$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Gs7qXTcW-qhTlgMVdcj20SYzpVc.roa File: Gs7qXTcW-qhTlgMVdcj20SYzpVc.roa (raw, json) Hash identifier: L7M4jn5j1qo9/bMHe5WSWAk5SNrtvVjZtzq2ij53UNA= Subject key identifier: 1A:CE:EA:5D:37:16:FA:A8:53:96:03:15:75:C8:F6:D1:26:33:A5:57 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1847 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Gs7qXTcW-qhTlgMVdcj20SYzpVc.roa Signing time: Mon 10 Feb 2025 14:07:46 +0000 ROA not before: Mon 10 Feb 2025 14:07:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 220.229.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6215 (0x1847) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1ACEEA5D3716FAA85396031575C8F6D12633A557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:39:8e:fc:f5:df:5c:de:fc:29:43:61:1c:bc: ab:20:64:26:cc:70:d2:3a:15:2b:19:20:2a:a2:b9: 80:73:c8:87:9c:a7:af:05:58:c9:a9:97:ad:2d:0c: 5a:ee:09:36:f8:a4:bf:8d:ec:36:fd:ab:1e:b0:cd: 1f:24:b7:0b:67:e5:ae:54:4b:6f:5c:0b:c9:e0:18: 0c:8d:65:ee:53:58:53:16:0b:9e:e4:53:55:43:ec: d9:ff:f5:34:71:ad:8a:f5:f9:ac:87:8f:09:3e:d0: fa:ca:c4:3d:88:4b:d9:7c:8d:77:4a:4b:c4:33:35: 4c:9c:84:3f:1b:d6:40:f4:86:ba:b6:b3:c7:49:b6: c5:41:5c:44:07:75:d7:49:12:3e:99:a8:34:f6:32: ee:af:d6:16:d2:40:94:0c:ad:21:83:05:5c:8c:07: ed:38:8a:cc:b9:60:30:68:86:76:41:d6:2f:f2:14: cc:14:dd:7a:53:23:15:7e:55:2e:a8:95:7c:0d:5e: 72:f1:a9:81:8b:d3:66:06:17:95:09:1e:77:12:09: b3:60:da:ca:b1:b4:11:7e:da:be:44:50:23:15:67: 58:18:03:b8:ac:83:33:b0:32:84:ab:8f:9f:61:4e: d0:02:e4:0c:26:c8:58:2d:3c:3f:93:45:5b:dc:b4: 0a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:CE:EA:5D:37:16:FA:A8:53:96:03:15:75:C8:F6:D1:26:33:A5:57 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Gs7qXTcW-qhTlgMVdcj20SYzpVc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.229.72.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:a4:aa:27:c6:0c:fb:04:52:06:17:e0:29:91:e2:8e:7f:cd: b4:34:6b:e0:53:a9:9d:85:52:54:53:53:5d:a0:fa:8b:3a:bd: 86:4b:b1:ea:0e:4d:e1:a5:e5:15:9d:ae:12:9f:6b:19:cb:c7: 00:07:51:4a:94:10:44:15:21:57:38:65:78:3a:7b:d1:a1:14: 1b:0c:c2:1c:82:05:cf:2c:13:9c:51:bc:89:62:cc:31:ba:63: 0f:90:91:e7:bb:1b:63:c9:76:61:f2:64:cf:74:bb:02:fd:c2: 07:4d:d3:3d:ad:42:f4:ce:27:39:02:a2:e2:e0:d7:48:7b:52: 8f:87:fa:1a:05:88:ab:34:0f:9e:2c:69:02:bf:95:58:2f:45: 3c:05:3c:1c:a5:c0:50:4d:58:7c:5a:5a:f9:98:d5:57:02:42: 00:9f:2c:47:d7:49:4a:12:e7:8b:85:cc:9c:f8:b2:dc:e8:47: 20:c9:ae:4a:76:f6:41:44:5d:65:61:e0:60:fb:d3:ab:c6:47: 2e:2b:11:52:7b:61:39:60:f4:bb:26:a6:9f:c9:f5:77:95:17: 64:38:7f:f9:5e:7f:a6:e7:8c:65:ef:41:9e:73:41:a8:da:1d: b9:50:66:dd:b5:76:81:63:b4:84:a1:cb:d1:ce:be:6b:af:da: eb:5d:da:08 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGEcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBQ0VFQTVEMzcxNkZB QTg1Mzk2MDMxNTc1QzhGNkQxMjYzM0E1NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLOY789d9c3vwpQ2EcvKsgZCbMcNI6FSsZICqiuYBzyIecp68F WMmpl60tDFruCTb4pL+N7Db9qx6wzR8ktwtn5a5US29cC8ngGAyNZe5TWFMWC57k U1VD7Nn/9TRxrYr1+ayHjwk+0PrKxD2IS9l8jXdKS8QzNUychD8b1kD0hrq2s8dJ tsVBXEQHdddJEj6ZqDT2Mu6v1hbSQJQMrSGDBVyMB+04isy5YDBohnZB1i/yFMwU 3XpTIxV+VS6olXwNXnLxqYGL02YGF5UJHncSCbNg2sqxtBF+2r5EUCMVZ1gYA7is gzOwMoSrj59hTtAC5AwmyFgtPD+TRVvctAphAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUGs7qXTcW+qhTlgMVdcj20SYzpVcwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvR3M3cVhUY1ctcWhUbGdNVmRjajIw U1l6cFZjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA9zlSDAN BgkqhkiG9w0BAQsFAAOCAQEASqSqJ8YM+wRSBhfgKZHijn/NtDRr4FOpnYVSVFNT XaD6izq9hkux6g5N4aXlFZ2uEp9rGcvHAAdRSpQQRBUhVzhleDp70aEUGwzCHIIF zywTnFG8iWLMMbpjD5CR57sbY8l2YfJkz3S7Av3CB03TPa1C9M4nOQKi4uDXSHtS j4f6GgWIqzQPnixpAr+VWC9FPAU8HKXAUE1YfFpa+ZjVVwJCAJ8sR9dJShLni4XM nPiy3OhHIMmuSnb2QURdZWHgYPvTq8ZHLisRUnthOWD0uyamn8n1d5UXZDh/+V5/ pueMZe9BnnNBqNoduVBm3bV2gWO0hKHL0c6+a6/a613aCA== -----END CERTIFICATE-----Generated at Sat Apr 26 14:42:11 2025 by rpki-client