$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/slL8OThEIP8yupP_wW3VkTnSWTs.roa File: slL8OThEIP8yupP_wW3VkTnSWTs.roa (raw, json) Hash identifier: hcYHuXWnvctOdOuC805Ay9KVJr9ULIjkjYoKpKaQHII= Subject key identifier: B2:52:FC:39:38:44:20:FF:32:BA:93:FF:C1:6D:D5:91:39:D2:59:3B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 169A Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/slL8OThEIP8yupP_wW3VkTnSWTs.roa Signing time: Mon 26 Aug 2024 05:22:22 +0000 ROA not before: Mon 26 Aug 2024 05:22:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 106.105.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5786 (0x169a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B252FC39384420FF32BA93FFC16DD59139D2593B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a9:8e:a2:f4:9e:9f:28:1d:81:0b:d6:e7:f8: 92:48:22:f4:1c:55:0a:f6:dc:81:ff:f7:d4:20:72: 8f:c7:38:67:f4:5f:43:a7:96:73:61:eb:24:9d:df: de:d5:8f:3b:33:7b:31:38:bb:66:31:bc:e4:23:ae: d0:b9:18:a8:f3:df:df:61:56:a0:f8:ae:04:a5:13: ed:8c:3d:ea:84:de:ff:b7:71:4e:1d:27:9c:83:f4: f7:65:4b:bb:0a:b9:be:72:b2:de:2e:ba:87:eb:db: 6b:3c:e9:bc:f7:e6:07:ad:1a:62:b6:56:21:ff:e4: c6:56:9e:b4:6a:c6:9e:34:03:78:be:30:be:7e:de: f9:c9:b9:67:ba:8f:23:5e:64:66:ab:14:ca:53:08: 16:d9:96:60:ee:d8:8f:66:aa:bd:e5:f5:47:1f:2a: 88:9f:dc:f4:db:05:6e:04:d0:35:40:5e:77:19:2a: b2:ca:1c:10:f3:5d:84:d1:0c:30:dd:45:bc:f0:a2: 6f:f5:f9:c8:5b:a8:8f:86:d7:24:4a:e4:bd:16:46: 51:59:92:c3:cd:f1:19:23:5c:e3:fe:9f:fc:05:7f: 64:a3:bf:76:7e:66:6b:e4:45:8d:f1:93:fc:82:63: 2b:ac:3b:fb:ea:f4:bb:be:41:65:77:25:bd:db:cb: 2f:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:52:FC:39:38:44:20:FF:32:BA:93:FF:C1:6D:D5:91:39:D2:59:3B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/slL8OThEIP8yupP_wW3VkTnSWTs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.105.104.0/22 Signature Algorithm: sha256WithRSAEncryption ad:19:32:e1:d8:03:d4:99:ac:96:77:18:61:66:5e:4e:f4:ba: 5c:a5:0c:ba:e4:7f:d8:8f:78:3f:15:86:b9:87:52:d1:8f:2e: 66:88:75:12:5c:35:a2:0f:b4:74:8d:46:c2:3b:2a:b0:4f:9e: 46:65:2b:f4:06:15:ae:cd:30:b5:e4:65:a3:76:4e:f1:8f:67: ff:a6:25:52:4e:ec:9f:51:0d:fc:af:8c:ec:d2:63:ed:43:39: 1c:a8:04:b1:d2:fd:cf:15:92:65:d5:ee:7d:10:2c:26:d3:d2: 14:20:7c:c1:ca:b9:db:e1:c4:1e:dc:6d:18:d3:c7:94:f7:cf: d7:cb:e8:e1:04:6e:ad:87:ce:4d:d4:f3:cd:32:f6:0d:0d:2a: 40:1d:b6:c0:6b:63:be:f5:ec:a3:30:38:f1:38:a2:15:49:14: 6d:c4:b4:cc:8c:7f:4a:87:60:4a:36:4b:00:54:38:26:d8:92: 2f:6a:55:3c:b7:44:5c:8d:16:0d:eb:3b:e6:78:10:86:b7:58: 8f:30:2a:56:44:38:21:1e:3d:91:89:15:9e:77:b2:8f:e4:13: ec:77:58:22:44:60:80:cb:4c:c7:68:c6:d0:d1:d1:a1:df:b8: 7c:ac:26:4c:0f:55:98:78:9f:aa:68:79:d2:01:84:8e:34:ba: 95:63:65:1f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIyNTJGQzM5Mzg0NDIw RkYzMkJBOTNGRkMxNkRENTkxMzlEMjU5M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfqY6i9J6fKB2BC9bn+JJIIvQcVQr23IH/99Qgco/HOGf0X0On lnNh6ySd397VjzszezE4u2YxvOQjrtC5GKjz399hVqD4rgSlE+2MPeqE3v+3cU4d J5yD9PdlS7sKub5yst4uuofr22s86bz35getGmK2ViH/5MZWnrRqxp40A3i+ML5+ 3vnJuWe6jyNeZGarFMpTCBbZlmDu2I9mqr3l9UcfKoif3PTbBW4E0DVAXncZKrLK HBDzXYTRDDDdRbzwom/1+chbqI+G1yRK5L0WRlFZksPN8RkjXOP+n/wFf2Sjv3Z+ ZmvkRY3xk/yCYyusO/vq9Lu+QWV3Jb3byy9vAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUslL8OThEIP8yupP/wW3VkTnSWTswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvc2xMOE9UaEVJUDh5dXBQX3dXM1Zr VG5TV1RzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAmppaDAN BgkqhkiG9w0BAQsFAAOCAQEArRky4dgD1JmslncYYWZeTvS6XKUMuuR/2I94PxWG uYdS0Y8uZoh1Elw1og+0dI1GwjsqsE+eRmUr9AYVrs0wteRlo3ZO8Y9n/6YlUk7s n1EN/K+M7NJj7UM5HKgEsdL9zxWSZdXufRAsJtPSFCB8wcq52+HEHtxtGNPHlPfP 18vo4QRurYfOTdTzzTL2DQ0qQB22wGtjvvXsozA48TiiFUkUbcS0zIx/SodgSjZL AFQ4JtiSL2pVPLdEXI0WDes75ngQhrdYjzAqVkQ4IR49kYkVnneyj+QT7HdYIkRg gMtMx2jG0NHRod+4fKwmTA9VmHifqmh50gGEjjS6lWNlHw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org