$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/uXMAd2F10lblVA1Lcgpyn2Lj4Hg.roa File: uXMAd2F10lblVA1Lcgpyn2Lj4Hg.roa (raw, json) Hash identifier: sGOL0kOK6zNIfqlITZx7cWy4u68iN91ePQKgpcV8ZQw= Subject key identifier: B9:73:00:77:61:75:D2:56:E5:54:0D:4B:72:0A:72:9F:62:E3:E0:78 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1686 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uXMAd2F10lblVA1Lcgpyn2Lj4Hg.roa Signing time: Mon 26 Aug 2024 05:22:18 +0000 ROA not before: Mon 26 Aug 2024 05:22:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 106.107.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5766 (0x1686) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B97300776175D256E5540D4B720A729F62E3E078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:a6:d9:6e:5d:ed:3f:9f:43:ae:99:95:6d:36: 7a:4c:9d:6f:e7:84:e1:3f:28:db:12:6b:8c:20:38: cb:4b:de:f6:2c:75:be:15:91:56:e2:36:44:43:90: ed:6c:ec:92:fc:b0:0d:1c:a6:ac:ad:ec:2d:85:22: 15:83:61:af:0f:95:62:18:65:13:e7:99:78:8d:98: 6e:23:dd:c6:3a:6f:66:cf:56:52:7b:16:69:7a:34: 48:67:5b:6a:6b:5d:be:21:f2:1b:82:22:3f:32:fb: e2:7d:47:f3:10:d6:22:3e:be:66:7c:c1:5d:ef:7e: e7:c5:1a:b8:9f:8a:6a:62:bd:6b:9e:c7:a4:7a:62: 2f:a3:d9:30:98:23:c4:b6:ad:78:68:ef:4e:e8:6f: 9b:b3:2c:73:67:8c:ee:e7:ff:4f:e2:ba:90:1e:71: 55:ff:80:1b:50:4c:5d:5b:33:b5:d2:80:18:19:85: e4:70:a4:c6:e4:ce:74:33:9b:94:57:c4:46:23:53: cb:31:4a:cb:d9:83:5e:18:1e:b5:48:64:ad:6c:07: 6e:ac:c8:1c:e1:97:90:41:1f:2c:50:3c:cd:55:3b: 0b:16:1f:61:d9:dd:83:bf:b4:5f:be:1c:57:80:51: 29:bd:c3:29:ee:20:cb:c3:0e:49:b3:68:bf:cb:5b: 4c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:73:00:77:61:75:D2:56:E5:54:0D:4B:72:0A:72:9F:62:E3:E0:78 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uXMAd2F10lblVA1Lcgpyn2Lj4Hg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.107.152.0/21 Signature Algorithm: sha256WithRSAEncryption a4:1d:3e:cf:7c:6d:86:f6:b7:f2:bc:cf:53:f3:e0:e4:ac:0c: 23:5c:7b:4a:4d:82:0a:e9:78:86:0a:d4:0e:c8:69:26:d9:43: 52:f2:51:ee:91:c4:5b:b9:1a:3b:92:cf:eb:4f:f7:b4:96:30: 75:0a:28:32:5a:43:43:b6:9f:6d:8d:dd:80:3c:e3:15:ae:22: 39:3e:86:91:ee:6d:66:07:1e:bc:93:d5:3e:f7:6c:f8:2d:64: 28:97:91:2c:16:c3:b5:03:c3:3c:41:37:44:f2:3a:43:11:e9: 13:33:e7:c0:ac:44:da:ab:59:8d:b9:3c:f1:bd:0c:f9:78:93: 10:d0:47:49:26:c1:01:19:ea:9c:b7:2c:c5:23:78:a7:da:0f: 38:19:8e:71:85:09:ca:a1:1a:8e:eb:89:61:1a:f8:91:a6:ac: 0e:29:70:92:49:0a:71:64:d6:29:ba:8b:0d:e8:7d:a0:1b:9a: 5a:05:71:aa:83:5f:52:67:7e:f4:ec:d5:00:b7:d3:66:66:06: 40:9d:87:ca:e0:7f:78:25:f5:75:ae:ac:0d:dd:8e:3a:e6:53: 81:af:1b:5f:b7:9b:e6:c3:ce:d8:06:9f:40:aa:9b:10:d3:c4: 99:39:f6:cd:66:83:b6:35:3f:6f:ca:38:c2:44:20:1f:a7:59: 0d:9e:67:49 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5NzMwMDc3NjE3NUQy NTZFNTU0MEQ0QjcyMEE3MjlGNjJFM0UwNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYptluXe0/n0OumZVtNnpMnW/nhOE/KNsSa4wgOMtL3vYsdb4V kVbiNkRDkO1s7JL8sA0cpqyt7C2FIhWDYa8PlWIYZRPnmXiNmG4j3cY6b2bPVlJ7 Fml6NEhnW2prXb4h8huCIj8y++J9R/MQ1iI+vmZ8wV3vfufFGrifimpivWuex6R6 Yi+j2TCYI8S2rXho707ob5uzLHNnjO7n/0/iupAecVX/gBtQTF1bM7XSgBgZheRw pMbkznQzm5RXxEYjU8sxSsvZg14YHrVIZK1sB26syBzhl5BBHyxQPM1VOwsWH2HZ 3YO/tF++HFeAUSm9wynuIMvDDkmzaL/LW0yFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUuXMAd2F10lblVA1Lcgpyn2Lj4HgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdVhNQWQyRjEwbGJsVkExTGNncHlu MkxqNEhnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA2prmDAN BgkqhkiG9w0BAQsFAAOCAQEApB0+z3xthva38rzPU/Pg5KwMI1x7Sk2CCul4hgrU DshpJtlDUvJR7pHEW7kaO5LP60/3tJYwdQooMlpDQ7afbY3dgDzjFa4iOT6Gke5t ZgcevJPVPvds+C1kKJeRLBbDtQPDPEE3RPI6QxHpEzPnwKxE2qtZjbk88b0M+XiT ENBHSSbBARnqnLcsxSN4p9oPOBmOcYUJyqEajuuJYRr4kaasDilwkkkKcWTWKbqL Deh9oBuaWgVxqoNfUmd+9OzVALfTZmYGQJ2HyuB/eCX1da6sDd2OOuZTga8bX7eb 5sPO2AafQKqbENPEmTn2zWaDtjU/b8o4wkQgH6dZDZ5nSQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org