$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/_uZhqPKndyeEyS_MQ8GyLqETFhs.roa File: _uZhqPKndyeEyS_MQ8GyLqETFhs.roa (raw, json) Hash identifier: BHV567eJffs3eND5OtLV5EMlBMNZr5cuZdkhEPAdiAI= Subject key identifier: FE:E6:61:A8:F2:A7:77:27:84:C9:2F:CC:43:C1:B2:2E:A1:13:16:1B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 166C Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_uZhqPKndyeEyS_MQ8GyLqETFhs.roa Signing time: Mon 26 Aug 2024 05:22:11 +0000 ROA not before: Mon 26 Aug 2024 05:22:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.59.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5740 (0x166c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FEE661A8F2A7772784C92FCC43C1B22EA113161B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:df:09:f5:91:57:55:d8:29:58:57:c7:d4:1e: 9b:84:3b:bd:74:dc:7f:9e:23:07:3d:29:2b:db:f0: 2d:af:dd:12:1a:ab:02:27:39:47:1e:e1:bd:bd:d6: 81:dd:b8:63:89:e8:58:52:bc:d9:43:ea:1a:0d:26: da:ee:bc:62:54:25:74:cd:80:4f:6b:93:25:de:48: cb:08:08:7e:b4:a3:0d:01:9f:26:30:11:44:f5:cb: 74:05:0b:37:58:66:7b:83:01:07:19:32:57:19:cc: 40:2c:24:d6:c5:03:fe:34:0d:a9:d8:6f:20:28:68: 63:b3:31:6f:09:fb:87:b2:73:29:81:09:9d:0d:c4: 56:4e:63:7a:c9:04:d7:88:49:de:04:f6:76:9c:d4: 77:44:7a:52:1b:ed:65:b1:19:75:af:7b:f2:24:17: eb:89:a7:25:4a:c1:b8:10:66:a1:c3:d0:64:15:0a: b3:e5:59:b1:9b:d4:b0:37:2a:ba:fb:c6:70:44:86: 6d:99:0f:7d:17:f0:d8:14:4a:95:24:21:d1:11:ed: 3c:c9:ed:ab:c6:17:4f:b6:28:df:45:d3:40:ae:f2: 8f:80:46:7a:06:e1:16:e0:d7:82:72:ea:b2:df:d4: e3:fd:68:c2:9f:0c:e2:bd:e2:16:d7:f3:c9:14:f4: 3e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E6:61:A8:F2:A7:77:27:84:C9:2F:CC:43:C1:B2:2E:A1:13:16:1B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/_uZhqPKndyeEyS_MQ8GyLqETFhs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.59.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:0b:0e:28:5c:ec:6d:e6:47:44:c3:1d:b3:e2:4a:61:17:03: 51:67:9d:13:6b:3c:9c:9e:f3:d4:2f:80:e9:a4:46:9d:37:3d: d5:c1:a0:87:7b:fe:86:8c:cf:c9:ca:79:e5:d5:91:40:c5:a5: a9:40:0d:ea:d2:48:11:84:01:af:db:5a:53:a6:07:60:e8:20: 2d:26:fc:a7:8c:82:13:d4:39:6e:3b:9a:96:27:e9:e7:a0:48: 44:88:cd:1d:61:14:4a:31:ba:72:92:c3:29:d9:5b:d1:e0:fc: 58:b8:9d:71:39:93:d1:d4:3f:8a:b1:d0:14:51:f0:bb:c8:7d: cf:57:86:dc:2d:cc:c4:c2:73:ee:57:a3:bb:90:0a:60:92:5b: 72:f1:ae:58:53:ec:2f:a5:a1:76:77:8f:78:73:a8:e3:ec:d1: 4a:5c:31:30:26:a5:e0:11:b6:6b:aa:8a:ab:4f:fb:b1:f2:29: a3:c8:f6:57:df:19:8a:d0:25:0a:0f:8c:a1:2b:f9:87:9b:f3: 0e:32:af:92:1d:1c:87:cb:79:11:ec:37:49:8b:96:16:23:3e: 5e:a3:8e:df:0f:36:31:50:2b:97:7f:41:ac:72:29:8c:e7:e7: 53:d3:ee:ab:52:aa:9c:b3:5b:ef:7b:2e:be:c6:52:08:9a:c6: 4a:f9:49:08 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFmwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFRTY2MUE4RjJBNzc3 Mjc4NEM5MkZDQzQzQzFCMjJFQTExMzE2MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDa3wn1kVdV2ClYV8fUHpuEO7103H+eIwc9KSvb8C2v3RIaqwIn OUce4b291oHduGOJ6FhSvNlD6hoNJtruvGJUJXTNgE9rkyXeSMsICH60ow0BnyYw EUT1y3QFCzdYZnuDAQcZMlcZzEAsJNbFA/40DanYbyAoaGOzMW8J+4eycymBCZ0N xFZOY3rJBNeISd4E9nac1HdEelIb7WWxGXWve/IkF+uJpyVKwbgQZqHD0GQVCrPl WbGb1LA3Krr7xnBEhm2ZD30X8NgUSpUkIdER7TzJ7avGF0+2KN9F00Cu8o+ARnoG 4Rbg14Jy6rLf1OP9aMKfDOK94hbX88kU9D7vAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQU/uZhqPKndyeEyS/MQ8GyLqETFhswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvX3VaaHFQS25keWVFeVNfTVE4R3lM cUVURmhzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAD07MA0G CSqGSIb3DQEBCwUAA4IBAQDECw4oXOxt5kdEwx2z4kphFwNRZ50TazycnvPUL4Dp pEadNz3VwaCHe/6GjM/Jynnl1ZFAxaWpQA3q0kgRhAGv21pTpgdg6CAtJvynjIIT 1DluO5qWJ+nnoEhEiM0dYRRKMbpyksMp2VvR4PxYuJ1xOZPR1D+KsdAUUfC7yH3P V4bcLczEwnPuV6O7kApgklty8a5YU+wvpaF2d494c6jj7NFKXDEwJqXgEbZrqoqr T/ux8imjyPZX3xmK0CUKD4yhK/mHm/MOMq+SHRyHy3kR7DdJi5YWIz5eo47fDzYx UCuXf0GscimM5+dT0+6rUqqcs1vvey6+xlIImsZK+UkI -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:31 2024 by rpki-client on console-fra.rpki-client.org