$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/L-0GhvQscyDobUqW6sks18BPP74.roa File: L-0GhvQscyDobUqW6sks18BPP74.roa (raw, json) Hash identifier: 4Hv4kj5S2OLjo4faNnsApbCYwmZAzCjPb/fwqsSmAVk= Subject key identifier: 2F:ED:06:86:F4:2C:73:20:E8:6D:4A:96:EA:C9:2C:D7:C0:4F:3F:BE Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 17C8 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L-0GhvQscyDobUqW6sks18BPP74.roa Signing time: Mon 10 Feb 2025 14:07:15 +0000 ROA not before: Mon 10 Feb 2025 14:07:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.107.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6088 (0x17c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2FED0686F42C7320E86D4A96EAC92CD7C04F3FBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6d:94:90:c2:3b:2b:3e:90:a8:e1:e3:6e:ee: c5:1d:6e:7b:7a:98:35:18:f4:c1:51:7a:bd:64:ab: 8a:3a:37:42:6e:2a:c1:61:3c:94:7f:31:b6:4c:a0: 64:ba:dd:b2:79:bb:ef:d6:70:71:4d:e8:22:ce:49: 54:11:9f:34:76:09:31:24:fd:e4:8f:76:69:96:b4: c5:08:d6:35:0d:c0:e9:bd:6f:a3:45:d5:49:1f:22: 77:ea:04:4a:f0:6b:d8:a6:8e:8b:cf:15:a8:90:10: 12:c4:6e:0e:d8:cc:91:1d:ca:9a:3d:bd:87:98:44: f8:39:62:25:26:8c:51:23:e7:0d:1c:eb:f4:23:5c: bf:03:f4:fa:3f:0b:22:68:97:1f:6f:9a:48:70:4b: 5f:1c:54:9a:80:3d:15:ef:e2:28:29:7a:9f:b8:8c: ae:8c:84:5e:b8:89:b7:85:68:b1:bb:8e:57:61:24: f3:32:ba:f2:e5:aa:ab:7d:a6:7b:1e:1b:9d:83:1f: c5:98:02:a5:1f:65:63:a7:b0:b8:61:c4:20:99:de: ef:a0:d1:ab:c2:d1:9c:aa:f4:cd:a7:0a:e6:a6:a4: ff:93:03:0f:34:4a:c6:4d:73:9a:6b:cc:b1:0a:c0: 6c:c1:0e:8c:6d:cb:41:9f:f3:5e:26:2b:ec:e7:5a: e5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:ED:06:86:F4:2C:73:20:E8:6D:4A:96:EA:C9:2C:D7:C0:4F:3F:BE X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/L-0GhvQscyDobUqW6sks18BPP74.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.128.0/20 Signature Algorithm: sha256WithRSAEncryption 1e:ea:99:9d:64:48:65:fc:9a:ee:bf:45:67:d0:70:78:74:93: ae:a8:64:40:ab:47:88:89:ab:2c:e2:0f:9a:e3:db:3a:00:10: 7c:ca:80:67:c9:bd:51:ba:36:4b:90:63:f3:2e:0e:8c:fb:fd: 4d:c7:61:f4:ce:ea:2e:10:2d:8f:e3:49:f2:57:18:fd:9e:6b: c8:7e:9f:e1:8f:d1:59:6f:ba:4b:42:c1:55:69:1f:5f:ef:13: e8:4f:ae:d0:61:f3:b6:36:4b:c6:80:11:c3:57:d9:59:08:68: 0b:4a:02:a9:da:b8:7d:24:25:78:f1:9c:41:eb:a9:2f:8d:7b: 5e:ea:35:af:10:42:2f:49:fb:d0:7c:f8:b2:e6:57:16:09:f9: 67:02:70:ad:8f:82:6b:ec:39:9a:f5:38:d7:92:24:ac:ba:f3: 27:76:c8:97:ee:57:c4:ca:21:76:da:0b:26:fd:58:7f:a3:63: 0b:94:86:1b:24:38:a1:56:57:8e:9d:b1:3e:22:52:b7:85:62: 99:0c:0a:57:8b:86:c7:4e:0b:e8:bc:a7:3b:d0:ab:fb:3a:8d: 7e:f8:7f:e2:aa:8c:e6:c6:9a:c3:52:19:85:79:6a:c3:6c:bf: 22:d4:b6:9f:37:cc:80:0c:a7:b3:0f:5a:ac:3d:b9:5f:19:40: 01:6f:fb:3e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICF8gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJGRUQwNjg2RjQyQzcz MjBFODZENEE5NkVBQzkyQ0Q3QzA0RjNGQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5bZSQwjsrPpCo4eNu7sUdbnt6mDUY9MFRer1kq4o6N0JuKsFh PJR/MbZMoGS63bJ5u+/WcHFN6CLOSVQRnzR2CTEk/eSPdmmWtMUI1jUNwOm9b6NF 1UkfInfqBErwa9imjovPFaiQEBLEbg7YzJEdypo9vYeYRPg5YiUmjFEj5w0c6/Qj XL8D9Po/CyJolx9vmkhwS18cVJqAPRXv4igpep+4jK6MhF64ibeFaLG7jldhJPMy uvLlqqt9pnseG52DH8WYAqUfZWOnsLhhxCCZ3u+g0avC0Zyq9M2nCuampP+TAw80 SsZNc5przLEKwGzBDoxty0Gf814mK+znWuW9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUL+0GhvQscyDobUqW6sks18BPP74wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTC0wR2h2UXNjeURvYlVxVzZza3Mx OEJQUDc0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGprgDAN BgkqhkiG9w0BAQsFAAOCAQEAHuqZnWRIZfya7r9FZ9BweHSTrqhkQKtHiImrLOIP muPbOgAQfMqAZ8m9Ubo2S5Bj8y4OjPv9Tcdh9M7qLhAtj+NJ8lcY/Z5ryH6f4Y/R WW+6S0LBVWkfX+8T6E+u0GHztjZLxoARw1fZWQhoC0oCqdq4fSQlePGcQeupL417 Xuo1rxBCL0n70Hz4suZXFgn5ZwJwrY+Ca+w5mvU415IkrLrzJ3bIl+5XxMohdtoL Jv1Yf6NjC5SGGyQ4oVZXjp2xPiJSt4VimQwKV4uGx04L6LynO9Cr+zqNfvh/4qqM 5saaw1IZhXlqw2y/ItS2nzfMgAynsw9arD25XxlAAW/7Pg== -----END CERTIFICATE-----Generated at Mon Apr 7 08:05:55 2025 by rpki-client