$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa File: UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa (raw, json) Hash identifier: FpHZLjXFhsN13RfE+FHMtQlx3AXAPbdetq3M2/a1vHo= Subject key identifier: 52:65:3B:FC:6C:E3:61:7D:8C:FF:4B:4F:07:6A:75:2C:45:AE:85:92 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 168A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa Signing time: Mon 26 Aug 2024 05:22:18 +0000 ROA not before: Mon 26 Aug 2024 05:22:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131597 IP address blocks: 106.105.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5770 (0x168a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=52653BFC6CE3617D8CFF4B4F076A752C45AE8592 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:39:a6:95:83:01:87:3f:f9:f7:91:2a:67:de: 73:db:4a:92:39:02:de:e2:08:6b:a3:01:f1:fd:5a: 39:c4:ec:d8:3e:3b:c3:58:a6:ba:1d:79:1e:2f:7d: a5:be:36:09:be:e0:b4:83:bb:a0:06:25:34:e2:ef: d6:0f:fc:76:36:3e:2d:a9:a0:98:4c:b7:56:1a:0f: 05:ee:3e:dc:cb:71:76:52:74:6c:03:8b:89:24:a4: e4:c4:64:70:a3:a9:d2:8f:8c:02:18:57:67:d4:d1: f9:0d:e3:6c:9c:00:1c:1d:92:75:6e:72:30:a1:7b: bf:50:56:d1:15:36:64:ea:08:32:27:2b:5a:ac:5a: ab:d2:ac:dd:11:5a:b7:45:39:e6:84:dc:99:41:a6: a3:f6:7e:b3:b1:7b:e0:8a:58:a7:bc:b9:17:c1:cd: 70:dc:7f:01:7c:c1:cb:1f:0c:3f:4b:4f:07:72:1c: 48:b5:75:8d:75:d8:28:ad:6a:a0:bd:8f:b8:52:98: dd:c7:2e:36:80:26:aa:46:fa:0e:51:7e:5c:1a:c9: 38:3e:d9:0a:33:f5:8b:39:7c:e5:56:29:80:1b:dc: 95:07:7f:32:c6:d1:50:cd:60:19:30:ae:42:bc:bd: ac:91:6a:fd:4c:3b:05:93:20:9e:e4:29:db:98:32: 64:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:65:3B:FC:6C:E3:61:7D:8C:FF:4B:4F:07:6A:75:2C:45:AE:85:92 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UmU7_GzjYX2M_0tPB2p1LEWuhZI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.232.0/21 Signature Algorithm: sha256WithRSAEncryption 9c:a1:c3:39:f5:4a:45:9d:12:f7:eb:3b:6e:6d:25:aa:14:d4: b5:7c:60:6d:b5:5c:5e:3d:b7:f6:ae:c4:1b:12:06:40:32:97: 9c:f8:f2:4d:86:a9:8c:d6:a7:d1:40:37:be:44:3a:a8:3b:17: 84:c9:a2:cb:3e:ee:f6:39:4a:b7:19:bf:de:03:db:b6:62:40: 67:af:9a:b7:ce:36:cf:37:18:0f:52:40:03:11:b6:dd:17:97: 53:07:9d:6a:dd:4c:06:83:af:6d:73:ea:a4:07:f0:cf:1a:3a: 58:ac:77:41:95:b6:9c:61:24:f2:da:bf:8f:86:91:be:4c:8b: bc:9b:d4:66:84:3e:6c:6b:b4:7b:12:74:0a:db:e6:8d:45:24: e4:59:ef:05:95:96:3b:de:ee:45:80:65:d2:57:59:ba:72:ad: 07:56:79:93:f1:04:fb:17:40:8a:81:5b:38:5f:a2:24:c5:90: 26:09:26:c0:3a:03:d5:7b:7a:eb:2c:41:c1:57:6d:e1:51:51: e7:e2:60:c1:77:9e:32:2b:51:6a:13:da:e4:c2:3e:8b:f3:8d: 4d:af:6f:04:c5:90:70:51:08:6d:39:3c:8c:e2:b0:2d:1d:36: ab:65:e1:dc:f0:9f:70:1a:8a:85:2b:67:a0:87:83:0e:90:65: a7:38:b1:a3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFoowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyNjUzQkZDNkNFMzYx N0Q4Q0ZGNEI0RjA3NkE3NTJDNDVBRTg1OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDOaaVgwGHP/n3kSpn3nPbSpI5At7iCGujAfH9WjnE7Ng+O8NY prodeR4vfaW+Ngm+4LSDu6AGJTTi79YP/HY2Pi2poJhMt1YaDwXuPtzLcXZSdGwD i4kkpOTEZHCjqdKPjAIYV2fU0fkN42ycABwdknVucjChe79QVtEVNmTqCDInK1qs WqvSrN0RWrdFOeaE3JlBpqP2frOxe+CKWKe8uRfBzXDcfwF8wcsfDD9LTwdyHEi1 dY112CitaqC9j7hSmN3HLjaAJqpG+g5RflwayTg+2Qoz9Ys5fOVWKYAb3JUHfzLG 0VDNYBkwrkK8vayRav1MOwWTIJ7kKduYMmTJAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUUmU7/GzjYX2M/0tPB2p1LEWuhZIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVW1VN19HempZWDJNXzB0UEIycDFM RVd1aFpJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2pp6DAN BgkqhkiG9w0BAQsFAAOCAQEAnKHDOfVKRZ0S9+s7bm0lqhTUtXxgbbVcXj239q7E GxIGQDKXnPjyTYapjNan0UA3vkQ6qDsXhMmiyz7u9jlKtxm/3gPbtmJAZ6+at842 zzcYD1JAAxG23ReXUwedat1MBoOvbXPqpAfwzxo6WKx3QZW2nGEk8tq/j4aRvkyL vJvUZoQ+bGu0exJ0CtvmjUUk5FnvBZWWO97uRYBl0ldZunKtB1Z5k/EE+xdAioFb OF+iJMWQJgkmwDoD1Xt66yxBwVdt4VFR5+JgwXeeMitRahPa5MI+i/ONTa9vBMWQ cFEIbTk8jOKwLR02q2Xh3PCfcBqKhStnoIeDDpBlpzixow== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org