$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/NjPF487NHNQJh447vnZnaO8oIow.roa File: NjPF487NHNQJh447vnZnaO8oIow.roa (raw, json) Hash identifier: oeBR7xh5XcZCqoSCMuBRdA9oyfP6QLf168QPDBbFVJ8= Subject key identifier: 36:33:C5:E3:CE:CD:1C:D4:09:87:8E:3B:BE:76:67:68:EF:28:22:8C Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 15F6 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NjPF487NHNQJh447vnZnaO8oIow.roa Signing time: Mon 26 Aug 2024 05:21:38 +0000 ROA not before: Mon 26 Aug 2024 05:21:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 220.229.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5622 (0x15f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3633C5E3CECD1CD409878E3BBE766768EF28228C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4f:02:9e:10:c6:96:ae:61:06:c6:97:cd:93: 05:a1:e4:b0:b3:1f:b2:ae:67:d0:6c:d4:2b:f2:91: d3:80:c6:9d:bc:73:6c:b2:27:75:79:5b:70:39:1c: 02:af:7e:a1:c4:ca:27:1d:00:77:ca:74:3f:64:8b: e5:dc:11:70:f9:00:92:bb:57:b3:b6:fa:04:49:a9: 01:94:6b:0a:0b:94:32:56:c7:66:6a:7d:f3:ad:d4: c7:8a:ec:38:e0:be:ab:37:bb:8d:37:44:9e:b4:3c: 09:20:31:ef:62:1b:46:e1:52:4e:a7:77:7f:74:c9: 8e:6a:b8:eb:04:7d:f5:3c:1b:82:38:2f:ef:5d:d5: aa:45:c5:5a:a5:a5:52:0c:0c:10:55:bf:96:ff:61: a3:20:bc:cd:ae:9e:1d:bb:3e:ba:93:31:69:c3:5a: 3e:e9:35:cb:f1:cd:ea:3e:b6:88:49:7a:8b:3c:27: 8d:45:bd:26:6c:cf:c3:74:15:79:5f:1e:1d:9a:db: 1c:05:04:c7:00:05:65:df:8c:19:73:d3:e2:1a:16: 30:73:82:3c:d0:f7:8f:c3:0a:af:05:5d:50:54:11: 11:9f:27:21:cb:e8:ce:ee:ea:23:42:76:72:4b:22: 2a:00:71:f5:5a:0c:95:c3:bb:37:98:28:18:0e:20: 99:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:33:C5:E3:CE:CD:1C:D4:09:87:8E:3B:BE:76:67:68:EF:28:22:8C X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/NjPF487NHNQJh447vnZnaO8oIow.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.68.0/22 Signature Algorithm: sha256WithRSAEncryption 3c:a5:fc:48:8d:26:4d:23:a6:df:04:fa:93:0a:63:2f:c4:ad: a4:68:08:b2:76:b7:0a:c5:30:73:9b:f6:ec:d1:42:ab:e9:ae: e9:5b:67:29:7b:27:16:87:53:29:f9:cc:e7:59:6a:3e:63:32: aa:a2:5b:3c:45:76:24:ee:37:e0:65:51:c7:9a:0b:ad:ff:39: 63:76:db:75:e8:06:ff:f8:7c:7f:cc:fa:5c:95:48:50:0a:b6: 7d:f3:24:df:07:43:36:8c:bf:43:a7:5f:68:01:11:93:86:c1: 92:1d:82:6f:5a:72:a5:b7:e0:40:a7:b8:e5:c1:5a:cf:a8:9c: 91:34:6a:cf:88:42:4d:fc:38:0d:fa:bc:de:da:ca:f1:a2:13: d5:1c:af:d9:06:e0:a8:af:7a:2c:cd:11:9b:f1:7e:29:bb:b1: 78:4b:14:f1:b0:a7:7c:68:45:de:6e:44:b9:9d:1b:5e:01:10: 75:49:44:40:e0:bf:36:e0:e8:8f:83:e8:89:a9:4f:d0:8f:7d: 91:b2:f1:c4:4c:02:e4:44:64:42:b3:fa:b9:ae:4b:b0:9c:f1: 8a:12:34:47:05:91:72:54:fa:f5:ca:28:e5:41:96:69:df:c4: ed:7e:bf:1e:ba:3c:7c:2c:0f:cf:fa:e7:2b:18:6b:14:39:25: c3:cb:3c:1d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFfYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2MzNDNUUzQ0VDRDFD RDQwOTg3OEUzQkJFNzY2NzY4RUYyODIyOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyTwKeEMaWrmEGxpfNkwWh5LCzH7KuZ9Bs1CvykdOAxp28c2yy J3V5W3A5HAKvfqHEyicdAHfKdD9ki+XcEXD5AJK7V7O2+gRJqQGUawoLlDJWx2Zq ffOt1MeK7Djgvqs3u403RJ60PAkgMe9iG0bhUk6nd390yY5quOsEffU8G4I4L+9d 1apFxVqlpVIMDBBVv5b/YaMgvM2unh27PrqTMWnDWj7pNcvxzeo+tohJeos8J41F vSZsz8N0FXlfHh2a2xwFBMcABWXfjBlz0+IaFjBzgjzQ94/DCq8FXVBUERGfJyHL 6M7u6iNCdnJLIioAcfVaDJXDuzeYKBgOIJn9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUNjPF487NHNQJh447vnZnaO8oIowwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTmpQRjQ4N05ITlFKaDQ0N3ZuWm5h TzhvSW93LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAtzlRDAN BgkqhkiG9w0BAQsFAAOCAQEAPKX8SI0mTSOm3wT6kwpjL8StpGgIsna3CsUwc5v2 7NFCq+mu6VtnKXsnFodTKfnM51lqPmMyqqJbPEV2JO434GVRx5oLrf85Y3bbdegG //h8f8z6XJVIUAq2ffMk3wdDNoy/Q6dfaAERk4bBkh2Cb1pypbfgQKe45cFaz6ic kTRqz4hCTfw4Dfq83trK8aIT1Ryv2QbgqK96LM0Rm/F+KbuxeEsU8bCnfGhF3m5E uZ0bXgEQdUlEQOC/NuDoj4PoialP0I99kbLxxEwC5ERkQrP6ua5LsJzxihI0RwWR clT69coo5UGWad/E7X6/Hro8fCwPz/rnKxhrFDklw8s8HQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org