$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/s5KK_Adwsm0MdqluJjfOq5izbdI.roa File: s5KK_Adwsm0MdqluJjfOq5izbdI.roa (raw, json) Hash identifier: iwbs5lDbmYcssEAOYwzQyGlB0R5l/mK/NeJl440L67Q= Subject key identifier: B3:92:8A:FC:07:70:B2:6D:0C:76:A9:6E:26:37:CE:AB:98:B3:6D:D2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1872 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/s5KK_Adwsm0MdqluJjfOq5izbdI.roa Signing time: Mon 10 Feb 2025 14:07:57 +0000 ROA not before: Mon 10 Feb 2025 14:07:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.107.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6258 (0x1872) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:57 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B3928AFC0770B26D0C76A96E2637CEAB98B36DD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:23:28:88:d2:2e:86:c9:28:f7:8f:b3:d6:38: 08:59:a7:19:0a:1c:56:fd:fe:45:a1:15:74:44:0b: a3:c2:61:d1:26:07:8b:2e:2f:19:5a:1f:7f:4f:38: 5d:25:df:5b:1a:63:c6:88:be:b4:7d:fb:4b:70:83: bb:b6:9b:d2:4c:87:75:44:e1:4b:02:3e:17:68:76: 0f:cb:12:ba:9b:08:3c:cd:90:0b:07:26:9e:ac:67: 01:08:7b:da:22:ba:2a:aa:6f:17:01:91:34:a5:95: 4d:c3:ec:b4:a7:3f:48:0c:4d:74:e4:80:6d:0a:0a: d5:2b:a2:94:02:db:95:2e:09:0d:21:64:5a:fe:b9: c7:7d:b5:3c:fb:82:5d:96:70:1a:24:12:e5:63:91: 0f:c1:5a:53:27:a3:f4:ce:77:8b:b0:7b:7f:e9:86: 48:6b:34:0d:68:f9:ca:ce:48:82:28:b0:a5:01:d1: da:19:9b:a1:bd:67:41:00:45:ff:31:b4:bc:f9:a8: 11:b4:d2:84:0a:0a:ec:4f:84:49:ae:bd:c4:e4:59: c4:3d:30:ab:ca:84:37:87:d3:2c:e1:6e:72:24:b5: ab:a5:29:19:71:bf:0b:1f:13:0d:c4:d9:d2:52:6f: 6e:f7:d7:c4:0d:ab:d6:65:d1:a4:71:19:fc:d8:5b: 96:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:92:8A:FC:07:70:B2:6D:0C:76:A9:6E:26:37:CE:AB:98:B3:6D:D2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/s5KK_Adwsm0MdqluJjfOq5izbdI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.152.0/21 Signature Algorithm: sha256WithRSAEncryption 34:3b:49:54:8c:26:96:7e:28:78:9d:df:c4:ae:64:5f:0f:7c: e0:d0:cc:da:30:51:6a:db:e5:7c:c9:4a:c0:59:ef:a2:3f:6a: f8:6e:ad:ff:93:57:df:64:6f:d8:fb:96:29:ea:01:f0:d6:07: f9:10:b7:02:51:56:8e:e5:f0:07:5c:37:7a:55:d4:42:b6:bb: 8a:9c:e8:d7:84:ac:e5:1b:2b:35:64:fb:d9:89:4d:9f:48:13: 12:bf:f8:30:19:61:6f:f0:13:30:d7:b6:84:1e:66:cd:69:34: 83:83:2a:49:04:cd:c3:4f:51:36:f5:17:b6:48:35:cf:9c:e9: 7b:26:95:75:7b:d1:1b:fc:6e:6d:2d:81:07:45:98:02:c6:cf: 29:0b:bf:b1:02:c8:12:80:64:f9:97:76:f6:25:da:1c:01:38: 55:ee:10:fe:f8:2a:86:e6:f9:25:f4:cc:16:fb:13:73:f4:69: 2f:00:2a:79:d7:c7:5c:d1:02:c4:15:11:06:d4:90:70:e7:3d: 54:07:31:23:82:1d:00:b4:e4:0c:76:d2:32:66:5e:3c:da:9d: 24:d3:2a:7f:20:85:b0:9a:84:c3:17:86:78:45:97:7c:d9:db: 21:31:d0:c8:ed:2c:3b:d8:c1:cf:6b:12:b8:83:cb:60:a0:7b: e1:4c:93:6f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGHIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzOTI4QUZDMDc3MEIy NkQwQzc2QTk2RTI2MzdDRUFCOThCMzZERDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYIyiI0i6GySj3j7PWOAhZpxkKHFb9/kWhFXREC6PCYdEmB4su LxlaH39POF0l31saY8aIvrR9+0twg7u2m9JMh3VE4UsCPhdodg/LErqbCDzNkAsH Jp6sZwEIe9oiuiqqbxcBkTSllU3D7LSnP0gMTXTkgG0KCtUropQC25UuCQ0hZFr+ ucd9tTz7gl2WcBokEuVjkQ/BWlMno/TOd4uwe3/phkhrNA1o+crOSIIosKUB0doZ m6G9Z0EARf8xtLz5qBG00oQKCuxPhEmuvcTkWcQ9MKvKhDeH0yzhbnIktaulKRlx vwsfEw3E2dJSb27318QNq9Zl0aRxGfzYW5YhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUs5KK/Adwsm0MdqluJjfOq5izbdIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvczVLS19BZHdzbTBNZHFsdUpqZk9x NWl6YmRJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2prmDAN BgkqhkiG9w0BAQsFAAOCAQEANDtJVIwmln4oeJ3fxK5kXw984NDM2jBRatvlfMlK wFnvoj9q+G6t/5NX32Rv2PuWKeoB8NYH+RC3AlFWjuXwB1w3elXUQra7ipzo14Ss 5RsrNWT72YlNn0gTEr/4MBlhb/ATMNe2hB5mzWk0g4MqSQTNw09RNvUXtkg1z5zp eyaVdXvRG/xubS2BB0WYAsbPKQu/sQLIEoBk+Zd29iXaHAE4Ve4Q/vgqhub5JfTM FvsTc/RpLwAqedfHXNECxBURBtSQcOc9VAcxI4IdALTkDHbSMmZePNqdJNMqfyCF sJqEwxeGeEWXfNnbITHQyO0sO9jBz2sSuIPLYKB74UyTbw== -----END CERTIFICATE-----Generated at Mon Apr 7 08:12:09 2025 by rpki-client