$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LImDKBseBAyKCeWUP1spnHr7tVw.roa File: LImDKBseBAyKCeWUP1spnHr7tVw.roa (raw, json) Hash identifier: 5MAs5E2+NVRJIMAk08wme24nGYEgcSkb6DhlvFdPfQ8= Subject key identifier: 2C:89:83:28:1B:1E:04:0C:8A:09:E5:94:3F:5B:29:9C:7A:FB:B5:5C Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1631 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LImDKBseBAyKCeWUP1spnHr7tVw.roa Signing time: Mon 26 Aug 2024 05:21:53 +0000 ROA not before: Mon 26 Aug 2024 05:21:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.105.164.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5681 (0x1631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2C8983281B1E040C8A09E5943F5B299C7AFBB55C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:13:95:3f:a8:9d:f8:a7:23:d8:3c:a7:55: 1c:c1:58:59:18:7f:af:6c:43:eb:73:34:34:26:d7: 7b:90:2a:b3:63:e3:71:e0:ce:c5:bc:ae:ff:6f:e1: b3:7a:29:9d:8f:cc:fa:88:63:52:b2:c5:74:5e:70: 2e:cf:8b:0b:7f:6c:1e:d3:0e:46:cd:d6:26:66:53: 4f:2b:bc:11:a3:6e:6d:b0:1c:48:c5:f4:d1:b8:39: 9c:a5:3e:7d:49:16:a9:04:93:c5:ac:f2:f9:59:64: 2f:24:b1:26:da:7e:32:89:31:15:f1:48:a3:8c:82: 88:fe:9f:61:27:f2:ba:b0:52:c1:1b:4e:45:c4:13: 27:7b:38:b1:e9:62:9e:c6:7e:e5:0a:3f:98:e3:56: 09:bd:31:64:da:61:40:5b:b6:f2:57:ad:7b:84:20: 64:00:63:4d:c7:71:ae:c7:8c:13:f0:d3:db:01:b4: 2d:6f:29:ae:21:d7:13:df:d9:4a:ec:64:9e:13:6f: be:c9:66:64:6c:4c:6a:c6:99:96:d3:50:79:98:ea: 0f:b2:4e:77:8f:56:e1:81:52:50:55:9c:6f:3c:40: 74:c9:1f:44:b7:04:04:32:60:51:6f:f3:53:3a:44: 38:02:5c:15:79:c4:88:78:c1:ac:af:3b:a3:c6:31: 90:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:89:83:28:1B:1E:04:0C:8A:09:E5:94:3F:5B:29:9C:7A:FB:B5:5C X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LImDKBseBAyKCeWUP1spnHr7tVw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.164.0/22 Signature Algorithm: sha256WithRSAEncryption 80:27:bd:d3:bb:dc:2c:5a:cc:be:ac:60:b6:cf:e5:e7:ab:9f: 0a:0f:c1:00:53:c1:ee:c9:97:ab:74:02:76:10:74:79:8c:ba: 05:ca:5a:48:54:91:44:c8:2f:55:e4:f5:d4:0a:e1:27:56:59: 9a:48:08:aa:1e:a4:69:1b:b8:8e:9e:37:5a:6f:00:be:5b:84: d0:96:39:dd:a3:3d:c1:f3:73:46:c7:18:37:a0:63:65:fb:94: 3f:23:d1:fa:82:fa:7c:0b:04:5a:98:be:44:f0:bf:58:e3:ec: eb:d4:3f:25:4d:f9:51:e9:c4:e2:c1:8f:3a:13:aa:e7:99:54: ba:a1:0c:49:b5:81:ff:19:c9:24:05:4b:d6:6a:69:d4:ba:e8: 06:12:5a:a8:70:1e:0a:63:7e:ae:9f:de:9c:66:25:91:94:26: 3c:1a:f6:ea:ae:2f:ed:bb:8b:87:5a:96:b6:0a:9a:81:d9:bd: 4a:a1:8d:dc:92:44:36:32:40:da:71:9b:3e:34:4e:fc:17:fb: bb:04:9f:29:06:85:e4:9c:ea:87:d6:46:38:02:08:ed:54:a4: 7e:b0:fd:5b:cf:f4:ea:92:3e:d8:32:97:97:38:53:5b:5f:29: cf:ef:ed:dc:b3:9b:9a:5c:c5:54:fa:92:c3:2b:d4:b0:c3:8e: e1:47:30:85 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFjEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJDODk4MzI4MUIxRTA0 MEM4QTA5RTU5NDNGNUIyOTlDN0FGQkI1NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7ghOVP6id+Kcj2DynVRzBWFkYf69sQ+tzNDQm13uQKrNj43Hg zsW8rv9v4bN6KZ2PzPqIY1KyxXRecC7Piwt/bB7TDkbN1iZmU08rvBGjbm2wHEjF 9NG4OZylPn1JFqkEk8Ws8vlZZC8ksSbafjKJMRXxSKOMgoj+n2En8rqwUsEbTkXE Eyd7OLHpYp7GfuUKP5jjVgm9MWTaYUBbtvJXrXuEIGQAY03Hca7HjBPw09sBtC1v Ka4h1xPf2UrsZJ4Tb77JZmRsTGrGmZbTUHmY6g+yTnePVuGBUlBVnG88QHTJH0S3 BAQyYFFv81M6RDgCXBV5xIh4wayvO6PGMZDZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULImDKBseBAyKCeWUP1spnHr7tVwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTEltREtCc2VCQXlLQ2VXVVAxc3Bu SHI3dFZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmpppDAN BgkqhkiG9w0BAQsFAAOCAQEAgCe907vcLFrMvqxgts/l56ufCg/BAFPB7smXq3QC dhB0eYy6BcpaSFSRRMgvVeT11ArhJ1ZZmkgIqh6kaRu4jp43Wm8AvluE0JY53aM9 wfNzRscYN6BjZfuUPyPR+oL6fAsEWpi+RPC/WOPs69Q/JU35UenE4sGPOhOq55lU uqEMSbWB/xnJJAVL1mpp1LroBhJaqHAeCmN+rp/enGYlkZQmPBr26q4v7buLh1qW tgqagdm9SqGN3JJENjJA2nGbPjRO/Bf7uwSfKQaF5Jzqh9ZGOAII7VSkfrD9W8/0 6pI+2DKXlzhTW18pz+/t3LObmlzFVPqSwyvUsMOO4UcwhQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org