$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/sJMrjrAvX44cI1KMb7wzOuUHbp4.roa File: sJMrjrAvX44cI1KMb7wzOuUHbp4.roa (raw, json) Hash identifier: AR0lzd6sVmXwDMVu96d9DpAHk/yUAsqDftejQI3+1Y4= Subject key identifier: B0:93:2B:8E:B0:2F:5F:8E:1C:23:52:8C:6F:BC:33:3A:E5:07:6E:9E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 169E Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sJMrjrAvX44cI1KMb7wzOuUHbp4.roa Signing time: Mon 26 Aug 2024 05:22:23 +0000 ROA not before: Mon 26 Aug 2024 05:22:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 2001:4580::/26 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5790 (0x169e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B0932B8EB02F5F8E1C23528C6FBC333AE5076E9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b5:d7:c3:69:ef:df:7d:b5:53:27:50:a7:1b: 78:e6:1d:bb:2f:ef:bf:ae:d1:ca:8d:4c:ee:98:81: 88:20:c1:1a:03:ba:6d:fd:90:30:cf:a6:1d:c2:2d: 3c:af:ae:8c:83:e8:e6:f5:33:cf:56:51:04:49:25: 82:7e:09:d1:e0:2f:7c:27:d1:eb:36:85:1e:7e:50: fe:24:a1:c3:e9:72:19:d3:a1:2b:7f:c5:2a:89:41: 23:c1:4f:80:52:b2:fc:6e:52:af:7c:17:2e:d2:e0: 2b:48:8a:1e:21:05:44:7a:25:60:da:0e:c9:6f:1e: 42:d3:35:f0:0a:0d:5f:3c:8e:7d:92:67:66:41:91: 13:9e:8a:52:52:1c:8a:0b:7e:7d:9c:89:64:ec:29: 87:ae:d3:b2:70:51:0b:8a:06:46:d9:24:95:72:92: 6f:0f:01:18:eb:75:88:d7:35:47:a6:52:ef:f2:ef: 9d:a1:26:84:81:64:05:f1:ba:9c:d0:9d:9b:f4:10: 89:bb:9a:43:f7:39:1f:30:84:7a:61:43:ec:26:69: 0c:dc:d4:80:34:dc:e1:81:b9:25:46:28:ef:14:61: 3d:6d:ef:2d:15:60:c0:51:5d:06:8f:ae:90:13:7d: 92:5c:5d:3a:3f:a6:1a:a1:cd:99:e9:26:08:fa:30: ea:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:93:2B:8E:B0:2F:5F:8E:1C:23:52:8C:6F:BC:33:3A:E5:07:6E:9E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/sJMrjrAvX44cI1KMb7wzOuUHbp4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4580::/26 Signature Algorithm: sha256WithRSAEncryption 69:0f:6b:f2:85:fe:d5:b7:18:9d:41:96:d7:54:d9:af:8c:d5: e2:9e:7c:7b:e3:b5:44:1c:f9:df:c0:d8:14:fa:14:47:fd:24: 5b:2e:7f:ce:b5:4c:8b:6a:7c:8c:68:da:04:58:93:de:e5:f2: 8c:b9:1f:9e:09:5f:0f:48:39:f0:12:0d:13:b6:6e:4e:ad:6e: 72:6f:61:1b:fb:5d:9f:81:d2:be:42:14:45:b9:f8:72:a1:8f: 0f:5c:75:d6:06:9d:07:1a:90:8a:8f:9a:3e:3a:08:b4:d6:75: ed:a9:2b:ae:2e:d5:17:e2:88:6a:53:26:a1:8e:c8:35:b5:ad: 7a:3d:c0:a9:dd:09:46:59:88:04:63:50:a3:78:02:d6:85:52: ca:84:3d:df:f2:2c:b0:e9:47:f1:88:5b:80:36:0a:3b:d6:bd: 8b:db:2e:11:7c:be:d2:b2:a8:27:c4:41:08:46:9b:3b:79:63: a7:31:fa:69:1b:0b:7f:09:6f:d6:5d:08:76:1f:5c:b7:9e:f9: 99:a9:ed:f7:b4:02:67:60:e6:bf:2a:7f:56:d7:a9:79:69:bf: 00:98:8c:ae:49:06:c5:59:a7:ea:70:de:f6:c2:9f:6b:04:0a: 70:ef:47:12:b7:ed:02:3c:9e:9c:3b:2d:54:d5:ba:29:ad:b1: 98:59:f0:ca -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICFp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwOTMyQjhFQjAyRjVG OEUxQzIzNTI4QzZGQkMzMzNBRTUwNzZFOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPtdfDae/ffbVTJ1CnG3jmHbsv77+u0cqNTO6YgYggwRoDum39 kDDPph3CLTyvroyD6Ob1M89WUQRJJYJ+CdHgL3wn0es2hR5+UP4kocPpchnToSt/ xSqJQSPBT4BSsvxuUq98Fy7S4CtIih4hBUR6JWDaDslvHkLTNfAKDV88jn2SZ2ZB kROeilJSHIoLfn2ciWTsKYeu07JwUQuKBkbZJJVykm8PARjrdYjXNUemUu/y752h JoSBZAXxupzQnZv0EIm7mkP3OR8whHphQ+wmaQzc1IA03OGBuSVGKO8UYT1t7y0V YMBRXQaPrpATfZJcXTo/phqhzZnpJgj6MOrBAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUsJMrjrAvX44cI1KMb7wzOuUHbp4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvc0pNcmpyQXZYNDRjSTFLTWI3d3pP dVVIYnA0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFBiABRYAw DQYJKoZIhvcNAQELBQADggEBAGkPa/KF/tW3GJ1BltdU2a+M1eKefHvjtUQc+d/A 2BT6FEf9JFsuf861TItqfIxo2gRYk97l8oy5H54JXw9IOfASDRO2bk6tbnJvYRv7 XZ+B0r5CFEW5+HKhjw9cddYGnQcakIqPmj46CLTWde2pK64u1RfiiGpTJqGOyDW1 rXo9wKndCUZZiARjUKN4AtaFUsqEPd/yLLDpR/GIW4A2CjvWvYvbLhF8vtKyqCfE QQhGmzt5Y6cx+mkbC38Jb9ZdCHYfXLee+Zmp7fe0Amdg5r8qf1bXqXlpvwCYjK5J BsVZp+pw3vbCn2sECnDvRxK37QI8npw7LVTVuimtsZhZ8Mo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org