$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yfuHBF8c6SPiGqN2DXoUi-CQe8Q.roa File: yfuHBF8c6SPiGqN2DXoUi-CQe8Q.roa (raw, json) Hash identifier: ZaDx7aVHWg+SNhNm+Rd6pu6xcGCJTb0PgW4lg3VSNqM= Subject key identifier: C9:FB:87:04:5F:1C:E9:23:E2:1A:A3:76:0D:7A:14:8B:E0:90:7B:C4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1641 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yfuHBF8c6SPiGqN2DXoUi-CQe8Q.roa Signing time: Mon 26 Aug 2024 05:21:57 +0000 ROA not before: Mon 26 Aug 2024 05:21:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.146.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5697 (0x1641) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C9FB87045F1CE923E21AA3760D7A148BE0907BC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:89:a8:d7:23:4b:cb:8a:c3:c7:a6:2c:df:ba: 8f:d9:02:44:0e:a0:5b:37:9c:e5:08:8e:ff:61:ff: 5f:40:d5:1b:29:1b:d7:81:e6:44:63:3d:30:8b:88: f8:2c:c4:d6:0b:72:ee:a6:d1:1e:60:42:3f:df:db: 2a:3e:73:9c:23:06:7b:03:ba:d4:6c:c1:6d:2f:97: be:8d:22:bd:06:a0:c5:c8:6c:fe:0f:5f:b2:5e:72: b8:76:89:05:3b:a9:bb:ea:07:2a:9c:be:f7:d1:92: 8b:3f:56:2b:53:2f:73:da:62:a7:9c:11:0a:90:5d: 54:e1:9f:7f:f5:4b:6e:07:f7:c2:f9:fa:a7:9f:ba: 9c:17:3a:ab:01:c2:50:ad:ac:f2:39:19:17:4a:08: a0:2c:24:31:86:02:cb:ed:d7:6a:68:1d:98:b4:95: 3a:d3:f6:f0:fc:d4:d5:7e:ea:47:11:12:2b:ee:d2: 49:e9:7f:d5:cc:91:75:2f:38:34:22:9c:db:bd:e0: 58:42:2f:c3:d8:48:ab:d1:88:40:2c:31:f9:60:38: 7e:37:6c:e5:84:0e:ef:c5:7a:38:95:2b:78:8d:3d: c3:2f:f5:8c:b2:35:3b:cc:79:f2:2d:e9:54:db:b9: 7a:6d:87:b7:de:84:d4:16:81:18:00:11:7c:ae:bc: 3f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:FB:87:04:5F:1C:E9:23:E2:1A:A3:76:0D:7A:14:8B:E0:90:7B:C4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yfuHBF8c6SPiGqN2DXoUi-CQe8Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.146.0.0/18 Signature Algorithm: sha256WithRSAEncryption 20:bd:29:9b:b4:7e:92:8a:93:86:40:82:86:55:18:3f:ef:73: e4:36:fe:f0:83:da:79:80:f2:0e:79:b8:53:b9:86:0d:19:f4: 9e:38:6d:b7:ee:39:69:70:78:bd:5a:95:70:44:42:63:a6:de: 27:3e:5a:e8:f1:79:c2:35:e3:02:fd:a9:29:08:84:57:b4:e4: e5:db:e7:f2:7e:ad:5b:2c:d4:68:93:f8:d7:71:01:c6:f4:48: d3:8b:e4:8d:dc:24:5b:fc:57:b2:cb:c2:f0:04:8b:ec:5b:23: 34:57:57:93:49:f7:50:1b:50:c9:4b:e3:c6:58:7d:32:e7:ed: 79:3c:35:cf:3b:9f:c7:4b:a7:a1:1e:f3:ad:aa:57:67:54:07: d3:7c:08:bd:06:34:5a:73:6e:c7:f1:bf:80:e5:d7:e9:7c:16: 5b:51:11:5d:0d:c4:aa:4a:41:5a:45:9a:f5:27:7e:03:8b:d8: dc:b8:cd:21:32:dd:8a:12:7b:93:f6:d3:8a:da:c0:c1:c4:69: 67:dd:9e:a4:d4:d9:af:a4:71:94:b5:45:be:dd:88:01:14:c7: 88:a0:86:c9:d5:c9:a9:11:85:52:a6:6e:8a:a6:a4:59:fe:e8: 12:3d:c5:b1:b7:d5:54:5a:49:06:7d:e5:eb:a1:eb:be:50:f6: f6:c2:d6:36 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5RkI4NzA0NUYxQ0U5 MjNFMjFBQTM3NjBEN0ExNDhCRTA5MDdCQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDiajXI0vLisPHpizfuo/ZAkQOoFs3nOUIjv9h/19A1RspG9eB 5kRjPTCLiPgsxNYLcu6m0R5gQj/f2yo+c5wjBnsDutRswW0vl76NIr0GoMXIbP4P X7Jecrh2iQU7qbvqByqcvvfRkos/VitTL3PaYqecEQqQXVThn3/1S24H98L5+qef upwXOqsBwlCtrPI5GRdKCKAsJDGGAsvt12poHZi0lTrT9vD81NV+6kcREivu0knp f9XMkXUvODQinNu94FhCL8PYSKvRiEAsMflgOH43bOWEDu/FejiVK3iNPcMv9Yyy NTvMefIt6VTbuXpth7fehNQWgRgAEXyuvD8zAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUyfuHBF8c6SPiGqN2DXoUi+CQe8QwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveWZ1SEJGOGM2U1BpR3FOMkRYb1Vp LUNRZThRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnqSADAN BgkqhkiG9w0BAQsFAAOCAQEAIL0pm7R+koqThkCChlUYP+9z5Db+8IPaeYDyDnm4 U7mGDRn0njhtt+45aXB4vVqVcERCY6beJz5a6PF5wjXjAv2pKQiEV7Tk5dvn8n6t WyzUaJP413EBxvRI04vkjdwkW/xXssvC8ASL7FsjNFdXk0n3UBtQyUvjxlh9Muft eTw1zzufx0unoR7zrapXZ1QH03wIvQY0WnNux/G/gOXX6XwWW1ERXQ3EqkpBWkWa 9Sd+A4vY3LjNITLdihJ7k/bTitrAwcRpZ92epNTZr6RxlLVFvt2IARTHiKCGydXJ qRGFUqZuiqakWf7oEj3FsbfVVFpJBn3l66HrvlD29sLWNg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org