$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/IingBhnVDhOabiDDAW9WJshQSEA.roa File: IingBhnVDhOabiDDAW9WJshQSEA.roa (raw, json) Hash identifier: aEUFDECqc3UdYyF5W5m/6OBlpieXBNhMmZhKecHcikw= Subject key identifier: 22:29:E0:06:19:D5:0E:13:9A:6E:20:C3:01:6F:56:26:C8:50:48:40 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1693 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IingBhnVDhOabiDDAW9WJshQSEA.roa Signing time: Mon 26 Aug 2024 05:22:21 +0000 ROA not before: Mon 26 Aug 2024 05:22:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131584 IP address blocks: 106.105.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5779 (0x1693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2229E00619D50E139A6E20C3016F5626C8504840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f1:be:55:46:31:f4:13:0b:60:e2:7a:14:1d: 98:b0:b2:45:c6:c5:1b:d2:a3:90:3c:74:3d:6c:2a: 8d:70:43:05:82:04:8c:bb:6b:95:35:30:d0:0d:e9: 3f:85:89:02:0a:11:7b:c3:7b:83:37:f1:58:4d:41: 7f:1d:9a:b2:1b:0e:19:5d:ec:bd:9f:1b:54:cc:2b: f0:a9:0a:de:8c:43:ad:12:1b:14:ae:74:f5:60:92: f9:06:d8:dc:e9:0f:bc:47:c1:df:df:7b:40:fe:96: 99:c7:c7:94:bd:cc:c7:27:92:9e:ae:9e:dc:08:4a: 63:19:37:e6:57:a8:04:95:7e:b0:b1:d6:f1:7f:99: 3f:63:ef:a0:aa:43:21:e5:02:a8:71:d9:20:45:30: 1d:57:52:c4:ac:34:38:ea:8d:ad:3e:fa:50:6e:1e: e7:1e:2b:17:e9:55:f9:b4:f2:f5:11:58:a4:9e:95: 2a:4e:41:a3:36:90:f5:de:8d:6f:fd:91:16:25:a8: b9:d1:47:9f:06:95:1d:d5:26:0e:3f:33:5b:5c:1b: 51:4c:2d:4d:3c:e0:ed:1d:88:72:66:90:c2:4c:7d: 5f:a3:8e:b8:59:97:b3:a8:5e:f0:e7:c8:37:3b:6a: 11:c4:10:e4:d3:da:81:bd:f2:bb:dd:15:72:37:cd: e4:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:29:E0:06:19:D5:0E:13:9A:6E:20:C3:01:6F:56:26:C8:50:48:40 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IingBhnVDhOabiDDAW9WJshQSEA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.181.0/24 Signature Algorithm: sha256WithRSAEncryption 52:e7:01:40:e0:33:ea:11:63:87:ea:1e:88:05:fb:b0:19:a8: 07:c1:e4:64:5b:e9:19:41:bc:08:81:5f:5d:5d:b7:c4:b5:2c: d0:e2:66:51:c6:3c:d4:eb:41:46:74:45:33:bb:a9:8c:93:20: 72:09:5c:82:06:a5:48:c7:dd:77:01:28:38:2e:07:41:2b:ba: 87:37:5b:0a:7c:0d:05:f1:08:aa:57:c8:01:f7:be:c1:98:b3: 67:82:c9:fd:f9:67:22:2f:73:26:19:9f:f4:70:30:73:40:63: 2c:f2:8a:f1:09:60:4a:ef:5e:9f:d1:b0:f0:c2:00:2c:45:9a: 47:a6:7f:02:21:d7:4a:c4:8a:ea:4d:7d:9b:ff:cf:0a:b5:b4: 3c:68:3d:0d:43:39:85:11:2a:b7:19:32:98:11:74:86:69:f4: 2e:a1:dc:be:47:65:59:99:2a:4d:41:9f:31:84:65:3c:ae:d8: 56:25:c6:df:0a:b8:6c:7f:f2:d4:58:58:27:91:0f:d6:b4:7d: c5:1c:d5:d1:0a:81:03:9a:5c:8c:49:b9:74:cd:fa:12:da:8a: f4:da:fc:c3:53:81:01:48:d2:4f:97:aa:80:e9:ee:0d:b3:64: 10:d7:ea:93:f2:7e:53:4a:c8:b7:27:8f:7b:0d:8f:da:a2:ef: 84:8b:1f:26 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFpMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIyMjlFMDA2MTlENTBF MTM5QTZFMjBDMzAxNkY1NjI2Qzg1MDQ4NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd8b5VRjH0Ewtg4noUHZiwskXGxRvSo5A8dD1sKo1wQwWCBIy7 a5U1MNAN6T+FiQIKEXvDe4M38VhNQX8dmrIbDhld7L2fG1TMK/CpCt6MQ60SGxSu dPVgkvkG2NzpD7xHwd/fe0D+lpnHx5S9zMcnkp6untwISmMZN+ZXqASVfrCx1vF/ mT9j76CqQyHlAqhx2SBFMB1XUsSsNDjqja0++lBuHuceKxfpVfm08vURWKSelSpO QaM2kPXejW/9kRYlqLnRR58GlR3VJg4/M1tcG1FMLU084O0diHJmkMJMfV+jjrhZ l7OoXvDnyDc7ahHEEOTT2oG98rvdFXI3zeQdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUIingBhnVDhOabiDDAW9WJshQSEAwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSWluZ0JoblZEaE9hYmlEREFXOVdK c2hRU0VBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGpptTAN BgkqhkiG9w0BAQsFAAOCAQEAUucBQOAz6hFjh+oeiAX7sBmoB8HkZFvpGUG8CIFf XV23xLUs0OJmUcY81OtBRnRFM7upjJMgcglcggalSMfddwEoOC4HQSu6hzdbCnwN BfEIqlfIAfe+wZizZ4LJ/flnIi9zJhmf9HAwc0BjLPKK8QlgSu9en9Gw8MIALEWa R6Z/AiHXSsSK6k19m//PCrW0PGg9DUM5hREqtxkymBF0hmn0LqHcvkdlWZkqTUGf MYRlPK7YViXG3wq4bH/y1FhYJ5EP1rR9xRzV0QqBA5pcjEm5dM36EtqK9Nr8w1OB AUjST5eqgOnuDbNkENfqk/J+U0rItyePew2P2qLvhIsfJg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org