$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/GQxSUNhYB1p7AIO7X4ujmT649MI.roa File: GQxSUNhYB1p7AIO7X4ujmT649MI.roa (raw, json) Hash identifier: cbbuYnsXCaktp2h8I5tQPQZDRSSFRi3nJm7XI10nPOk= Subject key identifier: 19:0C:52:50:D8:58:07:5A:7B:00:83:BB:5F:8B:A3:99:3E:B8:F4:C2 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 162C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GQxSUNhYB1p7AIO7X4ujmT649MI.roa Signing time: Mon 26 Aug 2024 05:21:52 +0000 ROA not before: Mon 26 Aug 2024 05:21:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 106.106.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5676 (0x162c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=190C5250D858075A7B0083BB5F8BA3993EB8F4C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b2:21:07:85:9e:a3:8e:ee:9d:ad:3e:c8:d3: 70:bd:6c:70:2c:9e:60:68:97:8a:30:b1:0e:92:fc: a6:35:5d:ce:55:dd:2c:6c:50:3c:43:06:02:23:2f: 3b:ff:d2:4c:f1:87:c8:86:08:81:5c:a1:b0:d1:82: de:87:0c:2b:d1:a5:e3:d6:70:24:07:cd:a2:38:8c: 43:d4:cf:05:be:dd:e5:be:bf:87:a3:be:67:07:82: b4:ec:8a:4d:7f:6b:30:9b:2e:95:a1:b1:7c:d6:a1: 05:4b:23:30:e2:51:d0:d2:6b:2b:5e:78:fd:dd:c4: af:bd:22:18:f7:f1:f5:fe:60:61:21:a7:19:4a:aa: d1:12:93:d5:5c:1d:9a:c0:9b:ec:7c:62:20:e9:61: ab:d8:3e:4e:a0:b5:52:c6:a2:88:23:e0:f0:bb:aa: 57:c3:a5:5b:8e:db:90:67:2b:63:b4:0e:b8:75:4b: 03:08:17:75:63:4d:4a:82:58:7e:f8:e0:1f:4e:3e: d5:8c:a5:4e:da:8f:0b:06:47:73:83:c2:11:5b:4a: 63:de:58:de:6c:ce:bb:2c:67:b2:10:59:b5:74:d9: 7d:7b:83:19:d1:7c:47:d6:57:a4:ec:c0:34:a6:57: 86:b7:05:12:90:e7:63:c4:8a:4a:0e:44:bc:38:13: ac:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:0C:52:50:D8:58:07:5A:7B:00:83:BB:5F:8B:A3:99:3E:B8:F4:C2 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/GQxSUNhYB1p7AIO7X4ujmT649MI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.106.220.0/22 Signature Algorithm: sha256WithRSAEncryption 55:43:e8:1b:e2:da:70:c2:80:23:ff:42:77:7f:d0:0e:75:8a: a2:e9:99:0e:c9:23:12:1d:28:78:1d:8f:34:e3:07:c5:79:85: 75:ce:26:e4:c5:d0:fc:b5:50:f3:3f:15:b7:85:80:a7:90:08: a8:50:25:03:3a:e1:f4:9d:d9:7c:18:19:f8:56:18:46:19:87: 23:95:f2:c7:55:da:41:c6:6a:e9:7c:c9:34:c9:fe:e8:a5:f4: 71:53:fa:f1:52:b8:4e:57:77:9b:c3:ff:64:8d:3d:a9:d3:13: 63:d3:c7:49:9f:2a:ff:af:50:57:40:7c:87:7e:21:cf:8d:c8: 73:29:1d:9f:fb:7e:1b:0a:87:97:28:22:da:ac:01:2d:74:fd: 77:40:4c:b5:c8:d8:9b:36:82:33:26:aa:8a:00:a4:d0:09:5c: 02:9d:df:f4:4a:36:6b:97:43:e3:77:52:17:25:a8:e4:dc:c6: 28:f7:72:23:08:36:5e:d2:f4:0b:90:56:14:b4:4c:49:a0:78: 08:e2:f2:14:81:96:98:93:94:5f:9c:41:f2:31:1e:fd:d0:39: e2:a3:dd:65:ca:88:91:c4:58:b1:1c:b9:a7:77:4d:38:17:8f: 5b:9d:b2:2a:cc:4e:a2:54:55:ec:e4:c2:3c:ad:76:a8:4c:12: 96:24:3b:0e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFiwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5MEM1MjUwRDg1ODA3 NUE3QjAwODNCQjVGOEJBMzk5M0VCOEY0QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4siEHhZ6jju6drT7I03C9bHAsnmBol4owsQ6S/KY1Xc5V3Sxs UDxDBgIjLzv/0kzxh8iGCIFcobDRgt6HDCvRpePWcCQHzaI4jEPUzwW+3eW+v4ej vmcHgrTsik1/azCbLpWhsXzWoQVLIzDiUdDSayteeP3dxK+9Ihj38fX+YGEhpxlK qtESk9VcHZrAm+x8YiDpYavYPk6gtVLGoogj4PC7qlfDpVuO25BnK2O0Drh1SwMI F3VjTUqCWH744B9OPtWMpU7ajwsGR3ODwhFbSmPeWN5szrssZ7IQWbV02X17gxnR fEfWV6TswDSmV4a3BRKQ52PEikoORLw4E6zhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUGQxSUNhYB1p7AIO7X4ujmT649MIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvR1F4U1VOaFlCMXA3QUlPN1g0dWpt VDY0OU1JLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmpq3DAN BgkqhkiG9w0BAQsFAAOCAQEAVUPoG+LacMKAI/9Cd3/QDnWKoumZDskjEh0oeB2P NOMHxXmFdc4m5MXQ/LVQ8z8Vt4WAp5AIqFAlAzrh9J3ZfBgZ+FYYRhmHI5Xyx1Xa QcZq6XzJNMn+6KX0cVP68VK4Tld3m8P/ZI09qdMTY9PHSZ8q/69QV0B8h34hz43I cykdn/t+GwqHlygi2qwBLXT9d0BMtcjYmzaCMyaqigCk0AlcAp3f9Eo2a5dD43dS FyWo5NzGKPdyIwg2XtL0C5BWFLRMSaB4COLyFIGWmJOUX5xB8jEe/dA54qPdZcqI kcRYsRy5p3dNOBePW52yKsxOolRV7OTCPK12qEwSliQ7Dg== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:41 2024 by rpki-client on console-fra.rpki-client.org