$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/zEc0X0EJ5seMl6d3C2MZT-yQLS4.roa File: zEc0X0EJ5seMl6d3C2MZT-yQLS4.roa (raw, json) Hash identifier: PpyraVHNkonquYzf2m8nz++QKzcM200ARUQhpfNtUVk= Subject key identifier: CC:47:34:5F:41:09:E6:C7:8C:97:A7:77:0B:63:19:4F:EC:90:2D:2E Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1668 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zEc0X0EJ5seMl6d3C2MZT-yQLS4.roa Signing time: Mon 26 Aug 2024 05:22:09 +0000 ROA not before: Mon 26 Aug 2024 05:22:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 122.147.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5736 (0x1668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CC47345F4109E6C78C97A7770B63194FEC902D2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6c:25:f6:b6:46:78:b6:73:4d:74:4a:9b:4a: db:24:ca:75:eb:0d:56:61:71:79:34:5f:9f:6a:bc: a2:54:fe:24:9e:4d:00:1b:b1:aa:cb:73:45:96:f0: fd:9e:a6:58:e2:bf:bb:f0:ed:12:14:bc:64:97:f4: 67:28:4f:9b:5c:df:c1:8d:bc:00:ca:aa:b9:79:4d: 02:8c:47:42:5b:2d:a9:90:a7:8b:10:39:24:21:92: 14:7e:81:4e:0f:ae:36:e3:19:e4:dd:05:84:1f:ef: b5:5b:52:03:82:a8:96:9c:b2:d9:2f:9c:43:74:fc: 46:1d:a8:2c:8b:6f:65:38:6d:6c:a6:fb:22:5e:54: cc:25:fd:24:5f:ba:42:79:c8:77:7d:e3:f8:a8:33: a3:06:8f:a9:95:f8:d4:98:98:49:63:28:bf:a4:c9: 37:99:d7:6c:5a:3d:ad:41:2a:88:a5:c6:b9:1e:f1: 10:18:3f:4d:e7:4e:c2:a5:e0:75:41:5c:0a:62:68: 5c:4c:a5:c3:de:7f:34:8f:50:66:f1:4a:78:c2:99: 35:e6:c8:af:c7:43:e4:b6:64:d6:2a:f9:db:23:16: 10:a7:83:ba:94:94:4f:0a:34:da:f2:42:f2:73:d3: 84:59:1b:d3:41:0e:7a:60:1b:c1:46:0d:bb:0f:5e: b5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:47:34:5F:41:09:E6:C7:8C:97:A7:77:0B:63:19:4F:EC:90:2D:2E X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/zEc0X0EJ5seMl6d3C2MZT-yQLS4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.147.64.0/18 Signature Algorithm: sha256WithRSAEncryption 77:24:dc:2e:5c:b3:f8:01:55:d7:49:9c:28:c3:c6:e8:a6:18: 7b:3f:ea:fb:b1:f0:9e:e4:6e:44:4f:61:59:80:76:17:41:eb: b5:f3:0a:7a:06:cc:36:b0:9f:34:a5:7e:9f:9a:ad:b2:17:b8: 03:80:e3:12:e7:ad:0a:7c:ad:7d:1e:c4:c4:d5:92:d4:57:9a: 8c:8a:c4:4a:66:dd:7d:5e:7b:11:88:1c:59:50:02:79:41:ce: cd:46:2c:60:cf:cf:05:50:99:57:2c:91:9b:d2:73:8e:8a:33: 18:e3:ff:58:c7:07:3f:34:a8:dc:28:3b:2e:cc:d1:3b:e7:a0: 62:48:70:c6:c6:d4:a9:67:d0:eb:9e:7d:b2:99:1f:55:b2:a2: 9f:1a:36:fa:da:5f:04:b5:b8:da:18:fa:80:d1:7f:ca:1d:2c: e9:14:d8:73:0c:ec:4d:b5:b7:50:59:96:08:4f:f2:5d:b6:55: 5a:3d:72:19:61:24:fb:0d:11:98:89:e1:b1:05:5a:46:f0:bc: d0:ed:04:0e:3c:c1:69:64:01:ad:22:77:93:af:9f:c2:92:74: 8c:90:20:f6:67:e9:f0:2d:32:e8:20:7e:69:6b:24:38:15:81: 6a:be:d7:eb:3d:53:4a:3d:c0:de:1b:b1:f5:fd:a8:24:2d:d4: 40:9d:4e:98 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENDNDczNDVGNDEwOUU2 Qzc4Qzk3QTc3NzBCNjMxOTRGRUM5MDJEMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5bCX2tkZ4tnNNdEqbStskynXrDVZhcXk0X59qvKJU/iSeTQAb sarLc0WW8P2epljiv7vw7RIUvGSX9GcoT5tc38GNvADKqrl5TQKMR0JbLamQp4sQ OSQhkhR+gU4PrjbjGeTdBYQf77VbUgOCqJacstkvnEN0/EYdqCyLb2U4bWym+yJe VMwl/SRfukJ5yHd94/ioM6MGj6mV+NSYmEljKL+kyTeZ12xaPa1BKoilxrke8RAY P03nTsKl4HVBXApiaFxMpcPefzSPUGbxSnjCmTXmyK/HQ+S2ZNYq+dsjFhCng7qU lE8KNNryQvJz04RZG9NBDnpgG8FGDbsPXrUPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUzEc0X0EJ5seMl6d3C2MZT+yQLS4wHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvekVjMFgwRUo1c2VNbDZkM0MyTVpU LXlRTFM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnqTQDAN BgkqhkiG9w0BAQsFAAOCAQEAdyTcLlyz+AFV10mcKMPG6KYYez/q+7HwnuRuRE9h WYB2F0HrtfMKegbMNrCfNKV+n5qtshe4A4DjEuetCnytfR7ExNWS1FeajIrESmbd fV57EYgcWVACeUHOzUYsYM/PBVCZVyyRm9JzjoozGOP/WMcHPzSo3Cg7LszRO+eg YkhwxsbUqWfQ6559spkfVbKinxo2+tpfBLW42hj6gNF/yh0s6RTYcwzsTbW3UFmW CE/yXbZVWj1yGWEk+w0RmInhsQVaRvC80O0EDjzBaWQBrSJ3k6+fwpJ0jJAg9mfp 8C0y6CB+aWskOBWBar7X6z1TSj3A3hux9f2oJC3UQJ1OmA== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:32 2024 by rpki-client on console-fra.rpki-client.org