$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/XA6QkZZv0VuyMpioAfyIfB8fgCs.roa File: XA6QkZZv0VuyMpioAfyIfB8fgCs.roa (raw, json) Hash identifier: dTK/B+zEPokjOCqIC0SqB2nRUoTyVDEDI4L/YloWlfM= Subject key identifier: 5C:0E:90:91:96:6F:D1:5B:B2:32:98:A8:01:FC:88:7C:1F:1F:80:2B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1820 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XA6QkZZv0VuyMpioAfyIfB8fgCs.roa Signing time: Mon 10 Feb 2025 14:07:36 +0000 ROA not before: Mon 10 Feb 2025 14:07:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 220.229.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6176 (0x1820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:36 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5C0E9091966FD15BB23298A801FC887C1F1F802B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:20:bc:51:cc:6b:4d:f3:42:1d:af:bd:11:0d: 50:f7:a7:8b:38:fe:29:6e:ae:c4:77:08:71:8b:d2: e3:64:66:aa:d8:8a:81:09:ed:be:b2:3c:e4:8f:21: 69:32:2e:4b:02:f6:42:1d:65:17:de:93:84:c1:5b: 2a:99:92:0d:9f:b0:54:1f:4d:42:e8:75:6c:fc:07: 13:6d:25:00:31:8f:57:d1:a3:d0:3f:50:4b:63:37: 7a:53:72:30:f2:02:e7:5d:e6:76:2a:f0:ac:4c:7a: 58:29:46:79:af:c8:5e:a9:4b:2d:21:bf:11:a3:36: 50:81:6d:07:f0:b7:0b:55:99:a0:66:cd:f2:2b:58: 06:ae:e3:bd:ad:41:d1:e4:d6:cd:58:d8:ef:b1:92: 2d:65:32:27:aa:dd:72:2a:82:dc:5b:51:f2:1a:1f: f9:24:bd:9e:2c:cf:01:ef:07:06:d6:49:87:80:94: af:db:4a:c3:1e:25:b4:45:02:6a:6b:26:f6:4b:45: 95:07:83:3b:b6:02:35:7d:22:18:eb:a1:fa:45:22: 7a:19:62:3a:2e:49:9d:3d:13:cd:21:e4:9d:8c:cb: e1:f2:0e:36:79:81:5b:c8:3e:59:5d:c4:b8:7b:2e: de:b7:41:8a:32:24:c8:de:d2:8a:60:5e:a1:b1:96: 00:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:0E:90:91:96:6F:D1:5B:B2:32:98:A8:01:FC:88:7C:1F:1F:80:2B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/XA6QkZZv0VuyMpioAfyIfB8fgCs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.128.0/17 Signature Algorithm: sha256WithRSAEncryption 07:ce:1a:76:4e:3a:24:58:f3:16:22:93:11:c3:8e:e9:6a:51: f5:77:fe:ac:96:ea:4e:98:38:07:62:af:39:62:0e:2d:5a:3c: 93:09:9e:32:c4:b4:55:27:5b:ff:01:23:0d:88:7c:a0:ba:ca: 45:90:33:d7:3d:7c:b4:f6:09:fc:9d:cf:82:5c:79:6b:75:a0: 09:5d:4d:67:ea:38:2d:c6:7e:53:26:25:62:27:56:48:5a:21: 64:cc:ba:74:41:a8:b7:56:59:f5:ef:3a:2c:3b:82:de:3f:35: f5:fb:68:17:f6:8d:92:a3:31:bf:8f:b2:f9:c2:41:a7:e8:49: 98:7a:0b:5d:5a:b8:07:6a:81:d6:ed:64:96:b3:85:2f:be:05: 28:57:05:9a:d4:d0:fe:a1:df:b1:e6:f2:5e:ad:2f:71:fa:1b: b5:46:b9:b7:a6:51:51:a6:9e:26:5e:1a:9e:54:1d:09:b1:20: 23:bd:73:9f:a6:ac:3a:5d:18:97:04:3d:65:0f:fe:5f:03:cb: 88:35:6c:d2:cc:12:50:02:9f:91:20:6d:61:8a:46:db:7b:bf: d8:5d:d6:5c:de:86:0b:6d:64:31:0f:56:60:2e:14:b9:9b:42: df:7e:a3:e7:a1:d7:80:dd:23:a3:4c:6d:b1:3f:c9:47:48:db: 74:a1:c1:47 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGCAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDMEU5MDkxOTY2RkQx NUJCMjMyOThBODAxRkM4ODdDMUYxRjgwMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoILxRzGtN80Idr70RDVD3p4s4/ilursR3CHGL0uNkZqrYioEJ 7b6yPOSPIWkyLksC9kIdZRfek4TBWyqZkg2fsFQfTULodWz8BxNtJQAxj1fRo9A/ UEtjN3pTcjDyAudd5nYq8KxMelgpRnmvyF6pSy0hvxGjNlCBbQfwtwtVmaBmzfIr WAau472tQdHk1s1Y2O+xki1lMieq3XIqgtxbUfIaH/kkvZ4szwHvBwbWSYeAlK/b SsMeJbRFAmprJvZLRZUHgzu2AjV9IhjrofpFInoZYjouSZ09E80h5J2My+HyDjZ5 gVvIPlldxLh7Lt63QYoyJMje0opgXqGxlgDhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUXA6QkZZv0VuyMpioAfyIfB8fgCswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWEE2UWtaWnYwVnV5TXBpb0FmeUlm QjhmZ0NzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9zlgDAN BgkqhkiG9w0BAQsFAAOCAQEAB84adk46JFjzFiKTEcOO6WpR9Xf+rJbqTpg4B2Kv OWIOLVo8kwmeMsS0VSdb/wEjDYh8oLrKRZAz1z18tPYJ/J3Pglx5a3WgCV1NZ+o4 LcZ+UyYlYidWSFohZMy6dEGot1ZZ9e86LDuC3j819ftoF/aNkqMxv4+y+cJBp+hJ mHoLXVq4B2qB1u1klrOFL74FKFcFmtTQ/qHfsebyXq0vcfobtUa5t6ZRUaaeJl4a nlQdCbEgI71zn6asOl0YlwQ9ZQ/+XwPLiDVs0swSUAKfkSBtYYpG23u/2F3WXN6G C21kMQ9WYC4UuZtC336j56HXgN0jo0xtsT/JR0jbdKHBRw== -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:30 2025 by rpki-client