$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SqiuugtbHd3a0oh1p9fPEsrMpmM.roa File: SqiuugtbHd3a0oh1p9fPEsrMpmM.roa (raw, json) Hash identifier: dDuEUZKmAmihGzk4+4WTT8CVQdSerCbw312vutnxobs= Subject key identifier: 4A:A8:AE:BA:0B:5B:1D:DD:DA:D2:88:75:A7:D7:CF:12:CA:CC:A6:63 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 160A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SqiuugtbHd3a0oh1p9fPEsrMpmM.roa Signing time: Mon 26 Aug 2024 05:21:42 +0000 ROA not before: Mon 26 Aug 2024 05:21:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 210.68.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5642 (0x160a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4AA8AEBA0B5B1DDDDAD28875A7D7CF12CACCA663 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1d:10:3f:cd:40:0e:ca:39:71:2d:01:c7:ad: 54:cc:82:9e:f1:d3:e2:23:71:ba:8c:77:c3:e2:ad: 4f:3f:7f:d0:97:9d:ae:cc:7f:6a:10:a7:13:c2:dc: b2:8e:66:9c:fe:45:41:6c:c9:4c:b8:c3:55:b3:69: 4d:b3:76:3c:6f:e6:2a:34:97:28:b8:37:30:3e:72: 6f:d9:4d:7e:22:6d:3c:7d:ac:7f:2f:35:09:e8:33: ea:60:b9:8f:13:a0:01:38:07:68:18:01:72:bf:3a: aa:34:c4:c1:18:bc:e2:09:0b:94:59:6e:81:a0:30: 78:d1:15:38:d7:8f:43:73:86:f5:e3:10:92:b5:56: 03:95:1c:d8:7c:d6:e2:62:d8:29:c9:b7:32:c7:57: 7a:c3:6e:3a:65:9b:e9:5e:cc:85:6d:87:73:5d:aa: 81:0c:73:18:8b:2b:e9:cf:3d:5a:fc:fc:e6:6f:4c: 43:a4:ef:8f:c0:d9:7d:7b:5c:61:77:48:57:1b:b2: 7f:75:1c:f0:f6:36:6b:d9:d0:e7:28:fc:2e:d8:1d: 99:fd:1e:d6:53:24:d2:a7:6e:67:f8:f5:24:df:93: cd:a1:41:10:7b:41:bd:cf:b0:41:40:ac:0b:3d:92: af:c4:62:52:54:da:b7:f2:73:4e:f6:5e:95:15:b7: 01:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:A8:AE:BA:0B:5B:1D:DD:DA:D2:88:75:A7:D7:CF:12:CA:CC:A6:63 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SqiuugtbHd3a0oh1p9fPEsrMpmM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:37:db:aa:46:ea:b5:80:31:83:d3:84:8b:f2:ff:20:6b:d8: 9c:69:9d:cd:7c:9e:58:c8:76:aa:f2:50:db:b3:fb:62:39:20: ab:7a:9a:52:6c:eb:1e:c5:15:28:37:3a:a6:d1:a8:81:e6:f6: 57:04:ea:ea:7f:37:09:cc:d3:dd:17:61:98:e0:38:2c:de:b3: 06:db:ce:28:e1:6c:b8:f8:ad:0e:20:5e:94:b6:0c:84:ec:6c: 26:a2:e4:af:51:ed:56:30:61:8e:42:a4:d9:16:56:05:fa:c6: e1:6c:7c:99:69:f3:c2:f6:31:07:8f:b5:9d:e1:1a:c1:bb:55: f5:ef:a6:51:f9:f0:9b:70:16:8d:c1:ac:cc:18:e5:f4:2a:0d: 33:19:28:47:f5:eb:99:12:34:39:16:8b:11:4b:69:b5:70:0e: 62:fb:06:aa:b3:fc:0b:b1:53:80:91:76:2d:f3:78:44:79:35: 5e:29:39:88:24:2d:60:2e:8e:2c:8a:c9:59:c5:2a:6a:fc:5d: ff:74:0b:66:1b:10:d0:46:3d:bd:1c:cd:a7:ed:6e:bf:e4:2e: 23:63:ce:54:41:2a:62:22:2e:9e:ce:86:89:0d:ed:15:a3:ca: 97:91:3a:b0:bc:e9:da:da:5c:63:c4:23:1a:8a:20:9c:55:a2: f6:4a:ea:2e -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFgowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRBQThBRUJBMEI1QjFE REREQUQyODg3NUE3RDdDRjEyQ0FDQ0E2NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJHRA/zUAOyjlxLQHHrVTMgp7x0+IjcbqMd8PirU8/f9CXna7M f2oQpxPC3LKOZpz+RUFsyUy4w1WzaU2zdjxv5io0lyi4NzA+cm/ZTX4ibTx9rH8v NQnoM+pguY8ToAE4B2gYAXK/Oqo0xMEYvOIJC5RZboGgMHjRFTjXj0NzhvXjEJK1 VgOVHNh81uJi2CnJtzLHV3rDbjplm+lezIVth3NdqoEMcxiLK+nPPVr8/OZvTEOk 74/A2X17XGF3SFcbsn91HPD2NmvZ0Oco/C7YHZn9HtZTJNKnbmf49STfk82hQRB7 Qb3PsEFArAs9kq/EYlJU2rfyc072XpUVtwGxAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUSqiuugtbHd3a0oh1p9fPEsrMpmMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvU3FpdXVndGJIZDNhMG9oMXA5ZlBF c3JNcG1NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJEMA0G CSqGSIb3DQEBCwUAA4IBAQCEN9uqRuq1gDGD04SL8v8ga9icaZ3NfJ5YyHaq8lDb s/tiOSCreppSbOsexRUoNzqm0aiB5vZXBOrqfzcJzNPdF2GY4Dgs3rMG284o4Wy4 +K0OIF6UtgyE7GwmouSvUe1WMGGOQqTZFlYF+sbhbHyZafPC9jEHj7Wd4RrBu1X1 76ZR+fCbcBaNwazMGOX0Kg0zGShH9euZEjQ5FosRS2m1cA5i+waqs/wLsVOAkXYt 83hEeTVeKTmIJC1gLo4sislZxSpq/F3/dAtmGxDQRj29HM2n7W6/5C4jY85UQSpi Ii6ezoaJDe0Vo8qXkTqwvOna2lxjxCMaiiCcVaL2Suou -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org