$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/z2I4nun8tAJgTYbF_fNBx08ITCo.roa File: z2I4nun8tAJgTYbF_fNBx08ITCo.roa (raw, json) Hash identifier: kaXA4XIm59KjjfWvOzFqlk0feqHlE9e4GCzZJJFtilQ= Subject key identifier: CF:62:38:9E:E9:FC:B4:02:60:4D:86:C5:FD:F3:41:C7:4F:08:4C:2A Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16DF Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/z2I4nun8tAJgTYbF_fNBx08ITCo.roa Signing time: Mon 26 Aug 2024 05:22:43 +0000 ROA not before: Mon 26 Aug 2024 05:22:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 220.229.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5855 (0x16df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CF62389EE9FCB402604D86C5FDF341C74F084C2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6c:e1:67:a8:4c:68:66:37:4c:06:b9:72:df: e9:c2:b0:f7:d3:d7:8e:93:d0:78:b5:4a:3c:cd:89: 1e:b4:4b:78:f4:18:73:c7:60:7d:a6:6c:b9:6f:40: 35:2d:6d:7f:45:9d:27:67:92:94:2e:ef:45:fc:0a: af:fe:c6:1f:63:98:96:06:6f:3c:bb:5d:3f:81:39: 57:ee:a5:cf:dd:7b:8b:15:97:62:76:3e:b0:e7:3d: d8:9f:cb:5f:bc:8b:91:9e:d1:c5:aa:0f:e4:dc:ea: e2:d9:06:52:d1:b4:07:1d:c2:2c:92:17:2e:76:e6: 77:5b:e6:72:e9:27:cc:ed:d0:2b:c7:21:b8:b0:43: fb:f8:9d:81:f9:5d:f8:3d:39:a2:59:a2:2c:a3:b8: 0f:54:0a:81:be:f8:96:39:66:2f:59:0c:92:a4:3e: 95:49:66:5f:a7:54:f3:d5:32:5c:17:48:f2:4b:bd: be:e4:54:a2:22:f7:31:85:20:48:66:4e:b5:82:5b: ae:79:ac:5d:bf:3a:0b:34:66:8b:30:db:6b:af:43: 49:5d:fe:2d:8d:3c:fb:1d:23:96:f3:ac:38:ad:6c: 24:5e:75:74:2f:a5:93:17:fe:6f:5b:e4:c5:d3:d7: b8:23:bc:18:fc:25:ad:0c:ba:7d:2d:e0:d7:bb:ae: 3f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:62:38:9E:E9:FC:B4:02:60:4D:86:C5:FD:F3:41:C7:4F:08:4C:2A X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/z2I4nun8tAJgTYbF_fNBx08ITCo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.0.0/18 Signature Algorithm: sha256WithRSAEncryption a6:50:d3:82:83:d1:c9:0e:d0:b6:62:09:82:92:66:2e:eb:54: ba:6a:29:70:d8:1b:a8:af:af:5a:30:bb:e1:73:19:94:dc:90: 3f:e6:c3:28:c1:ff:3c:f1:0b:f2:4b:d7:d6:82:29:cd:5a:03: d4:00:89:0a:da:64:75:74:b8:4c:e1:d7:68:5f:ab:74:95:91: 22:98:12:6f:23:e7:16:16:39:de:cc:5d:c9:60:e7:67:7e:9e: e3:01:aa:0d:34:d1:9b:45:eb:a7:75:ff:ec:f5:73:ea:fa:ec: 20:e9:3c:91:a8:0e:27:ff:5a:48:b0:e5:ee:f7:c9:ff:96:f1: 76:23:e3:df:4c:98:a4:78:52:2b:55:f2:45:02:e9:3d:ba:4a: c3:7d:e1:69:13:32:23:03:2a:06:73:5d:9e:d8:67:7d:6b:4f: b1:d4:f2:a1:96:19:72:88:a6:19:78:0c:54:53:5c:6a:17:d0: 62:63:ce:19:fe:4d:cc:af:19:4e:dc:14:ea:68:3d:b6:99:55: 22:03:e0:93:59:a2:42:dd:62:c5:2f:10:c1:c4:fd:94:ca:b8: 9c:0b:b3:44:7a:cd:03:ec:5f:64:0e:03:2b:11:ff:ed:cd:fc: 59:eb:7d:00:e5:86:0e:e0:0d:64:9f:89:97:c2:58:68:a6:b6: c9:e2:47:c3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFt8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENGNjIzODlFRTlGQ0I0 MDI2MDREODZDNUZERjM0MUM3NEYwODRDMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxbOFnqExoZjdMBrly3+nCsPfT146T0Hi1SjzNiR60S3j0GHPH YH2mbLlvQDUtbX9FnSdnkpQu70X8Cq/+xh9jmJYGbzy7XT+BOVfupc/de4sVl2J2 PrDnPdify1+8i5Ge0cWqD+Tc6uLZBlLRtAcdwiySFy525ndb5nLpJ8zt0CvHIbiw Q/v4nYH5Xfg9OaJZoiyjuA9UCoG++JY5Zi9ZDJKkPpVJZl+nVPPVMlwXSPJLvb7k VKIi9zGFIEhmTrWCW655rF2/Ogs0Zosw22uvQ0ld/i2NPPsdI5bzrDitbCRedXQv pZMX/m9b5MXT17gjvBj8Ja0Mun0t4Ne7rj9HAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUz2I4nun8tAJgTYbF/fNBx08ITCowHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvejJJNG51bjh0QUpnVFliRl9mTkJ4 MDhJVENvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBtzlADAN BgkqhkiG9w0BAQsFAAOCAQEAplDTgoPRyQ7QtmIJgpJmLutUumopcNgbqK+vWjC7 4XMZlNyQP+bDKMH/PPEL8kvX1oIpzVoD1ACJCtpkdXS4TOHXaF+rdJWRIpgSbyPn FhY53sxdyWDnZ36e4wGqDTTRm0Xrp3X/7PVz6vrsIOk8kagOJ/9aSLDl7vfJ/5bx diPj30yYpHhSK1XyRQLpPbpKw33haRMyIwMqBnNdnthnfWtPsdTyoZYZcoimGXgM VFNcahfQYmPOGf5NzK8ZTtwU6mg9tplVIgPgk1miQt1ixS8QwcT9lMq4nAuzRHrN A+xfZA4DKxH/7c38Wet9AOWGDuANZJ+Jl8JYaKa2yeJHww== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org