$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KDToG3stM6XftX_1pdhxbZTKoLM.roa File: KDToG3stM6XftX_1pdhxbZTKoLM.roa (raw, json) Hash identifier: 6b6KmqXovUWpksVuAo+lcq2Kw+EF+q5GYm8o4gn9+lI= Subject key identifier: 28:34:E8:1B:7B:2D:33:A5:DF:B5:7F:F5:A5:D8:71:6D:94:CA:A0:B3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1873 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KDToG3stM6XftX_1pdhxbZTKoLM.roa Signing time: Mon 10 Feb 2025 14:07:57 +0000 ROA not before: Mon 10 Feb 2025 14:07:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.146.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 22:06:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6259 (0x1873) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2834E81B7B2D33A5DFB57FF5A5D8716D94CAA0B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f1:00:ed:0d:07:39:d7:25:01:3f:91:22:31: 94:14:39:44:e6:9f:3f:af:2b:af:7d:53:4b:a9:cf: cb:c3:5b:6d:54:5f:29:ee:a9:57:a9:fe:39:f1:64: 62:3b:51:4c:5b:cb:2a:36:da:88:fc:23:82:2c:af: db:88:fd:6a:8c:c8:e7:96:3f:8f:84:c3:cd:2e:0b: 6f:84:71:d0:65:62:c5:c0:20:35:4a:ea:36:bb:6a: 9e:05:06:7f:08:b5:51:46:6b:bc:4f:c4:11:d1:ed: fd:62:54:0f:6d:0b:df:3e:90:b7:85:7f:b0:92:64: 25:3f:06:96:6e:72:7b:04:82:58:fc:8d:55:a3:7f: 80:b1:14:62:4f:3c:ea:16:7a:c9:45:9c:23:01:f2: 2d:88:7e:25:6f:08:7b:bf:b4:9f:da:8e:92:88:75: e8:03:c5:e7:45:aa:b9:45:20:c5:c7:5c:d8:db:fa: fd:40:cc:a4:ee:85:73:91:5e:09:82:7c:e0:07:e0: a8:4a:df:fb:4b:2b:3b:ee:2e:d1:bb:b0:79:5e:22: 77:91:00:dd:c2:a7:5a:a9:27:39:4d:32:5f:c6:33: 8a:41:0b:23:40:de:ef:f7:a8:fb:f8:19:5a:cb:6d: 29:a6:67:de:8b:9b:70:ef:22:5c:af:a4:b5:72:ad: 8e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:34:E8:1B:7B:2D:33:A5:DF:B5:7F:F5:A5:D8:71:6D:94:CA:A0:B3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KDToG3stM6XftX_1pdhxbZTKoLM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.96.0/19 Signature Algorithm: sha256WithRSAEncryption 93:35:cd:0b:05:e3:6a:01:18:da:59:17:aa:62:fe:de:27:a9: 23:32:1e:59:01:9d:00:c8:67:13:0b:ad:11:0e:44:ec:a6:eb: e3:6a:29:18:24:a7:16:12:7a:42:2f:76:be:8d:5b:3b:39:9b: ab:1c:a8:04:4f:fb:75:96:60:7b:8e:0e:b4:af:22:b8:d5:1a: d4:69:34:06:68:66:2e:eb:85:2a:95:c9:b6:ae:5b:4d:6a:25: 5d:11:f7:25:98:1d:50:7a:fb:ec:13:41:47:3b:13:26:fc:7c: 38:a2:b4:10:e0:e9:df:20:17:77:c6:47:4c:8c:37:ec:7f:c9: 05:73:27:a2:d8:e2:cd:ab:cd:8d:8f:ee:ed:3b:4f:a1:30:d5: dd:11:f8:45:3b:40:be:6a:80:1e:cb:a7:78:d0:50:1e:ab:3c: 8b:aa:94:63:ba:95:db:b5:bd:81:60:8f:ce:32:f8:42:fe:24: 2e:90:07:2c:21:34:47:00:e0:17:1d:95:7b:6e:13:0f:3b:e4: bb:cc:e6:22:b0:21:26:7e:5a:c6:96:9b:c1:cd:14:14:7a:4c: ae:a5:5b:9e:5d:1b:54:6f:35:9e:25:a7:49:ec:aa:ec:f5:6d: da:28:e7:80:bc:e2:24:0a:e3:a7:61:06:6d:e9:85:ae:56:25: 32:e7:52:ea -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4MzRFODFCN0IyRDMz QTVERkI1N0ZGNUE1RDg3MTZEOTRDQUEwQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG8QDtDQc51yUBP5EiMZQUOUTmnz+vK699U0upz8vDW21UXynu qVep/jnxZGI7UUxbyyo22oj8I4Isr9uI/WqMyOeWP4+Ew80uC2+EcdBlYsXAIDVK 6ja7ap4FBn8ItVFGa7xPxBHR7f1iVA9tC98+kLeFf7CSZCU/BpZucnsEglj8jVWj f4CxFGJPPOoWeslFnCMB8i2IfiVvCHu/tJ/ajpKIdegDxedFqrlFIMXHXNjb+v1A zKTuhXORXgmCfOAH4KhK3/tLKzvuLtG7sHleIneRAN3Cp1qpJzlNMl/GM4pBCyNA 3u/3qPv4GVrLbSmmZ96Lm3DvIlyvpLVyrY7ZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUKDToG3stM6XftX/1pdhxbZTKoLMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS0RUb0czc3RNNlhmdFhfMXBkaHhi WlRLb0xNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXqSYDAN BgkqhkiG9w0BAQsFAAOCAQEAkzXNCwXjagEY2lkXqmL+3iepIzIeWQGdAMhnEwut EQ5E7Kbr42opGCSnFhJ6Qi92vo1bOzmbqxyoBE/7dZZge44OtK8iuNUa1Gk0Bmhm LuuFKpXJtq5bTWolXRH3JZgdUHr77BNBRzsTJvx8OKK0EODp3yAXd8ZHTIw37H/J BXMnotjizavNjY/u7TtPoTDV3RH4RTtAvmqAHsuneNBQHqs8i6qUY7qV27W9gWCP zjL4Qv4kLpAHLCE0RwDgFx2Ve24TDzvku8zmIrAhJn5axpabwc0UFHpMrqVbnl0b VG81niWnSeyq7PVt2ijngLziJArjp2EGbemFrlYlMudS6g== -----END CERTIFICATE-----Generated at Sat Apr 5 20:08:00 2025 by rpki-client