$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/oFxNMhl0fDuiJS-JFVbs_oToLYM.roa File: oFxNMhl0fDuiJS-JFVbs_oToLYM.roa (raw, json) Hash identifier: /L8HH4h2Oqa6LEeFlHeLzKb6wvVJvfxS6KNGqCQmCuo= Subject key identifier: A0:5C:4D:32:19:74:7C:3B:A2:25:2F:89:15:56:EC:FE:84:E8:2D:83 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 170B Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oFxNMhl0fDuiJS-JFVbs_oToLYM.roa Signing time: Mon 23 Sep 2024 09:49:06 +0000 ROA not before: Mon 23 Sep 2024 09:49:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131611 IP address blocks: 106.105.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5899 (0x170b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Sep 23 09:49:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A05C4D3219747C3BA2252F891556ECFE84E82D83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4d:79:2f:8d:7c:ff:56:15:2a:5e:c5:29:c4: 5d:ea:00:af:41:74:f7:c4:27:9f:c3:59:2c:2f:c3: 26:02:2f:ea:6a:0e:d1:c5:ea:10:37:5e:6b:55:ae: 27:fc:fc:1c:78:e9:5d:c9:1e:64:29:65:4c:74:c1: ef:29:ee:db:d5:94:f5:b1:90:ea:9d:fb:6d:12:87: 80:f4:94:1f:bc:0c:6e:4e:3c:88:64:63:43:a3:4a: fa:a5:e2:b2:d8:82:ae:e8:2f:34:ae:f4:2c:3a:a9: b1:21:7c:49:4c:82:10:ee:88:69:ce:67:75:71:0f: 08:65:51:46:d8:78:04:b9:76:e4:0f:a9:8c:5e:77: 12:5f:2b:44:43:89:0b:2c:c2:08:5f:ef:53:19:e8: 30:28:0e:c1:18:83:4e:8f:cd:98:7f:15:26:67:d6: c3:46:46:15:76:a9:02:0b:2d:48:97:ed:e0:04:36: cb:7d:0f:91:f6:9e:74:2f:7e:13:c7:7e:f7:a1:39: 60:4b:67:6a:3d:f3:4b:4b:65:5b:dd:9f:b6:29:06: de:dc:35:8c:6e:84:6f:c2:46:a8:69:91:53:fc:82: 71:23:8c:9e:21:70:39:ed:60:5f:1b:8b:a0:5e:04: f6:21:5d:09:34:ef:33:59:ec:23:a2:01:98:f8:30: 16:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5C:4D:32:19:74:7C:3B:A2:25:2F:89:15:56:EC:FE:84:E8:2D:83 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oFxNMhl0fDuiJS-JFVbs_oToLYM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.32.0/19 Signature Algorithm: sha256WithRSAEncryption a6:3e:60:74:a7:a0:df:5d:96:b0:bc:5b:c6:0e:d2:f9:0d:21: 84:3b:a5:6f:8c:ef:f5:7d:87:dc:cd:ee:75:1f:a8:05:ea:be: e1:cd:95:cb:d0:de:4a:cf:cf:10:03:d1:1f:c7:f9:bc:79:aa: fb:4c:42:78:d4:2a:09:f4:cd:5e:0b:cc:5b:46:69:72:26:44: 9a:75:7c:44:f0:c9:df:19:9f:b0:ca:99:d5:e0:e1:91:8b:f1: b9:4b:57:8f:eb:8d:de:ea:fd:0a:fd:09:09:71:d7:16:83:7a: 18:5f:49:93:cf:d4:2b:5a:22:59:0d:a3:7b:38:bc:63:d0:68: 88:c0:35:a0:37:ec:ab:66:c2:2b:6e:02:d8:dd:b4:31:ee:e5: 63:1b:f4:16:20:b2:37:ca:37:63:dd:61:88:37:63:2e:27:cc: 2c:59:7f:be:4b:12:de:38:ab:1d:70:31:d0:ad:cf:3d:bd:90: a4:23:fa:06:9a:8f:66:91:99:4b:1d:45:58:b3:5c:4f:0c:47: 3c:18:6b:db:4c:ea:d6:ef:2a:ce:fc:36:09:27:58:39:be:06: 59:8b:f7:ee:1e:52:60:c4:ba:d7:ba:19:6e:9e:90:40:11:5b: 52:de:c0:be:8c:b9:02:b3:74:3d:af:34:95:cd:46:0e:64:67: 80:f0:02:ca -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFwswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA5MjMw OTQ5MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEwNUM0RDMyMTk3NDdD M0JBMjI1MkY4OTE1NTZFQ0ZFODRFODJEODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBTXkvjXz/VhUqXsUpxF3qAK9BdPfEJ5/DWSwvwyYCL+pqDtHF 6hA3XmtVrif8/Bx46V3JHmQpZUx0we8p7tvVlPWxkOqd+20Sh4D0lB+8DG5OPIhk Y0OjSvql4rLYgq7oLzSu9Cw6qbEhfElMghDuiGnOZ3VxDwhlUUbYeAS5duQPqYxe dxJfK0RDiQsswghf71MZ6DAoDsEYg06PzZh/FSZn1sNGRhV2qQILLUiX7eAENst9 D5H2nnQvfhPHfvehOWBLZ2o980tLZVvdn7YpBt7cNYxuhG/CRqhpkVP8gnEjjJ4h cDntYF8bi6BeBPYhXQk07zNZ7COiAZj4MBYVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUoFxNMhl0fDuiJS+JFVbs/oToLYMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvb0Z4Tk1obDBmRHVpSlMtSkZWYnNf b1RvTFlNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBWppIDAN BgkqhkiG9w0BAQsFAAOCAQEApj5gdKeg312WsLxbxg7S+Q0hhDulb4zv9X2H3M3u dR+oBeq+4c2Vy9DeSs/PEAPRH8f5vHmq+0xCeNQqCfTNXgvMW0ZpciZEmnV8RPDJ 3xmfsMqZ1eDhkYvxuUtXj+uN3ur9Cv0JCXHXFoN6GF9Jk8/UK1oiWQ2jezi8Y9Bo iMA1oDfsq2bCK24C2N20Me7lYxv0FiCyN8o3Y91hiDdjLifMLFl/vksS3jirHXAx 0K3PPb2QpCP6BpqPZpGZSx1FWLNcTwxHPBhr20zq1u8qzvw2CSdYOb4GWYv37h5S YMS617oZbp6QQBFbUt7Avoy5ArN0Pa80lc1GDmRngPACyg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org