$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/HwqT41ypW3SaaFhq4IgBJJbd1oY.roa File: HwqT41ypW3SaaFhq4IgBJJbd1oY.roa (raw, json) Hash identifier: Bt9OzlEtIRKW/hNrdZcHZdJifC5DeP0QIifQ/28r3oc= Subject key identifier: 1F:0A:93:E3:5C:A9:5B:74:9A:68:58:6A:E0:88:01:24:96:DD:D6:86 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1688 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HwqT41ypW3SaaFhq4IgBJJbd1oY.roa Signing time: Mon 26 Aug 2024 05:22:18 +0000 ROA not before: Mon 26 Aug 2024 05:22:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.147.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5768 (0x1688) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1F0A93E35CA95B749A68586AE088012496DDD686 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1d:93:e2:40:b5:c7:22:1b:db:e7:29:8a:e9: 62:bd:03:68:f2:ae:27:6e:ce:1d:d7:d2:b2:d9:3f: b8:35:54:ac:10:61:38:40:5c:94:b4:9d:73:49:ac: 44:9f:8e:18:00:86:e8:ec:2f:8b:7c:eb:e1:08:20: e2:c3:06:70:ff:48:10:8a:99:fb:a0:9c:85:59:f7: 6d:13:dd:12:aa:96:c5:17:ed:b6:9e:93:53:05:20: 71:ac:9e:00:b3:78:70:e5:77:4a:2c:9e:11:6b:37: 07:5f:18:1a:da:e4:09:91:d5:53:25:c1:c4:51:95: 1f:b0:a9:72:cb:bf:f2:91:7e:61:5c:eb:59:e0:ea: 5c:17:b4:71:1a:e7:5b:78:ea:b1:5b:c4:b5:87:55: 7d:de:d7:94:84:aa:bc:f9:e6:4c:4e:e0:42:52:56: 8e:67:e4:fe:c0:d7:dd:1e:db:a5:1a:4a:17:a9:f7: 9a:cb:df:cc:38:8d:3b:56:b6:5a:6d:2f:ba:8f:48: 2f:56:5c:44:9c:9c:73:0c:6d:db:cb:eb:65:2f:a1: 0e:2f:e0:d3:33:22:70:3f:9d:7a:ce:d5:71:81:15: bc:ad:a7:73:c8:02:2a:50:bf:dd:29:f1:a7:02:b6: b8:7a:ad:0f:14:38:9b:3c:e3:ef:5f:15:2b:fa:55: 27:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:0A:93:E3:5C:A9:5B:74:9A:68:58:6A:E0:88:01:24:96:DD:D6:86 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/HwqT41ypW3SaaFhq4IgBJJbd1oY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.24.0/21 Signature Algorithm: sha256WithRSAEncryption 24:49:22:fe:34:70:bd:9a:7d:55:5a:10:46:49:1e:60:b6:c2: d2:44:5a:68:9f:00:3e:64:13:5d:3b:f2:c2:54:96:f1:2a:60: 6d:69:5b:d5:f5:47:b5:aa:cc:78:d9:95:c3:64:f9:9c:03:8e: 4c:33:4b:97:32:87:fc:cb:ee:12:de:ec:a4:12:80:5f:2f:7c: 45:09:e3:70:d9:81:ac:90:b9:a5:c8:96:9f:13:28:1a:c5:2c: c8:95:b0:79:51:18:6f:6f:1f:db:13:6c:c5:e3:fc:bc:d1:90: f8:b0:a8:69:67:d7:15:02:6d:17:3c:59:78:1f:3f:6c:2f:1b: eb:1c:32:aa:39:10:4f:00:b2:b2:af:d0:85:2d:b5:52:e5:f4: f2:03:f0:ae:61:f3:fc:f2:79:12:61:8f:47:77:24:b8:a6:d7: 07:be:76:6c:c3:09:21:1c:5a:ef:02:3d:0e:f7:e0:73:2c:5d: 20:5f:13:bc:dc:b5:81:f0:48:7a:de:cd:1d:8a:57:2f:2d:0f: 04:6d:ca:c7:9c:9e:75:cd:9a:2e:9b:80:4d:75:ee:33:df:19: 1f:0a:08:b1:b1:e9:bb:4c:bf:33:4a:45:13:f5:7e:be:d1:65: 23:1b:a7:72:14:37:48:6d:68:e9:68:42:9f:99:95:b0:28:0e: 5b:19:03:04 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFogwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFGMEE5M0UzNUNBOTVC NzQ5QTY4NTg2QUUwODgwMTI0OTZEREQ2ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrHZPiQLXHIhvb5ymK6WK9A2jyriduzh3X0rLZP7g1VKwQYThA XJS0nXNJrESfjhgAhujsL4t86+EIIOLDBnD/SBCKmfugnIVZ920T3RKqlsUX7bae k1MFIHGsngCzeHDld0osnhFrNwdfGBra5AmR1VMlwcRRlR+wqXLLv/KRfmFc61ng 6lwXtHEa51t46rFbxLWHVX3e15SEqrz55kxO4EJSVo5n5P7A190e26UaShep95rL 38w4jTtWtlptL7qPSC9WXEScnHMMbdvL62UvoQ4v4NMzInA/nXrO1XGBFbytp3PI AipQv90p8acCtrh6rQ8UOJs84+9fFSv6VSd9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUHwqT41ypW3SaaFhq4IgBJJbd1oYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSHdxVDQxeXBXM1NhYUZocTRJZ0JK SmJkMW9ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTGDAN BgkqhkiG9w0BAQsFAAOCAQEAJEki/jRwvZp9VVoQRkkeYLbC0kRaaJ8APmQTXTvy wlSW8SpgbWlb1fVHtarMeNmVw2T5nAOOTDNLlzKH/MvuEt7spBKAXy98RQnjcNmB rJC5pciWnxMoGsUsyJWweVEYb28f2xNsxeP8vNGQ+LCoaWfXFQJtFzxZeB8/bC8b 6xwyqjkQTwCysq/QhS21UuX08gPwrmHz/PJ5EmGPR3ckuKbXB752bMMJIRxa7wI9 DvfgcyxdIF8TvNy1gfBIet7NHYpXLy0PBG3Kx5yedc2aLpuATXXuM98ZHwoIsbHp u0y/M0pFE/V+vtFlIxunchQ3SG1o6WhCn5mVsCgOWxkDBA== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:31 2024 by rpki-client on console-fra.rpki-client.org