$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/RkZzuGFEgePszGABKb2A9qiDFQ8.roa File: RkZzuGFEgePszGABKb2A9qiDFQ8.roa (raw, json) Hash identifier: IHzJ4TRKQZEjcfy6YtPZlOr/jsSs1FnLFqAy3fhAc+4= Subject key identifier: 46:46:73:B8:61:44:81:E3:EC:CC:60:01:29:BD:80:F6:A8:83:15:0F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16DB Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RkZzuGFEgePszGABKb2A9qiDFQ8.roa Signing time: Mon 26 Aug 2024 05:22:42 +0000 ROA not before: Mon 26 Aug 2024 05:22:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.205.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5851 (0x16db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=464673B8614481E3ECCC600129BD80F6A883150F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6a:6a:fe:8e:a8:e3:4d:b7:66:eb:f9:de:70: 9e:46:ca:2e:c7:2c:b9:a6:68:2b:dc:a9:8a:1b:1b: 0f:b2:3a:6f:94:57:7b:4e:a4:51:72:70:4d:84:9b: 62:08:37:7f:39:c8:9f:b4:c0:45:5a:15:be:37:e8: 16:36:a4:82:c3:0c:8b:ae:f4:89:e4:13:c2:7b:29: 3f:89:38:28:b4:e6:08:bb:73:16:5f:95:0f:0e:8f: be:3a:e6:5a:b8:6d:e1:6a:4c:9f:42:8e:a4:7d:a5: 9c:30:36:4c:42:54:17:42:69:0b:98:0d:22:9f:c6: 88:7b:d7:43:42:96:ea:99:20:09:dd:ed:85:00:6a: f9:38:74:9c:df:75:f9:45:0f:ab:c4:bb:84:83:46: 81:0c:97:be:c1:a6:2c:49:c2:20:f3:8c:4c:99:47: 12:72:48:33:da:04:63:68:ad:f4:ce:68:76:9c:0a: 18:d1:3e:b0:3c:88:af:eb:39:02:ab:01:95:78:f9: 45:44:8b:ce:e6:3b:d4:94:41:ac:85:59:62:63:10: 0c:e4:25:c7:29:3d:b3:4a:75:d3:ce:3d:59:51:5a: 98:bc:ea:c1:a0:a9:41:2c:fe:1b:f9:17:8f:a2:1a: ab:37:3c:fe:a2:f2:bc:f4:6e:6f:e7:09:c0:cb:d5: a0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:46:73:B8:61:44:81:E3:EC:CC:60:01:29:BD:80:F6:A8:83:15:0F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/RkZzuGFEgePszGABKb2A9qiDFQ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.105.0/24 Signature Algorithm: sha256WithRSAEncryption 19:8e:ca:2b:ea:fb:b6:57:14:a0:35:d5:91:80:be:ef:b7:5a: bd:3d:ab:8c:03:c5:f3:ab:30:01:03:a7:69:19:63:9d:63:39: 9e:e9:e7:24:fa:7a:7a:64:82:a3:d7:99:a7:56:3b:d2:16:2b: 4a:f2:3f:74:55:00:91:48:b5:e6:7f:15:ea:90:01:d1:7e:6c: e2:88:ea:97:2b:fc:94:83:14:96:c1:3a:1a:9a:9d:58:3d:a3: 8d:05:99:ba:e4:8f:c0:06:77:e1:0a:90:ae:d9:a9:40:3b:69: 59:14:3f:22:02:da:93:1c:33:ba:e7:d3:fd:dd:dd:8b:1b:97: ab:dd:85:d1:24:89:01:fa:06:bd:28:7c:82:ab:1d:af:bb:dd: ad:54:5a:ba:0f:ee:e9:97:e8:bf:89:fd:db:2b:27:34:d0:69: 30:ff:fa:d3:a2:32:64:03:fd:8a:43:83:dc:01:09:78:a5:9e: 82:8e:d2:40:92:18:b3:83:69:40:d1:f4:40:75:c0:5e:fa:d3: a4:aa:8f:ef:ff:15:2e:e0:80:48:43:38:cd:86:40:d4:59:4c: 8b:8a:a8:c9:e8:ff:73:66:63:a0:a7:15:e3:d3:64:2c:7b:f9: c2:1d:8c:39:3c:fc:d9:1b:56:4b:1d:36:e8:ba:0a:85:c1:e5: 4d:2e:25:49 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2NDY3M0I4NjE0NDgx RTNFQ0NDNjAwMTI5QkQ4MEY2QTg4MzE1MEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOamr+jqjjTbdm6/necJ5Gyi7HLLmmaCvcqYobGw+yOm+UV3tO pFFycE2Em2IIN385yJ+0wEVaFb436BY2pILDDIuu9InkE8J7KT+JOCi05gi7cxZf lQ8Oj7465lq4beFqTJ9CjqR9pZwwNkxCVBdCaQuYDSKfxoh710NCluqZIAnd7YUA avk4dJzfdflFD6vEu4SDRoEMl77BpixJwiDzjEyZRxJySDPaBGNorfTOaHacChjR PrA8iK/rOQKrAZV4+UVEi87mO9SUQayFWWJjEAzkJccpPbNKddPOPVlRWpi86sGg qUEs/hv5F4+iGqs3PP6i8rz0bm/nCcDL1aBJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQURkZzuGFEgePszGABKb2A9qiDFQ8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUmtaenVHRkVnZVBzekdBQktiMkE5 cWlERlE4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNaTAN BgkqhkiG9w0BAQsFAAOCAQEAGY7KK+r7tlcUoDXVkYC+77davT2rjAPF86swAQOn aRljnWM5nunnJPp6emSCo9eZp1Y70hYrSvI/dFUAkUi15n8V6pAB0X5s4ojqlyv8 lIMUlsE6GpqdWD2jjQWZuuSPwAZ34QqQrtmpQDtpWRQ/IgLakxwzuufT/d3dixuX q92F0SSJAfoGvSh8gqsdr7vdrVRaug/u6Zfov4n92ysnNNBpMP/606IyZAP9ikOD 3AEJeKWego7SQJIYs4NpQNH0QHXAXvrTpKqP7/8VLuCASEM4zYZA1FlMi4qoyej/ c2ZjoKcV49NkLHv5wh2MOTz82RtWSx026LoKhcHlTS4lSQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org