$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/BcaafsMy5QsFCqiktTiynL62dmc.roa File: BcaafsMy5QsFCqiktTiynL62dmc.roa (raw, json) Hash identifier: S4Ae25+TyBq2RAECUz8LUefFwnWRPXwtasXw+FYGkTI= Subject key identifier: 05:C6:9A:7E:C3:32:E5:0B:05:0A:A8:A4:B5:38:B2:9C:BE:B6:76:67 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16B8 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BcaafsMy5QsFCqiktTiynL62dmc.roa Signing time: Mon 26 Aug 2024 05:22:32 +0000 ROA not before: Mon 26 Aug 2024 05:22:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 112.104.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5816 (0x16b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=05C69A7EC332E50B050AA8A4B538B29CBEB67667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e4:86:70:d6:0f:54:8e:73:76:47:33:01:0e: 61:c3:be:d7:36:bf:98:3e:5c:a0:00:a5:ad:d9:8a: 12:9c:f1:be:9b:9e:d0:1b:cb:40:19:d9:55:9e:c4: 2c:bf:bd:a2:8f:4e:ac:b7:31:4b:da:77:fd:c1:a8: 1c:2e:63:2c:5a:5b:d3:00:ef:76:53:60:b2:f8:e4: 46:06:5d:bd:66:71:76:ef:56:19:7a:db:25:09:5f: 1c:cf:20:2d:b5:20:66:ec:42:f0:86:43:db:21:4a: 93:5a:99:1b:31:56:8b:5b:d5:15:9c:6c:1a:58:e5: 16:28:34:42:8b:34:d0:a3:af:ca:74:f0:ff:93:49: 47:e1:c6:f1:f4:20:ef:31:f2:59:40:89:af:de:0b: 0d:3a:47:0c:cb:87:3d:a9:a7:ac:7f:be:57:86:64: 37:3e:4d:55:43:e2:70:a6:e7:ed:4a:65:3d:05:ac: 3b:7b:42:9a:95:0a:5c:01:56:51:08:8e:b7:b7:dc: 69:c2:a1:c1:ee:44:ec:c8:ac:44:f2:72:9d:bd:7a: 33:b2:25:d7:24:fc:8c:0c:8f:d0:3f:d3:65:c5:44: 0d:ad:a4:00:05:76:d2:74:4d:b1:6e:84:86:fe:a4: 2c:fa:f4:94:bc:9b:83:8b:15:ba:05:30:22:8b:33: 09:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C6:9A:7E:C3:32:E5:0B:05:0A:A8:A4:B5:38:B2:9C:BE:B6:76:67 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/BcaafsMy5QsFCqiktTiynL62dmc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.104.0.0/15 Signature Algorithm: sha256WithRSAEncryption a1:fc:f5:03:48:f9:28:bc:33:f8:40:46:ac:ce:35:94:90:1f: 60:a2:2a:0e:9e:20:60:5c:96:26:d9:b0:2e:55:32:da:ba:c3: 25:77:38:71:c5:31:36:d2:a2:bc:e1:4a:48:54:c0:e1:f5:2d: a9:63:bf:1b:ea:29:c5:17:9e:43:e9:25:73:10:0c:a1:37:22: 2c:af:03:97:55:2f:b6:cd:f2:28:17:ec:7f:f0:a6:db:d6:5d: e1:04:23:63:5b:34:38:4a:dc:b1:e0:52:3c:cc:46:ab:5c:7b: ac:da:d1:b9:de:f4:26:7d:f0:7f:44:01:5f:71:50:25:3d:63: 96:11:d3:af:82:29:0d:20:6c:b8:48:17:5e:6a:2b:b7:06:90: fd:01:a7:31:9b:8a:4c:1d:a5:fe:79:0d:a7:99:41:d6:c6:f8: 57:1b:74:d3:07:e0:f1:dd:1b:1b:fa:e3:58:24:24:3c:6a:97: 6a:54:7a:3f:bc:7d:09:c0:bf:ae:92:68:2d:11:97:b1:61:8d: aa:64:0c:b9:b1:2c:6d:62:f1:72:a0:7e:36:b0:06:91:d6:26: a3:56:ff:19:7d:5d:29:e5:53:ca:7a:1e:5b:fc:13:d7:a8:0a: 08:10:54:d2:e9:d5:76:58:7d:5a:28:1a:9d:da:9d:14:b2:33: c3:37:d7:2b -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFrgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1QzY5QTdFQzMzMkU1 MEIwNTBBQThBNEI1MzhCMjlDQkVCNjc2NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD5IZw1g9UjnN2RzMBDmHDvtc2v5g+XKAApa3ZihKc8b6bntAb y0AZ2VWexCy/vaKPTqy3MUvad/3BqBwuYyxaW9MA73ZTYLL45EYGXb1mcXbvVhl6 2yUJXxzPIC21IGbsQvCGQ9shSpNamRsxVotb1RWcbBpY5RYoNEKLNNCjr8p08P+T SUfhxvH0IO8x8llAia/eCw06RwzLhz2pp6x/vleGZDc+TVVD4nCm5+1KZT0FrDt7 QpqVClwBVlEIjre33GnCocHuROzIrETycp29ejOyJdck/IwMj9A/02XFRA2tpAAF dtJ0TbFuhIb+pCz69JS8m4OLFboFMCKLMwllAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUBcaafsMy5QsFCqiktTiynL62dmcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQmNhYWZzTXk1UXNGQ3Fpa3RUaXlu TDYyZG1jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAXBoMA0G CSqGSIb3DQEBCwUAA4IBAQCh/PUDSPkovDP4QEaszjWUkB9goioOniBgXJYm2bAu VTLausMldzhxxTE20qK84UpIVMDh9S2pY78b6inFF55D6SVzEAyhNyIsrwOXVS+2 zfIoF+x/8Kbb1l3hBCNjWzQ4Styx4FI8zEarXHus2tG53vQmffB/RAFfcVAlPWOW EdOvgikNIGy4SBdeaiu3BpD9Aacxm4pMHaX+eQ2nmUHWxvhXG3TTB+Dx3Rsb+uNY JCQ8apdqVHo/vH0JwL+ukmgtEZexYY2qZAy5sSxtYvFyoH42sAaR1iajVv8ZfV0p 5VPKeh5b/BPXqAoIEFTS6dV2WH1aKBqd2p0UsjPDN9cr -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:11 2024 by rpki-client on console-fra.rpki-client.org