$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TZhFjxuTdNOK0M5bdiI5PHD9SRU.roa File: TZhFjxuTdNOK0M5bdiI5PHD9SRU.roa (raw, json) Hash identifier: vzlUFtpClJTkLsiWZkQkIhk1Jzu/ff0xmX++m2xMSig= Subject key identifier: 4D:98:45:8F:1B:93:74:D3:8A:D0:CE:5B:76:22:39:3C:70:FD:49:15 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16B6 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TZhFjxuTdNOK0M5bdiI5PHD9SRU.roa Signing time: Mon 26 Aug 2024 05:22:31 +0000 ROA not before: Mon 26 Aug 2024 05:22:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.105.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5814 (0x16b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4D98458F1B9374D38AD0CE5B7622393C70FD4915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:51:92:4f:f9:ab:1d:b3:5a:ee:9e:3c:42:56: 3f:08:a9:c6:64:0f:3b:9f:03:6a:49:19:55:7b:75: ac:b4:3b:6d:0e:4f:ef:89:b4:87:57:b8:48:01:bd: f1:7e:a7:a2:3a:c0:25:0d:ce:55:91:d0:fd:d3:2e: 49:1f:16:1b:02:2b:b4:ca:c0:17:13:c4:8f:81:e3: 57:f4:59:f1:ca:8d:6f:a7:9c:e5:b8:01:5e:bd:e4: 20:48:c3:dc:2c:54:93:c4:95:10:bd:78:ae:ab:ff: 80:74:15:13:e4:fb:57:51:39:55:56:47:07:95:4e: 5d:4c:fd:c4:26:21:58:57:89:a5:74:19:f9:42:f8: 86:3a:c9:e3:8f:30:05:dd:60:e5:08:24:bf:e9:89: a7:28:1a:ab:3e:e4:31:73:ed:fc:14:9c:8c:ba:bc: 2d:17:41:12:ca:47:82:90:3a:39:30:db:ea:82:df: ba:f8:e3:69:9b:14:bb:7c:a2:95:40:b8:c1:6d:d9: f2:bb:70:62:45:25:3a:2e:ed:3a:cb:7f:b6:26:6a: 23:0f:6c:8c:8e:f2:96:8d:e6:d6:b4:49:fd:df:cf: 88:89:45:e5:8a:94:3e:18:21:52:b0:7e:a6:28:2d: 3b:2e:b3:35:0f:db:18:6f:5d:11:74:fc:e7:3e:dd: 21:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:98:45:8F:1B:93:74:D3:8A:D0:CE:5B:76:22:39:3C:70:FD:49:15 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TZhFjxuTdNOK0M5bdiI5PHD9SRU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.64.0/19 Signature Algorithm: sha256WithRSAEncryption 21:00:50:f8:64:e5:54:ac:48:66:f4:96:75:07:d9:77:98:b6: 18:6e:78:f9:3c:71:a9:c2:08:3a:c5:e4:93:43:f3:ba:84:22: c5:49:b7:c7:16:7d:bf:a3:2f:c9:9c:cd:0d:0c:11:c8:67:0d: 98:cd:1f:61:28:c4:66:63:4a:36:db:8a:65:b0:ad:e5:d5:9c: b9:57:8e:78:64:01:04:62:34:08:cf:de:cc:38:c7:4a:99:1c: 80:b0:40:6c:b2:f7:a2:d8:95:2d:31:90:49:af:d6:0f:2f:49: 9f:43:6a:18:53:19:ae:c7:89:f7:44:29:1c:ea:3f:e9:77:4f: 51:dc:e1:6e:fd:59:13:c8:6b:48:c1:b3:ec:4d:a0:3d:45:c1: 2f:fd:ff:4c:b4:11:85:c6:f6:c8:b2:10:d6:6d:44:fc:dd:1a: 9e:c2:15:a6:91:5c:ab:a4:e8:4f:39:7e:c6:f5:a0:44:46:31: f9:62:2a:37:35:28:d2:f6:a9:d2:88:40:23:7d:46:e5:8d:ef: d9:b1:26:82:66:69:61:f2:49:99:ac:94:25:d2:83:9c:be:e2: 4d:e1:8a:03:79:ce:a0:68:7a:d3:61:3f:3a:cb:e3:c6:79:81: 5e:d5:18:23:ed:8a:0b:e3:41:b3:66:09:13:65:91:08:79:df: 1a:7c:b3:ab -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFrYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREOTg0NThGMUI5Mzc0 RDM4QUQwQ0U1Qjc2MjIzOTNDNzBGRDQ5MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHUZJP+asds1runjxCVj8IqcZkDzufA2pJGVV7day0O20OT++J tIdXuEgBvfF+p6I6wCUNzlWR0P3TLkkfFhsCK7TKwBcTxI+B41f0WfHKjW+nnOW4 AV695CBIw9wsVJPElRC9eK6r/4B0FRPk+1dROVVWRweVTl1M/cQmIVhXiaV0GflC +IY6yeOPMAXdYOUIJL/piacoGqs+5DFz7fwUnIy6vC0XQRLKR4KQOjkw2+qC37r4 42mbFLt8opVAuMFt2fK7cGJFJTou7TrLf7YmaiMPbIyO8paN5ta0Sf3fz4iJReWK lD4YIVKwfqYoLTsuszUP2xhvXRF0/Oc+3SFhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUTZhFjxuTdNOK0M5bdiI5PHD9SRUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVFpoRmp4dVRkTk9LME01YmRpSTVQ SEQ5U1JVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppQDAN BgkqhkiG9w0BAQsFAAOCAQEAIQBQ+GTlVKxIZvSWdQfZd5i2GG54+TxxqcIIOsXk k0PzuoQixUm3xxZ9v6MvyZzNDQwRyGcNmM0fYSjEZmNKNtuKZbCt5dWcuVeOeGQB BGI0CM/ezDjHSpkcgLBAbLL3otiVLTGQSa/WDy9Jn0NqGFMZrseJ90QpHOo/6XdP Udzhbv1ZE8hrSMGz7E2gPUXBL/3/TLQRhcb2yLIQ1m1E/N0ansIVppFcq6ToTzl+ xvWgREYx+WIqNzUo0vap0ohAI31G5Y3v2bEmgmZpYfJJmayUJdKDnL7iTeGKA3nO oGh602E/OsvjxnmBXtUYI+2KC+NBs2YJE2WRCHnfGnyzqw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org