$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jUrZVVsbrZ_jLEZoKWIVUb229uU.roa File: jUrZVVsbrZ_jLEZoKWIVUb229uU.roa (raw, json) Hash identifier: be28dN5w9cc7t/L088EwnCaod6iDQ92Tst52jHZE5D0= Subject key identifier: 8D:4A:D9:55:5B:1B:AD:9F:E3:2C:46:68:29:62:15:51:BD:B6:F6:E5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1773 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jUrZVVsbrZ_jLEZoKWIVUb229uU.roa Signing time: Mon 10 Feb 2025 14:06:55 +0000 ROA not before: Mon 10 Feb 2025 14:06:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.147.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Apr 2025 02:36:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6003 (0x1773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:06:55 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D4AD9555B1BAD9FE32C466829621551BDB6F6E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:32:49:9e:98:e0:ea:d0:0e:cf:5c:2c:24:fb: 26:a3:df:a0:ab:5c:a3:16:8f:90:db:23:b7:d4:19: 14:11:bd:64:9f:a3:27:ad:4c:17:6b:4e:b1:29:be: d0:f0:1b:a4:c5:c5:65:b0:41:3e:76:6a:c1:0c:6b: 62:89:9e:7b:cd:9f:53:ae:fd:7a:dc:b4:ba:5b:cc: a2:80:f2:68:4a:9f:d2:59:fb:bc:c1:ec:0f:d7:77: c8:fd:a2:f6:3a:47:76:65:75:66:51:c9:fb:fd:8f: ae:7f:1d:9f:7c:0e:04:15:5e:62:c2:5a:68:61:ab: 15:38:41:49:7c:4a:c3:38:13:2b:42:87:b9:ba:67: 1a:ee:35:9d:1c:24:3b:29:6d:eb:4b:5f:aa:5a:24: 39:66:30:bd:02:d3:2f:9c:c1:ad:37:ad:d5:c8:2f: b7:e1:99:73:13:e9:a7:59:58:cb:b3:c6:09:99:fe: 7b:b3:fd:ea:28:01:b5:89:bb:a9:9e:3e:42:1e:55: 5d:7f:a9:c2:fd:8d:e1:d4:93:81:60:07:34:cd:a8: dd:11:cc:0a:90:38:99:a2:a7:d5:83:11:27:f4:66: 7f:77:0c:11:ea:b6:eb:a1:65:9f:a2:e8:f1:c3:ca: 5e:41:8c:d9:c5:3d:10:7c:53:48:3e:ee:bf:63:ae: 7f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4A:D9:55:5B:1B:AD:9F:E3:2C:46:68:29:62:15:51:BD:B6:F6:E5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jUrZVVsbrZ_jLEZoKWIVUb229uU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.128.0/19 Signature Algorithm: sha256WithRSAEncryption 71:84:8f:f4:7c:ad:4a:19:79:95:cf:05:bf:25:2f:66:7c:9f: 8c:4b:21:4f:df:6e:ca:c6:47:89:6b:a5:8d:45:02:f9:50:28: 83:c7:92:0a:93:66:71:7c:05:eb:b7:03:6a:be:66:42:46:10: 6d:cf:19:02:bc:db:15:4c:d3:a3:a6:b7:e5:23:9a:bf:25:c3: 17:3e:d3:71:c6:a6:a6:c0:96:6b:29:25:13:dc:bb:66:f5:f2: d7:50:76:84:e0:b0:cb:1a:45:22:a4:c3:74:b4:1b:f1:67:54: ac:55:93:61:a0:5b:02:2a:50:fb:89:85:83:b8:17:51:18:38: d7:b2:56:73:cf:c5:2b:ec:d1:03:ef:fd:80:03:54:cf:c4:41: 31:c7:8d:ae:f9:8f:71:a6:ba:58:5e:1b:1b:9b:1a:2e:bd:7b: 50:6e:04:81:7b:42:1e:d2:d2:e6:0c:31:55:7d:ed:93:f2:ea: 57:ca:dd:c3:42:01:ff:13:3b:1b:f5:60:e0:b9:f9:1f:27:f5: 2c:b0:8d:99:c6:d2:50:91:db:c8:d1:10:d3:15:98:51:a5:74: 3b:ff:67:61:d7:8d:3b:5a:5c:a1:b2:61:b4:16:41:71:19:e6: cb:5c:06:20:42:aa:fa:b2:55:fc:8e:f9:d4:a5:63:29:e3:e7: 2f:e7:b3:dc -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICF3MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA2NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhENEFEOTU1NUIxQkFE OUZFMzJDNDY2ODI5NjIxNTUxQkRCNkY2RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrMkmemODq0A7PXCwk+yaj36CrXKMWj5DbI7fUGRQRvWSfoyet TBdrTrEpvtDwG6TFxWWwQT52asEMa2KJnnvNn1Ou/XrctLpbzKKA8mhKn9JZ+7zB 7A/Xd8j9ovY6R3ZldWZRyfv9j65/HZ98DgQVXmLCWmhhqxU4QUl8SsM4EytCh7m6 ZxruNZ0cJDspbetLX6paJDlmML0C0y+cwa03rdXIL7fhmXMT6adZWMuzxgmZ/nuz /eooAbWJu6mePkIeVV1/qcL9jeHUk4FgBzTNqN0RzAqQOJmip9WDESf0Zn93DBHq tuuhZZ+i6PHDyl5BjNnFPRB8U0g+7r9jrn+XAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUjUrZVVsbrZ/jLEZoKWIVUb229uUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvalVyWlZWc2JyWl9qTEVab0tXSVZV YjIyOXVVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXqTgDAN BgkqhkiG9w0BAQsFAAOCAQEAcYSP9HytShl5lc8FvyUvZnyfjEshT99uysZHiWul jUUC+VAog8eSCpNmcXwF67cDar5mQkYQbc8ZArzbFUzTo6a35SOavyXDFz7Tccam psCWayklE9y7ZvXy11B2hOCwyxpFIqTDdLQb8WdUrFWTYaBbAipQ+4mFg7gXURg4 17JWc8/FK+zRA+/9gANUz8RBMceNrvmPcaa6WF4bG5saLr17UG4EgXtCHtLS5gwx VX3tk/LqV8rdw0IB/xM7G/Vg4Ln5Hyf1LLCNmcbSUJHbyNEQ0xWYUaV0O/9nYdeN O1pcobJhtBZBcRnmy1wGIEKq+rJV/I751KVjKePnL+ez3A== -----END CERTIFICATE-----Generated at Sat Apr 5 23:14:27 2025 by rpki-client