$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/i_LX8QbUDuUjIaTKOJ5GJE3eywk.roa File: i_LX8QbUDuUjIaTKOJ5GJE3eywk.roa (raw, json) Hash identifier: yqmmA4zdXqw9aRBGOvDvXu+CReL2vj+wYIFdVF1M+aw= Subject key identifier: 8B:F2:D7:F1:06:D4:0E:E5:23:21:A4:CA:38:9E:46:24:4D:DE:CB:09 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1833 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i_LX8QbUDuUjIaTKOJ5GJE3eywk.roa Signing time: Mon 10 Feb 2025 14:07:40 +0000 ROA not before: Mon 10 Feb 2025 14:07:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131586 IP address blocks: 106.106.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6195 (0x1833) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:40 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8BF2D7F106D40EE52321A4CA389E46244DDECB09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:d3:fa:bd:74:b7:a5:8e:12:23:c2:c9:7c:21: 23:21:0d:84:0d:3a:b4:81:dd:65:1f:6a:30:c8:5c: 32:3a:66:ce:10:26:b0:48:9a:fa:6a:f9:27:bf:ca: 0c:5b:99:40:b9:2d:92:9e:5a:83:6a:01:85:5b:c8: 5c:38:4a:e7:49:24:78:5a:6e:9e:0f:c1:62:ce:12: c4:2f:7a:ad:c4:67:46:7e:31:65:d6:b4:bf:66:7b: af:80:89:3e:c2:27:0e:87:92:5a:78:11:e9:87:26: 76:02:78:4c:c6:47:09:88:40:c4:5a:98:4e:7c:70: 45:d3:db:dd:bd:bd:6e:a8:bb:9d:5a:90:41:ad:56: ed:d8:c6:c0:dc:8b:18:b7:01:06:c5:c3:21:13:98: 3c:75:59:d3:bd:45:36:8f:a0:25:f5:46:c6:15:fd: 7f:7a:a0:0e:04:79:1c:e2:d2:cf:8e:2b:f9:68:4c: b9:5a:39:96:02:f2:f2:74:ea:22:9c:27:47:8f:ee: 31:e1:f2:a4:32:27:5d:e3:6e:87:e5:a4:83:e0:e5: 39:d9:cb:94:1b:81:44:97:d1:c0:48:64:29:ef:29: 95:6a:eb:aa:4a:37:77:fb:d2:bd:a2:4a:66:aa:39: 75:b7:fa:a5:2a:7e:23:1c:b7:73:87:5d:b5:cd:fb: 53:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F2:D7:F1:06:D4:0E:E5:23:21:A4:CA:38:9E:46:24:4D:DE:CB:09 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/i_LX8QbUDuUjIaTKOJ5GJE3eywk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.106.0.0/16 Signature Algorithm: sha256WithRSAEncryption 86:09:2a:05:bc:f7:6e:51:7f:04:df:80:ca:a4:41:3c:c5:6a: e8:2e:79:1b:40:d4:48:0f:f8:8a:bc:49:d7:76:5c:ab:4e:aa: d2:b6:7b:cd:a2:a4:66:bb:ed:cd:3b:2b:0c:da:b8:59:f6:e9: ce:74:4c:2c:10:b4:22:ca:96:39:ce:f8:d9:b6:d6:65:36:c3: 8c:58:e2:35:ef:a7:04:43:2d:33:d6:58:b3:a0:29:21:49:fa: c1:9e:89:d1:9c:20:b7:99:e9:b1:56:3a:56:0b:23:98:b6:56: 78:8e:99:c7:37:74:18:7b:d9:05:2f:16:c8:0a:e5:35:3a:f7: 99:64:69:89:df:ef:9c:44:1b:2d:99:a9:28:5e:9a:72:b6:6d: 9d:70:92:47:12:29:9a:44:19:4a:e7:25:00:92:a8:f1:b3:7c: 8c:76:7f:30:99:ef:7a:8a:d6:7e:ad:cb:32:08:72:ac:c8:03: 9e:98:02:76:0d:31:f7:c8:f7:d3:2a:a2:06:47:3d:56:31:cc: 5e:5b:50:5f:08:c5:98:ca:a5:d1:d8:f2:b3:44:66:b9:33:0d: 2c:e8:e0:f9:f0:33:03:f7:7e:e8:5c:ce:b3:67:ec:ef:3b:70: 9b:59:46:b9:63:34:58:16:59:4b:ae:b0:c0:68:99:52:2f:66: 14:f7:e6:8c -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICGDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCRjJEN0YxMDZENDBF RTUyMzIxQTRDQTM4OUU0NjI0NERERUNCMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq0/q9dLeljhIjwsl8ISMhDYQNOrSB3WUfajDIXDI6Zs4QJrBI mvpq+Se/ygxbmUC5LZKeWoNqAYVbyFw4SudJJHhabp4PwWLOEsQveq3EZ0Z+MWXW tL9me6+AiT7CJw6Hklp4EemHJnYCeEzGRwmIQMRamE58cEXT2929vW6ou51akEGt Vu3YxsDcixi3AQbFwyETmDx1WdO9RTaPoCX1RsYV/X96oA4EeRzi0s+OK/loTLla OZYC8vJ06iKcJ0eP7jHh8qQyJ13jboflpIPg5TnZy5QbgUSX0cBIZCnvKZVq66pK N3f70r2iSmaqOXW3+qUqfiMct3OHXbXN+1ONAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUi/LX8QbUDuUjIaTKOJ5GJE3eywkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvaV9MWDhRYlVEdVVqSWFUS09KNUdK RTNleXdrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAGpqMA0G CSqGSIb3DQEBCwUAA4IBAQCGCSoFvPduUX8E34DKpEE8xWroLnkbQNRID/iKvEnX dlyrTqrStnvNoqRmu+3NOysM2rhZ9unOdEwsELQiypY5zvjZttZlNsOMWOI176cE Qy0z1lizoCkhSfrBnonRnCC3memxVjpWCyOYtlZ4jpnHN3QYe9kFLxbICuU1OveZ ZGmJ3++cRBstmakoXppytm2dcJJHEimaRBlK5yUAkqjxs3yMdn8wme96itZ+rcsy CHKsyAOemAJ2DTH3yPfTKqIGRz1WMcxeW1BfCMWYyqXR2PKzRGa5Mw0s6OD58DMD 937oXM6zZ+zvO3CbWUa5YzRYFllLrrDAaJlSL2YU9+aM -----END CERTIFICATE-----Generated at Mon Apr 7 08:11:48 2025 by rpki-client