$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ioeob6CtPgGgBSlUbl3gfU3nF7w.roa File: Ioeob6CtPgGgBSlUbl3gfU3nF7w.roa (raw, json) Hash identifier: q8icVsPp7UpRjxcS/WWjV/qPBqbhlXN4IY2eG44oQzQ= Subject key identifier: 22:87:A8:6F:A0:AD:3E:01:A0:05:29:54:6E:5D:E0:7D:4D:E7:17:BC Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1687 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ioeob6CtPgGgBSlUbl3gfU3nF7w.roa Signing time: Mon 26 Aug 2024 05:22:18 +0000 ROA not before: Mon 26 Aug 2024 05:22:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.146.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5767 (0x1687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2287A86FA0AD3E01A00529546E5DE07D4DE717BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9f:e4:36:09:da:38:6d:04:e6:13:52:96:1d: be:cd:b2:67:87:00:bc:7c:aa:29:ca:4c:1c:01:aa: d3:97:99:03:d7:fb:75:6f:56:2f:14:1f:df:29:d3: 94:d7:1d:e0:79:25:40:d0:af:70:86:66:f6:d3:dc: af:a4:a1:af:de:d2:f7:da:bc:d3:aa:85:27:c0:38: e7:3d:34:10:be:09:9f:92:d4:22:c2:41:78:41:34: fe:f4:83:1e:a2:8e:46:8f:33:86:99:75:e4:57:9d: 60:d5:dc:7d:46:f3:08:6f:bd:30:eb:59:ad:76:6f: 89:f6:eb:d4:95:6c:d9:04:9b:3d:24:2a:8c:d3:e7: 59:66:3e:97:55:63:40:16:4c:db:c2:cf:9d:ff:69: 58:85:8e:b3:79:a1:bf:3a:4e:b1:df:4e:98:f1:e1: 18:2e:29:85:63:ce:02:db:ee:54:c2:4c:20:4e:31: a4:e2:cf:25:c0:63:ad:ae:cd:f3:fe:22:62:f3:ea: 2a:da:3b:99:b0:5f:b9:82:4a:39:3c:c5:df:30:3c: b0:50:3f:35:97:f8:ab:23:5b:5e:51:77:90:88:e3: 65:89:8e:c7:26:1a:7e:6f:72:91:90:43:35:8a:fe: 77:d4:ad:4c:02:1c:e6:d4:37:27:56:e0:86:4a:87: 00:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:87:A8:6F:A0:AD:3E:01:A0:05:29:54:6E:5D:E0:7D:4D:E7:17:BC X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ioeob6CtPgGgBSlUbl3gfU3nF7w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.96.0/19 Signature Algorithm: sha256WithRSAEncryption 76:91:8c:35:75:f8:33:ea:07:a2:bb:62:21:83:97:d0:41:3a: 19:a8:98:ed:e6:44:24:38:78:90:a0:96:50:ec:9e:f5:e3:e8: 1b:3f:12:4d:85:56:f5:76:aa:46:87:ac:a0:ca:de:cd:d1:85: 30:e1:71:25:b0:43:81:2f:2a:de:a6:b1:01:c4:a3:25:5a:f0: 2a:04:e7:fc:08:00:94:06:08:6f:6f:b9:10:8b:79:5a:52:f3: 31:02:5b:5e:dd:57:3b:31:ac:0c:72:ba:0d:b9:2a:d3:9b:48: e5:d7:b5:8e:2a:9f:33:22:71:f6:24:7e:1b:10:c7:0a:d0:45: e8:7b:6a:5a:a7:26:3f:30:67:03:13:88:96:2c:f4:71:fe:ab: ce:ea:ec:0b:42:3f:d6:ec:2d:c1:e7:8e:76:6e:af:38:4a:ff: c1:e1:6e:a6:5e:7f:c8:47:33:61:69:53:b3:bf:7d:5a:e8:f9: d8:8c:4f:aa:8e:0e:1c:64:8d:3a:c5:96:2c:f7:c9:99:67:17: b6:ac:1c:61:ed:fd:ac:ea:32:f5:0f:3c:31:dc:82:2a:d2:7e: d6:7a:75:d4:a1:3f:8f:c7:28:4c:fd:89:26:35:a5:d0:ef:95: ab:9a:f2:42:8f:67:00:18:45:5e:42:f4:09:f5:c5:b4:fa:82: 8f:7a:06:0d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFocwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIyODdBODZGQTBBRDNF MDFBMDA1Mjk1NDZFNURFMDdENERFNzE3QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLn+Q2Cdo4bQTmE1KWHb7NsmeHALx8qinKTBwBqtOXmQPX+3Vv Vi8UH98p05TXHeB5JUDQr3CGZvbT3K+koa/e0vfavNOqhSfAOOc9NBC+CZ+S1CLC QXhBNP70gx6ijkaPM4aZdeRXnWDV3H1G8whvvTDrWa12b4n269SVbNkEmz0kKozT 51lmPpdVY0AWTNvCz53/aViFjrN5ob86TrHfTpjx4RguKYVjzgLb7lTCTCBOMaTi zyXAY62uzfP+ImLz6iraO5mwX7mCSjk8xd8wPLBQPzWX+KsjW15Rd5CI42WJjscm Gn5vcpGQQzWK/nfUrUwCHObUNydW4IZKhwCpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUIoeob6CtPgGgBSlUbl3gfU3nF7wwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSW9lb2I2Q3RQZ0dnQlNsVWJsM2dm VTNuRjd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXqSYDAN BgkqhkiG9w0BAQsFAAOCAQEAdpGMNXX4M+oHortiIYOX0EE6GaiY7eZEJDh4kKCW UOye9ePoGz8STYVW9XaqRoesoMrezdGFMOFxJbBDgS8q3qaxAcSjJVrwKgTn/AgA lAYIb2+5EIt5WlLzMQJbXt1XOzGsDHK6Dbkq05tI5de1jiqfMyJx9iR+GxDHCtBF 6HtqWqcmPzBnAxOIliz0cf6rzursC0I/1uwtweeOdm6vOEr/weFupl5/yEczYWlT s799Wuj52IxPqo4OHGSNOsWWLPfJmWcXtqwcYe39rOoy9Q88MdyCKtJ+1np11KE/ j8coTP2JJjWl0O+Vq5ryQo9nABhFXkL0CfXFtPqCj3oGDQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org