$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/LRxE9Qh_qRHKdcYwASj2V5dh_9w.roa File: LRxE9Qh_qRHKdcYwASj2V5dh_9w.roa (raw, json) Hash identifier: RC15J/qiEMYoeS16cn3JntFFezhLkQydD1h2SZVdBuU= Subject key identifier: 2D:1C:44:F5:08:7F:A9:11:CA:75:C6:30:01:28:F6:57:97:61:FF:DC Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 163E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LRxE9Qh_qRHKdcYwASj2V5dh_9w.roa Signing time: Mon 26 Aug 2024 05:21:57 +0000 ROA not before: Mon 26 Aug 2024 05:21:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 123.51.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5694 (0x163e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2D1C44F5087FA911CA75C6300128F6579761FFDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:25:6e:60:4d:ff:7a:13:cc:fb:ab:2e:43:6d: 42:04:e6:b0:62:43:2c:a8:a6:0d:6c:2e:57:92:e4: 6d:8e:3a:e0:7d:45:eb:88:e1:92:19:f3:ab:ad:d2: 36:ce:1f:24:aa:bd:20:da:d3:c9:6e:bf:10:09:fd: de:01:82:a8:5a:81:54:55:b4:28:cc:f5:f3:d0:3b: 3b:51:23:60:0a:04:58:a2:bc:64:7f:3f:9a:48:72: 81:3f:3d:71:e2:98:81:8c:b8:b8:38:f9:0c:c2:1e: 78:39:6d:39:38:1e:06:8c:52:48:59:b3:2c:ba:cc: da:16:0a:27:9a:e1:e3:4e:ad:8c:1b:3b:85:7a:ca: e3:a5:37:0b:4c:dc:a1:27:82:85:14:24:d8:9e:b4: 72:27:02:19:fb:69:b5:23:50:1f:af:17:af:59:e1: 2e:fb:bc:4a:0a:bc:7f:c7:d1:9f:0c:0f:53:4d:09: 16:6d:29:86:a1:f6:17:a8:6c:9e:9f:cf:71:f4:58: 90:e8:d1:a1:3a:07:3a:ad:71:f1:1e:88:d7:77:13: 3e:d8:ef:16:a8:96:8b:a5:86:31:52:ac:8a:3e:47: e8:22:77:a8:02:c9:b9:2b:4d:ee:12:db:3f:6f:16: a7:8e:5f:32:38:18:08:aa:bb:ee:a9:e2:86:7a:3b: 57:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:1C:44:F5:08:7F:A9:11:CA:75:C6:30:01:28:F6:57:97:61:FF:DC X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/LRxE9Qh_qRHKdcYwASj2V5dh_9w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.51.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5d:f9:9f:68:88:b9:09:55:9f:75:e0:a9:ed:fe:54:48:48:7b: 78:df:df:40:9e:9c:16:51:19:e9:e9:78:6c:d8:26:5a:a0:5f: 27:ce:a5:aa:55:b7:07:a7:76:c2:17:e9:6a:32:6b:07:4c:22: d5:d4:b1:df:6f:34:9b:ae:81:f8:80:49:45:da:4b:82:88:92: ed:16:b2:61:76:a2:54:4b:91:36:4e:0a:2b:ce:e1:7a:8f:b7: 9f:75:31:01:c7:50:aa:e7:02:a8:36:bf:24:a8:6e:9b:e1:12: 12:98:72:ab:2f:ff:40:17:48:c5:cd:cd:90:fd:8d:ec:d3:69: 94:ac:54:a7:d2:af:7f:7a:30:50:6f:9a:62:b4:0b:1f:79:13: 5a:ac:95:80:14:9f:75:2a:89:7d:4c:58:26:a3:10:c1:b0:d7: 71:c7:61:b7:32:84:87:ee:db:f5:3e:76:4f:ca:f5:5b:98:a0: cc:ba:8d:87:dd:57:9a:48:47:c8:d1:1e:26:2f:8c:2e:3c:9a: ca:3e:eb:73:e4:a7:7d:81:1c:36:70:2e:5b:af:1a:3e:88:ce: 26:3e:e8:a0:29:f1:e8:ce:c7:af:da:f6:f9:4b:aa:73:26:79: 89:81:c1:7c:f8:aa:ce:b4:cc:e6:fb:7e:e9:4f:c5:b7:d4:3d: da:67:e6:46 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFj4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJEMUM0NEY1MDg3RkE5 MTFDQTc1QzYzMDAxMjhGNjU3OTc2MUZGREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5JW5gTf96E8z7qy5DbUIE5rBiQyyopg1sLleS5G2OOuB9ReuI 4ZIZ86ut0jbOHySqvSDa08luvxAJ/d4BgqhagVRVtCjM9fPQOztRI2AKBFiivGR/ P5pIcoE/PXHimIGMuLg4+QzCHng5bTk4HgaMUkhZsyy6zNoWCiea4eNOrYwbO4V6 yuOlNwtM3KEngoUUJNietHInAhn7abUjUB+vF69Z4S77vEoKvH/H0Z8MD1NNCRZt KYah9heobJ6fz3H0WJDo0aE6BzqtcfEeiNd3Ez7Y7xaoloulhjFSrIo+R+gid6gC ybkrTe4S2z9vFqeOXzI4GAiqu+6p4oZ6O1f1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQULRxE9Qh/qRHKdcYwASj2V5dh/9wwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTFJ4RTlRaF9xUkhLZGNZd0FTajJW NWRoXzl3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3szgDAN BgkqhkiG9w0BAQsFAAOCAQEAXfmfaIi5CVWfdeCp7f5USEh7eN/fQJ6cFlEZ6el4 bNgmWqBfJ86lqlW3B6d2whfpajJrB0wi1dSx3280m66B+IBJRdpLgoiS7RayYXai VEuRNk4KK87heo+3n3UxAcdQqucCqDa/JKhum+ESEphyqy//QBdIxc3NkP2N7NNp lKxUp9Kvf3owUG+aYrQLH3kTWqyVgBSfdSqJfUxYJqMQwbDXccdhtzKEh+7b9T52 T8r1W5igzLqNh91XmkhHyNEeJi+MLjyayj7rc+SnfYEcNnAuW68aPojOJj7ooCnx 6M7Hr9r2+UuqcyZ5iYHBfPiqzrTM5vt+6U/Ft9Q92mfmRg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org