$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/96I8_Uz0jRcO3SxulMyprS8CGPk.roa File: 96I8_Uz0jRcO3SxulMyprS8CGPk.roa (raw, json) Hash identifier: lhcyHnMP4Wx1zZ5YRKiUAfF23Icd7lbkVUiUARSNYfo= Subject key identifier: F7:A2:3C:FD:4C:F4:8D:17:0E:DD:2C:6E:94:CC:A9:AD:2F:02:18:F9 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1776 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/96I8_Uz0jRcO3SxulMyprS8CGPk.roa Signing time: Mon 10 Feb 2025 14:06:56 +0000 ROA not before: Mon 10 Feb 2025 14:06:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 106.104.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6006 (0x1776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:06:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F7A23CFD4CF48D170EDD2C6E94CCA9AD2F0218F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:ba:99:b6:cf:15:e8:bd:9f:c2:4e:b0:ad: 98:31:3b:3c:b1:d7:80:35:9d:88:76:4e:87:a8:ad: a3:41:72:06:10:6c:59:0c:f1:36:a1:c5:97:9d:50: 01:c4:68:79:66:d2:0e:37:d3:79:32:19:15:bb:8d: 41:59:0e:06:02:ba:49:da:04:a6:0f:60:04:d2:fa: aa:60:6b:d0:cf:d1:8c:50:f2:86:1d:03:a8:0f:57: 29:6d:9a:67:4a:ee:bc:da:e8:b8:4d:0e:d4:51:c5: 47:bf:1b:d6:c4:07:95:fb:62:54:57:59:de:c0:3b: 5e:ad:b7:97:6f:be:99:06:6e:c5:d6:69:cd:04:af: 36:85:59:a2:39:93:6a:cc:83:71:dd:5f:a2:3e:ff: fa:4a:d9:e8:8d:dd:b0:95:b2:46:26:c4:9e:44:b1: 1a:94:6f:f8:9b:33:35:43:81:d1:dc:fc:44:c4:7b: b4:cc:0b:b0:e7:e2:d3:c3:8e:ea:e2:5e:37:32:a5: 89:30:e3:79:db:d3:f7:0d:91:96:c9:fb:c1:19:ff: 3c:4f:a1:4f:36:52:0a:f5:b7:f5:e6:99:e7:88:9b: dd:f0:50:da:28:66:c0:1b:e3:21:e5:e0:23:e7:23: d4:94:d0:3d:8e:4b:30:25:f4:9c:aa:aa:14:1f:d5: 3c:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:A2:3C:FD:4C:F4:8D:17:0E:DD:2C:6E:94:CC:A9:AD:2F:02:18:F9 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/96I8_Uz0jRcO3SxulMyprS8CGPk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.104.0.0/14 Signature Algorithm: sha256WithRSAEncryption 9d:44:03:1b:91:65:39:54:2c:fb:6f:53:58:52:6e:d7:cf:2d: c7:a0:3c:43:18:8b:78:c8:65:52:0e:a8:5e:d1:43:66:4e:eb: 71:97:08:51:c8:2e:7e:c8:32:4c:0d:96:64:b0:81:2b:ca:c4: 4e:76:ce:e7:dd:0b:b9:c6:5a:b6:c3:d6:b9:e1:67:5c:e6:2b: f9:fe:b3:a8:b9:75:af:d2:ab:54:17:d7:10:b9:c5:ed:18:5f: 07:b2:1e:ab:cd:93:8e:5d:ae:8c:57:20:1a:76:ce:f6:40:e5: df:e8:a8:63:05:ab:a3:e7:3c:50:73:80:b4:77:38:e6:62:59: b0:46:a4:8d:b9:3d:bb:04:9a:a6:20:78:99:9b:09:bb:57:ec: c7:15:68:82:9d:7d:6c:5d:70:aa:17:d6:48:77:4a:70:80:f5: 96:47:c7:82:6c:96:3d:f1:54:7f:77:03:54:b7:ca:1c:35:6c: 2e:ba:5b:63:99:dc:dc:09:88:5d:44:0b:60:d6:0f:93:f2:18: 74:01:c3:63:6a:93:db:30:c9:f9:d7:53:9c:47:99:73:bc:20: 87:f6:7b:34:3e:50:cd:7b:78:dc:a4:54:a9:06:3e:3e:ad:a9: 5d:40:1f:93:e3:9a:69:f5:46:62:7e:d7:01:6b:cd:f3:7f:db: e7:a5:f1:6c -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICF3YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA2NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY3QTIzQ0ZENENGNDhE MTcwRUREMkM2RTk0Q0NBOUFEMkYwMjE4RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoSLqZts8V6L2fwk6wrZgxOzyx14A1nYh2ToeoraNBcgYQbFkM 8TahxZedUAHEaHlm0g4303kyGRW7jUFZDgYCuknaBKYPYATS+qpga9DP0YxQ8oYd A6gPVyltmmdK7rza6LhNDtRRxUe/G9bEB5X7YlRXWd7AO16tt5dvvpkGbsXWac0E rzaFWaI5k2rMg3HdX6I+//pK2eiN3bCVskYmxJ5EsRqUb/ibMzVDgdHc/ETEe7TM C7Dn4tPDjuriXjcypYkw43nb0/cNkZbJ+8EZ/zxPoU82Ugr1t/XmmeeIm93wUNoo ZsAb4yHl4CPnI9SU0D2OSzAl9JyqqhQf1TyHAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU96I8/Uz0jRcO3SxulMyprS8CGPkwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOTZJOF9VejBqUmNPM1N4dWxNeXBy UzhDR1BrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmpoMA0G CSqGSIb3DQEBCwUAA4IBAQCdRAMbkWU5VCz7b1NYUm7Xzy3HoDxDGIt4yGVSDqhe 0UNmTutxlwhRyC5+yDJMDZZksIErysROds7n3Qu5xlq2w9a54Wdc5iv5/rOouXWv 0qtUF9cQucXtGF8Hsh6rzZOOXa6MVyAads72QOXf6KhjBauj5zxQc4C0dzjmYlmw RqSNuT27BJqmIHiZmwm7V+zHFWiCnX1sXXCqF9ZId0pwgPWWR8eCbJY98VR/dwNU t8ocNWwuultjmdzcCYhdRAtg1g+T8hh0AcNjapPbMMn511OcR5lzvCCH9ns0PlDN e3jcpFSpBj4+raldQB+T45pp9UZiftcBa83zf9vnpfFs -----END CERTIFICATE-----Generated at Mon Apr 7 15:06:19 2025 by rpki-client