$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/j2pt7xN22X00Mc3mpgO6TJ45rjM.roa File: j2pt7xN22X00Mc3mpgO6TJ45rjM.roa (raw, json) Hash identifier: TbyPeeVZ0AI52mdYeVw/naTDkmZzAH03aaj02iyEab8= Subject key identifier: 8F:6A:6D:EF:13:76:D9:7D:34:31:CD:E6:A6:03:BA:4C:9E:39:AE:33 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16B1 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/j2pt7xN22X00Mc3mpgO6TJ45rjM.roa Signing time: Mon 26 Aug 2024 05:22:29 +0000 ROA not before: Mon 26 Aug 2024 05:22:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 210.243.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5809 (0x16b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F6A6DEF1376D97D3431CDE6A603BA4C9E39AE33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7c:e1:13:d9:33:e9:69:db:94:34:c9:98:f3: c9:ad:19:04:40:13:1c:e0:7c:dc:10:f4:02:49:09: bf:72:b5:8a:f8:3f:3a:3b:c6:17:64:1d:e5:8d:08: f0:17:2a:4e:fc:98:90:4c:0a:55:57:12:01:cf:28: c7:6c:b4:81:73:d2:c5:fc:3e:a3:bc:7a:c6:5a:00: eb:17:6d:1c:8c:28:27:ee:d4:85:de:ee:33:49:33: fe:2e:d9:62:56:49:3a:d3:73:bc:6a:24:fd:93:7e: 40:5a:7d:6f:26:e4:b1:1d:7d:0a:1c:2b:00:6f:fd: 96:0d:26:78:d6:10:27:9a:78:c8:36:78:ba:59:3b: 39:e5:8e:31:ef:cc:be:76:a4:51:c0:00:f2:85:58: 09:7b:d0:b8:7e:3b:a7:e9:fb:f6:6c:80:50:3a:ae: 4d:87:b0:39:be:9c:da:2e:98:4a:eb:eb:13:fb:ed: 23:44:51:aa:2c:1d:f9:4f:32:65:46:fa:a2:ff:9b: b9:25:cd:80:c6:31:b4:cc:90:7a:00:e1:6a:09:43: 59:b5:5e:40:15:93:54:b4:2c:f4:a5:0c:84:05:8c: b6:56:94:fe:c7:63:a4:82:57:cd:41:be:6b:aa:3e: ca:12:53:8f:72:8d:df:13:95:52:24:c7:97:fa:6c: 18:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6A:6D:EF:13:76:D9:7D:34:31:CD:E6:A6:03:BA:4C:9E:39:AE:33 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/j2pt7xN22X00Mc3mpgO6TJ45rjM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.128.0/17 Signature Algorithm: sha256WithRSAEncryption 0c:12:3b:e7:06:cd:02:76:b0:03:8f:ec:10:3a:2e:72:f3:94: 80:0f:c4:92:49:91:ee:66:3f:d5:cb:dd:e8:29:f5:4e:52:6f: 21:f3:93:b3:86:43:5d:92:37:10:25:61:26:be:6d:5a:a6:63: 7c:0a:2d:ea:ee:a3:e9:7c:72:1c:a7:f4:be:a9:e7:d5:b3:60: 61:0f:fa:08:b8:58:05:3f:04:c8:2d:a1:43:8a:c6:1e:ad:46: 77:2f:9d:67:ea:6c:74:df:c7:b7:8e:15:10:dd:25:76:f7:3c: 5e:6b:0e:58:19:05:bd:23:e5:74:70:3c:71:fb:b9:1d:28:ac: fe:75:31:4d:88:6b:7f:e5:d0:6c:4c:cf:d8:e3:ae:23:e8:23: 24:5b:82:54:15:df:7f:2d:ac:cc:aa:5a:e3:39:fa:c2:aa:dc: 14:b1:47:7a:65:9a:76:4e:10:1e:c7:77:2e:45:b2:80:6c:b0: ff:21:af:8f:bc:94:2d:57:93:5d:5f:57:2f:c0:17:99:58:59: cc:d7:ed:63:d7:84:eb:95:0d:8f:a8:15:49:6e:fa:f0:38:10: 51:69:f1:50:66:68:de:df:cd:57:78:1c:19:4b:7a:a3:b1:68: fd:c6:7c:23:e8:af:3e:93:b4:db:1e:32:0a:18:33:5a:b4:d1: a9:de:dc:89 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFrEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGNkE2REVGMTM3NkQ5 N0QzNDMxQ0RFNkE2MDNCQTRDOUUzOUFFMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJfOET2TPpaduUNMmY88mtGQRAExzgfNwQ9AJJCb9ytYr4Pzo7 xhdkHeWNCPAXKk78mJBMClVXEgHPKMdstIFz0sX8PqO8esZaAOsXbRyMKCfu1IXe 7jNJM/4u2WJWSTrTc7xqJP2TfkBafW8m5LEdfQocKwBv/ZYNJnjWECeaeMg2eLpZ OznljjHvzL52pFHAAPKFWAl70Lh+O6fp+/ZsgFA6rk2HsDm+nNoumErr6xP77SNE UaosHflPMmVG+qL/m7klzYDGMbTMkHoA4WoJQ1m1XkAVk1S0LPSlDIQFjLZWlP7H Y6SCV81BvmuqPsoSU49yjd8TlVIkx5f6bBivAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUj2pt7xN22X00Mc3mpgO6TJ45rjMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvajJwdDd4TjIyWDAwTWMzbXBnTzZU SjQ1cmpNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEB9LzgDAN BgkqhkiG9w0BAQsFAAOCAQEADBI75wbNAnawA4/sEDoucvOUgA/EkkmR7mY/1cvd 6Cn1TlJvIfOTs4ZDXZI3ECVhJr5tWqZjfAot6u6j6XxyHKf0vqnn1bNgYQ/6CLhY BT8EyC2hQ4rGHq1Gdy+dZ+psdN/Ht44VEN0ldvc8XmsOWBkFvSPldHA8cfu5HSis /nUxTYhrf+XQbEzP2OOuI+gjJFuCVBXffy2szKpa4zn6wqrcFLFHemWadk4QHsd3 LkWygGyw/yGvj7yULVeTXV9XL8AXmVhZzNftY9eE65UNj6gVSW768DgQUWnxUGZo 3t/NV3gcGUt6o7Fo/cZ8I+ivPpO02x4yChgzWrTRqd7ciQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org