$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/brDu_M7YBAcQUpJwrGmQMgiheG8.roa File: brDu_M7YBAcQUpJwrGmQMgiheG8.roa (raw, json) Hash identifier: HFJazds3hPbsNCkATI1+dr4HrJtMg20gtNCHRMCyWrQ= Subject key identifier: 6E:B0:EE:FC:CE:D8:04:07:10:52:92:70:AC:69:90:32:08:A1:78:6F Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 166F Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/brDu_M7YBAcQUpJwrGmQMgiheG8.roa Signing time: Mon 26 Aug 2024 05:22:12 +0000 ROA not before: Mon 26 Aug 2024 05:22:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 106.104.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5743 (0x166f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6EB0EEFCCED8040710529270AC69903208A1786F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:ae:44:a7:f9:01:be:3f:30:fb:12:60:12:fd: b9:94:66:b0:94:46:92:0d:12:79:16:32:55:1e:b8: 18:c3:02:59:81:a5:45:46:76:9a:7e:c4:46:5e:ae: 0e:55:31:06:8c:bd:72:ee:f1:0e:d4:c3:f6:e5:ea: 18:66:39:64:be:6a:cd:dd:17:13:e4:f7:5e:0c:f9: 64:74:97:9d:d5:36:cc:21:00:59:33:37:19:ac:db: bc:c3:a7:44:a1:51:80:49:b1:c6:be:47:af:e9:4a: 99:f0:0f:77:92:6d:28:eb:77:83:51:c0:70:7e:e3: 32:47:65:1c:54:68:0e:65:38:b8:92:02:15:cf:a0: 43:85:d9:82:6e:d0:17:50:eb:a5:82:b8:98:6f:3a: 5b:9f:af:49:36:3d:19:54:99:23:69:d9:c9:2b:53: 15:02:2f:d1:59:83:22:1b:9d:3e:9c:1b:56:57:16: 3f:5b:1f:cf:94:ed:77:9a:b7:e6:8d:df:90:03:bc: 6c:24:22:5e:0d:13:5e:22:3e:3d:ff:59:12:e9:78: 17:68:49:ff:12:c5:cc:45:57:00:f9:8f:9e:c7:50: 40:86:e9:5a:8d:cf:c5:c8:50:a1:59:8e:85:6f:bb: 10:7d:1a:fe:0e:13:f2:08:07:45:e9:aa:c6:48:65: f0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B0:EE:FC:CE:D8:04:07:10:52:92:70:AC:69:90:32:08:A1:78:6F X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/brDu_M7YBAcQUpJwrGmQMgiheG8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.104.0.0/14 Signature Algorithm: sha256WithRSAEncryption 90:0c:00:31:d0:48:5f:1f:0f:37:3a:50:a7:f8:00:e3:8d:9b: eb:90:cb:e2:e0:dd:28:40:8e:e1:26:9f:a1:1f:5d:cc:3a:08: 27:13:a7:33:74:bc:c9:8e:e8:ac:44:1f:44:cf:e1:90:06:bf: 9b:cb:0d:0d:47:cb:1e:5f:b1:30:e7:5f:38:b1:cf:3a:83:5f: 91:16:44:b3:50:33:f5:04:48:09:7b:82:94:b9:be:00:46:9a: 9c:7a:5b:10:d2:bd:0d:aa:53:27:fa:99:bb:38:87:a0:2d:9b: 33:54:9a:bd:bb:65:29:a0:2e:a2:f3:03:e1:c4:22:be:8e:df: 2f:28:06:b5:5e:83:29:dd:f5:a9:9b:2e:29:3e:f6:dd:f6:59: 30:6b:54:4d:24:48:7b:0d:4d:3f:05:80:1a:b0:49:ae:bf:ae: 76:99:7a:72:a9:8e:f4:bf:43:c9:27:f7:de:17:76:a3:5e:b9: 91:00:76:47:8b:47:6d:be:34:ad:b9:26:8d:21:32:b5:3f:80: 35:b5:d8:50:e6:e5:29:b8:1c:ba:48:3f:1c:2d:3a:f3:67:47: 86:99:50:72:15:67:ab:f8:4f:69:72:f3:4a:68:b6:38:98:c6: f6:30:cc:14:eb:df:bc:3a:75:06:3b:50:ea:c5:18:c0:cc:bd: 26:e2:49:b2 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFm8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFQjBFRUZDQ0VEODA0 MDcxMDUyOTI3MEFDNjk5MDMyMDhBMTc4NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmrkSn+QG+PzD7EmAS/bmUZrCURpINEnkWMlUeuBjDAlmBpUVG dpp+xEZerg5VMQaMvXLu8Q7Uw/bl6hhmOWS+as3dFxPk914M+WR0l53VNswhAFkz Nxms27zDp0ShUYBJsca+R6/pSpnwD3eSbSjrd4NRwHB+4zJHZRxUaA5lOLiSAhXP oEOF2YJu0BdQ66WCuJhvOlufr0k2PRlUmSNp2ckrUxUCL9FZgyIbnT6cG1ZXFj9b H8+U7Xeat+aN35ADvGwkIl4NE14iPj3/WRLpeBdoSf8SxcxFVwD5j57HUECG6VqN z8XIUKFZjoVvuxB9Gv4OE/IIB0XpqsZIZfCNAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUbrDu/M7YBAcQUpJwrGmQMgiheG8wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYnJEdV9NN1lCQWNRVXBKd3JHbVFN Z2loZUc4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAmpoMA0G CSqGSIb3DQEBCwUAA4IBAQCQDAAx0EhfHw83OlCn+ADjjZvrkMvi4N0oQI7hJp+h H13MOggnE6czdLzJjuisRB9Ez+GQBr+byw0NR8seX7Ew5184sc86g1+RFkSzUDP1 BEgJe4KUub4ARpqcelsQ0r0NqlMn+pm7OIegLZszVJq9u2UpoC6i8wPhxCK+jt8v KAa1XoMp3fWpmy4pPvbd9lkwa1RNJEh7DU0/BYAasEmuv652mXpyqY70v0PJJ/fe F3ajXrmRAHZHi0dtvjStuSaNITK1P4A1tdhQ5uUpuBy6SD8cLTrzZ0eGmVByFWer +E9pcvNKaLY4mMb2MMwU69+8OnUGO1DqxRjAzL0m4kmy -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org