$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/IjB0QQkWgN6pnaliK1q5zHGAg9k.roa File: IjB0QQkWgN6pnaliK1q5zHGAg9k.roa (raw, json) Hash identifier: mP2+izLL1qXZ7Dg4gRcIslr44WRAqbVWHZq9zHLjk68= Subject key identifier: 22:30:74:41:09:16:80:DE:A9:9D:A9:62:2B:5A:B9:CC:71:80:83:D9 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1627 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IjB0QQkWgN6pnaliK1q5zHGAg9k.roa Signing time: Mon 26 Aug 2024 05:21:50 +0000 ROA not before: Mon 26 Aug 2024 05:21:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 122.147.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5671 (0x1627) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=22307441091680DEA99DA9622B5AB9CC718083D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ae:c2:f2:56:a9:66:49:b0:27:20:d7:86:44: 57:95:ca:dd:dc:fe:47:e9:e5:84:6e:c8:7d:81:92: fb:b0:33:d4:db:cf:88:9e:e5:c4:6d:73:2f:1e:c4: de:5b:d5:30:34:7b:c3:3f:a8:70:b8:93:85:f2:c7: bb:78:f7:74:d1:50:bb:58:12:a5:37:32:12:27:70: bb:2d:53:6a:15:83:73:ea:0e:ff:9d:97:2a:9f:5b: 5e:5e:da:54:ba:f6:86:6f:e4:3f:dd:25:78:a6:54: 04:56:9f:df:67:11:59:5c:46:58:d0:e4:24:a8:d4: 89:6c:50:15:84:9d:13:26:04:b8:3e:c6:93:96:ab: 93:85:4e:2b:36:53:9c:53:64:29:47:8c:06:1f:1c: 02:ce:3e:f7:ec:bd:48:85:99:2b:1d:41:53:40:1c: ea:41:ba:97:23:df:2d:2f:4b:3e:0e:3f:d2:82:59: 66:a4:a0:a7:0a:b6:43:47:03:58:46:19:67:19:33: f8:4e:2e:0d:a4:2b:47:9b:69:58:ae:17:36:74:12: 68:b4:ce:aa:33:73:e4:29:b4:9e:01:01:b6:2a:ac: 94:2a:ee:9b:00:a7:22:55:da:6a:c0:eb:fb:26:85: d5:ea:55:57:74:37:c3:e9:52:78:98:f6:61:0e:32: 92:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:30:74:41:09:16:80:DE:A9:9D:A9:62:2B:5A:B9:CC:71:80:83:D9 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IjB0QQkWgN6pnaliK1q5zHGAg9k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.24.0/21 Signature Algorithm: sha256WithRSAEncryption be:86:12:3d:61:1e:a7:9b:95:c7:19:8d:e5:6c:7b:07:b2:5e: ca:c1:a4:12:f9:ec:3c:95:ad:53:6b:e8:ff:a3:9a:fb:18:be: 97:ca:69:52:e9:ff:50:2f:cc:e7:87:09:ae:b2:c4:a3:6a:39: 1b:73:6c:cf:12:ab:c0:dd:b1:0b:24:91:84:09:9b:e1:6e:66: 53:cc:03:8a:85:ef:57:43:e0:87:5a:fc:40:3b:e1:8a:b4:7a: c3:56:e8:27:6a:bb:5d:ee:17:29:12:9d:16:64:a4:73:42:27: 34:74:ed:7c:67:ca:fd:18:de:0b:76:5b:9e:11:15:90:66:38: e6:2e:8d:bb:48:a1:76:10:68:5d:27:4b:a6:c6:b1:4b:22:c7: 92:82:52:e7:68:eb:de:85:ae:ad:ed:3c:9f:85:e0:c9:98:10: 1e:5f:88:1f:20:04:fb:bb:dd:81:77:78:6f:28:ca:0f:51:10: 1d:48:f2:d9:d0:02:af:e0:45:53:38:6f:1e:46:b0:71:3d:bc: ce:c8:1e:80:e8:9a:fd:ef:2d:a8:ed:09:50:d7:cd:21:2b:94: 29:76:3f:45:f7:df:88:9b:b3:45:36:42:69:9b:4c:59:a3:91: 9c:35:7d:61:67:4e:cc:ae:ba:e0:9e:e6:95:37:2e:03:ee:0b: c7:a5:77:d4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIyMzA3NDQxMDkxNjgw REVBOTlEQTk2MjJCNUFCOUNDNzE4MDgzRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWrsLyVqlmSbAnINeGRFeVyt3c/kfp5YRuyH2BkvuwM9Tbz4ie 5cRtcy8exN5b1TA0e8M/qHC4k4Xyx7t493TRULtYEqU3MhIncLstU2oVg3PqDv+d lyqfW15e2lS69oZv5D/dJXimVARWn99nEVlcRljQ5CSo1IlsUBWEnRMmBLg+xpOW q5OFTis2U5xTZClHjAYfHALOPvfsvUiFmSsdQVNAHOpBupcj3y0vSz4OP9KCWWak oKcKtkNHA1hGGWcZM/hOLg2kK0ebaViuFzZ0Emi0zqozc+QptJ4BAbYqrJQq7psA pyJV2mrA6/smhdXqVVd0N8PpUniY9mEOMpJJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUIjB0QQkWgN6pnaliK1q5zHGAg9kwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSWpCMFFRa1dnTjZwbmFsaUsxcTV6 SEdBZzlrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTGDAN BgkqhkiG9w0BAQsFAAOCAQEAvoYSPWEep5uVxxmN5Wx7B7JeysGkEvnsPJWtU2vo /6Oa+xi+l8ppUun/UC/M54cJrrLEo2o5G3NszxKrwN2xCySRhAmb4W5mU8wDioXv V0Pgh1r8QDvhirR6w1boJ2q7Xe4XKRKdFmSkc0InNHTtfGfK/RjeC3ZbnhEVkGY4 5i6Nu0ihdhBoXSdLpsaxSyLHkoJS52jr3oWure08n4XgyZgQHl+IHyAE+7vdgXd4 byjKD1EQHUjy2dACr+BFUzhvHkawcT28zsgegOia/e8tqO0JUNfNISuUKXY/Rfff iJuzRTZCaZtMWaORnDV9YWdOzK664J7mlTcuA+4Lx6V31A== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:31 2024 by rpki-client on console-fra.rpki-client.org