$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/N1pQueg74WkmN1MvV6tOKRV9JjM.roa File: N1pQueg74WkmN1MvV6tOKRV9JjM.roa (raw, json) Hash identifier: F6hO02PvYqnI165m34j8wpI93/aYOWmnBrLm8hPAQNo= Subject key identifier: 37:5A:50:B9:E8:3B:E1:69:26:37:53:2F:57:AB:4E:29:15:7D:26:33 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 161C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/N1pQueg74WkmN1MvV6tOKRV9JjM.roa Signing time: Mon 26 Aug 2024 05:21:47 +0000 ROA not before: Mon 26 Aug 2024 05:21:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 122.147.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5660 (0x161c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=375A50B9E83BE1692637532F57AB4E29157D2633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:eb:0a:a1:04:8d:d6:7d:0d:44:51:8d:48:f1: 10:03:a0:8b:65:75:a6:57:d1:01:57:41:2c:7d:bc: 55:a6:a0:73:1e:a3:15:f1:df:97:49:f9:02:5f:cb: ed:82:d8:a6:ed:06:4b:2e:28:98:31:51:6b:52:97: dd:32:bf:10:53:b6:f9:50:96:a8:e1:dd:68:15:86: 0e:7e:d6:85:ef:8f:cf:b1:ab:78:38:05:99:9f:f8: c2:02:64:7a:7c:d8:80:cf:b0:ed:3f:fd:61:bd:62: da:f2:c7:27:03:b3:e7:56:6a:be:4b:1c:e0:4f:5e: 6e:94:c6:ce:6f:ce:cb:e0:d3:83:f7:9c:35:54:75: 02:61:92:5d:a0:3b:2f:fd:fa:7b:46:67:da:9b:34: 00:93:0d:37:71:0b:05:62:95:05:a0:1f:c0:b3:5a: ca:73:6c:69:f0:f8:d2:e0:37:96:db:bd:3c:ec:e2: bc:cd:ac:48:69:9c:09:39:35:a3:cf:f8:81:89:e6: e6:a9:4c:97:9e:eb:14:dc:f6:25:20:09:a9:a1:2c: 8c:f5:07:4b:a2:91:93:d5:3e:b7:dc:9c:bc:82:8b: 46:62:ff:c6:31:9d:5f:18:d6:fd:70:54:20:76:69: 7b:75:4c:14:f6:dd:5d:fd:45:39:a2:8f:1d:ce:b0: 8a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:5A:50:B9:E8:3B:E1:69:26:37:53:2F:57:AB:4E:29:15:7D:26:33 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/N1pQueg74WkmN1MvV6tOKRV9JjM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.16.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:7b:35:e1:53:0e:03:23:67:b5:e8:f8:f0:b5:37:aa:b2:a2: 85:53:04:dc:97:d9:c3:6a:91:af:73:6f:f4:06:9f:68:64:21: ce:31:81:59:1f:4d:2d:ec:8d:b0:51:6e:58:d7:82:bf:3a:db: be:68:48:dc:20:08:b9:01:c5:a0:4c:b1:bb:67:1d:4c:3e:88: 35:8a:34:28:62:c8:cf:8a:84:a0:62:cb:48:f6:f0:1b:56:49: c2:04:6d:73:0c:9c:4f:ae:01:71:ec:84:80:b4:41:81:9c:90: c1:7c:1f:2c:ae:ea:06:05:45:60:c8:81:57:af:27:cd:60:a4: e9:56:61:e5:8e:76:8b:27:43:71:2d:16:00:22:26:02:b9:21: c6:df:f8:1a:5c:4c:9d:dc:65:44:76:49:d5:88:b9:e1:d4:89: 1b:02:43:32:6c:a3:8b:14:ea:eb:52:a0:86:d6:4c:35:4a:7a: 88:c0:4b:f4:14:cc:b7:81:ad:75:88:05:53:c5:50:a3:e4:2f: c9:7f:e9:02:2a:56:e3:d0:22:2d:da:86:29:ed:27:5e:59:2b: 77:8f:ed:84:b2:a1:ae:92:6e:b4:c8:d4:8e:4d:f8:7a:1a:dd: b0:06:a2:77:de:86:5a:d2:5e:5f:b2:5d:1b:62:92:d6:d7:09: 29:fe:1d:a8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFhwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NUE1MEI5RTgzQkUx NjkyNjM3NTMyRjU3QUI0RTI5MTU3RDI2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDX6wqhBI3WfQ1EUY1I8RADoItldaZX0QFXQSx9vFWmoHMeoxXx 35dJ+QJfy+2C2KbtBksuKJgxUWtSl90yvxBTtvlQlqjh3WgVhg5+1oXvj8+xq3g4 BZmf+MICZHp82IDPsO0//WG9YtryxycDs+dWar5LHOBPXm6Uxs5vzsvg04P3nDVU dQJhkl2gOy/9+ntGZ9qbNACTDTdxCwVilQWgH8CzWspzbGnw+NLgN5bbvTzs4rzN rEhpnAk5NaPP+IGJ5uapTJee6xTc9iUgCamhLIz1B0uikZPVPrfcnLyCi0Zi/8Yx nV8Y1v1wVCB2aXt1TBT23V39RTmijx3OsIpnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUN1pQueg74WkmN1MvV6tOKRV9JjMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTjFwUXVlZzc0V2ttTjFNdlY2dE9L UlY5SmpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3qTEDAN BgkqhkiG9w0BAQsFAAOCAQEAi3s14VMOAyNntej48LU3qrKihVME3JfZw2qRr3Nv 9AafaGQhzjGBWR9NLeyNsFFuWNeCvzrbvmhI3CAIuQHFoEyxu2cdTD6INYo0KGLI z4qEoGLLSPbwG1ZJwgRtcwycT64BceyEgLRBgZyQwXwfLK7qBgVFYMiBV68nzWCk 6VZh5Y52iydDcS0WACImArkhxt/4GlxMndxlRHZJ1Yi54dSJGwJDMmyjixTq61Kg htZMNUp6iMBL9BTMt4GtdYgFU8VQo+QvyX/pAipW49AiLdqGKe0nXlkrd4/thLKh rpJutMjUjk34ehrdsAaid96GWtJeX7JdG2KS1tcJKf4dqA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:11 2024 by rpki-client on console-fra.rpki-client.org