$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/VjHDB6wQIakhLoemGT67j4sKMGg.roa File: VjHDB6wQIakhLoemGT67j4sKMGg.roa (raw, json) Hash identifier: b+FcXYPt21P+TTFNVjyKDzq713jXwR5IYAHJkkZ7QlQ= Subject key identifier: 56:31:C3:07:AC:10:21:A9:21:2E:87:A6:19:3E:BB:8F:8B:0A:30:68 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 17F0 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VjHDB6wQIakhLoemGT67j4sKMGg.roa Signing time: Mon 10 Feb 2025 14:07:26 +0000 ROA not before: Mon 10 Feb 2025 14:07:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 221.169.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6128 (0x17f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:26 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5631C307AC1021A9212E87A6193EBB8F8B0A3068 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e2:ee:b9:a8:6b:0c:0a:dc:bb:19:88:f5:c0: 9d:69:21:1f:60:eb:4c:4c:db:6b:1e:63:ea:1f:8f: 88:14:25:16:0b:15:ac:28:9d:32:fe:0f:21:a0:11: c9:76:f5:7b:40:34:22:29:bc:9c:81:ee:68:4e:e2: 09:53:f6:8a:19:fd:fd:4b:72:56:5a:23:27:04:65: e8:90:9f:93:a9:97:e1:57:a7:76:5f:22:81:75:94: d4:4a:5a:fc:68:5b:f6:25:9f:55:b6:1c:42:58:9b: e0:dd:20:3d:04:0b:90:8d:a6:9b:9a:57:73:9f:f4: 85:1e:3d:fd:b6:64:71:f8:a1:e6:8e:32:96:54:81: 18:54:44:df:6a:ac:23:01:9d:1f:ad:48:1a:bd:12: 6b:f9:f9:b3:52:0e:5c:41:0b:b6:da:2f:86:e6:0e: c3:86:5d:fb:8d:b1:e5:59:1e:5f:a2:1b:05:a4:2b: cd:6e:50:f4:4e:ce:90:08:17:5e:bd:00:1b:c9:20: df:b9:41:43:e4:4f:fb:9f:06:5d:4f:a9:bd:69:95: be:6e:9e:72:e5:37:a6:e6:68:ad:e5:a2:1f:8f:7e: 0a:0c:8f:70:5e:1b:59:94:cf:07:84:ae:06:c6:59: 3e:c3:20:1f:0f:5c:6d:ee:6e:8b:5e:43:3d:55:8e: 8f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:31:C3:07:AC:10:21:A9:21:2E:87:A6:19:3E:BB:8F:8B:0A:30:68 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/VjHDB6wQIakhLoemGT67j4sKMGg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 221.169.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:cb:b1:70:b3:90:c8:5e:1d:b3:8c:d8:a0:cc:5a:21:3e:b2: 70:72:f3:c8:e6:03:6b:f5:b2:a8:7c:20:63:d2:51:dc:cb:96: a9:a7:80:d6:05:39:08:1f:1c:cc:95:59:e2:1a:81:71:bc:42: 64:6a:b8:f1:7e:bf:4a:2d:6d:b3:59:27:c7:c0:57:e2:96:04: 45:38:47:f2:d6:f9:f1:d4:29:a0:c4:e3:f0:93:a4:47:af:b7: ee:c7:72:3d:42:a8:92:84:cf:cc:de:34:b1:2e:ca:42:bc:ac: 27:03:69:40:1b:ee:9b:80:b6:17:68:53:9b:33:8c:0f:f3:2b: bc:05:b1:1f:ae:ed:56:2b:df:83:7e:e9:22:3c:43:29:7f:a9: a9:d0:8c:5a:06:b7:83:5c:07:12:31:5b:72:b8:17:db:d1:e2: aa:32:e6:91:54:40:60:8d:04:c8:e5:1d:b1:ed:82:e6:40:67: 08:2b:61:01:13:f4:3b:dd:d3:24:5d:ad:99:b3:ad:e3:51:89: 32:6f:4c:f9:ce:27:82:d3:fb:ec:af:4f:c4:88:f5:22:e9:17: bb:24:fa:8f:60:0a:38:44:0b:ab:4a:46:a3:3e:82:b3:6c:5c: 2c:97:c0:36:7a:53:48:c4:fe:c0:2e:86:4f:50:39:ae:40:35: 18:5d:f5:50 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICF/AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2MzFDMzA3QUMxMDIx QTkyMTJFODdBNjE5M0VCQjhGOEIwQTMwNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC34u65qGsMCty7GYj1wJ1pIR9g60xM22seY+ofj4gUJRYLFawo nTL+DyGgEcl29XtANCIpvJyB7mhO4glT9ooZ/f1LclZaIycEZeiQn5Opl+FXp3Zf IoF1lNRKWvxoW/Yln1W2HEJYm+DdID0EC5CNppuaV3Of9IUePf22ZHH4oeaOMpZU gRhURN9qrCMBnR+tSBq9Emv5+bNSDlxBC7baL4bmDsOGXfuNseVZHl+iGwWkK81u UPROzpAIF169ABvJIN+5QUPkT/ufBl1Pqb1plb5unnLlN6bmaK3loh+PfgoMj3Be G1mUzweErgbGWT7DIB8PXG3uboteQz1Vjo/PAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUVjHDB6wQIakhLoemGT67j4sKMGgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVmpIREI2d1FJYWtoTG9lbUdUNjdq NHNLTUdnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAN2pMA0G CSqGSIb3DQEBCwUAA4IBAQCLy7Fws5DIXh2zjNigzFohPrJwcvPI5gNr9bKofCBj 0lHcy5app4DWBTkIHxzMlVniGoFxvEJkarjxfr9KLW2zWSfHwFfilgRFOEfy1vnx 1CmgxOPwk6RHr7fux3I9QqiShM/M3jSxLspCvKwnA2lAG+6bgLYXaFObM4wP8yu8 BbEfru1WK9+DfukiPEMpf6mp0IxaBreDXAcSMVtyuBfb0eKqMuaRVEBgjQTI5R2x 7YLmQGcIK2EBE/Q73dMkXa2Zs63jUYkyb0z5zieC0/vsr0/EiPUi6Re7JPqPYAo4 RAurSkajPoKzbFwsl8A2elNIxP7ALoZPUDmuQDUYXfVQ -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:27 2025 by rpki-client