$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Fi0sLrrctjNiNg9Z7xsbR0DeQU.roa File: 2Fi0sLrrctjNiNg9Z7xsbR0DeQU.roa (raw, json) Hash identifier: IwclzIjh/qdwcNuVUthGs7hKdEdOcyqmMMi6dOEELhI= Subject key identifier: D8:58:B4:B0:BA:EB:72:D8:CD:88:D8:3D:67:BC:6C:6D:1D:03:79:05 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 168D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Fi0sLrrctjNiNg9Z7xsbR0DeQU.roa Signing time: Mon 26 Aug 2024 05:22:19 +0000 ROA not before: Mon 26 Aug 2024 05:22:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.204.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5773 (0x168d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D858B4B0BAEB72D8CD88D83D67BC6C6D1D037905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:31:78:5a:b4:16:7d:34:f8:be:8b:f6:d0:6c: 05:fb:5b:12:f9:66:af:f8:fe:cb:fe:30:53:29:5d: 61:5b:7d:f9:be:9e:21:ab:f2:17:d7:9b:38:c3:c8: 89:b7:bc:cd:74:42:a2:a2:7b:3e:39:f9:fe:63:6b: 0c:42:ed:eb:e7:48:f9:ad:d9:a9:14:55:5f:71:bf: 9d:7b:7e:17:a8:95:15:8f:36:47:fe:da:d1:74:6a: 7f:8f:a7:f8:4b:27:40:e1:08:eb:17:33:e6:86:b3: 7b:bd:bf:d0:f5:e6:e3:19:56:7b:3e:71:21:c8:a2: 94:61:35:a5:c7:54:a6:8d:60:5d:ce:ef:7c:de:9a: ed:3d:f6:43:04:6c:ab:29:25:b8:52:2d:f0:ec:f7: 74:69:e3:ab:a1:e1:69:d4:62:2a:f8:6e:8b:8a:a6: 42:8c:40:49:a3:6c:a0:38:0f:ce:31:6b:a6:d7:15: 79:3d:13:d6:21:5a:2d:27:67:13:d0:e2:a4:87:c1: c6:4c:24:61:78:2c:5e:4d:ca:9b:c1:09:f9:93:0e: a7:84:38:19:a3:ad:9b:00:a0:83:be:96:5b:f3:a8: 59:b8:63:72:06:c8:02:fa:e5:87:d0:8f:d1:55:c2: 9a:b4:e9:d4:05:7d:a1:c8:ff:13:ea:2c:e3:78:b0: bf:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:58:B4:B0:BA:EB:72:D8:CD:88:D8:3D:67:BC:6C:6D:1D:03:79:05 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/2Fi0sLrrctjNiNg9Z7xsbR0DeQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.204.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1a:a0:73:2f:fb:f0:f2:55:5d:58:b7:61:fb:d3:ae:cc:37:d2: 2f:86:3c:56:f5:bb:b4:39:06:6a:91:a0:3d:b6:4b:b7:71:3c: 66:bd:98:b2:54:65:d3:93:77:8c:7f:42:8a:ba:bb:f7:5b:11: bd:50:a6:e9:a4:14:16:5f:54:bf:b9:ee:03:ba:fd:28:88:ba: ca:7c:52:6a:5c:49:e5:0e:96:bf:8e:87:f3:3b:fb:d1:e4:a9: cc:43:05:a7:15:92:bb:9d:e1:18:68:92:6e:be:8b:39:a9:83: 51:b9:46:4d:35:b4:4c:e9:69:b7:d5:2e:54:5e:ac:77:ed:17: ed:7c:d0:9f:b9:c9:1c:2d:ba:c0:7c:ce:28:b1:f3:05:f3:f7: b0:d7:09:7e:ec:a5:31:8b:91:3e:ff:84:34:77:3f:fb:b2:5c: 7f:7b:15:d9:4d:db:5c:6d:05:cf:bd:67:08:32:37:b4:82:75: 2f:ec:52:38:a5:95:a7:4f:ee:48:57:8c:9a:b2:3d:40:5e:2e: 39:8d:13:2a:e9:3b:9c:77:8b:5f:80:82:b2:ae:ca:f6:95:a2: 0a:79:e9:41:76:9b:15:8c:d6:d5:55:9e:a1:78:49:f3:53:dc: 3d:b4:90:41:bd:0b:56:a2:25:cb:5f:d7:29:9c:65:0a:6f:9d: 9b:15:1c:8e -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFo0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4NThCNEIwQkFFQjcy RDhDRDg4RDgzRDY3QkM2QzZEMUQwMzc5MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTMXhatBZ9NPi+i/bQbAX7WxL5Zq/4/sv+MFMpXWFbffm+niGr 8hfXmzjDyIm3vM10QqKiez45+f5jawxC7evnSPmt2akUVV9xv517fheolRWPNkf+ 2tF0an+Pp/hLJ0DhCOsXM+aGs3u9v9D15uMZVns+cSHIopRhNaXHVKaNYF3O73ze mu099kMEbKspJbhSLfDs93Rp46uh4WnUYir4bouKpkKMQEmjbKA4D84xa6bXFXk9 E9YhWi0nZxPQ4qSHwcZMJGF4LF5NypvBCfmTDqeEOBmjrZsAoIO+llvzqFm4Y3IG yAL65YfQj9FVwpq06dQFfaHI/xPqLON4sL93AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU2Fi0sLrrctjNiNg9Z7xsbR0DeQUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMkZpMHNMcnJjdGpOaU5nOVo3eHNi UjBEZVFVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXvMMA0G CSqGSIb3DQEBCwUAA4IBAQAaoHMv+/DyVV1Yt2H7067MN9IvhjxW9bu0OQZqkaA9 tku3cTxmvZiyVGXTk3eMf0KKurv3WxG9UKbppBQWX1S/ue4Duv0oiLrKfFJqXEnl Dpa/jofzO/vR5KnMQwWnFZK7neEYaJJuvos5qYNRuUZNNbRM6Wm31S5UXqx37Rft fNCfuckcLbrAfM4osfMF8/ew1wl+7KUxi5E+/4Q0dz/7slx/exXZTdtcbQXPvWcI Mje0gnUv7FI4pZWnT+5IV4yasj1AXi45jRMq6Tucd4tfgIKyrsr2laIKeelBdpsV jNbVVZ6heEnzU9w9tJBBvQtWoiXLX9cpnGUKb52bFRyO -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org