$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Fouf8lpg-aOCmCSl1neNRfUnD3Y.roa File: Fouf8lpg-aOCmCSl1neNRfUnD3Y.roa (raw, json) Hash identifier: P1ImeGf3wFW6AEDE8MxmO/yp++uQSkNdmOEvHuwcEKY= Subject key identifier: 16:8B:9F:F2:5A:60:F9:A3:82:98:24:A5:D6:77:8D:45:F5:27:0F:76 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16B5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Fouf8lpg-aOCmCSl1neNRfUnD3Y.roa Signing time: Mon 26 Aug 2024 05:22:31 +0000 ROA not before: Mon 26 Aug 2024 05:22:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 113.196.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5813 (0x16b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=168B9FF25A60F9A3829824A5D6778D45F5270F76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:84:98:de:e1:40:63:4e:9a:9d:02:e8:a5:29: 77:31:25:75:94:18:bd:fd:b5:4e:de:9b:dd:4c:9b: ee:a8:b9:22:a0:33:e5:67:ec:fe:95:14:d0:28:08: 0c:ac:c9:3b:0d:4a:6b:90:85:06:d6:07:31:31:cf: 9f:2a:ae:b6:02:b1:84:7f:b0:cd:76:13:18:9b:46: 9f:e2:39:d2:1b:c8:bc:e4:50:27:b2:4a:73:5f:a6: d6:bb:bc:9b:5b:5b:69:98:e2:2b:d8:80:d3:03:bd: 68:34:c6:df:65:40:1b:59:91:7e:1c:c6:d3:56:25: 8c:77:bd:45:ec:3a:e3:e4:7c:f1:f5:70:e4:7a:b3: 7a:ac:dd:56:02:53:a0:bb:cb:9a:9f:10:e4:6a:c8: 2b:d5:d6:46:38:2b:ce:6b:1c:bf:2f:d6:b5:69:47: 4f:72:bc:42:b0:6b:4b:39:94:98:fa:95:05:3b:ed: f2:f7:8a:86:ce:e0:9b:83:95:56:e9:60:bf:3c:ef: 74:50:37:01:32:54:ee:b8:0a:29:71:c4:04:3d:75: ae:1b:9f:cd:13:c8:3e:2b:d8:8f:51:e2:e8:2d:8c: b2:28:9d:89:3d:eb:17:fe:81:33:1e:e2:c2:1c:b2: 88:e1:38:5b:7b:ce:c7:dc:a2:c8:54:05:eb:24:a2: 57:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:8B:9F:F2:5A:60:F9:A3:82:98:24:A5:D6:77:8D:45:F5:27:0F:76 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Fouf8lpg-aOCmCSl1neNRfUnD3Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.144.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:71:21:23:5c:13:ea:fe:59:aa:9c:14:a7:10:4f:95:2f:34: 18:44:1c:10:b8:94:8e:e1:52:40:72:fd:ed:ae:0a:43:15:d5: 23:f0:bd:66:4e:f5:b7:fe:75:c8:84:c8:f1:a6:c3:3e:b1:14: 5a:32:c2:5f:c7:8b:1e:9f:6e:b9:a1:40:0b:fb:27:6b:69:ce: 6f:82:0e:d1:2a:fe:82:ac:fd:4c:f9:fe:24:38:3f:38:f6:aa: 94:76:af:e2:88:80:a1:8e:d0:07:bb:2f:a7:5d:24:a7:80:12: f3:e0:83:bf:a1:b7:0b:23:e2:67:39:de:22:7f:f9:5b:89:32: a2:ab:a7:38:50:80:37:97:9b:cd:a7:fe:1d:dd:ad:71:c7:c5: ff:31:68:43:3f:63:a9:92:2e:76:a2:20:68:f6:14:d5:03:8d: 50:42:0e:fd:c4:52:65:f5:88:85:54:54:ba:f0:2e:d8:d6:59: a8:39:a6:7e:68:1b:47:8c:bd:d4:54:ec:bd:6c:22:06:52:d3: b4:54:71:20:09:bf:70:75:2b:d7:26:cd:b7:89:77:1e:5f:a6: 42:f1:e8:5b:75:30:15:d0:f4:0e:76:c6:1c:05:ea:c6:22:b3: e8:37:c1:98:dc:60:dd:93:89:cc:a9:d9:83:b7:e0:2b:32:5f: ce:ba:60:85 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFrUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2OEI5RkYyNUE2MEY5 QTM4Mjk4MjRBNUQ2Nzc4RDQ1RjUyNzBGNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDphJje4UBjTpqdAuilKXcxJXWUGL39tU7em91Mm+6ouSKgM+Vn 7P6VFNAoCAysyTsNSmuQhQbWBzExz58qrrYCsYR/sM12ExibRp/iOdIbyLzkUCey SnNfpta7vJtbW2mY4ivYgNMDvWg0xt9lQBtZkX4cxtNWJYx3vUXsOuPkfPH1cOR6 s3qs3VYCU6C7y5qfEORqyCvV1kY4K85rHL8v1rVpR09yvEKwa0s5lJj6lQU77fL3 iobO4JuDlVbpYL8873RQNwEyVO64CilxxAQ9da4bn80TyD4r2I9R4ugtjLIonYk9 6xf+gTMe4sIcsojhOFt7zsfcoshUBeskolcvAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUFouf8lpg+aOCmCSl1neNRfUnD3YwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRm91ZjhscGctYU9DbUNTbDFuZU5S ZlVuRDNZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEkDAN BgkqhkiG9w0BAQsFAAOCAQEAjnEhI1wT6v5ZqpwUpxBPlS80GEQcELiUjuFSQHL9 7a4KQxXVI/C9Zk71t/51yITI8abDPrEUWjLCX8eLHp9uuaFAC/sna2nOb4IO0Sr+ gqz9TPn+JDg/OPaqlHav4oiAoY7QB7svp10kp4AS8+CDv6G3CyPiZzneIn/5W4ky oqunOFCAN5ebzaf+Hd2tccfF/zFoQz9jqZIudqIgaPYU1QONUEIO/cRSZfWIhVRU uvAu2NZZqDmmfmgbR4y91FTsvWwiBlLTtFRxIAm/cHUr1ybNt4l3Hl+mQvHoW3Uw FdD0DnbGHAXqxiKz6DfBmNxg3ZOJzKnZg7fgKzJfzrpghQ== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:11 2024 by rpki-client on console-fra.rpki-client.org