$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZI9DQxGCHxNaZqhupslkF1cAyHQ.roa File: ZI9DQxGCHxNaZqhupslkF1cAyHQ.roa (raw, json) Hash identifier: 13Xg3V+8Id2CEatQ/MeOLssGGMwxOQkM2KIwgzqhPtk= Subject key identifier: 64:8F:43:43:11:82:1F:13:5A:66:A8:6E:A6:C9:64:17:57:00:C8:74 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 163D Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZI9DQxGCHxNaZqhupslkF1cAyHQ.roa Signing time: Mon 26 Aug 2024 05:21:56 +0000 ROA not before: Mon 26 Aug 2024 05:21:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 211.74.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5693 (0x163d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=648F434311821F135A66A86EA6C964175700C874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:5a:fc:f6:d4:cd:f2:1f:54:6b:2d:54:63:dc: aa:12:81:8d:cd:c7:43:af:0a:09:fe:f5:69:fc:77: 3f:84:78:bd:df:e7:ef:cf:7b:4e:21:56:99:fa:c6: 20:a8:7a:5b:2d:5e:a7:fa:01:55:c8:8b:c5:b1:87: 97:5b:db:6e:1d:7d:94:c4:2f:df:7f:85:fe:65:a8: 36:04:55:0e:eb:04:3d:e6:17:29:f6:f9:bb:8f:d8: 9e:bb:de:ef:06:f6:e7:9d:90:5b:8a:10:c6:c1:d5: a4:da:11:34:db:6c:ce:49:32:6e:d6:98:50:5a:54: f0:eb:fa:be:c8:f1:91:6c:e4:14:9c:a4:8f:25:2c: c2:55:15:39:50:00:c5:ad:c5:58:7f:08:14:89:a8: de:25:6a:34:f8:aa:64:73:f3:c0:7b:52:98:7c:8c: 5c:7b:63:e3:77:a1:ab:9d:34:e3:34:0d:a3:b9:5b: 51:ad:e9:46:89:98:93:45:f6:a1:f4:da:8d:22:d2: 84:f6:06:c2:63:ac:55:04:eb:fd:96:b3:87:14:90: ff:6d:49:91:ff:0d:68:ee:a5:17:95:b8:8a:88:68: 29:3e:50:ef:53:cd:8b:7d:16:40:bc:5a:23:8c:db: 54:2a:10:f8:a5:d3:14:e6:00:ba:2d:cc:b3:6f:f7: d6:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:8F:43:43:11:82:1F:13:5A:66:A8:6E:A6:C9:64:17:57:00:C8:74 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ZI9DQxGCHxNaZqhupslkF1cAyHQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.74.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7b:99:4e:8e:9c:79:bf:a0:12:ce:d1:91:23:9a:c0:6e:35:58: bf:1d:4d:e3:e8:e8:12:90:6e:f7:28:48:df:2e:1e:b1:13:5c: ff:11:3f:43:c8:54:78:bb:28:be:31:6f:13:6c:e0:dd:17:9b: 3b:87:66:21:0c:e9:53:59:be:3d:d0:86:a9:78:17:a9:aa:f7: 3d:a9:7d:62:3e:9c:60:7b:45:ac:30:b5:70:33:e7:c2:0f:8f: 33:27:fb:66:7d:aa:b9:92:df:b6:1a:e1:c9:a6:fb:95:73:bd: c5:d5:7d:3c:e6:4f:d2:9a:2b:76:73:e6:38:c0:ca:65:88:e9: ff:3a:6c:bd:71:41:ee:fd:5c:b3:74:6b:cc:dd:79:3c:0c:1d: ca:c1:41:dc:d7:b6:42:07:f0:1b:07:4b:60:e2:8a:01:1e:d3: 1a:46:76:6f:ed:b2:e3:01:53:22:a2:b8:db:e9:25:b3:7b:85: ff:56:07:85:73:2a:14:fa:1d:7c:b5:02:1a:47:12:74:81:41: 53:f3:bf:60:1f:29:70:f7:05:ff:b2:53:68:f7:36:5b:41:f2: a3:a3:ed:30:ba:bb:52:21:91:4b:fe:38:0c:d6:23:d0:f2:e3: 0c:56:e8:00:6a:a6:c7:c9:b3:51:2e:74:26:78:20:56:74:f4: fe:66:49:d6 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFj0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0OEY0MzQzMTE4MjFG MTM1QTY2QTg2RUE2Qzk2NDE3NTcwMEM4NzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUWvz21M3yH1RrLVRj3KoSgY3Nx0OvCgn+9Wn8dz+EeL3f5+/P e04hVpn6xiCoelstXqf6AVXIi8Wxh5db224dfZTEL99/hf5lqDYEVQ7rBD3mFyn2 +buP2J673u8G9uedkFuKEMbB1aTaETTbbM5JMm7WmFBaVPDr+r7I8ZFs5BScpI8l LMJVFTlQAMWtxVh/CBSJqN4lajT4qmRz88B7Uph8jFx7Y+N3oaudNOM0DaO5W1Gt 6UaJmJNF9qH02o0i0oT2BsJjrFUE6/2Ws4cUkP9tSZH/DWjupReVuIqIaCk+UO9T zYt9FkC8WiOM21QqEPil0xTmALotzLNv99YZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUZI9DQxGCHxNaZqhupslkF1cAyHQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWkk5RFF4R0NIeE5hWnFodXBzbGtG MWNBeUhRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9NKADAN BgkqhkiG9w0BAQsFAAOCAQEAe5lOjpx5v6ASztGRI5rAbjVYvx1N4+joEpBu9yhI 3y4esRNc/xE/Q8hUeLsovjFvE2zg3RebO4dmIQzpU1m+PdCGqXgXqar3Pal9Yj6c YHtFrDC1cDPnwg+PMyf7Zn2quZLfthrhyab7lXO9xdV9POZP0pordnPmOMDKZYjp /zpsvXFB7v1cs3RrzN15PAwdysFB3Ne2QgfwGwdLYOKKAR7TGkZ2b+2y4wFTIqK4 2+kls3uF/1YHhXMqFPodfLUCGkcSdIFBU/O/YB8pcPcF/7JTaPc2W0Hyo6PtMLq7 UiGRS/44DNYj0PLjDFboAGqmx8mzUS50JnggVnT0/mZJ1g== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org