$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ktNrNYWXwsDd5E9wiN5Ke1FDPB0.roa File: ktNrNYWXwsDd5E9wiN5Ke1FDPB0.roa (raw, json) Hash identifier: sCR16IP7m0sODLo0SqUJtfRPfJwJmAalF1cjUpj6Pko= Subject key identifier: 92:D3:6B:35:85:97:C2:C0:DD:E4:4F:70:88:DE:4A:7B:51:43:3C:1D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1612 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ktNrNYWXwsDd5E9wiN5Ke1FDPB0.roa Signing time: Mon 26 Aug 2024 05:21:44 +0000 ROA not before: Mon 26 Aug 2024 05:21:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.204.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5650 (0x1612) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=92D36B358597C2C0DDE44F7088DE4A7B51433C1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d5:95:05:2e:99:9f:1c:59:18:c6:c0:10:2c: 67:64:06:1c:d0:ba:9b:1d:6c:97:5d:f1:44:d3:61: 49:8d:6f:14:95:7e:c1:b9:bb:ae:c1:03:9c:b9:52: 80:a2:40:c7:aa:95:5c:78:b2:2b:00:5b:4a:68:7e: 83:94:a1:44:af:ba:b1:c2:69:19:0d:b1:19:3a:69: 49:05:e8:18:ba:5b:13:ca:1a:77:7b:36:ab:5a:32: c5:e9:d2:f8:26:e7:61:b4:39:20:97:4e:44:56:34: 8d:2b:78:85:a1:cc:67:ed:43:65:a8:83:12:11:16: 92:0f:8a:54:3e:02:be:4c:f4:a2:ac:e6:8a:aa:45: 7c:ef:14:cb:fd:fa:15:56:25:9f:e0:d7:33:03:62: d9:5d:61:1e:77:99:ab:f0:c7:0d:dd:4a:a3:ca:96: 3a:d8:cd:ac:f7:b0:54:4a:cb:90:01:1d:51:47:5a: bf:25:e7:d2:d0:0b:7e:43:da:84:9f:e7:59:96:ce: e5:61:76:6f:6f:65:4a:01:9a:7e:68:d1:2c:58:48: a1:37:ff:97:22:d4:01:11:12:20:30:33:dc:2a:dc: b0:71:bc:5e:95:ba:13:e1:5a:d4:af:47:96:bc:52: 1c:46:8d:30:a2:39:5c:1d:04:9e:c2:fd:0e:2f:e4: 94:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:D3:6B:35:85:97:C2:C0:DD:E4:4F:70:88:DE:4A:7B:51:43:3C:1D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ktNrNYWXwsDd5E9wiN5Ke1FDPB0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.204.0.0/16 Signature Algorithm: sha256WithRSAEncryption a0:8e:df:d1:18:9f:52:17:28:5b:b6:fc:ef:28:50:b4:80:7e: 17:eb:b8:3c:3d:21:ac:68:01:c9:47:3b:69:36:53:8d:81:5c: 90:26:36:ef:9d:ce:06:04:be:9d:67:2c:ed:92:11:12:43:e8: e6:16:d6:f4:58:45:c0:ba:d5:b4:23:f4:1d:af:fe:98:53:40: 74:09:9f:d3:07:fe:00:eb:34:99:1b:ec:22:b9:1b:94:8a:69: ec:2d:ff:35:09:32:ac:27:15:3f:95:68:13:38:f6:fa:44:c5: 55:4a:86:f3:bc:2f:13:29:b2:76:07:e7:92:e8:81:cd:52:21: 07:d8:6d:f9:3e:45:11:b0:73:e5:02:5a:cf:cf:98:c5:c7:61: 28:c1:3b:26:05:58:ac:03:8b:08:ea:6b:65:58:58:a6:06:7a: ae:90:4b:b3:a7:ff:2e:8b:a8:3a:ba:84:18:74:f6:7f:f3:f4: 92:3e:c4:5f:90:81:c1:22:0a:b8:a2:3a:48:d1:93:e0:50:19: 10:ee:1a:83:9a:96:37:38:06:d8:3c:7e:5c:f9:6e:b8:f3:3f: 5d:8d:98:be:6c:94:8f:23:fa:bd:2e:2e:89:59:f1:b0:25:0e: 40:88:73:be:31:52:97:dd:98:32:08:4f:08:93:25:17:4b:3d: 51:f8:2c:3f -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFhIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkyRDM2QjM1ODU5N0My QzBEREU0NEY3MDg4REU0QTdCNTE0MzNDMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+1ZUFLpmfHFkYxsAQLGdkBhzQupsdbJdd8UTTYUmNbxSVfsG5 u67BA5y5UoCiQMeqlVx4sisAW0pofoOUoUSvurHCaRkNsRk6aUkF6Bi6WxPKGnd7 NqtaMsXp0vgm52G0OSCXTkRWNI0reIWhzGftQ2WogxIRFpIPilQ+Ar5M9KKs5oqq RXzvFMv9+hVWJZ/g1zMDYtldYR53mavwxw3dSqPKljrYzaz3sFRKy5ABHVFHWr8l 59LQC35D2oSf51mWzuVhdm9vZUoBmn5o0SxYSKE3/5ci1AEREiAwM9wq3LBxvF6V uhPhWtSvR5a8UhxGjTCiOVwdBJ7C/Q4v5JTPAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUktNrNYWXwsDd5E9wiN5Ke1FDPB0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMva3ROck5ZV1h3c0RkNUU5d2lONUtl MUZEUEIwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAHvMMA0G CSqGSIb3DQEBCwUAA4IBAQCgjt/RGJ9SFyhbtvzvKFC0gH4X67g8PSGsaAHJRztp NlONgVyQJjbvnc4GBL6dZyztkhESQ+jmFtb0WEXAutW0I/Qdr/6YU0B0CZ/TB/4A 6zSZG+wiuRuUimnsLf81CTKsJxU/lWgTOPb6RMVVSobzvC8TKbJ2B+eS6IHNUiEH 2G35PkURsHPlAlrPz5jFx2EowTsmBVisA4sI6mtlWFimBnqukEuzp/8ui6g6uoQY dPZ/8/SSPsRfkIHBIgq4ojpI0ZPgUBkQ7hqDmpY3OAbYPH5c+W648z9djZi+bJSP I/q9Li6JWfGwJQ5AiHO+MVKX3ZgyCE8IkyUXSz1R+Cw/ -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org