$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/X5J-UVskov_0-xHQKiSgpT4Oono.roa File: X5J-UVskov_0-xHQKiSgpT4Oono.roa (raw, json) Hash identifier: r7a9bds9Qyt4B37g511PUQxmYaA1VTgZlOcLtOiPPLg= Subject key identifier: 5F:92:7E:51:5B:24:A2:FF:F4:FB:11:D0:2A:24:A0:A5:3E:0E:A2:7A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16A5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X5J-UVskov_0-xHQKiSgpT4Oono.roa Signing time: Mon 26 Aug 2024 05:22:26 +0000 ROA not before: Mon 26 Aug 2024 05:22:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.146.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5797 (0x16a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5F927E515B24A2FFF4FB11D02A24A0A53E0EA27A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:91:3a:1d:38:d0:0b:59:53:b5:94:75:33:02: a2:7a:3b:0f:d5:b2:a0:f0:89:1e:5d:be:76:26:ec: b8:a6:61:41:e1:ac:9d:c2:ce:05:f2:c0:46:37:0b: 9d:7d:33:1f:a9:77:8c:90:57:51:dd:e4:a4:50:fa: e9:27:42:d5:3a:da:e7:54:50:3c:74:79:54:44:3a: 9b:f1:60:8b:da:a0:08:73:d7:fd:a3:cf:d6:db:25: b8:b3:3a:6c:f4:79:42:0d:4c:94:d6:80:38:83:8e: 90:c1:46:e6:4a:7f:e3:f9:4f:bb:f1:3e:e3:92:7f: d3:6a:e9:6d:23:3a:cc:12:6f:ea:a2:cf:ee:ab:04: cd:c1:7f:c3:9f:fc:c0:d5:44:58:fb:89:06:44:a6: c9:de:16:2c:12:a5:f1:04:ac:86:27:43:c1:19:08: 66:01:dd:96:4d:b8:eb:53:a9:c1:97:65:fe:83:ac: 34:50:7c:aa:3e:0c:ca:6b:a3:15:1c:22:f1:e2:73: 57:94:9a:76:11:6b:7c:60:d8:1e:3c:20:87:75:b5: 9b:83:b6:41:b2:3f:21:b8:3a:72:bc:6e:67:c6:e6: 78:b4:92:82:1a:85:36:65:8e:c1:7e:9c:2a:58:90: 7c:b6:42:a9:9b:0a:59:36:e4:71:a5:df:ae:69:fb: af:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:92:7E:51:5B:24:A2:FF:F4:FB:11:D0:2A:24:A0:A5:3E:0E:A2:7A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/X5J-UVskov_0-xHQKiSgpT4Oono.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.128.0/17 Signature Algorithm: sha256WithRSAEncryption 02:15:cd:e6:41:c6:49:ed:b7:96:17:bc:55:eb:d9:b2:66:bc: 9a:11:b2:0d:61:f9:7a:4f:cc:5b:20:e5:77:08:92:15:91:bb: f3:4e:23:3d:03:01:ee:e4:91:5b:9f:b0:0e:7a:ee:a7:6e:24: 11:38:0b:6a:74:c0:e4:07:4f:3f:1c:c5:49:33:39:30:13:24: e7:b8:59:73:8b:1d:94:41:d1:49:3b:f3:95:ff:47:61:0a:18: 4f:df:19:47:88:99:aa:81:ba:0a:9d:8e:2b:d3:08:f9:06:a0: 42:1d:df:b6:dd:ea:68:29:a5:ef:1e:bd:4c:77:ca:7d:b0:cd: 32:78:66:de:9a:80:b3:2e:76:38:7a:ed:ca:52:b1:84:9c:48: e8:5f:ab:f3:d0:72:02:11:b2:23:9a:01:bd:9a:51:3d:3f:e8: da:09:d2:31:92:f6:0f:3a:76:5b:b3:f2:b8:96:83:03:09:f4: 8d:18:a9:85:79:bb:3f:f5:1f:29:f8:2e:21:63:ff:f3:08:01: a9:10:2c:63:05:ad:e0:3a:6b:95:d9:36:4b:ec:04:7f:e3:c0: 7a:69:79:a2:25:44:2c:68:e6:7f:aa:e0:15:7d:2b:1c:80:dd: 4a:91:e1:6f:a4:37:28:0d:12:1e:17:40:9b:8e:32:10:af:0e: 4a:9d:fe:46 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFqUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGOTI3RTUxNUIyNEEy RkZGNEZCMTFEMDJBMjRBMEE1M0UwRUEyN0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIkTodONALWVO1lHUzAqJ6Ow/VsqDwiR5dvnYm7LimYUHhrJ3C zgXywEY3C519Mx+pd4yQV1Hd5KRQ+uknQtU62udUUDx0eVREOpvxYIvaoAhz1/2j z9bbJbizOmz0eUINTJTWgDiDjpDBRuZKf+P5T7vxPuOSf9Nq6W0jOswSb+qiz+6r BM3Bf8Of/MDVRFj7iQZEpsneFiwSpfEErIYnQ8EZCGYB3ZZNuOtTqcGXZf6DrDRQ fKo+DMproxUcIvHic1eUmnYRa3xg2B48IId1tZuDtkGyPyG4OnK8bmfG5ni0koIa hTZljsF+nCpYkHy2QqmbClk25HGl365p+6+zAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUX5J+UVskov/0+xHQKiSgpT4OonowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWDVKLVVWc2tvdl8wLXhIUUtpU2dw VDRPb25vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB3qSgDAN BgkqhkiG9w0BAQsFAAOCAQEAAhXN5kHGSe23lhe8VevZsma8mhGyDWH5ek/MWyDl dwiSFZG7804jPQMB7uSRW5+wDnrup24kETgLanTA5AdPPxzFSTM5MBMk57hZc4sd lEHRSTvzlf9HYQoYT98ZR4iZqoG6Cp2OK9MI+QagQh3ftt3qaCml7x69THfKfbDN Mnhm3pqAsy52OHrtylKxhJxI6F+r89ByAhGyI5oBvZpRPT/o2gnSMZL2Dzp2W7Py uJaDAwn0jRiphXm7P/UfKfguIWP/8wgBqRAsYwWt4Dprldk2S+wEf+PAeml5oiVE LGjmf6rgFX0rHIDdSpHhb6Q3KA0SHhdAm44yEK8OSp3+Rg== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:41 2024 by rpki-client on console-fra.rpki-client.org