$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ty_7ykHFVbWUtluv6_4L2kJT1ko.roa File: Ty_7ykHFVbWUtluv6_4L2kJT1ko.roa (raw, json) Hash identifier: d816d5TEwlx4IlMnxXAanSyTU/uN5wcqF8Na2XQqKdY= Subject key identifier: 4F:2F:FB:CA:41:C5:55:B5:94:B6:5B:AF:EB:FE:0B:DA:42:53:D6:4A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 167A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ty_7ykHFVbWUtluv6_4L2kJT1ko.roa Signing time: Mon 26 Aug 2024 05:22:14 +0000 ROA not before: Mon 26 Aug 2024 05:22:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 123.204.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5754 (0x167a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4F2FFBCA41C555B594B65BAFEBFE0BDA4253D64A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c2:c7:6a:0b:5b:d1:d7:2f:40:4d:4b:8c:b1: eb:f1:ca:a1:b1:c3:5f:2f:c5:0f:27:17:12:83:9a: 2e:33:4b:bd:5e:86:1f:d9:f9:a8:fb:75:24:ca:09: 85:7f:22:88:39:3b:25:3a:7b:5f:fa:ec:6e:5d:33: 3a:7e:7e:d7:c2:67:a0:c1:c9:f9:28:58:2a:dc:44: 83:c3:dc:ef:4c:39:d1:7f:9d:9f:3f:6c:65:9c:0e: 77:36:14:b2:b3:95:92:24:12:75:4a:98:ab:c5:e7: 96:65:a8:b1:fb:48:ec:95:7e:1e:ec:f0:f2:0e:ef: 5b:59:2a:41:b7:24:41:d0:c4:2e:f0:2b:93:aa:ba: 91:da:3c:16:f2:f8:1d:5d:01:a4:a6:f0:21:6a:e6: b0:1d:4e:35:54:04:c2:c6:9b:e6:64:3e:e9:e1:77: a2:b3:84:13:4f:27:1b:e7:df:e5:96:db:51:20:d0: ad:9f:55:6b:22:d5:f9:15:a8:a3:04:54:67:93:41: ab:de:54:8e:0a:51:ca:98:60:1f:f3:59:a2:f7:4a: b6:4a:a7:9b:29:a7:23:a3:22:62:8e:91:2e:72:ad: 89:b8:44:1d:54:95:59:3e:9c:52:00:42:34:a8:d5: cd:c0:ce:1b:15:f5:c9:cf:3d:68:29:33:96:eb:29: 99:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:2F:FB:CA:41:C5:55:B5:94:B6:5B:AF:EB:FE:0B:DA:42:53:D6:4A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Ty_7ykHFVbWUtluv6_4L2kJT1ko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.204.0.0/16 Signature Algorithm: sha256WithRSAEncryption 88:5d:06:78:e6:2e:2e:ac:74:05:d7:1e:33:2b:31:ed:58:51: 9f:e3:f1:5d:fa:bf:3f:e0:c5:2f:bd:38:db:82:5e:39:a7:2f: 5d:2b:3a:e4:65:8a:56:48:7e:e5:ea:bd:0c:67:c9:14:6c:cc: 9e:66:79:1e:a8:8b:d8:42:6a:92:fb:ef:70:85:9e:5b:ea:38: 1b:67:47:f2:7b:18:57:99:5b:a3:c2:40:b8:47:49:02:4d:78: 42:01:de:1c:d0:b3:ac:1a:5b:38:e9:ca:9d:38:7d:30:80:a9: 02:12:31:c3:33:fe:f4:45:7d:8a:94:2f:09:5c:62:db:2f:6f: 7c:8d:f3:22:58:15:72:d3:56:f6:b9:cb:00:25:2b:05:98:0d: 25:45:f2:0e:18:b1:64:34:8b:66:aa:57:27:e5:fc:0b:26:ad: fd:2d:d0:cd:49:f3:a5:0a:90:f9:ee:f9:2e:9f:87:51:41:ca: 39:24:34:d6:f8:ab:89:33:9e:1d:98:98:8d:5d:28:94:d0:fd: d1:34:4d:c3:55:b6:12:1c:a4:02:73:f6:65:7f:a2:b6:b7:cc: b7:2b:c1:b2:7f:7a:f8:cd:8b:27:26:d7:46:0d:12:04:b5:7e: c6:05:34:c5:ed:9e:2d:ed:e0:a0:bc:9f:52:44:1b:d1:16:8d: 9f:45:6b:49 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFnowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGMkZGQkNBNDFDNTU1 QjU5NEI2NUJBRkVCRkUwQkRBNDI1M0Q2NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIwsdqC1vR1y9ATUuMsevxyqGxw18vxQ8nFxKDmi4zS71ehh/Z +aj7dSTKCYV/Iog5OyU6e1/67G5dMzp+ftfCZ6DByfkoWCrcRIPD3O9MOdF/nZ8/ bGWcDnc2FLKzlZIkEnVKmKvF55ZlqLH7SOyVfh7s8PIO71tZKkG3JEHQxC7wK5Oq upHaPBby+B1dAaSm8CFq5rAdTjVUBMLGm+ZkPunhd6KzhBNPJxvn3+WW21Eg0K2f VWsi1fkVqKMEVGeTQaveVI4KUcqYYB/zWaL3SrZKp5sppyOjImKOkS5yrYm4RB1U lVk+nFIAQjSo1c3AzhsV9cnPPWgpM5brKZkxAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUTy/7ykHFVbWUtluv6/4L2kJT1kowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVHlfN3lrSEZWYldVdGx1djZfNEwy a0pUMWtvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAHvMMA0G CSqGSIb3DQEBCwUAA4IBAQCIXQZ45i4urHQF1x4zKzHtWFGf4/Fd+r8/4MUvvTjb gl45py9dKzrkZYpWSH7l6r0MZ8kUbMyeZnkeqIvYQmqS++9whZ5b6jgbZ0fyexhX mVujwkC4R0kCTXhCAd4c0LOsGls46cqdOH0wgKkCEjHDM/70RX2KlC8JXGLbL298 jfMiWBVy01b2ucsAJSsFmA0lRfIOGLFkNItmqlcn5fwLJq39LdDNSfOlCpD57vku n4dRQco5JDTW+KuJM54dmJiNXSiU0P3RNE3DVbYSHKQCc/Zlf6K2t8y3K8Gyf3r4 zYsnJtdGDRIEtX7GBTTF7Z4t7eCgvJ9SRBvRFo2fRWtJ -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:41 2024 by rpki-client on console-fra.rpki-client.org