$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/CcUW4Kb6PK47IRYsrC2J5jPry1Y.roa File: CcUW4Kb6PK47IRYsrC2J5jPry1Y.roa (raw, json) Hash identifier: lyIO5Bjf0iy4gQliS1BvKAPdEnDZEuYJPbuMnTtwYt8= Subject key identifier: 09:C5:16:E0:A6:FA:3C:AE:3B:21:16:2C:AC:2D:89:E6:33:EB:CB:56 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1685 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CcUW4Kb6PK47IRYsrC2J5jPry1Y.roa Signing time: Mon 26 Aug 2024 05:22:17 +0000 ROA not before: Mon 26 Aug 2024 05:22:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 175.183.254.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5765 (0x1685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=09C516E0A6FA3CAE3B21162CAC2D89E633EBCB56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:99:84:cc:18:60:72:83:86:ba:30:31:4d:94: 98:9c:f2:64:5b:d9:29:c8:ee:b4:01:8a:be:a9:89: 7c:dc:28:32:f9:5b:79:a1:59:c8:b8:56:7b:32:ab: 11:1d:4e:29:3f:40:15:c9:e3:d3:47:d7:7d:e1:b7: dd:94:09:a9:dc:26:22:2f:ca:aa:1e:f8:3d:4b:8f: 84:83:95:89:32:fe:0e:2d:75:37:3e:50:88:d1:b4: cb:6d:e3:77:22:d0:16:40:4f:66:14:36:7d:16:d6: 8d:8e:bb:14:49:a6:1c:36:fa:58:df:fe:e6:33:af: fc:dc:8a:45:33:b9:c5:06:70:6d:3e:c7:b1:94:8c: ea:f4:ae:32:5a:c7:e5:86:2e:ef:cf:33:f2:63:ce: e7:97:28:89:43:02:f2:7c:b1:b7:8b:67:0e:18:f3: 7f:6b:17:77:1b:18:47:56:c4:ab:1e:e6:69:cc:ca: 76:ac:13:8b:3a:be:7f:80:38:fa:b1:69:d9:bc:1d: 22:db:41:16:36:23:41:fb:eb:c3:a1:b1:8c:4c:d2: 27:70:50:1d:de:aa:f1:08:be:d6:97:5c:65:3d:dd: 1e:d6:9f:05:b5:1c:b0:00:2a:f8:07:cd:fc:54:25: a5:90:82:a5:ea:47:b3:e5:fb:07:ea:2a:70:10:5f: b3:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:C5:16:E0:A6:FA:3C:AE:3B:21:16:2C:AC:2D:89:E6:33:EB:CB:56 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/CcUW4Kb6PK47IRYsrC2J5jPry1Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.254.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:e6:c2:20:91:7b:a0:4e:fd:a8:f2:be:65:19:8a:fe:4e:eb: 96:c5:74:5b:e4:32:2e:f5:c8:ce:e0:45:f1:1f:28:0b:07:b7: 41:28:e1:a8:af:2a:0a:4c:4b:c7:53:6b:61:aa:20:6e:99:67: f9:df:50:f7:f4:7a:7c:75:cf:d2:61:8c:a4:44:cd:3f:39:1a: 7b:aa:cf:ee:3c:7e:c1:b1:56:35:f5:ce:c3:a4:15:42:4c:b6: 37:ad:79:f2:bb:68:e4:dc:09:9a:45:61:4e:34:08:95:10:f7: dc:1d:2b:54:90:54:e4:a5:9d:f9:b8:df:b9:b4:45:5a:a3:36: 60:8f:a6:e9:a5:55:b5:14:14:32:72:87:3e:4a:76:83:d4:4d: 9a:1f:b2:23:0d:44:b9:bd:60:58:ff:20:67:a6:f1:33:90:ba: e5:ad:b9:6b:b5:d0:0f:8e:cb:82:de:2e:88:7b:b9:1e:4d:74: cc:9c:c3:56:fe:b7:73:66:25:ce:27:d0:93:ec:55:df:83:da: b0:1a:7a:51:57:26:8a:10:6f:46:95:79:bb:50:22:db:c6:2c: 84:86:55:29:2f:21:a0:af:e9:bd:fd:33:15:c7:48:2a:8a:a9: ac:ac:28:34:c4:d3:95:a6:d5:b3:ca:e4:c1:85:21:51:8b:43: d3:a3:0c:7e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFoUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5QzUxNkUwQTZGQTND QUUzQjIxMTYyQ0FDMkQ4OUU2MzNFQkNCNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFmYTMGGByg4a6MDFNlJic8mRb2SnI7rQBir6piXzcKDL5W3mh Wci4VnsyqxEdTik/QBXJ49NH133ht92UCancJiIvyqoe+D1Lj4SDlYky/g4tdTc+ UIjRtMtt43ci0BZAT2YUNn0W1o2OuxRJphw2+ljf/uYzr/zcikUzucUGcG0+x7GU jOr0rjJax+WGLu/PM/JjzueXKIlDAvJ8sbeLZw4Y839rF3cbGEdWxKse5mnMynas E4s6vn+AOPqxadm8HSLbQRY2I0H768OhsYxM0idwUB3eqvEIvtaXXGU93R7WnwW1 HLAAKvgHzfxUJaWQgqXqR7Pl+wfqKnAQX7OfAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUCcUW4Kb6PK47IRYsrC2J5jPry1YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvQ2NVVzRLYjZQSzQ3SVJZc3JDMko1 alByeTFZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAa+3/jAN BgkqhkiG9w0BAQsFAAOCAQEAKubCIJF7oE79qPK+ZRmK/k7rlsV0W+QyLvXIzuBF 8R8oCwe3QSjhqK8qCkxLx1NrYaogbpln+d9Q9/R6fHXP0mGMpETNPzkae6rP7jx+ wbFWNfXOw6QVQky2N6158rto5NwJmkVhTjQIlRD33B0rVJBU5KWd+bjfubRFWqM2 YI+m6aVVtRQUMnKHPkp2g9RNmh+yIw1Eub1gWP8gZ6bxM5C65a25a7XQD47Lgt4u iHu5Hk10zJzDVv63c2YlzifQk+xV34PasBp6UVcmihBvRpV5u1Ai28YshIZVKS8h oK/pvf0zFcdIKoqprKwoNMTTlabVs8rkwYUhUYtD06MMfg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org