$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/E-4YrP1kKpbCR_3t9BRQ8waXSNY.roa File: E-4YrP1kKpbCR_3t9BRQ8waXSNY.roa (raw, json) Hash identifier: sypqxtro2e6KqThYComyuGXcUHCBhdHOCLsRuHmJWMk= Subject key identifier: 13:EE:18:AC:FD:64:2A:96:C2:47:FD:ED:F4:14:50:F3:06:97:48:D6 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 165F Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/E-4YrP1kKpbCR_3t9BRQ8waXSNY.roa Signing time: Mon 26 Aug 2024 05:22:07 +0000 ROA not before: Mon 26 Aug 2024 05:22:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 218.210.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5727 (0x165f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=13EE18ACFD642A96C247FDEDF41450F3069748D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ad:78:56:ff:ac:5e:42:43:21:1c:20:fb:d4: 5b:53:94:a7:48:44:10:b0:14:44:8e:70:f4:ab:01: b6:b2:11:b0:f2:da:3a:7c:e6:eb:41:24:b4:4d:6b: 30:97:c6:9a:27:bf:f6:c2:c0:f8:eb:65:91:2c:ed: 36:3d:b2:f9:36:7f:a8:53:ad:12:5f:a9:33:4d:56: b1:a7:de:50:b9:16:04:d7:ef:52:10:7b:91:72:b9: 00:0b:64:e9:ff:fd:85:e9:33:e3:44:59:9d:23:ff: 34:8e:d2:9a:33:b9:d9:71:06:61:ec:18:81:93:0a: 84:90:f3:62:08:bf:0a:e0:1e:36:99:e6:91:12:c6: c6:b9:5c:95:67:36:4b:6f:d3:9c:c7:95:9f:ba:16: ce:87:4d:e3:7a:eb:06:56:18:c5:ba:16:df:4d:5f: 37:4b:25:7e:a3:36:3f:7c:44:53:45:a2:69:f3:a7: 49:80:a2:de:9c:f3:62:e9:d5:b4:49:ad:41:b8:fb: 60:55:7d:5c:24:13:aa:45:6e:8a:4b:41:44:b0:3a: 54:3a:5d:04:69:98:c4:c9:f9:a4:8f:36:74:99:0b: 67:ba:02:15:fe:7c:07:8e:0f:d3:ac:e3:62:2c:66: f3:8b:20:f1:5a:31:40:ef:bc:3f:da:b6:e6:6d:b8: 48:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:EE:18:AC:FD:64:2A:96:C2:47:FD:ED:F4:14:50:F3:06:97:48:D6 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/E-4YrP1kKpbCR_3t9BRQ8waXSNY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.0.0/15 Signature Algorithm: sha256WithRSAEncryption 10:5a:cd:a9:d6:dc:ca:82:29:50:12:0d:35:f2:a1:14:cb:5f: 57:7c:79:d5:44:1c:26:b9:e1:be:92:ff:de:52:1b:78:96:67: 97:ff:7e:29:eb:1a:0f:90:8f:d0:fe:f9:e3:e1:fa:66:b4:6c: 6f:47:63:95:ce:7a:93:f2:34:02:81:80:62:1f:f8:1b:48:4f: ec:7d:2e:ba:82:df:0e:26:04:8c:5f:13:34:3e:73:a0:b4:b5: 88:f9:74:cd:cc:da:1d:f6:fa:b9:39:2a:d0:81:18:a5:7c:25: 0a:86:01:d9:29:0b:26:04:db:28:51:7c:8d:30:b1:5b:18:99: ec:d4:8f:c3:92:97:70:fc:36:6d:e8:ae:60:36:32:94:b0:56: eb:5e:55:9b:6f:60:de:fe:86:d7:65:67:c1:9d:e6:64:0a:3a: 50:a5:90:23:79:c6:61:4a:d1:d6:a0:ad:7e:42:df:14:86:a0: 4e:fc:4a:d2:46:0d:94:7b:88:c8:c8:96:7c:6f:55:27:94:65: 9f:17:d1:ae:b5:25:7c:c7:9c:39:5c:c0:20:09:43:03:f3:7f: 0f:b7:11:da:66:5a:4c:53:a4:e5:de:c6:f1:e8:04:85:61:2c: 0d:c2:79:e0:6f:05:cb:f0:7e:87:4e:c7:9e:fa:19:21:d2:5b: 1b:55:d3:92 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFl8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEzRUUxOEFDRkQ2NDJB OTZDMjQ3RkRFREY0MTQ1MEYzMDY5NzQ4RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyrXhW/6xeQkMhHCD71FtTlKdIRBCwFESOcPSrAbayEbDy2jp8 5utBJLRNazCXxponv/bCwPjrZZEs7TY9svk2f6hTrRJfqTNNVrGn3lC5FgTX71IQ e5FyuQALZOn//YXpM+NEWZ0j/zSO0pozudlxBmHsGIGTCoSQ82IIvwrgHjaZ5pES xsa5XJVnNktv05zHlZ+6Fs6HTeN66wZWGMW6Ft9NXzdLJX6jNj98RFNFomnzp0mA ot6c82Lp1bRJrUG4+2BVfVwkE6pFbopLQUSwOlQ6XQRpmMTJ+aSPNnSZC2e6AhX+ fAeOD9Os42IsZvOLIPFaMUDvvD/atuZtuEhrAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUE+4YrP1kKpbCR/3t9BRQ8waXSNYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRS00WXJQMWtLcGJDUl8zdDlCUlE4 d2FYU05ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAdrSMA0G CSqGSIb3DQEBCwUAA4IBAQAQWs2p1tzKgilQEg018qEUy19XfHnVRBwmueG+kv/e Uht4lmeX/34p6xoPkI/Q/vnj4fpmtGxvR2OVznqT8jQCgYBiH/gbSE/sfS66gt8O JgSMXxM0PnOgtLWI+XTNzNod9vq5OSrQgRilfCUKhgHZKQsmBNsoUXyNMLFbGJns 1I/Dkpdw/DZt6K5gNjKUsFbrXlWbb2De/obXZWfBneZkCjpQpZAjecZhStHWoK1+ Qt8UhqBO/ErSRg2Ue4jIyJZ8b1UnlGWfF9GutSV8x5w5XMAgCUMD838PtxHaZlpM U6Tl3sbx6ASFYSwNwnngbwXL8H6HTsee+hkh0lsbVdOS -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org