$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ug0kUTjTx5UiBF2b775lD9hvoMQ.roa File: ug0kUTjTx5UiBF2b775lD9hvoMQ.roa (raw, json) Hash identifier: afUO+M3pI7+OJyOEAEo5F8/M0pJn/PQaCMnzZ9OtwpQ= Subject key identifier: BA:0D:24:51:38:D3:C7:95:22:04:5D:9B:EF:BE:65:0F:D8:6F:A0:C4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16CD Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ug0kUTjTx5UiBF2b775lD9hvoMQ.roa Signing time: Mon 26 Aug 2024 05:22:38 +0000 ROA not before: Mon 26 Aug 2024 05:22:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 112.105.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5837 (0x16cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BA0D245138D3C79522045D9BEFBE650FD86FA0C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:d7:6b:47:c3:b1:a0:1e:af:13:5b:03:31: 9f:51:f3:d5:95:6b:d9:a2:8a:42:21:95:ab:d4:2c: 6d:45:66:d2:d5:0a:84:51:f9:0a:11:df:08:cb:31: f4:77:e7:b0:b2:74:63:54:a5:96:bd:1d:b0:c3:94: 28:50:6d:f7:00:c7:6a:61:d8:23:3b:30:f6:74:0f: a6:87:cb:a4:43:9e:5e:8c:e1:27:e4:36:6a:f9:8e: 1c:1e:0f:58:6e:a6:37:d4:67:43:d0:e8:93:f5:6d: 8d:1a:9a:70:6c:7c:7f:2e:08:44:cf:2d:f3:1c:8a: 1c:c6:c0:23:fb:e0:93:3e:4c:9b:38:0d:4b:02:72: f0:69:3c:ed:99:66:71:05:09:0f:d1:7b:4f:3a:7a: e6:72:3a:a7:cd:74:90:f8:7c:54:48:fa:ce:1b:d4: bd:9b:8d:3f:da:7a:73:74:1b:6b:51:33:02:d6:ba: 15:6a:93:77:83:5b:00:dd:de:4d:86:03:94:05:58: 9e:f4:4e:ca:b0:93:24:29:46:cd:b3:f8:88:90:ab: 5d:4f:88:7b:c1:27:d4:49:74:82:f3:d7:dd:f4:5e: 8b:6d:0e:1f:fc:a4:58:74:89:c1:a4:32:c8:78:66: 7a:74:7b:e5:85:c2:bd:f8:64:53:be:cc:f2:a9:35: ac:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:0D:24:51:38:D3:C7:95:22:04:5D:9B:EF:BE:65:0F:D8:6F:A0:C4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ug0kUTjTx5UiBF2b775lD9hvoMQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.105.0.0/18 Signature Algorithm: sha256WithRSAEncryption 61:27:d1:04:01:4e:1a:4c:4a:26:10:14:e9:b5:db:6d:dc:77: ce:20:92:5a:ab:94:3a:9c:e5:c9:92:33:16:da:bc:c6:37:5c: 83:27:85:41:84:0e:74:4e:fb:8d:ff:04:bc:10:e8:ca:9d:fb: 40:67:32:6e:f8:a3:0e:1d:f8:93:cd:9b:a6:6c:0f:b8:8f:0a: 50:96:fd:e7:7b:9b:f7:8d:b7:f3:90:28:3d:01:09:c7:d6:fd: b5:76:ee:12:8d:5b:ea:96:c3:b8:64:62:4c:52:21:d8:0c:87: ca:69:86:d2:90:ef:36:03:79:c9:bd:a1:26:f7:bc:c0:55:4b: fd:a9:fb:fc:73:fc:83:b5:2e:21:8a:52:03:5f:be:f8:41:26: c7:6d:2b:7f:9e:7f:0c:aa:a5:30:fc:b3:30:3a:56:06:54:a7: cf:74:d2:08:10:0a:c0:42:1c:f2:71:92:95:66:b9:cf:53:19: 2d:51:71:9c:84:62:83:75:28:93:07:41:e5:c5:05:52:66:bb: d1:3f:19:81:f9:bc:27:e7:00:7f:47:63:68:2c:44:c6:35:8e: e5:18:80:d4:ce:dd:d0:57:d2:b0:0c:fb:a7:d3:a5:b7:5e:f9: 41:12:45:a0:41:60:e4:94:7d:d0:c7:5f:4f:88:34:0b:1a:25: 0d:e3:c9:35 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFs0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJBMEQyNDUxMzhEM0M3 OTUyMjA0NUQ5QkVGQkU2NTBGRDg2RkEwQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN4NdrR8OxoB6vE1sDMZ9R89WVa9miikIhlavULG1FZtLVCoRR +QoR3wjLMfR357CydGNUpZa9HbDDlChQbfcAx2ph2CM7MPZ0D6aHy6RDnl6M4Sfk Nmr5jhweD1hupjfUZ0PQ6JP1bY0amnBsfH8uCETPLfMcihzGwCP74JM+TJs4DUsC cvBpPO2ZZnEFCQ/Re086euZyOqfNdJD4fFRI+s4b1L2bjT/aenN0G2tRMwLWuhVq k3eDWwDd3k2GA5QFWJ70TsqwkyQpRs2z+IiQq11PiHvBJ9RJdILz1930XottDh/8 pFh0icGkMsh4Znp0e+WFwr34ZFO+zPKpNazpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUug0kUTjTx5UiBF2b775lD9hvoMQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdWcwa1VUalR4NVVpQkYyYjc3NWxE OWh2b01RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnBpADAN BgkqhkiG9w0BAQsFAAOCAQEAYSfRBAFOGkxKJhAU6bXbbdx3ziCSWquUOpzlyZIz Ftq8xjdcgyeFQYQOdE77jf8EvBDoyp37QGcybvijDh34k82bpmwPuI8KUJb953ub 942385AoPQEJx9b9tXbuEo1b6pbDuGRiTFIh2AyHymmG0pDvNgN5yb2hJve8wFVL /an7/HP8g7UuIYpSA1+++EEmx20rf55/DKqlMPyzMDpWBlSnz3TSCBAKwEIc8nGS lWa5z1MZLVFxnIRig3UokwdB5cUFUma70T8Zgfm8J+cAf0djaCxExjWO5RiA1M7d 0FfSsAz7p9Olt175QRJFoEFg5JR90MdfT4g0CxolDePJNQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org