$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GIjbdfiQcSOkPSbjxeLxc2v4t6g.roa File: GIjbdfiQcSOkPSbjxeLxc2v4t6g.roa (raw, json) Hash identifier: ZYZfIzKzja0NDOin/eOpqzImUGXgR2QIkNuBD7SKfhA= Subject key identifier: 18:88:DB:75:F8:90:71:23:A4:3D:26:E3:C5:E2:F1:73:6B:F8:B7:A8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1628 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GIjbdfiQcSOkPSbjxeLxc2v4t6g.roa Signing time: Mon 26 Aug 2024 05:21:50 +0000 ROA not before: Mon 26 Aug 2024 05:21:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 112.105.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5672 (0x1628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1888DB75F8907123A43D26E3C5E2F1736BF8B7A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0c:bf:d6:a2:3d:72:33:f3:0f:fa:85:90:c0: 78:1c:c1:b1:c4:42:25:21:7f:68:56:2b:fa:ae:42: 56:61:a0:b7:e3:54:8a:a0:64:b3:c4:2c:41:62:0d: f9:3e:95:99:b5:46:c9:d2:b0:6f:02:e5:37:d0:90: d4:8b:af:8b:81:54:0b:1a:3c:55:dd:e5:39:7e:c5: 67:c8:ac:be:3c:8d:52:ce:d5:91:55:79:4f:6a:1d: 9a:ea:b2:8d:79:4a:5c:f9:1b:64:97:a0:55:bb:88: 1e:59:97:e8:58:3b:74:37:76:c2:52:21:c9:44:f9: f0:6e:c9:8a:8d:dc:81:0c:b4:1f:0b:f4:e5:72:14: e6:fa:d4:86:66:8f:b8:3e:99:1a:78:de:e7:aa:71: 29:ef:03:da:0d:4b:3e:01:48:70:f9:9c:ce:e9:e1: ef:87:a6:62:29:e8:d7:5f:b2:03:b5:9b:d6:6d:66: 1f:5c:00:69:57:2b:a2:46:bc:5e:c9:e4:87:e8:4c: 66:7d:66:50:b5:d5:a7:9d:b9:12:11:b2:26:01:09: 93:95:98:5e:5d:c6:7e:94:20:37:bd:9c:66:15:b8: 0e:b9:12:9e:3a:1f:2e:01:3a:2a:77:da:2e:fe:0c: 01:b2:dd:bc:d5:a9:44:e2:61:bd:d8:d1:fe:5a:09: 22:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:88:DB:75:F8:90:71:23:A4:3D:26:E3:C5:E2:F1:73:6B:F8:B7:A8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GIjbdfiQcSOkPSbjxeLxc2v4t6g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.105.64.0/18 Signature Algorithm: sha256WithRSAEncryption 66:12:c7:2d:81:03:72:f9:cc:1b:ce:39:dd:41:76:0c:81:c0: 94:d4:9f:2d:bb:75:3f:ae:a6:36:e0:cb:14:a8:e5:11:5f:dc: da:54:11:1f:10:fa:80:92:fb:f7:80:66:d2:7b:42:79:92:33: 7f:48:af:da:82:3f:b4:84:0c:e9:3e:b6:07:ce:0f:a9:c1:a6: 23:e9:e9:49:cb:61:b3:08:f3:72:b2:b3:18:0b:32:ed:cd:e1: 6b:f4:ea:f6:73:f9:5d:8e:2a:ef:5a:e9:c3:29:ac:b4:78:45: c5:a0:8b:c4:0a:da:61:2c:8a:2f:0e:cd:bb:0d:47:2e:9c:4e: 66:2b:bf:9d:22:81:55:0e:50:2c:7d:5d:e5:94:20:6b:8e:ca: 91:67:df:76:d5:be:fd:32:cc:21:3f:8d:c6:4b:8f:bf:f5:a9: d0:a8:83:c6:0e:48:69:0f:ff:8f:fd:5f:5c:ed:5e:97:a4:71: 2a:c0:b6:67:a0:68:2b:7e:3f:3d:e8:49:de:d5:de:0e:bc:83: 7b:20:e4:e8:90:16:56:6d:3e:67:23:bd:ea:5b:8f:27:e0:0d: 33:5e:7e:bd:5a:60:8d:5b:e2:ba:91:52:54:2a:2e:ca:8c:05: 55:15:31:bc:55:b0:d0:fb:0d:ed:1d:f7:34:41:91:ad:cf:c1: ed:92:73:76 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFigwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4ODhEQjc1Rjg5MDcx MjNBNDNEMjZFM0M1RTJGMTczNkJGOEI3QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClDL/Woj1yM/MP+oWQwHgcwbHEQiUhf2hWK/quQlZhoLfjVIqg ZLPELEFiDfk+lZm1RsnSsG8C5TfQkNSLr4uBVAsaPFXd5Tl+xWfIrL48jVLO1ZFV eU9qHZrqso15Slz5G2SXoFW7iB5Zl+hYO3Q3dsJSIclE+fBuyYqN3IEMtB8L9OVy FOb61IZmj7g+mRp43ueqcSnvA9oNSz4BSHD5nM7p4e+HpmIp6NdfsgO1m9ZtZh9c AGlXK6JGvF7J5IfoTGZ9ZlC11aeduRIRsiYBCZOVmF5dxn6UIDe9nGYVuA65Ep46 Hy4BOip32i7+DAGy3bzVqUTiYb3Y0f5aCSIJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUGIjbdfiQcSOkPSbjxeLxc2v4t6gwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvR0lqYmRmaVFjU09rUFNianhlTHhj MnY0dDZnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnBpQDAN BgkqhkiG9w0BAQsFAAOCAQEAZhLHLYEDcvnMG8453UF2DIHAlNSfLbt1P66mNuDL FKjlEV/c2lQRHxD6gJL794Bm0ntCeZIzf0iv2oI/tIQM6T62B84PqcGmI+npScth swjzcrKzGAsy7c3ha/Tq9nP5XY4q71rpwymstHhFxaCLxAraYSyKLw7Nuw1HLpxO Ziu/nSKBVQ5QLH1d5ZQga47KkWffdtW+/TLMIT+NxkuPv/Wp0KiDxg5IaQ//j/1f XO1el6RxKsC2Z6BoK34/PehJ3tXeDryDeyDk6JAWVm0+ZyO96luPJ+ANM15+vVpg jVviupFSVCouyowFVRUxvFWw0PsN7R33NEGRrc/B7ZJzdg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org