$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/rWEDt980Y37S5BytgIAZ_NaDjtM.roa File: rWEDt980Y37S5BytgIAZ_NaDjtM.roa (raw, json) Hash identifier: 3sdND4h4LWAes3ebqmFCRxCRPg10C0i76XtmcmTZpYw= Subject key identifier: AD:61:03:B7:DF:34:63:7E:D2:E4:1C:AD:80:80:19:FC:D6:83:8E:D3 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1658 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rWEDt980Y37S5BytgIAZ_NaDjtM.roa Signing time: Mon 26 Aug 2024 05:22:04 +0000 ROA not before: Mon 26 Aug 2024 05:22:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 203.67.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5720 (0x1658) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AD6103B7DF34637ED2E41CAD808019FCD6838ED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d5:9f:29:c6:95:e7:a7:25:1b:a5:d5:85:77: 78:46:d6:60:20:47:dd:98:a9:f7:22:bb:77:b5:7f: fc:2d:a6:08:eb:2e:81:c3:45:e0:b9:32:c2:eb:19: 24:18:92:7d:68:9b:b7:41:25:1b:d8:ee:de:5f:00: f4:30:47:09:eb:a4:13:54:ff:59:9a:c5:9d:01:5f: e6:d0:a3:40:6c:4b:0d:7b:4a:c9:41:ef:fa:99:b5: d4:97:8a:37:6e:17:35:3f:44:6a:5b:49:e7:59:18: 00:0e:03:77:15:b6:b3:c1:da:0b:6d:72:2a:3b:56: af:f4:25:9d:51:1d:7f:b0:d9:03:f2:11:eb:61:4f: 32:40:0e:c7:19:ed:0f:b2:d1:9d:8a:30:36:7e:8b: d1:dd:fb:9a:73:93:39:43:81:d0:02:86:3f:11:3b: e4:12:59:13:d9:e6:08:fe:2a:55:49:03:0e:45:d7: d9:36:05:e3:ea:3c:92:17:2e:a1:61:f1:70:41:66: 39:2b:24:29:55:41:21:50:e5:ff:c6:cc:52:84:24: 8c:f2:3e:0a:50:01:3c:20:3e:e5:80:bd:9d:51:f9: b1:01:95:f2:b6:85:6d:c2:ad:ac:96:fd:66:73:69: c2:f2:32:db:9a:c4:f2:47:a9:79:9c:3d:f5:41:4c: 56:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:61:03:B7:DF:34:63:7E:D2:E4:1C:AD:80:80:19:FC:D6:83:8E:D3 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/rWEDt980Y37S5BytgIAZ_NaDjtM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.67.0.0/16 Signature Algorithm: sha256WithRSAEncryption 60:7a:68:a0:f5:b2:6d:f5:cc:77:be:94:57:74:0a:63:b0:98: ce:da:fc:bd:e5:b2:00:83:c3:1c:eb:10:67:07:71:90:09:08: 8d:ab:1f:a0:f5:9a:69:22:a5:4b:5b:0e:e2:01:ac:92:19:0d: 17:1d:ef:c0:50:5a:6b:5e:b8:d1:99:bf:e5:b6:af:f1:22:63: 30:e8:e4:ea:4c:d0:b6:b0:0d:31:9e:83:42:0c:59:c1:f9:91: 1f:3a:85:bb:75:eb:c6:72:6b:e2:45:1d:00:87:bd:5a:fd:a2: 51:eb:30:e6:32:92:bd:c9:ca:83:9d:4e:3c:5c:81:b0:ed:84: 86:1a:48:8c:05:59:7c:c1:e8:b0:09:f2:2e:89:04:50:b2:69: 3a:a2:c3:97:b1:b9:3f:02:9d:0f:72:0e:30:29:6c:86:b2:f8: c6:69:c4:01:6d:91:c5:ec:cb:18:11:f7:9e:b1:bd:6c:6d:81: d5:a5:4b:60:7d:e3:dc:62:6c:41:58:f3:1c:e9:13:09:71:65: d7:7d:d4:d6:82:55:4b:84:2a:f6:08:91:e2:1d:39:aa:98:2e: 1d:4a:92:5c:c5:2f:59:dc:aa:03:7d:39:5b:ee:33:55:ff:69: e7:b9:7d:db:a0:8b:52:b5:a9:9f:76:32:45:89:dc:98:12:3c: 35:f8:50:c7 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFlgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFENjEwM0I3REYzNDYz N0VEMkU0MUNBRDgwODAxOUZDRDY4MzhFRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw1Z8pxpXnpyUbpdWFd3hG1mAgR92Yqfciu3e1f/wtpgjrLoHD ReC5MsLrGSQYkn1om7dBJRvY7t5fAPQwRwnrpBNU/1maxZ0BX+bQo0BsSw17SslB 7/qZtdSXijduFzU/RGpbSedZGAAOA3cVtrPB2gttcio7Vq/0JZ1RHX+w2QPyEeth TzJADscZ7Q+y0Z2KMDZ+i9Hd+5pzkzlDgdAChj8RO+QSWRPZ5gj+KlVJAw5F19k2 BePqPJIXLqFh8XBBZjkrJClVQSFQ5f/GzFKEJIzyPgpQATwgPuWAvZ1R+bEBlfK2 hW3CrayW/WZzacLyMtuaxPJHqXmcPfVBTFaXAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUrWEDt980Y37S5BytgIAZ/NaDjtMwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcldFRHQ5ODBZMzdTNUJ5dGdJQVpf TmFEanRNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtDMA0G CSqGSIb3DQEBCwUAA4IBAQBgemig9bJt9cx3vpRXdApjsJjO2vy95bIAg8Mc6xBn B3GQCQiNqx+g9ZppIqVLWw7iAaySGQ0XHe/AUFprXrjRmb/ltq/xImMw6OTqTNC2 sA0xnoNCDFnB+ZEfOoW7devGcmviRR0Ah71a/aJR6zDmMpK9ycqDnU48XIGw7YSG GkiMBVl8weiwCfIuiQRQsmk6osOXsbk/Ap0Pcg4wKWyGsvjGacQBbZHF7MsYEfee sb1sbYHVpUtgfePcYmxBWPMc6RMJcWXXfdTWglVLhCr2CJHiHTmqmC4dSpJcxS9Z 3KoDfTlb7jNV/2nnuX3boItStamfdjJFidyYEjw1+FDH -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org