$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/oY0LIugM3Qo_nYJO9uA4sNX6mD0.roa File: oY0LIugM3Qo_nYJO9uA4sNX6mD0.roa (raw, json) Hash identifier: NcSFSAyhNR9JT0AECL2n61f/9AIFe/FDGGrb3+blRbk= Subject key identifier: A1:8D:0B:22:E8:0C:DD:0A:3F:9D:82:4E:F6:E0:38:B0:D5:FA:98:3D Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 15EF Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oY0LIugM3Qo_nYJO9uA4sNX6mD0.roa Signing time: Mon 26 Aug 2024 05:21:36 +0000 ROA not before: Mon 26 Aug 2024 05:21:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 106.104.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5615 (0x15ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A18D0B22E80CDD0A3F9D824EF6E038B0D5FA983D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f9:25:4a:4c:fa:07:83:03:aa:f6:37:69:ca: 87:a0:76:d1:cb:25:6c:e7:12:cb:7d:bf:75:e4:6f: d3:e9:1c:58:b4:da:90:a8:90:5a:ee:9b:bb:4b:f9: e7:ed:e9:20:d9:93:a9:f7:30:7e:2f:fb:48:b1:80: 53:28:69:f8:4b:42:16:2c:03:97:7b:a5:00:54:7f: af:18:67:c5:db:72:fa:af:5a:4a:6f:98:46:7a:10: a0:79:2e:c9:04:36:0f:40:2f:d0:00:1e:43:68:7f: bd:09:2b:42:fb:95:ab:f3:b3:bc:ca:c4:8f:2c:c0: 00:11:2b:8e:41:50:39:5c:03:2f:36:84:6c:80:4f: 31:b4:b4:5c:5f:09:fe:c1:81:66:3d:d3:fd:8f:f2: 37:3e:9c:db:6f:b0:d0:49:d4:bd:60:a9:91:22:91: 96:61:88:04:25:67:a8:71:c1:61:f1:4e:db:f0:26: 8e:1d:a3:bb:e5:6f:c2:27:87:90:30:48:f1:f0:23: d3:65:94:f7:ea:8c:71:69:02:68:b2:50:10:21:37: a4:85:28:7b:61:dd:c3:28:aa:30:10:82:07:ea:a4: da:09:1c:45:1d:5a:c2:fa:36:ac:5c:d0:70:17:35: ca:35:ab:6b:98:5c:69:33:94:d9:a5:b1:87:33:1f: 9f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:8D:0B:22:E8:0C:DD:0A:3F:9D:82:4E:F6:E0:38:B0:D5:FA:98:3D X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/oY0LIugM3Qo_nYJO9uA4sNX6mD0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 22:49:35:17:6b:2d:1c:b2:8e:2b:ca:9a:12:c2:6a:5b:13:01: d9:fd:94:11:48:5e:e3:52:c1:5e:78:8d:bf:c0:83:fe:5e:0c: 62:a0:c3:54:55:80:1e:52:96:7d:67:b3:20:03:a2:13:96:6b: 12:4c:d6:d9:8f:10:e8:6b:28:e7:d8:81:0d:96:d2:e2:19:4c: 77:08:19:17:2a:5a:cf:3a:e8:31:2b:2b:13:6e:f9:8a:36:e1: 51:e8:fd:91:b9:41:03:30:53:ea:52:9c:fa:d0:52:bf:f0:69: 25:61:2b:a4:6d:92:6a:10:18:aa:6b:99:69:3b:d5:c1:04:cb: c4:1f:f3:31:71:e8:dc:c5:ac:29:e5:5a:a8:fe:7f:0c:16:2e: 3e:6b:da:d9:ba:ee:78:93:29:9c:60:61:7f:35:44:0e:b3:e4: 06:55:5b:0a:2a:8a:1f:c2:a1:ff:68:dc:a9:8a:55:88:84:8d: 47:eb:e5:bc:85:04:cf:52:9a:71:40:b4:46:06:b7:72:6d:f9: 70:53:87:66:18:e0:10:98:06:ab:48:e7:2a:03:ea:21:c1:c0: c7:70:aa:f6:81:35:f6:58:0e:04:ec:8b:8f:3e:5d:b9:56:97: f7:c1:1e:f9:b8:20:81:89:02:db:b6:91:55:13:ac:2c:84:bd: 26:b4:52:0a -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFe8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExOEQwQjIyRTgwQ0RE MEEzRjlEODI0RUY2RTAzOEIwRDVGQTk4M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH+SVKTPoHgwOq9jdpyoegdtHLJWznEst9v3Xkb9PpHFi02pCo kFrum7tL+eft6SDZk6n3MH4v+0ixgFMoafhLQhYsA5d7pQBUf68YZ8XbcvqvWkpv mEZ6EKB5LskENg9AL9AAHkNof70JK0L7lavzs7zKxI8swAARK45BUDlcAy82hGyA TzG0tFxfCf7BgWY90/2P8jc+nNtvsNBJ1L1gqZEikZZhiAQlZ6hxwWHxTtvwJo4d o7vlb8Inh5AwSPHwI9NllPfqjHFpAmiyUBAhN6SFKHth3cMoqjAQggfqpNoJHEUd WsL6Nqxc0HAXNco1q2uYXGkzlNmlsYczH58tAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUoY0LIugM3Qo/nYJO9uA4sNX6mD0wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvb1kwTEl1Z00zUW9fbllKTzl1QTRz Tlg2bUQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAGpoMA0G CSqGSIb3DQEBCwUAA4IBAQAiSTUXay0cso4rypoSwmpbEwHZ/ZQRSF7jUsFeeI2/ wIP+XgxioMNUVYAeUpZ9Z7MgA6ITlmsSTNbZjxDoayjn2IENltLiGUx3CBkXKlrP OugxKysTbvmKNuFR6P2RuUEDMFPqUpz60FK/8GklYSukbZJqEBiqa5lpO9XBBMvE H/Mxcejcxawp5Vqo/n8MFi4+a9rZuu54kymcYGF/NUQOs+QGVVsKKoofwqH/aNyp ilWIhI1H6+W8hQTPUppxQLRGBrdybflwU4dmGOAQmAarSOcqA+ohwcDHcKr2gTX2 WA4E7IuPPl25Vpf3wR75uCCBiQLbtpFVE6wshL0mtFIK -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org