$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Tfp61fZy4DsMyeK026lYYXztQKg.roa File: Tfp61fZy4DsMyeK026lYYXztQKg.roa (raw, json) Hash identifier: 1oBjTE5JgwWpwE3Jci/bab0uGuxpeBB5YFrAKPcd/eU= Subject key identifier: 4D:FA:7A:D5:F6:72:E0:3B:0C:C9:E2:B4:DB:A9:58:61:7C:ED:40:A8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1670 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Tfp61fZy4DsMyeK026lYYXztQKg.roa Signing time: Mon 26 Aug 2024 05:22:12 +0000 ROA not before: Mon 26 Aug 2024 05:22:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 210.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5744 (0x1670) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4DFA7AD5F672E03B0CC9E2B4DBA958617CED40A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d0:65:0f:e8:91:03:01:63:67:d4:24:c1:06: 2a:ab:ec:a8:4c:3f:10:2f:14:da:2f:ed:76:a4:95: 86:8b:d0:76:0e:c6:d9:3c:4b:26:51:c7:b1:f7:44: 23:98:82:25:db:3c:58:42:0d:d7:a1:ee:8a:f9:5a: e0:43:a8:a8:4f:8a:11:e6:c5:34:36:4e:47:5f:86: 46:7c:fd:6e:d9:29:76:31:6f:f6:37:04:99:48:ca: 7f:f6:35:95:84:c1:90:62:28:ae:3b:73:e6:ab:f5: 5f:4e:22:84:de:14:5d:93:0d:5c:73:25:f0:02:2a: 0c:e5:fb:b9:fe:1a:5c:06:c7:96:67:f8:6c:b4:02: ab:27:4b:27:7a:eb:3d:88:b6:2b:40:f4:50:03:82: 05:e4:21:15:85:6c:a2:24:92:67:d3:ab:01:fb:53: a4:13:d0:ee:8e:de:11:ed:03:4d:05:b0:13:6a:4d: 4d:39:6f:16:91:e2:3c:b8:b7:9a:46:ef:b0:7c:2d: a5:23:40:4a:72:1e:a4:47:65:ec:c6:f0:97:6f:f8: 83:ce:14:14:6b:1b:59:5b:23:f6:c5:ef:56:26:d2: c9:de:14:02:78:fd:ec:a7:04:a7:39:8f:f9:bc:f7: 4c:aa:25:dc:fd:0f:7b:66:98:ca:97:6b:29:01:4d: f6:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:FA:7A:D5:F6:72:E0:3B:0C:C9:E2:B4:DB:A9:58:61:7C:ED:40:A8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Tfp61fZy4DsMyeK026lYYXztQKg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:1c:42:97:c1:f7:9c:a3:7b:f9:04:9e:a4:60:74:9d:c9:c3: 91:0a:55:a5:24:f9:df:75:a1:8a:b0:0d:37:6a:27:7a:75:de: 66:38:8c:1e:5a:dd:12:7b:f1:1f:94:0c:bb:b7:47:0c:90:fd: ec:0d:3b:70:6c:13:67:99:61:cc:c7:ac:72:27:a8:41:cb:24: ab:3d:2b:10:b6:e0:1c:80:23:fa:f6:2d:fc:b1:27:4e:8a:6e: 8d:ec:00:93:0f:34:db:a3:d8:bf:31:2e:84:f5:0b:b6:36:d4: c4:d8:d4:71:df:aa:c5:c7:13:95:f3:d8:b0:54:7e:d1:60:e8: e4:a2:78:80:54:d2:c7:3a:4b:b1:a9:cf:a0:f2:d4:35:4e:a1: 62:7a:27:17:f0:88:06:96:f0:31:b1:dc:67:58:49:c2:f3:cf: a3:b7:65:6a:a0:ce:9b:32:1f:70:7f:dc:88:c5:9e:42:3c:35: 36:ea:98:a2:ab:9e:69:d1:68:de:6e:5a:d1:9b:10:cd:2f:c6: 15:c6:c4:7a:9b:6c:f3:5a:d1:c1:9f:f4:e0:0b:d2:d3:30:39: dc:65:ed:98:6c:d1:1c:c2:4c:14:3e:d9:1a:92:22:79:e6:da: 9d:28:2f:3b:be:89:63:bc:d0:eb:c1:12:a0:6d:0a:3c:f3:f4: 6e:0d:0c:35 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRERkE3QUQ1RjY3MkUw M0IwQ0M5RTJCNERCQTk1ODYxN0NFRDQwQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCs0GUP6JEDAWNn1CTBBiqr7KhMPxAvFNov7XaklYaL0HYOxtk8 SyZRx7H3RCOYgiXbPFhCDdeh7or5WuBDqKhPihHmxTQ2TkdfhkZ8/W7ZKXYxb/Y3 BJlIyn/2NZWEwZBiKK47c+ar9V9OIoTeFF2TDVxzJfACKgzl+7n+GlwGx5Zn+Gy0 AqsnSyd66z2ItitA9FADggXkIRWFbKIkkmfTqwH7U6QT0O6O3hHtA00FsBNqTU05 bxaR4jy4t5pG77B8LaUjQEpyHqRHZezG8Jdv+IPOFBRrG1lbI/bF71Ym0sneFAJ4 /eynBKc5j/m890yqJdz9D3tmmMqXaykBTfYbAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUTfp61fZy4DsMyeK026lYYXztQKgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVGZwNjFmWnk0RHNNeWVLMDI2bFlZ WHp0UUtnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANJCMA0G CSqGSIb3DQEBCwUAA4IBAQATHEKXwfeco3v5BJ6kYHSdycORClWlJPnfdaGKsA03 aid6dd5mOIweWt0Se/EflAy7t0cMkP3sDTtwbBNnmWHMx6xyJ6hByySrPSsQtuAc gCP69i38sSdOim6N7ACTDzTbo9i/MS6E9Qu2NtTE2NRx36rFxxOV89iwVH7RYOjk oniAVNLHOkuxqc+g8tQ1TqFieicX8IgGlvAxsdxnWEnC88+jt2VqoM6bMh9wf9yI xZ5CPDU26piiq55p0WjeblrRmxDNL8YVxsR6m2zzWtHBn/TgC9LTMDncZe2YbNEc wkwUPtkakiJ55tqdKC87voljvNDrwRKgbQo88/RuDQw1 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org