$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCCC/un6Pus065CeqU9TZrHdFhzxImx8.roa File: un6Pus065CeqU9TZrHdFhzxImx8.roa (raw, json) Hash identifier: P3zw/89rKqPSjmuK98nJ64se4K5SFdckqE8h+9u1Qzs= Subject key identifier: BA:7E:8F:BA:CD:3A:E4:27:AA:53:D4:D9:AC:77:45:87:3C:48:9B:1F Certificate issuer: /CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Certificate serial: 05 Authority key identifier: 07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/un6Pus065CeqU9TZrHdFhzxImx8.roa Signing time: Tue 12 Mar 2024 08:34:59 +0000 ROA not before: Tue 12 Mar 2024 08:34:59 +0000 ROA not after: Wed 26 Feb 2025 15:30:21 +0000 asID: 150772 IP address blocks: 157.20.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Validity Not Before: Mar 12 08:34:59 2024 GMT Not After : Feb 26 15:30:21 2025 GMT Subject: CN=BA7E8FBACD3AE427AA53D4D9AC7745873C489B1F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9c:68:1f:ec:07:2a:56:4a:e1:79:48:d7:97: d2:29:a9:6d:10:19:6f:69:80:c8:51:d7:8e:5a:a0: 79:45:44:a0:d1:ea:7f:91:b0:1f:3f:49:02:f2:e8: db:49:de:79:63:31:20:72:1b:91:53:85:0d:76:73: b9:90:61:eb:fa:10:76:3b:00:17:bb:c0:b4:39:39: 00:6e:ff:cc:0c:2e:a7:0f:42:43:dc:8e:73:92:2d: 40:71:ee:de:54:45:12:4a:60:57:5f:20:2d:79:7c: 0a:08:cd:cb:db:d0:32:9a:04:51:77:43:64:78:7f: b9:1b:b8:8e:8b:af:e4:a0:26:2a:a4:4c:05:9c:36: 48:3b:8f:5b:3b:b2:61:f3:b9:e0:f4:8d:45:95:b9: 5a:4b:77:ee:13:b4:34:70:97:69:a1:b7:46:0c:b7: 46:c7:f7:3f:79:50:d5:a6:0a:d3:ba:12:04:5b:61: 7c:a8:d9:da:1e:6a:23:a5:85:8f:a3:ea:d1:26:02: 03:dc:a1:85:2c:33:e0:28:61:15:de:d3:aa:31:94: b4:74:c0:5c:51:68:81:9c:47:e0:5a:1c:3b:29:4c: cd:0e:3d:3a:70:71:d1:86:70:c3:79:07:4d:5d:9f: b0:db:23:3f:32:5b:6b:0d:1f:0d:e9:98:ff:90:fa: c4:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7E:8F:BA:CD:3A:E4:27:AA:53:D4:D9:AC:77:45:87:3C:48:9B:1F X509v3 Authority Key Identifier: keyid:07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/un6Pus065CeqU9TZrHdFhzxImx8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.106.0/24 Signature Algorithm: sha256WithRSAEncryption 56:e7:e9:47:25:27:3b:1d:61:87:c7:4a:96:99:02:a0:a6:73: ec:d7:6e:84:91:03:98:22:ab:77:b0:57:0e:a1:87:5b:c8:1b: db:c0:87:b0:57:26:3e:54:3a:53:1d:47:80:8e:a0:b7:75:ff: f0:50:30:8a:fe:a9:c5:8d:ce:df:29:6a:ce:d1:65:c5:67:52: 6d:3f:bf:e5:74:5c:8d:55:a2:29:78:d9:ce:8c:61:ab:4a:06: c1:29:ae:26:09:a2:a4:41:af:2c:d5:14:91:e4:12:65:29:9d: 60:0d:43:58:ef:5d:96:e5:d5:bb:3d:f1:7f:51:5a:bb:54:d5: c1:b5:b6:6f:e3:02:35:72:5f:b0:05:05:55:49:5e:f7:32:27: 08:31:46:a1:66:6d:c5:72:79:ab:43:a2:ed:f0:0f:c9:59:fc: 4d:30:77:78:30:d9:37:4f:50:dc:58:e8:f3:01:c2:7e:c2:57: 6f:d9:7c:a9:d2:50:a7:f5:ad:f8:de:ba:7b:ce:0d:05:f6:21: 55:0d:b9:3e:dd:60:02:a5:9e:55:f7:22:10:64:02:1d:04:8e: a1:b0:1a:40:2e:ec:c7:3e:a8:15:70:6b:85:c6:40:42:4b:2f: ae:1c:c2:cf:3d:1f:8c:ec:3c:e6:a0:cb:39:7e:1b:ce:78:4f: 1e:a9:3c:e3 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwN0Uz NkEzRDIxOUE4QUZDODRGODhCMzA1NTNFNjM4Q0U2QzJDRUNFMB4XDTI0MDMxMjA4 MzQ1OVoXDTI1MDIyNjE1MzAyMVowMzExMC8GA1UEAxMoQkE3RThGQkFDRDNBRTQy N0FBNTNENEQ5QUM3NzQ1ODczQzQ4OUIxRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM6caB/sBypWSuF5SNeX0impbRAZb2mAyFHXjlqgeUVEoNHqf5Gw Hz9JAvLo20neeWMxIHIbkVOFDXZzuZBh6/oQdjsAF7vAtDk5AG7/zAwupw9CQ9yO c5ItQHHu3lRFEkpgV18gLXl8CgjNy9vQMpoEUXdDZHh/uRu4jouv5KAmKqRMBZw2 SDuPWzuyYfO54PSNRZW5Wkt37hO0NHCXaaG3Rgy3Rsf3P3lQ1aYK07oSBFthfKjZ 2h5qI6WFj6Pq0SYCA9yhhSwz4ChhFd7TqjGUtHTAXFFogZxH4FocOylMzQ49OnBx 0YZww3kHTV2fsNsjPzJbaw0fDemY/5D6xHsCAwEAAaOCAeowggHmMB0GA1UdDgQW BBS6fo+6zTrkJ6pT1Nmsd0WHPEibHzAfBgNVHSMEGDAWgBQH42o9IZqK/IT4izBV PmOM5sLOzjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ0NDL0It TnFQU0dhaXZ5RS1Jc3dWVDVqak9iQ3pzNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Qi1OcVBTR2FpdnlFLUlzd1ZUNWpqT2JDenM0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy91bjZQdXMwNjVDZXFVOVRackhkRmh6 eElteDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRRqMA0G CSqGSIb3DQEBCwUAA4IBAQBW5+lHJSc7HWGHx0qWmQKgpnPs126EkQOYIqt3sFcO oYdbyBvbwIewVyY+VDpTHUeAjqC3df/wUDCK/qnFjc7fKWrO0WXFZ1JtP7/ldFyN VaIpeNnOjGGrSgbBKa4mCaKkQa8s1RSR5BJlKZ1gDUNY712W5dW7PfF/UVq7VNXB tbZv4wI1cl+wBQVVSV73MicIMUahZm3FcnmrQ6Lt8A/JWfxNMHd4MNk3T1DcWOjz AcJ+wldv2Xyp0lCn9a343rp7zg0F9iFVDbk+3WACpZ5V9yIQZAIdBI6hsBpALuzH PqgVcGuFxkBCSy+uHMLPPR+M7DzmoMs5fhvOeE8eqTzj -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org