$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/J7OIN9ElSXgeN5n82OPw3W3Kcbs.roa File: J7OIN9ElSXgeN5n82OPw3W3Kcbs.roa (raw, json) Hash identifier: bGw0QK3SLzeqaYCMtj7Ry6IhWIjJR/A+9IyKBZFtF1k= Subject key identifier: 27:B3:88:37:D1:25:49:78:1E:37:99:FC:D8:E3:F0:DD:6D:CA:71:BB Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 165C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J7OIN9ElSXgeN5n82OPw3W3Kcbs.roa Signing time: Mon 26 Aug 2024 05:22:06 +0000 ROA not before: Mon 26 Aug 2024 05:22:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131602 IP address blocks: 106.104.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5724 (0x165c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=27B38837D12549781E3799FCD8E3F0DD6DCA71BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:4b:ee:68:7c:92:cc:d5:3a:f8:d0:97:c7:26: 0b:3c:d1:2d:5e:86:18:36:ed:d2:a0:67:60:ed:d8: 49:bb:20:47:a4:f9:58:58:a4:2f:e1:db:df:d1:73: cc:27:b9:ad:30:d9:47:3b:99:89:23:5b:af:a6:a2: 1c:bc:db:30:30:6d:47:93:6a:9c:87:72:1c:8a:81: de:a0:9b:6c:4c:b0:cb:93:63:77:c5:24:10:76:9d: 9f:f9:4c:80:82:ee:f8:80:e8:4e:75:62:62:bf:ac: ad:41:01:8d:6e:a8:ab:74:76:4b:49:d7:3c:d5:65: 81:b1:d8:71:36:9f:4e:0e:2f:96:3f:19:d4:e5:3b: a9:ac:72:01:43:35:60:d1:d2:63:00:36:ac:91:52: 97:63:5c:26:8a:2c:b7:7f:53:8d:75:be:8a:86:f6: 85:2c:fd:59:1a:42:c9:4b:cd:5f:ca:87:aa:09:c4: 0c:4f:24:b4:3e:4e:2d:91:41:09:70:90:0b:0c:15: d7:ae:a5:c8:03:07:5a:c3:18:23:29:e0:50:65:2b: 32:92:e5:49:f6:5e:4c:2e:1a:29:f7:6a:04:d1:de: 77:fe:ff:fc:19:85:89:0f:8a:b0:a4:c7:4b:51:1c: a3:fb:24:b2:c5:27:83:3e:51:eb:d7:5a:89:52:88: 98:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:B3:88:37:D1:25:49:78:1E:37:99:FC:D8:E3:F0:DD:6D:CA:71:BB X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/J7OIN9ElSXgeN5n82OPw3W3Kcbs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.104.236.0/22 Signature Algorithm: sha256WithRSAEncryption 32:ee:79:c7:3b:4e:0d:09:1a:cd:6c:de:2c:15:5f:09:45:10: cc:70:54:f2:1d:45:df:bd:73:d5:97:02:2c:ad:43:1a:29:01: 2a:81:d6:3e:f4:0c:14:6e:80:f1:7b:7e:52:3b:b1:50:65:5d: 0c:79:87:41:f7:1d:73:f0:8a:ec:78:15:3a:6e:3c:9d:9f:c2: 54:40:a9:bc:b9:6e:38:7c:ee:1a:8f:31:54:a6:a0:1f:1c:38: e1:09:46:fa:f5:dc:d7:60:3f:dc:40:80:e5:fc:93:1c:a2:27: 51:0f:26:55:11:81:70:3e:30:a0:15:38:a1:56:fc:cc:92:71: 26:52:61:35:67:24:69:69:58:52:29:57:4a:6e:2e:d9:57:79: de:f2:02:2a:fd:c2:a5:1d:19:f6:d1:90:0a:0a:fb:3f:93:db: 9c:84:dc:95:98:f3:d5:64:94:52:fa:b5:87:d2:cf:72:45:16: ca:30:2d:02:b9:77:5a:0e:61:0b:a1:f3:b7:d1:49:5a:c7:fa: 93:62:12:82:a1:81:ff:8b:ec:5f:54:ec:02:28:96:17:08:c6: 1a:39:a7:06:6c:c1:60:9a:bb:f3:7b:5d:9c:59:48:f4:db:9e: 37:13:4d:67:be:74:49:3c:aa:01:2f:c7:1f:89:37:c2:3f:f2: b8:01:52:ca -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3QjM4ODM3RDEyNTQ5 NzgxRTM3OTlGQ0Q4RTNGMERENkRDQTcxQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0S+5ofJLM1Tr40JfHJgs80S1ehhg27dKgZ2Dt2Em7IEek+VhY pC/h29/Rc8wnua0w2Uc7mYkjW6+mohy82zAwbUeTapyHchyKgd6gm2xMsMuTY3fF JBB2nZ/5TICC7viA6E51YmK/rK1BAY1uqKt0dktJ1zzVZYGx2HE2n04OL5Y/GdTl O6mscgFDNWDR0mMANqyRUpdjXCaKLLd/U411voqG9oUs/VkaQslLzV/Kh6oJxAxP JLQ+Ti2RQQlwkAsMFdeupcgDB1rDGCMp4FBlKzKS5Un2XkwuGin3agTR3nf+//wZ hYkPirCkx0tRHKP7JLLFJ4M+UevXWolSiJihAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJ7OIN9ElSXgeN5n82OPw3W3KcbswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSjdPSU45RWxTWGdlTjVuODJPUHcz VzNLY2JzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmpo7DAN BgkqhkiG9w0BAQsFAAOCAQEAMu55xztODQkazWzeLBVfCUUQzHBU8h1F371z1ZcC LK1DGikBKoHWPvQMFG6A8Xt+UjuxUGVdDHmHQfcdc/CK7HgVOm48nZ/CVECpvLlu OHzuGo8xVKagHxw44QlG+vXc12A/3ECA5fyTHKInUQ8mVRGBcD4woBU4oVb8zJJx JlJhNWckaWlYUilXSm4u2Vd53vICKv3CpR0Z9tGQCgr7P5PbnITclZjz1WSUUvq1 h9LPckUWyjAtArl3Wg5hC6Hzt9FJWsf6k2ISgqGB/4vsX1TsAiiWFwjGGjmnBmzB YJq783tdnFlI9NueNxNNZ750STyqAS/HH4k3wj/yuAFSyg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org