$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ztENAdDB8F48uI9tw16s3Y_bTBw.roa File: ztENAdDB8F48uI9tw16s3Y_bTBw.roa (raw, json) Hash identifier: a6kAAiKJzm6k7CnIC9pcZzzniV+VD297sp93a9TWzf8= Subject key identifier: CE:D1:0D:01:D0:C1:F0:5E:3C:B8:8F:6D:C3:5E:AC:DD:8F:DB:4C:1C Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 184C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ztENAdDB8F48uI9tw16s3Y_bTBw.roa Signing time: Mon 10 Feb 2025 14:07:47 +0000 ROA not before: Mon 10 Feb 2025 14:07:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 218.210.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6220 (0x184c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:47 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CED10D01D0C1F05E3CB88F6DC35EACDD8FDB4C1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a1:69:1a:90:13:92:73:b3:2a:0a:c8:e5:6f: a7:14:3d:0c:b7:e6:98:b6:cf:cb:e9:dd:7e:b5:69: 64:df:92:70:5d:2b:93:1a:95:48:f0:cc:b9:0c:8d: 29:f6:8e:96:7d:f3:38:ac:30:5c:3f:1d:c4:80:c2: 1f:1e:af:6e:e4:e4:4c:0f:16:90:d6:e2:ea:b4:55: df:f9:24:07:d5:97:65:b6:6a:08:b4:38:b1:68:c7: 6e:a1:43:dd:a6:47:24:7e:16:15:81:f3:08:f3:d6: c9:1d:01:5d:f2:fd:44:42:21:3e:e0:cc:3e:84:be: 98:35:ec:40:22:9c:44:97:3c:58:61:11:01:13:6f: fb:99:e8:d9:ac:cb:69:3e:57:47:4f:9d:ce:8d:e8: f7:77:ca:54:57:ee:e1:67:ff:cd:42:a2:5d:79:31: c0:0b:bc:d7:72:42:1f:93:5d:06:1e:8b:97:7b:84: de:a6:07:c7:4f:af:98:33:2e:f6:6a:7c:57:55:b6: 12:38:03:17:70:39:fd:45:90:ad:15:d9:db:69:3e: 5e:4f:f8:93:41:52:b1:b7:5c:0a:1f:38:ac:c9:22: 0c:c0:44:00:eb:7b:5a:5b:2c:0a:ed:28:9c:57:43: 65:e0:3b:d5:d5:1c:51:83:6d:42:a5:64:aa:0d:63: 10:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:D1:0D:01:D0:C1:F0:5E:3C:B8:8F:6D:C3:5E:AC:DD:8F:DB:4C:1C X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ztENAdDB8F48uI9tw16s3Y_bTBw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.32.0/20 Signature Algorithm: sha256WithRSAEncryption 56:34:7b:12:ff:c4:84:44:a9:9c:9c:7e:e1:80:ec:52:f3:63: 4f:9b:30:d4:0e:c6:e5:8b:ee:04:f5:10:ba:30:c3:9c:95:87: f4:39:3e:64:da:ea:fe:14:9b:81:3d:f9:3b:7d:0d:79:b4:a1: 11:e4:88:ae:33:b1:80:e8:fe:e5:ee:19:c9:fb:95:73:6c:36: 8f:d6:54:85:c5:30:71:17:5c:5b:31:26:0b:8f:2d:5f:3d:f0: 21:e9:2c:28:60:fc:81:8e:b9:d7:36:d5:3c:42:b7:50:f6:2a: f3:ba:eb:b5:a1:e6:4f:e2:be:b8:4c:3a:e4:65:df:4b:4b:25: b3:80:4d:06:a5:4f:39:d1:57:42:83:aa:c0:3e:55:4c:de:f6: e5:21:d6:62:c4:d0:a1:b9:f3:db:22:f3:b1:74:65:43:5d:0a: 72:e6:a4:ad:2d:b2:0a:eb:c3:b8:8a:d3:18:8a:af:fc:d6:59: b5:f0:9b:c2:ae:ab:89:d3:69:64:3f:5e:35:2a:e6:c5:23:20: df:f5:bc:9b:c9:85:af:ae:43:04:c9:64:b1:70:73:61:1a:8a: 95:68:34:0d:11:80:27:47:c6:e6:fd:ec:a5:5f:38:c9:a3:36: a3:e1:3c:34:4c:4e:2e:64:46:b5:88:c9:a7:f9:2c:e1:14:ec: da:45:8f:7b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENFRDEwRDAxRDBDMUYw NUUzQ0I4OEY2REMzNUVBQ0REOEZEQjRDMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfoWkakBOSc7MqCsjlb6cUPQy35pi2z8vp3X61aWTfknBdK5Ma lUjwzLkMjSn2jpZ98zisMFw/HcSAwh8er27k5EwPFpDW4uq0Vd/5JAfVl2W2agi0 OLFox26hQ92mRyR+FhWB8wjz1skdAV3y/URCIT7gzD6Evpg17EAinESXPFhhEQET b/uZ6Nmsy2k+V0dPnc6N6Pd3ylRX7uFn/81Col15McALvNdyQh+TXQYei5d7hN6m B8dPr5gzLvZqfFdVthI4AxdwOf1FkK0V2dtpPl5P+JNBUrG3XAofOKzJIgzARADr e1pbLArtKJxXQ2XgO9XVHFGDbUKlZKoNYxAlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUztENAdDB8F48uI9tw16s3Y/bTBwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvenRFTkFkREI4RjQ4dUk5dHcxNnMz WV9iVEJ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBNrSIDAN BgkqhkiG9w0BAQsFAAOCAQEAVjR7Ev/EhESpnJx+4YDsUvNjT5sw1A7G5YvuBPUQ ujDDnJWH9Dk+ZNrq/hSbgT35O30NebShEeSIrjOxgOj+5e4ZyfuVc2w2j9ZUhcUw cRdcWzEmC48tXz3wIeksKGD8gY651zbVPEK3UPYq87rrtaHmT+K+uEw65GXfS0sl s4BNBqVPOdFXQoOqwD5VTN725SHWYsTQobnz2yLzsXRlQ10KcuakrS2yCuvDuIrT GIqv/NZZtfCbwq6ridNpZD9eNSrmxSMg3/W8m8mFr65DBMlksXBzYRqKlWg0DRGA J0fG5v3spV84yaM2o+E8NExOLmRGtYjJp/ks4RTs2kWPew== -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:20 2025 by rpki-client