$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pS8awVieRIg6ukNh_0Y9qO-I2SY.roa File: pS8awVieRIg6ukNh_0Y9qO-I2SY.roa (raw, json) Hash identifier: yAzqb0KKKgDUVfIoDu/PwuUwl+wExSft678S7Z1UJFw= Subject key identifier: A5:2F:1A:C1:58:9E:44:88:3A:BA:43:61:FF:46:3D:A8:EF:88:D9:26 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16C9 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pS8awVieRIg6ukNh_0Y9qO-I2SY.roa Signing time: Mon 26 Aug 2024 05:22:38 +0000 ROA not before: Mon 26 Aug 2024 05:22:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 218.210.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5833 (0x16c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A52F1AC1589E44883ABA4361FF463DA8EF88D926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:91:1e:23:91:25:e0:b7:1b:55:9c:2a:b7:a8: 91:ea:31:94:59:98:72:5b:f1:56:13:a3:81:83:66: 63:ff:93:5b:b6:d9:43:60:93:94:26:c2:ff:55:53: 9a:62:3f:d5:22:a0:82:3d:3c:3c:8c:e4:26:2a:e4: 59:e4:43:41:63:a2:3d:25:98:8d:c0:f4:58:1a:6b: cb:20:ef:8a:88:75:a2:b1:57:0f:89:c5:fe:f7:45: e4:18:08:44:53:80:05:a4:d3:d6:cc:0f:67:58:3d: 7e:5e:13:13:cd:29:1d:a5:bc:2f:2c:9e:4d:a5:ca: dd:f7:64:06:0b:65:09:61:7b:c6:6d:dd:e0:8d:7e: 4b:ff:79:df:e2:4c:5f:16:07:39:f6:ca:ad:65:05: 14:8c:9c:4f:40:f5:80:ca:17:2f:f9:1f:4a:b2:f3: 85:d2:7a:5d:83:05:a9:72:9f:a8:4b:52:77:bc:43: 63:89:e8:2d:47:3a:08:73:0e:ed:87:59:c4:8d:6a: d0:53:f7:fa:e4:7b:15:e0:11:da:54:c9:d0:b1:2d: 42:7d:73:a2:1a:b4:3b:00:2a:80:9a:31:25:88:3d: e3:ec:d0:65:bb:03:db:75:48:20:93:c6:c0:cc:61: d1:da:8a:f1:de:4c:11:29:83:e8:f3:c5:b0:9b:9d: aa:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2F:1A:C1:58:9E:44:88:3A:BA:43:61:FF:46:3D:A8:EF:88:D9:26 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pS8awVieRIg6ukNh_0Y9qO-I2SY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.0.0/19 Signature Algorithm: sha256WithRSAEncryption 5f:97:00:19:ba:04:9a:4f:84:5e:37:1e:e3:23:14:bc:62:c8: 61:cc:bf:8f:d4:f4:ba:a2:70:01:89:90:a5:e4:fe:80:3b:cb: 94:21:16:50:a0:54:51:b8:4a:d9:b3:fc:fb:9f:1e:74:14:b2: 58:f9:fe:c3:05:f6:f6:d7:85:56:35:d2:b2:26:c2:8c:58:e1: 6c:af:06:4c:19:14:b2:2e:f7:40:bd:f2:b7:5e:ce:d7:56:d7: 2f:c5:5b:9a:01:da:1d:00:4a:ac:22:c5:19:c0:56:05:d3:a6: 3e:85:a9:12:05:5e:fd:96:a6:a7:c2:8c:9b:1f:c0:2b:b9:e9: 57:33:45:08:42:a9:b7:87:2e:c1:79:b6:67:87:3d:32:aa:67: 7a:76:e4:c0:4a:a4:57:60:d7:cf:dd:6f:c1:1d:90:85:98:4a: 0e:f1:f8:81:f6:38:93:4c:31:19:73:df:7c:7c:41:d8:81:10: 23:8a:6b:1e:f4:bb:07:2e:eb:c8:a0:d5:13:63:5a:38:9d:1d: 5c:65:0b:45:f2:74:2a:ac:13:82:10:91:7f:7d:4d:4b:f3:5f: 58:b9:89:c4:29:bc:f9:53:08:f7:e6:62:4c:8a:a4:7e:b5:83: 3f:20:07:95:62:56:bb:bb:ac:0c:c1:ee:92:8c:c4:ea:69:1a: b3:22:01:64 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1MkYxQUMxNTg5RTQ0 ODgzQUJBNDM2MUZGNDYzREE4RUY4OEQ5MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDokR4jkSXgtxtVnCq3qJHqMZRZmHJb8VYTo4GDZmP/k1u22UNg k5Qmwv9VU5piP9UioII9PDyM5CYq5FnkQ0Fjoj0lmI3A9Fgaa8sg74qIdaKxVw+J xf73ReQYCERTgAWk09bMD2dYPX5eExPNKR2lvC8snk2lyt33ZAYLZQlhe8Zt3eCN fkv/ed/iTF8WBzn2yq1lBRSMnE9A9YDKFy/5H0qy84XSel2DBalyn6hLUne8Q2OJ 6C1HOghzDu2HWcSNatBT9/rkexXgEdpUydCxLUJ9c6IatDsAKoCaMSWIPePs0GW7 A9t1SCCTxsDMYdHaivHeTBEpg+jzxbCbnaqRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUpS8awVieRIg6ukNh/0Y9qO+I2SYwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcFM4YXdWaWVSSWc2dWtOaF8wWTlx Ty1JMlNZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdrSADAN BgkqhkiG9w0BAQsFAAOCAQEAX5cAGboEmk+EXjce4yMUvGLIYcy/j9T0uqJwAYmQ peT+gDvLlCEWUKBUUbhK2bP8+58edBSyWPn+wwX29teFVjXSsibCjFjhbK8GTBkU si73QL3yt17O11bXL8VbmgHaHQBKrCLFGcBWBdOmPoWpEgVe/Zamp8KMmx/AK7np VzNFCEKpt4cuwXm2Z4c9MqpnenbkwEqkV2DXz91vwR2QhZhKDvH4gfY4k0wxGXPf fHxB2IEQI4prHvS7By7ryKDVE2NaOJ0dXGULRfJ0KqwTghCRf31NS/NfWLmJxCm8 +VMI9+ZiTIqkfrWDPyAHlWJWu7usDMHukozE6mkasyIBZA== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org