$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/6PpsDOSz0pBLivTor_xMhNWhqzk.roa File: 6PpsDOSz0pBLivTor_xMhNWhqzk.roa (raw, json) Hash identifier: P2cc25Uha2CL65HlpfMMoUCNX31UYxhCALGE+Fb2vL0= Subject key identifier: E8:FA:6C:0C:E4:B3:D2:90:4B:8A:F4:E8:AF:FC:4C:84:D5:A1:AB:39 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1616 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6PpsDOSz0pBLivTor_xMhNWhqzk.roa Signing time: Mon 26 Aug 2024 05:21:45 +0000 ROA not before: Mon 26 Aug 2024 05:21:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.107.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5654 (0x1616) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E8FA6C0CE4B3D2904B8AF4E8AFFC4C84D5A1AB39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5a:a3:02:05:ae:ef:68:bd:f7:7b:4d:5a:00: 67:2b:9e:1d:8d:fc:83:5b:0a:e6:72:cb:32:9f:fc: d8:a6:2d:05:a3:6a:96:35:cd:56:e1:aa:0a:3a:af: 1e:81:28:19:4d:bd:33:68:99:5d:56:b2:36:3f:ac: 79:59:3c:81:ab:12:f9:e3:ef:4c:db:1e:e7:a3:db: a4:8b:dd:e6:f4:f2:20:f8:c4:a1:6e:55:c8:88:32: 28:99:4a:34:7d:f6:ff:05:3a:44:7e:5c:d6:89:bf: 52:86:9d:00:9e:af:3b:f3:1d:ad:b2:d8:d5:5c:9e: af:a1:73:ce:65:a8:42:82:78:55:15:58:68:7c:82: 11:26:bf:15:b6:0a:03:e3:9b:8b:f7:1a:57:5a:a9: e6:8e:b1:20:15:79:58:66:2a:44:84:64:09:f7:79: c0:ed:a2:a9:89:b0:5b:48:0f:af:01:ef:f2:6c:9b: 1f:fc:73:d2:b2:02:d7:8e:10:ed:8a:8c:4e:0c:bc: dc:9f:93:5c:31:a4:f2:df:79:d6:c5:6a:6a:4f:7e: c6:1a:dc:8b:82:4f:73:01:fd:7c:cb:8b:b7:bb:d3: e0:f6:61:0f:60:15:af:cb:7c:c9:58:db:57:27:f5: e1:af:b8:11:c7:03:56:f4:e0:c7:d3:22:d7:bd:8e: 61:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:FA:6C:0C:E4:B3:D2:90:4B:8A:F4:E8:AF:FC:4C:84:D5:A1:AB:39 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/6PpsDOSz0pBLivTor_xMhNWhqzk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.176.0/20 Signature Algorithm: sha256WithRSAEncryption 10:3f:c0:47:06:95:09:69:06:17:b3:25:d0:88:90:d6:7b:c5: 29:26:20:87:b1:8c:4a:1f:3d:74:52:8e:60:29:61:4f:72:10: 44:c3:cd:23:9d:c0:b2:90:d8:c3:1e:db:22:67:b9:71:65:23: 5e:2f:38:a0:f6:03:ac:78:2d:bf:68:e9:cc:f7:5b:8c:3d:4f: e7:c8:a3:f4:21:d0:99:0e:3a:4d:17:69:42:07:d7:c9:5a:66: 74:c2:2c:65:f8:9c:73:a7:69:f3:2f:ae:6b:ab:de:ce:d1:42: 45:f2:5f:42:48:e6:bd:55:38:88:58:52:8e:f6:b6:1a:1c:e1: 0d:5c:16:f1:27:30:60:25:df:41:70:cf:2c:88:d4:2e:e0:02: c9:dd:0c:d9:72:25:16:20:67:7a:3e:69:a7:7e:36:85:c1:47: 29:b8:83:ae:38:2b:ad:f0:24:15:01:f3:3f:11:fb:aa:54:ea: 78:76:0c:c0:34:ec:b9:27:82:e5:8e:3c:91:37:b7:54:d0:4b: 3a:76:7b:d8:49:53:cf:25:78:56:4d:3f:54:35:88:ec:de:86: 86:cc:8d:ac:d7:25:9c:83:6b:5b:9a:5e:94:fa:12:02:9e:a5: c1:0a:d8:a3:38:93:b5:d4:dc:ce:0a:70:d5:63:9a:e0:02:55: 2d:1e:4e:87 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4RkE2QzBDRTRCM0Qy OTA0QjhBRjRFOEFGRkM0Qzg0RDVBMUFCMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWWqMCBa7vaL33e01aAGcrnh2N/INbCuZyyzKf/NimLQWjapY1 zVbhqgo6rx6BKBlNvTNomV1WsjY/rHlZPIGrEvnj70zbHuej26SL3eb08iD4xKFu VciIMiiZSjR99v8FOkR+XNaJv1KGnQCerzvzHa2y2NVcnq+hc85lqEKCeFUVWGh8 ghEmvxW2CgPjm4v3GldaqeaOsSAVeVhmKkSEZAn3ecDtoqmJsFtID68B7/Jsmx/8 c9KyAteOEO2KjE4MvNyfk1wxpPLfedbFampPfsYa3IuCT3MB/XzLi7e70+D2YQ9g Fa/LfMlY21cn9eGvuBHHA1b04MfTIte9jmH1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU6PpsDOSz0pBLivTor/xMhNWhqzkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNlBwc0RPU3owcEJMaXZUb3JfeE1o TldocXprLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBGprsDAN BgkqhkiG9w0BAQsFAAOCAQEAED/ARwaVCWkGF7Ml0IiQ1nvFKSYgh7GMSh89dFKO YClhT3IQRMPNI53AspDYwx7bIme5cWUjXi84oPYDrHgtv2jpzPdbjD1P58ij9CHQ mQ46TRdpQgfXyVpmdMIsZficc6dp8y+ua6veztFCRfJfQkjmvVU4iFhSjva2Ghzh DVwW8ScwYCXfQXDPLIjULuACyd0M2XIlFiBnej5pp342hcFHKbiDrjgrrfAkFQHz PxH7qlTqeHYMwDTsuSeC5Y48kTe3VNBLOnZ72ElTzyV4Vk0/VDWI7N6GhsyNrNcl nINrW5pelPoSAp6lwQrYoziTtdTczgpw1WOa4AJVLR5Ohw== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:30 2024 by rpki-client on console-fra.rpki-client.org