$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/aFJqIW6G33C9gN1TymTGDKQxtNM.roa File: aFJqIW6G33C9gN1TymTGDKQxtNM.roa (raw, json) Hash identifier: hdf2pBDRmcm5OY1mluxmqSmSkw+1skk5eEXXRnO3Tqs= Subject key identifier: 68:52:6A:21:6E:86:DF:70:BD:80:DD:53:CA:64:C6:0C:A4:31:B4:D3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1796 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aFJqIW6G33C9gN1TymTGDKQxtNM.roa Signing time: Mon 10 Feb 2025 14:07:04 +0000 ROA not before: Mon 10 Feb 2025 14:07:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 113.196.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 08:37:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6038 (0x1796) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=68526A216E86DF70BD80DD53CA64C60CA431B4D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:46:6d:0b:e2:fb:28:fd:a1:85:2d:28:64:99: b8:94:fc:e7:80:91:07:f8:e3:49:05:cb:37:30:0a: d4:2a:b1:9c:97:d1:3b:8a:cd:d5:bf:96:6d:79:cc: 6c:1b:89:c1:16:c3:6c:3d:ff:f7:ee:30:5a:c4:18: e7:91:68:00:08:59:95:38:d1:1a:8e:17:6c:f9:e7: 5c:66:22:1f:db:6e:a5:bc:bb:f3:36:a6:20:d7:ef: 11:40:22:a0:3d:d4:fb:c2:3c:42:5b:11:a9:93:1f: 6a:4d:eb:6a:09:fd:d3:93:e0:c9:71:67:64:7e:3d: 22:96:b6:83:06:75:da:5d:72:bb:8e:c2:18:04:17: 5a:70:77:07:fa:0f:4f:f3:1f:64:4d:20:47:1c:d0: 03:09:ca:4f:92:d0:bc:b0:6c:b5:bb:5a:83:d4:fa: 0b:46:0e:76:37:8f:43:dc:d7:50:72:f8:c4:87:7f: ea:86:20:ff:b2:17:1f:fe:e7:78:1d:3d:14:9d:70: 8e:50:16:cb:37:d8:7c:8c:f1:bf:d4:68:98:cb:81: 28:e9:75:89:46:19:ee:44:24:e6:94:af:2a:17:5c: 76:d8:60:f6:45:8f:22:7b:d9:b3:f1:a1:75:d3:5f: 4a:2e:e7:5e:2e:02:df:50:9c:8d:4e:da:b6:29:1e: b0:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:52:6A:21:6E:86:DF:70:BD:80:DD:53:CA:64:C6:0C:A4:31:B4:D3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/aFJqIW6G33C9gN1TymTGDKQxtNM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.115.0/24 Signature Algorithm: sha256WithRSAEncryption be:a9:b4:33:60:a6:de:0e:c7:af:7b:33:50:a1:5f:93:3d:e1: a0:d2:95:af:c9:84:fa:fc:5e:04:a6:4a:0e:75:fe:fa:bf:66: 03:c4:f7:6a:a5:56:78:98:12:10:04:b5:46:30:94:2b:9e:90: ec:cc:53:ed:55:7f:ee:58:9f:eb:e8:27:eb:95:35:54:e4:db: 2d:63:80:57:84:50:68:cd:0e:f6:e3:6c:3c:5e:68:28:8f:2f: 9d:1e:bf:dc:80:46:56:61:98:78:ae:6e:be:57:d2:f9:19:3c: ad:65:5d:f5:6d:bc:cb:70:43:ab:a3:fa:dc:b3:b0:1a:df:1e: 48:1d:75:34:51:9e:66:9c:41:50:b9:98:fe:a8:1d:64:9c:73: 32:c6:56:75:61:32:75:20:d4:9f:7a:58:1c:45:36:dd:58:64: 34:a7:7c:49:ac:a4:1a:05:e8:e9:9b:0d:d6:af:0e:75:fa:97: 26:ba:9b:27:b0:1a:a8:f3:04:b5:4e:cd:35:70:0c:cc:bf:69: 97:92:ee:7a:1e:3b:41:e0:d5:6f:e8:39:42:ff:80:aa:5d:6b: b0:81:02:7a:ec:16:f8:c2:2a:a7:83:e4:01:dc:83:aa:1a:82: f9:5d:39:69:af:25:5a:6f:29:1f:a9:ec:f5:28:62:fe:e0:7b: e2:cd:20:9f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICF5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4NTI2QTIxNkU4NkRG NzBCRDgwREQ1M0NBNjRDNjBDQTQzMUI0RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2Rm0L4vso/aGFLShkmbiU/OeAkQf440kFyzcwCtQqsZyX0TuK zdW/lm15zGwbicEWw2w9//fuMFrEGOeRaAAIWZU40RqOF2z551xmIh/bbqW8u/M2 piDX7xFAIqA91PvCPEJbEamTH2pN62oJ/dOT4MlxZ2R+PSKWtoMGddpdcruOwhgE F1pwdwf6D0/zH2RNIEcc0AMJyk+S0LywbLW7WoPU+gtGDnY3j0Pc11By+MSHf+qG IP+yFx/+53gdPRSdcI5QFss32HyM8b/UaJjLgSjpdYlGGe5EJOaUryoXXHbYYPZF jyJ72bPxoXXTX0ou514uAt9QnI1O2rYpHrAHAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUaFJqIW6G33C9gN1TymTGDKQxtNMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYUZKcUlXNkczM0M5Z04xVHltVEdE S1F4dE5NLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHHEczAN BgkqhkiG9w0BAQsFAAOCAQEAvqm0M2Cm3g7Hr3szUKFfkz3hoNKVr8mE+vxeBKZK DnX++r9mA8T3aqVWeJgSEAS1RjCUK56Q7MxT7VV/7lif6+gn65U1VOTbLWOAV4RQ aM0O9uNsPF5oKI8vnR6/3IBGVmGYeK5uvlfS+Rk8rWVd9W28y3BDq6P63LOwGt8e SB11NFGeZpxBULmY/qgdZJxzMsZWdWEydSDUn3pYHEU23VhkNKd8SaykGgXo6ZsN 1q8OdfqXJrqbJ7AaqPMEtU7NNXAMzL9pl5Lueh47QeDVb+g5Qv+Aql1rsIECeuwW +MIqp4PkAdyDqhqC+V05aa8lWm8pH6ns9Shi/uB74s0gnw== -----END CERTIFICATE-----Generated at Mon Apr 7 08:00:45 2025 by rpki-client