$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LJsml9Xhe8njrdwdVPYuKkCv8Bo.roa File: LJsml9Xhe8njrdwdVPYuKkCv8Bo.roa (raw, json) Hash identifier: D25rks5SZvdrxslaoKQSCwwD7ZN5S7GRXk0v+GMw4gA= Subject key identifier: 2C:9B:26:97:D5:E1:7B:C9:E3:AD:DC:1D:54:F6:2E:2A:40:AF:F0:1A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1818 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LJsml9Xhe8njrdwdVPYuKkCv8Bo.roa Signing time: Mon 10 Feb 2025 14:07:34 +0000 ROA not before: Mon 10 Feb 2025 14:07:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 122.147.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6168 (0x1818) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:34 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2C9B2697D5E17BC9E3ADDC1D54F62E2A40AFF01A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:c5:dd:42:60:bd:98:6c:45:7a:e5:0b:79:d7: eb:89:cf:57:f1:95:8a:b1:a7:6c:69:42:d9:21:62: 2a:9f:4b:3d:7c:3d:38:97:bc:73:b9:6a:ab:3f:0c: 59:fa:7e:bd:92:77:e7:c4:38:f5:8a:e0:5c:ef:1f: 66:5b:6e:8f:40:53:75:2f:5f:85:20:6d:7a:22:9b: 71:55:af:ab:49:fa:35:23:d1:52:79:e9:a0:46:58: 5a:44:59:4b:61:ca:d4:89:68:78:a9:a3:54:0d:2f: e2:58:c6:12:e8:7c:a1:e9:9f:3d:b6:86:5a:1e:19: 57:d3:9a:90:85:c1:59:21:45:a1:35:67:e2:93:21: a4:4c:63:4a:09:01:87:44:7f:85:d3:c7:90:3a:4e: 66:b3:35:b9:6e:a6:c9:4f:5f:f0:46:3a:89:64:69: 13:8d:bb:9f:7f:aa:9d:e1:dd:27:2f:00:ed:6f:c0: 88:a4:34:48:2c:97:b1:d0:19:54:4e:27:17:58:1c: 45:cb:1a:a5:82:79:be:78:3f:06:3a:5f:38:b4:59: 7a:e8:23:fb:9b:f8:bb:aa:90:19:6e:09:57:69:0c: ee:8c:0a:c4:f6:bc:fa:33:75:f4:73:eb:47:98:1a: ad:2d:8f:57:31:61:bf:53:9f:ad:09:d3:92:3c:51: ce:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:9B:26:97:D5:E1:7B:C9:E3:AD:DC:1D:54:F6:2E:2A:40:AF:F0:1A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LJsml9Xhe8njrdwdVPYuKkCv8Bo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.16.0/21 Signature Algorithm: sha256WithRSAEncryption bf:f4:09:c4:11:0a:5c:d9:14:de:ee:07:52:a3:f1:db:b9:34: 2a:cc:35:a1:da:5c:e7:d1:6d:7f:6e:9b:27:97:d6:86:c4:38: 74:17:a7:a8:4c:ba:aa:3a:ea:ac:a6:fa:89:b2:f7:c4:cb:4a: 81:db:b2:71:48:2d:93:55:ac:78:df:9a:1e:60:49:96:eb:89: 41:8c:aa:cb:3f:80:73:51:7b:53:10:57:bc:16:4e:e2:1b:69: dd:6f:fd:2f:8c:d6:c8:95:72:36:bf:bf:4e:d5:88:8d:44:e9: 2d:fd:3e:ae:56:d8:61:30:24:0a:b9:16:51:e1:76:4d:8f:f2: 28:e9:18:7d:f2:63:0c:b4:bc:59:54:7c:57:67:5e:0f:1b:a3: f1:f8:8a:8f:0b:0a:cd:08:81:a0:d6:c3:6c:70:28:c9:05:11: fe:54:54:91:f2:10:20:d9:80:3e:f4:53:ce:ae:d9:fa:da:5b: 4b:36:e7:2c:06:9d:39:35:2f:70:6e:3f:c7:91:b8:e1:12:31: c6:c1:ec:01:93:54:6d:fe:29:2b:05:24:73:74:79:bf:75:5e: 6d:aa:51:7f:7f:ae:dc:55:c5:66:2a:2a:22:c0:24:30:af:bf: 16:da:aa:08:a2:91:5f:c4:80:ab:73:6b:c9:80:02:0c:7f:28: 3f:00:5d:06 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJDOUIyNjk3RDVFMTdC QzlFM0FEREMxRDU0RjYyRTJBNDBBRkYwMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwxd1CYL2YbEV65Qt51+uJz1fxlYqxp2xpQtkhYiqfSz18PTiX vHO5aqs/DFn6fr2Sd+fEOPWK4FzvH2Zbbo9AU3UvX4UgbXoim3FVr6tJ+jUj0VJ5 6aBGWFpEWUthytSJaHipo1QNL+JYxhLofKHpnz22hloeGVfTmpCFwVkhRaE1Z+KT IaRMY0oJAYdEf4XTx5A6TmazNblupslPX/BGOolkaRONu59/qp3h3ScvAO1vwIik NEgsl7HQGVROJxdYHEXLGqWCeb54PwY6Xzi0WXroI/ub+LuqkBluCVdpDO6MCsT2 vPozdfRz60eYGq0tj1cxYb9Tn60J05I8Uc4hAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULJsml9Xhe8njrdwdVPYuKkCv8BowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTEpzbWw5WGhlOG5qcmR3ZFZQWXVL a0N2OEJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTEDAN BgkqhkiG9w0BAQsFAAOCAQEAv/QJxBEKXNkU3u4HUqPx27k0Ksw1odpc59Ftf26b J5fWhsQ4dBenqEy6qjrqrKb6ibL3xMtKgduycUgtk1WseN+aHmBJluuJQYyqyz+A c1F7UxBXvBZO4htp3W/9L4zWyJVyNr+/TtWIjUTpLf0+rlbYYTAkCrkWUeF2TY/y KOkYffJjDLS8WVR8V2deDxuj8fiKjwsKzQiBoNbDbHAoyQUR/lRUkfIQINmAPvRT zq7Z+tpbSzbnLAadOTUvcG4/x5G44RIxxsHsAZNUbf4pKwUkc3R5v3VebapRf3+u 3FXFZioqIsAkMK+/FtqqCKKRX8SAq3NryYACDH8oPwBdBg== -----END CERTIFICATE-----Generated at Mon Apr 7 07:49:59 2025 by rpki-client