C0:2C:6D:9B:19:26:45:CB:F4:E6:E2:2D:E9:AC:66:2E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J4yiq8AsbZsZJkXL9ObiLemsZi4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.180.0/24 Signature Algorithm: sha256WithRSAEncryption a6:f5:16:4b:4c:1d:b5:50:09:9f:89:fc:df:f4:0f:14:a2:0e: b5:4e:28:2b:72:a6:05:46:03:fc:bf:c9:38:28:52:ad:07:ee: 32:cb:26:f7:cb:c2:85:18:56:74:1d:52:9d:4c:7c:f4:d9:c9: fe:fb:36:86:2e:90:a5:6c:4c:a8:2b:da:70:1e:1c:6b:7d:e3: f9:4a:bc:e7:81:5f:05:de:23:eb:bb:a2:47:fc:70:ff:6b:a6: 2f:33:39:5d:92:02:66:88:6a:92:ac:f0:5d:f4:12:70:9b:10: 0c:08:f2:4c:c6:75:d2:d8:0a:ab:7c:72:b2:a0:69:35:14:1a: e6:02:30:1f:fc:cb:fb:65:61:94:3a:e0:8f:96:ac:54:f6:32: 35:de:01:02:2f:f5:88:49:98:0d:86:c6:3f:1e:90:27:a2:1d: cf:e2:d8:70:77:38:b5:b4:6f:d6:40:38:18:71:c0:dc:d4:36: d2:53:58:13:68:d5:0a:72:70:7c:b6:d3:a8:66:bf:a9:39:9b: 7c:14:a7:2e:de:57:07:a3:3d:2f:a8:74:b3:11:e2:79:2e:9d: ce:35:3b:ab:4e:43:ba:44:c9:cc:e7:7d:26:24:64:22:88:d8: ce:f0:28:40:8c:96:59:aa:fa:08:4a:14:e9:1e:60:89:73:7f: c1:ce:84:a0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGGMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3OENBMkFCQzAyQzZE OUIxOTI2NDVDQkY0RTZFMjJERTlBQzY2MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKolXhGEa6HLwv3O8dQyANtAyj6hDP3J7hGML/u4OPibwMUkTI LPjhIrDH6u7vq1VrDd0ZdTTZ2Ivy6Cu1wNzIjVCUguyD0rx8BPRkelbbuf1qcG49 gC0Uw6ebiz3o921dM1e8y/vzURPsYvfXNtPj2rzqY3m4QnA8rTPBpfNe3Lt4RT/p AwtckfvHpg/stSgI3Te897rrYPOP/vKpYIAUGmrSWBme2KzQrHucVt+aNZFy6rvn SzQ5s5xZ6bFenqFdfwD8gZXt3Nvg4OG/sFK7FvVD/4IN6aFBwo+wTX9ED2OlydVB bVpbmTACm5zfofAy7cQrCHGe6p9/DCT8r4ejAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJ4yiq8AsbZsZJkXL9ObiLemsZi4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSjR5aXE4QXNiWnNaSmtYTDlPYmlM ZW1zWmk0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptDAN BgkqhkiG9w0BAQsFAAOCAQEApvUWS0wdtVAJn4n83/QPFKIOtU4oK3KmBUYD/L/J OChSrQfuMssm98vChRhWdB1SnUx89NnJ/vs2hi6QpWxMqCvacB4ca33j+Uq854Ff Bd4j67uiR/xw/2umLzM5XZICZohqkqzwXfQScJsQDAjyTMZ10tgKq3xysqBpNRQa 5gIwH/zL+2VhlDrgj5asVPYyNd4BAi/1iEmYDYbGPx6QJ6Idz+LYcHc4tbRv1kA4 GHHA3NQ20lNYE2jVCnJwfLbTqGa/qTmbfBSnLt5XB6M9L6h0sxHieS6dzjU7q05D ukTJzOd9JiRkIojYzvAoQIyWWar6CEoU6R5giXN/wc6EoA== -----END CERTIFICATE-----Generated at Mon Apr 7 08:05:56 2025 by rpki-client