$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/WHxJTUOGxzbVLQtGfx4e9COj8rU.roa File: WHxJTUOGxzbVLQtGfx4e9COj8rU.roa (raw, json) Hash identifier: vGpB/9+p8TzuE0IjtPqSXsEmgZIfxYl2GL/kSeGC+Xk= Subject key identifier: 58:7C:49:4D:43:86:C7:36:D5:2D:0B:46:7F:1E:1E:F4:23:A3:F2:B5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 182E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WHxJTUOGxzbVLQtGfx4e9COj8rU.roa Signing time: Mon 10 Feb 2025 14:07:39 +0000 ROA not before: Mon 10 Feb 2025 14:07:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131584 IP address blocks: 106.105.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6190 (0x182e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:39 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=587C494D4386C736D52D0B467F1E1EF423A3F2B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0e:5a:f9:2b:ca:1b:1d:3a:c4:d5:f6:54:5b: 37:6d:24:37:85:76:ab:85:2e:dd:b8:a2:6f:fb:55: d4:6a:c7:48:ce:5d:f4:16:a5:d7:35:b0:1f:06:92: e1:e6:a0:6f:ea:e9:95:ed:6a:26:87:31:f3:77:8a: b1:10:89:5d:db:e3:2a:a9:ab:5f:f5:83:19:1d:ac: f4:78:85:f5:32:b3:12:f7:5a:84:3a:8f:1c:42:ff: e6:57:24:b6:65:a8:78:80:44:58:61:92:58:79:0e: 36:47:1b:56:07:0a:8b:b0:57:b5:3f:1f:fd:0b:b6: 7a:c3:60:49:2e:5d:64:6b:12:9b:d8:4d:15:98:f6: dd:e7:60:d7:e1:c1:de:ca:c4:63:16:56:cb:0b:ae: b1:db:e0:b8:37:ea:2d:2f:0d:5a:dd:44:b5:d7:17: 73:1d:b3:31:01:d3:ae:27:da:13:ba:90:b5:cb:a8: d9:30:c5:35:d7:e8:8f:c6:59:48:e8:c1:61:75:f1: 45:03:70:4d:96:12:9b:96:e9:a5:1e:02:34:40:6f: 27:b5:dd:31:57:6f:ca:8f:09:be:e0:e8:71:e7:0c: 0d:b7:e9:0a:89:d2:db:f4:b3:90:b2:9f:d9:93:38: 00:53:38:79:de:20:6b:e9:26:8e:e2:0f:58:db:5d: 88:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:7C:49:4D:43:86:C7:36:D5:2D:0B:46:7F:1E:1E:F4:23:A3:F2:B5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/WHxJTUOGxzbVLQtGfx4e9COj8rU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.179.0/24 Signature Algorithm: sha256WithRSAEncryption 36:c9:17:85:60:ba:f2:1d:3e:85:4c:fd:47:7c:33:18:95:71: 4d:2d:00:3f:54:e1:bf:ee:f9:48:c0:45:ee:c8:dc:8b:e2:e5: c7:39:5c:5d:d9:d0:9e:69:c7:97:aa:75:3c:eb:a9:2a:eb:23: b6:e5:cd:2f:21:9b:ba:f7:ac:71:e6:d3:23:8b:d1:23:f4:f8: 52:6e:ef:f6:a8:ce:e1:ec:fe:0f:f0:53:60:a5:04:1b:8e:1f: 65:0b:f7:6a:d8:8d:ed:54:e5:6e:b7:eb:36:6e:43:0b:cf:0a: 08:34:17:4a:30:0f:9d:f2:b3:47:da:06:18:09:31:da:a5:8c: 0b:e2:8e:e6:81:75:59:1d:a4:52:1b:1a:68:77:71:19:bd:8a: f3:b0:cc:2f:f7:44:8e:24:8b:b9:77:26:7e:f8:bb:94:51:6d: 05:3b:03:ef:a3:af:9d:a8:80:7f:85:3e:ad:8f:16:fd:2e:4d: d2:91:b4:37:07:09:b8:ee:cb:66:30:f1:1c:cc:03:5e:50:62: d2:74:72:35:8e:71:7c:4c:84:73:80:9e:1a:b5:7f:5a:a0:ac: 8b:19:e4:37:37:40:12:1a:d1:71:f9:13:ac:97:a8:c6:26:ab: 6a:61:98:30:14:97:16:ce:68:c2:ed:9c:af:ca:1f:4b:25:60: bb:57:0f:3e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGC4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4N0M0OTRENDM4NkM3 MzZENTJEMEI0NjdGMUUxRUY0MjNBM0YyQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxDlr5K8obHTrE1fZUWzdtJDeFdquFLt24om/7VdRqx0jOXfQW pdc1sB8GkuHmoG/q6ZXtaiaHMfN3irEQiV3b4yqpq1/1gxkdrPR4hfUysxL3WoQ6 jxxC/+ZXJLZlqHiARFhhklh5DjZHG1YHCouwV7U/H/0LtnrDYEkuXWRrEpvYTRWY 9t3nYNfhwd7KxGMWVssLrrHb4Lg36i0vDVrdRLXXF3MdszEB064n2hO6kLXLqNkw xTXX6I/GWUjowWF18UUDcE2WEpuW6aUeAjRAbye13TFXb8qPCb7g6HHnDA236QqJ 0tv0s5Cyn9mTOABTOHneIGvpJo7iD1jbXYi5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUWHxJTUOGxzbVLQtGfx4e9COj8rUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvV0h4SlRVT0d4emJWTFF0R2Z4NGU5 Q09qOHJVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGppszAN BgkqhkiG9w0BAQsFAAOCAQEANskXhWC68h0+hUz9R3wzGJVxTS0AP1Thv+75SMBF 7sjci+LlxzlcXdnQnmnHl6p1POupKusjtuXNLyGbuvescebTI4vRI/T4Um7v9qjO 4ez+D/BTYKUEG44fZQv3atiN7VTlbrfrNm5DC88KCDQXSjAPnfKzR9oGGAkx2qWM C+KO5oF1WR2kUhsaaHdxGb2K87DML/dEjiSLuXcmfvi7lFFtBTsD76OvnaiAf4U+ rY8W/S5N0pG0NwcJuO7LZjDxHMwDXlBi0nRyNY5xfEyEc4CeGrV/WqCsixnkNzdA EhrRcfkTrJeoxiaramGYMBSXFs5owu2cr8ofSyVgu1cPPg== -----END CERTIFICATE-----Generated at Mon Apr 7 08:11:54 2025 by rpki-client