$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/S_WFD6qQ85PpODSlPBPMWm0qKkI.roa File: S_WFD6qQ85PpODSlPBPMWm0qKkI.roa (raw, json) Hash identifier: b7t9uwWVh5tAu1HSzSpXtSC+3GlXsCxS5AwGGGCV9jI= Subject key identifier: 4B:F5:85:0F:AA:90:F3:93:E9:38:34:A5:3C:13:CC:5A:6D:2A:2A:42 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16D2 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S_WFD6qQ85PpODSlPBPMWm0qKkI.roa Signing time: Mon 26 Aug 2024 05:22:39 +0000 ROA not before: Mon 26 Aug 2024 05:22:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 211.78.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5842 (0x16d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4BF5850FAA90F393E93834A53C13CC5A6D2A2A42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:60:61:22:88:f6:12:54:fe:02:30:19:a0: 06:7c:20:55:32:b2:54:65:f1:7e:5d:05:0a:da:50: 6e:8d:80:22:c4:d8:75:dd:0f:44:3b:8f:a3:38:a4: 97:e4:09:6f:c1:99:48:7c:31:69:70:44:72:9e:c9: aa:41:c8:3a:b9:dd:67:d1:df:30:5c:9a:b2:c3:de: 4a:5d:e3:e4:c1:9e:75:72:a5:19:1a:6c:1d:c6:93: 29:f3:20:70:d6:0c:ae:e8:9f:50:21:e0:33:7a:79: b7:85:0f:63:6d:b0:b6:02:6c:bb:53:9b:16:31:47: 01:e5:cc:1c:46:f9:6a:b3:bf:2e:28:1e:64:67:f0: 8a:b5:c4:03:b2:91:28:45:09:14:ec:df:89:a6:e0: 64:17:2b:cd:d3:90:af:c5:3e:a6:f5:e0:35:68:fe: cd:39:06:c1:da:39:66:e6:7b:1d:04:64:7d:46:5c: 5d:ee:a9:4c:54:3b:15:73:23:3c:ae:da:15:c5:b0: 8f:c3:3c:96:b4:2d:7f:55:31:61:7c:1d:d9:bd:89: 07:2f:93:93:5b:2b:7c:f1:cd:bd:ea:fb:7c:4f:b7: 16:e2:f2:fc:dd:8a:41:ee:b8:ea:8b:6b:d8:9c:06: d0:49:fd:41:2e:57:06:67:a6:ff:14:e1:82:ed:de: d5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F5:85:0F:AA:90:F3:93:E9:38:34:A5:3C:13:CC:5A:6D:2A:2A:42 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/S_WFD6qQ85PpODSlPBPMWm0qKkI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.160.0/19 Signature Algorithm: sha256WithRSAEncryption b2:29:59:eb:16:1b:0e:19:fd:24:28:90:bf:d5:a5:67:d7:45: 06:f4:cc:1b:21:8a:c2:b8:c4:da:2d:a3:fa:80:98:54:fd:7e: 02:27:1f:36:15:24:12:65:71:b4:89:73:2d:50:bf:da:6b:5a: b1:f0:47:26:9c:27:da:f0:4d:08:56:99:e6:37:82:64:bb:af: a7:9b:6c:31:c2:29:82:66:57:d1:89:a0:08:1b:53:8b:02:2f: 60:a2:2c:e4:05:66:6f:b8:d0:8c:d0:ca:ac:2c:73:87:ca:90: 83:3e:07:9c:8c:a6:e2:31:d2:e2:e6:e9:31:53:42:26:5c:e3: a1:00:17:11:0d:14:bc:71:ab:3e:c1:eb:25:38:a7:18:79:e3: b3:53:7b:d7:6e:3a:9a:76:a6:7c:f4:68:e9:1c:9c:a7:29:b1: 6e:bd:d4:0e:02:68:f7:b2:b3:02:ba:24:22:5f:02:ca:82:7c: c1:da:a6:27:57:e1:3a:bd:ea:c7:cf:5c:d4:58:bf:89:70:23: 51:20:e9:bd:91:70:e1:4c:cc:0b:fb:f7:41:a9:ac:64:a7:34: 62:aa:ee:9a:77:d8:41:2e:56:c6:cd:a9:1b:bd:17:39:55:07: 68:04:c8:0d:13:6b:3f:f6:9e:1c:17:a3:d9:b9:2a:7a:2c:58: c0:df:7b:17 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRCRjU4NTBGQUE5MEYz OTNFOTM4MzRBNTNDMTNDQzVBNkQyQTJBNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPZWBhIoj2ElT+AjAZoAZ8IFUyslRl8X5dBQraUG6NgCLE2HXd D0Q7j6M4pJfkCW/BmUh8MWlwRHKeyapByDq53WfR3zBcmrLD3kpd4+TBnnVypRka bB3GkynzIHDWDK7on1Ah4DN6ebeFD2NtsLYCbLtTmxYxRwHlzBxG+Wqzvy4oHmRn 8Iq1xAOykShFCRTs34mm4GQXK83TkK/FPqb14DVo/s05BsHaOWbmex0EZH1GXF3u qUxUOxVzIzyu2hXFsI/DPJa0LX9VMWF8Hdm9iQcvk5NbK3zxzb3q+3xPtxbi8vzd ikHuuOqLa9icBtBJ/UEuVwZnpv8U4YLt3tXFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUS/WFD6qQ85PpODSlPBPMWm0qKkIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvU19XRkQ2cVE4NVBwT0RTbFBCUE1X bTBxS2tJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdNOoDAN BgkqhkiG9w0BAQsFAAOCAQEAsilZ6xYbDhn9JCiQv9WlZ9dFBvTMGyGKwrjE2i2j +oCYVP1+AicfNhUkEmVxtIlzLVC/2mtasfBHJpwn2vBNCFaZ5jeCZLuvp5tsMcIp gmZX0YmgCBtTiwIvYKIs5AVmb7jQjNDKrCxzh8qQgz4HnIym4jHS4ubpMVNCJlzj oQAXEQ0UvHGrPsHrJTinGHnjs1N71246mnamfPRo6Rycpymxbr3UDgJo97KzArok Il8CyoJ8wdqmJ1fhOr3qx89c1Fi/iXAjUSDpvZFw4UzMC/v3QamsZKc0YqrumnfY QS5Wxs2pG70XOVUHaATIDRNrP/aeHBej2bkqeixYwN97Fw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org