$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/EOAMH6SUeQHjd4Nb_v7ig-E_WNs.roa File: EOAMH6SUeQHjd4Nb_v7ig-E_WNs.roa (raw, json) Hash identifier: 7iY6zUbC0W0guys9tLXmWbf8U2fTLpyOT0pSu2jxqI4= Subject key identifier: 10:E0:0C:1F:A4:94:79:01:E3:77:83:5B:FE:FE:E2:83:E1:3F:58:DB Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 186F Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EOAMH6SUeQHjd4Nb_v7ig-E_WNs.roa Signing time: Mon 10 Feb 2025 14:07:56 +0000 ROA not before: Mon 10 Feb 2025 14:07:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.56.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6255 (0x186f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10E00C1FA4947901E377835BFEFEE283E13F58DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a2:cc:3f:fe:c4:0c:1d:af:d1:0b:79:f7:3a: 1b:a7:b8:26:4d:c7:43:4a:5a:73:87:31:99:c7:9e: 41:ca:38:fe:8d:08:7b:3f:d8:5c:d0:00:ef:0f:72: 32:96:7b:fc:58:c5:43:f7:33:71:0f:a4:da:fc:e5: 07:7a:24:61:ce:55:48:cc:fa:8f:cd:43:c6:86:88: 75:8d:4d:61:9b:f9:15:9d:84:3f:c6:f9:eb:dc:96: eb:24:0c:45:83:ce:f3:92:ee:15:6c:03:96:21:fe: 5e:57:f7:c8:57:35:8c:d2:81:2d:af:09:e5:05:c5: fb:85:65:a6:65:d3:b5:f6:95:bb:af:30:1a:3d:03: 17:11:f1:2c:81:11:fe:d9:a9:c3:16:47:a1:73:f6: ad:3f:4a:3c:4a:92:c9:ea:22:09:c9:3a:96:3a:1e: aa:8d:9e:fb:3c:76:e5:46:f4:e1:5f:4b:22:1b:2a: 81:c9:58:de:1c:5f:42:c4:97:37:a0:f9:74:78:82: b2:86:ab:12:5b:34:5c:2b:a0:ed:c3:a0:58:e8:ec: f0:c0:00:5d:2e:3d:16:d3:18:3c:ec:b0:3f:e0:41: 29:ca:49:ab:db:9e:58:83:27:31:8f:7c:de:68:81: b7:7b:4c:a0:9d:94:74:c7:c9:ae:84:a3:79:1c:54: e9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:E0:0C:1F:A4:94:79:01:E3:77:83:5B:FE:FE:E2:83:E1:3F:58:DB X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EOAMH6SUeQHjd4Nb_v7ig-E_WNs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.224.0/19 Signature Algorithm: sha256WithRSAEncryption b4:c7:74:e4:80:e2:63:6a:7c:1c:87:44:f0:bd:e1:60:b2:2a: 28:d4:d5:0d:9d:f4:c9:ac:45:18:3c:e9:b8:7a:29:45:d0:b9: 91:a5:bc:b5:8f:c7:00:83:25:c1:4c:3e:db:54:ca:6e:f9:94: 6b:f8:7d:49:4e:a9:22:cf:27:fa:33:67:0b:5e:67:d7:a8:ce: 5c:67:6a:eb:03:56:fe:83:47:41:f1:16:ac:24:0b:57:0b:b8: 99:54:ef:86:9c:b4:7f:03:9b:66:0a:18:60:0e:ba:fa:41:4b: 2e:43:02:6e:18:d2:86:a5:c7:0f:f8:85:54:d7:11:19:ed:f5: ef:ae:1b:e9:3b:3c:14:02:4f:06:82:eb:85:4d:01:b7:4f:7e: f4:5e:bd:fb:75:94:f9:e7:f1:5a:63:44:af:81:0c:e0:64:9f: d3:73:91:64:98:e4:ce:15:62:f3:e4:09:21:b6:5e:e2:9a:c9: 43:bf:a7:ca:4b:34:b6:c0:0a:56:3c:c5:17:b3:09:fb:d9:3b: c8:a9:31:81:77:db:3b:c3:e9:ea:03:f8:95:8f:60:5e:01:85: ba:cf:67:16:a4:39:ea:1f:cb:af:58:31:58:03:d3:fd:1d:36: e3:61:83:b7:e1:17:68:df:d5:61:8d:95:db:fa:38:37:7a:17: d3:58:67:65 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwRTAwQzFGQTQ5NDc5 MDFFMzc3ODM1QkZFRkVFMjgzRTEzRjU4REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSosw//sQMHa/RC3n3OhunuCZNx0NKWnOHMZnHnkHKOP6NCHs/ 2FzQAO8PcjKWe/xYxUP3M3EPpNr85Qd6JGHOVUjM+o/NQ8aGiHWNTWGb+RWdhD/G +evcluskDEWDzvOS7hVsA5Yh/l5X98hXNYzSgS2vCeUFxfuFZaZl07X2lbuvMBo9 AxcR8SyBEf7ZqcMWR6Fz9q0/SjxKksnqIgnJOpY6HqqNnvs8duVG9OFfSyIbKoHJ WN4cX0LElzeg+XR4grKGqxJbNFwroO3DoFjo7PDAAF0uPRbTGDzssD/gQSnKSavb nliDJzGPfN5ogbd7TKCdlHTHya6Eo3kcVOlVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUEOAMH6SUeQHjd4Nb/v7ig+E/WNswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRU9BTUg2U1VlUUhqZDROYl92N2ln LUVfV05zLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT044DAN BgkqhkiG9w0BAQsFAAOCAQEAtMd05IDiY2p8HIdE8L3hYLIqKNTVDZ30yaxFGDzp uHopRdC5kaW8tY/HAIMlwUw+21TKbvmUa/h9SU6pIs8n+jNnC15n16jOXGdq6wNW /oNHQfEWrCQLVwu4mVTvhpy0fwObZgoYYA66+kFLLkMCbhjShqXHD/iFVNcRGe31 764b6Ts8FAJPBoLrhU0Bt09+9F69+3WU+efxWmNEr4EM4GSf03ORZJjkzhVi8+QJ IbZe4prJQ7+nyks0tsAKVjzFF7MJ+9k7yKkxgXfbO8Pp6gP4lY9gXgGFus9nFqQ5 6h/Lr1gxWAPT/R0242GDt+EXaN/VYY2V2/o4N3oX01hnZQ== -----END CERTIFICATE-----Generated at Mon Apr 7 07:56:58 2025 by rpki-client