$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tJHKHt72Ovg_l-3Ky70LJF3boJ0.roa File: tJHKHt72Ovg_l-3Ky70LJF3boJ0.roa (raw, json) Hash identifier: 6SO7gbc3wltqzkDGQ9y7t5xB0SGsupr57XJtj8aIZ7Q= Subject key identifier: B4:91:CA:1E:DE:F6:3A:F8:3F:97:ED:CA:CB:BD:0B:24:5D:DB:A0:9D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 178A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tJHKHt72Ovg_l-3Ky70LJF3boJ0.roa Signing time: Mon 10 Feb 2025 14:07:00 +0000 ROA not before: Mon 10 Feb 2025 14:07:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 106.105.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6026 (0x178a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:00 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B491CA1EDEF63AF83F97EDCACBBD0B245DDBA09D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5b:c3:4e:37:0b:a3:a3:df:21:ad:10:68:67: fc:91:9a:75:ee:3b:6f:14:5b:2e:c9:ac:33:8e:60: 7a:99:ed:2d:2d:8e:00:c0:30:ea:aa:fd:47:23:a0: 20:49:f3:04:6a:ea:37:01:b7:d8:09:3c:a7:da:f8: 4b:c9:62:e4:67:e9:24:22:cd:37:eb:dd:54:71:fd: 7e:f7:a0:2c:77:75:25:2f:f1:52:cb:2e:94:9a:90: 21:9a:ba:82:a0:6f:9d:ec:09:47:16:64:ae:bd:6a: 3f:74:90:a8:90:9b:b1:76:3b:8d:97:70:70:c0:cb: 5d:f8:8b:d5:0f:90:3c:8b:62:cd:52:94:d0:0b:dd: b6:f5:03:92:cc:14:23:90:b9:67:81:af:40:80:a2: a5:15:73:84:cd:af:35:fb:77:bf:7e:96:20:69:ca: 6c:6a:7c:4b:39:37:a1:cc:f7:39:c8:3e:63:7c:35: 77:8e:fc:22:6a:99:7b:8c:1d:af:05:2a:73:05:19: 35:e0:c6:5f:81:18:25:9c:ae:e1:ec:60:17:97:98: 52:e6:e2:ca:b6:88:d7:d8:c7:1a:98:ab:e7:fd:36: 32:83:91:2d:58:75:03:37:aa:ee:68:ba:38:20:15: 98:69:ab:23:d0:1b:8c:cc:be:f4:40:4f:d6:47:ab: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:91:CA:1E:DE:F6:3A:F8:3F:97:ED:CA:CB:BD:0B:24:5D:DB:A0:9D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tJHKHt72Ovg_l-3Ky70LJF3boJ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.250.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:1a:7e:7b:9a:b0:c9:ef:2c:99:de:8f:70:73:99:19:95:c3: ff:e1:10:63:1f:5d:35:e2:34:bd:7e:2f:a5:ab:a6:b5:4d:08: e9:cc:cb:ae:c0:e9:ca:0f:b5:c0:53:5a:5b:ce:79:86:46:8c: 7e:6f:1d:72:e9:3f:e0:30:1b:2d:cd:65:45:78:e6:48:c7:15: 10:7a:a1:37:95:e2:e2:4a:8b:67:6f:60:c9:a5:ac:f6:41:b8: c1:f5:de:e3:60:99:91:0c:07:e7:dd:cc:a0:59:4a:1b:f2:3b: dc:c3:6a:8e:22:e9:31:a6:41:4d:64:40:95:94:b4:41:03:74: 4b:02:09:d3:19:5b:10:89:f9:01:81:6b:1e:40:f7:cd:56:b4: 20:bb:fd:fe:10:eb:2f:f7:bf:12:f8:64:e0:0f:31:aa:f8:cd: 7b:92:aa:9b:a0:69:fe:3e:c9:04:7f:e5:e7:34:85:e0:a7:89: fc:92:a7:2a:18:2f:11:40:df:0c:d1:9b:d6:5c:02:a8:80:ee: cf:9b:e4:90:3f:89:68:89:0f:19:af:db:ed:f5:c5:36:57:3e: dd:d8:4e:25:2b:06:09:d1:06:27:ca:f3:b2:75:1a:5a:71:0d: 15:77:64:0a:a9:2f:f9:89:6e:88:b6:05:c2:7e:07:29:c0:0f: 38:64:b7:84 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICF4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0OTFDQTFFREVGNjNB RjgzRjk3RURDQUNCQkQwQjI0NUREQkEwOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7W8NONwujo98hrRBoZ/yRmnXuO28UWy7JrDOOYHqZ7S0tjgDA MOqq/UcjoCBJ8wRq6jcBt9gJPKfa+EvJYuRn6SQizTfr3VRx/X73oCx3dSUv8VLL LpSakCGauoKgb53sCUcWZK69aj90kKiQm7F2O42XcHDAy134i9UPkDyLYs1SlNAL 3bb1A5LMFCOQuWeBr0CAoqUVc4TNrzX7d79+liBpymxqfEs5N6HM9znIPmN8NXeO /CJqmXuMHa8FKnMFGTXgxl+BGCWcruHsYBeXmFLm4sq2iNfYxxqYq+f9NjKDkS1Y dQM3qu5oujggFZhpqyPQG4zMvvRAT9ZHq5XPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUtJHKHt72Ovg/l+3Ky70LJF3boJ0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEpIS0h0NzJPdmdfbC0zS3k3MExK RjNib0owLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWpp+jAN BgkqhkiG9w0BAQsFAAOCAQEAnBp+e5qwye8smd6PcHOZGZXD/+EQYx9dNeI0vX4v paumtU0I6czLrsDpyg+1wFNaW855hkaMfm8dcuk/4DAbLc1lRXjmSMcVEHqhN5Xi 4kqLZ29gyaWs9kG4wfXe42CZkQwH593MoFlKG/I73MNqjiLpMaZBTWRAlZS0QQN0 SwIJ0xlbEIn5AYFrHkD3zVa0ILv9/hDrL/e/Evhk4A8xqvjNe5Kqm6Bp/j7JBH/l 5zSF4KeJ/JKnKhgvEUDfDNGb1lwCqIDuz5vkkD+JaIkPGa/b7fXFNlc+3dhOJSsG CdEGJ8rzsnUaWnENFXdkCqkv+YluiLYFwn4HKcAPOGS3hA== -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:20 2025 by rpki-client