$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LeayFfHPnZuYM4tkewJR1VK8E9U.roa File: LeayFfHPnZuYM4tkewJR1VK8E9U.roa (raw, json) Hash identifier: sGUr1VMPhNLydUY4DjZiJfB5oGAiW0BuYrROEslTCBU= Subject key identifier: 2D:E6:B2:15:F1:CF:9D:9B:98:33:8B:64:7B:02:51:D5:52:BC:13:D5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1830 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LeayFfHPnZuYM4tkewJR1VK8E9U.roa Signing time: Mon 10 Feb 2025 14:07:40 +0000 ROA not before: Mon 10 Feb 2025 14:07:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.107.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6192 (0x1830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2DE6B215F1CF9D9B98338B647B0251D552BC13D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:bc:6f:31:05:22:bd:e7:61:3d:9b:c2:69:5d: b3:4e:8f:3e:29:6b:29:7c:ba:aa:38:a0:9c:c9:9a: 4a:ba:1f:17:3a:4e:5d:3a:49:26:43:28:a1:5f:63: 50:5e:c8:7f:be:74:a7:da:17:60:e4:32:e5:3c:36: 04:aa:e3:ef:76:d3:2b:2c:21:45:f8:d4:de:dc:db: ad:9e:64:03:b4:60:63:d1:61:90:4f:30:f8:57:f3: 57:4f:6e:60:b5:38:f9:27:b1:e4:e6:fc:73:f6:40: 1d:e7:cb:2a:e9:bc:3b:f5:16:c2:66:12:a8:2e:cf: ed:48:59:de:c4:4d:bf:c5:91:39:34:5d:dd:26:2f: 53:b1:4d:5c:03:9c:1c:85:0c:8a:3b:be:91:15:e6: 5d:2e:82:5f:a3:86:4f:b8:61:b4:48:36:d1:21:c2: 72:96:1d:20:5c:a2:63:f1:37:ed:9e:23:09:5f:e1: 77:82:33:75:25:78:2a:46:86:74:b1:63:65:16:69: 45:38:ca:20:16:5b:7b:c1:f9:14:0d:dd:46:f1:31: 0a:ce:e2:15:97:89:00:26:61:68:f4:99:bb:ea:5a: 14:94:4b:66:90:e3:a3:e2:79:00:19:c2:35:0d:70: ff:0c:d0:5a:7d:9e:ad:73:27:c3:ca:1c:14:3d:14: ce:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E6:B2:15:F1:CF:9D:9B:98:33:8B:64:7B:02:51:D5:52:BC:13:D5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LeayFfHPnZuYM4tkewJR1VK8E9U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.175.0/24 Signature Algorithm: sha256WithRSAEncryption a1:4d:9c:d5:c1:fe:4d:82:95:ed:15:c2:ce:51:7a:92:a7:81: 3b:1a:06:c8:f9:36:2e:63:5b:0d:da:fe:da:7c:43:68:1c:a3: 99:8f:00:42:c6:8f:10:09:0d:1b:94:a6:3a:3c:e9:15:0f:0b: 41:bb:d8:5b:e4:78:97:79:4e:1e:a3:ca:f1:83:a4:ce:a9:90: 5b:84:36:fb:f8:9b:3f:b5:5e:3e:7e:9a:e1:d3:19:2b:f7:7a: 72:60:dd:b0:6c:8b:64:4a:39:b7:fe:a1:9d:61:5c:53:68:cb: a6:81:89:99:ff:2d:2c:f0:7c:58:cd:2a:c1:dc:3d:a6:29:b6: 61:36:03:96:03:58:ba:9a:99:ab:44:12:06:7f:ba:71:4f:cb: 5e:df:bd:cc:70:1f:48:fb:18:60:37:24:b5:5a:66:d2:4b:50: 4a:8d:2f:38:db:26:37:c0:92:55:28:84:92:60:33:31:c0:0a: f6:01:f9:6a:0d:79:47:88:45:9e:29:35:d3:8a:37:93:dd:db: 3c:b6:42:34:ff:90:35:1b:70:9f:57:5d:3d:bd:a2:9c:ac:ec: 1a:14:26:db:47:16:ab:6a:d2:ab:44:d2:6a:be:96:e6:50:d4: 32:74:ce:7f:87:ee:40:b8:f5:5c:8f:06:a9:de:dd:c8:d0:eb: 4a:80:f4:54 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGDAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJERTZCMjE1RjFDRjlE OUI5ODMzOEI2NDdCMDI1MUQ1NTJCQzEzRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0vG8xBSK952E9m8JpXbNOjz4payl8uqo4oJzJmkq6Hxc6Tl06 SSZDKKFfY1BeyH++dKfaF2DkMuU8NgSq4+920yssIUX41N7c262eZAO0YGPRYZBP MPhX81dPbmC1OPknseTm/HP2QB3nyyrpvDv1FsJmEqguz+1IWd7ETb/FkTk0Xd0m L1OxTVwDnByFDIo7vpEV5l0ugl+jhk+4YbRINtEhwnKWHSBcomPxN+2eIwlf4XeC M3UleCpGhnSxY2UWaUU4yiAWW3vB+RQN3UbxMQrO4hWXiQAmYWj0mbvqWhSUS2aQ 46PieQAZwjUNcP8M0Fp9nq1zJ8PKHBQ9FM6LAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULeayFfHPnZuYM4tkewJR1VK8E9UwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTGVheUZmSFBuWnVZTTR0a2V3SlIx Vks4RTlVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGprrzAN BgkqhkiG9w0BAQsFAAOCAQEAoU2c1cH+TYKV7RXCzlF6kqeBOxoGyPk2LmNbDdr+ 2nxDaByjmY8AQsaPEAkNG5SmOjzpFQ8LQbvYW+R4l3lOHqPK8YOkzqmQW4Q2+/ib P7VePn6a4dMZK/d6cmDdsGyLZEo5t/6hnWFcU2jLpoGJmf8tLPB8WM0qwdw9pim2 YTYDlgNYupqZq0QSBn+6cU/LXt+9zHAfSPsYYDcktVpm0ktQSo0vONsmN8CSVSiE kmAzMcAK9gH5ag15R4hFnik104o3k93bPLZCNP+QNRtwn1ddPb2inKzsGhQm20cW q2rSq0TSar6W5lDUMnTOf4fuQLj1XI8Gqd7dyNDrSoD0VA== -----END CERTIFICATE-----Generated at Mon Apr 7 08:12:12 2025 by rpki-client