$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/IcV3Chqwy_AKgghXphXZIqV6hNU.roa File: IcV3Chqwy_AKgghXphXZIqV6hNU.roa (raw, json) Hash identifier: HjhzaH5S9wE9M2Sefhs84pSLiWBFn/+IKoM7Qf1nDLQ= Subject key identifier: 21:C5:77:0A:1A:B0:CB:F0:0A:82:08:57:A6:15:D9:22:A5:7A:84:D5 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1846 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IcV3Chqwy_AKgghXphXZIqV6hNU.roa Signing time: Mon 10 Feb 2025 14:07:45 +0000 ROA not before: Mon 10 Feb 2025 14:07:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 203.190.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Apr 2025 16:49:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6214 (0x1846) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Feb 10 14:07:45 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=21C5770A1AB0CBF00A820857A615D922A57A84D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d5:9e:2b:02:c4:d7:35:5b:e9:3e:05:7a:1c: 5f:25:82:bf:8d:b2:f0:8c:b5:31:2e:f9:d9:21:05: 75:92:b2:38:ce:9e:fb:e3:b3:93:fb:99:6a:f8:ba: a5:f4:bd:e6:4f:70:f7:d4:3f:a8:b4:54:bb:d4:a5: af:12:50:df:b7:6d:92:af:bf:25:dc:ce:13:ab:7d: 53:4e:c3:a7:61:6a:83:79:d8:62:fe:ff:19:b6:64: 83:09:a0:79:23:3a:dc:4c:66:22:5a:21:41:14:de: b5:a4:54:5d:17:27:02:5b:c2:b9:ba:23:a9:0c:6c: 2d:90:4b:3a:dc:cf:d9:e4:5e:c7:b0:23:ce:46:e5: af:81:79:8b:2b:b6:c8:58:ad:6e:ec:21:7c:16:cc: 1f:60:33:0d:d5:f9:f0:31:10:ee:b2:24:75:97:2e: f6:1b:f0:70:b2:c6:17:07:a0:7c:bb:55:c0:40:6b: 5e:06:43:ff:a6:f3:8c:e9:95:09:fb:13:0d:1e:80: d3:42:a7:5e:86:f3:a7:ad:61:8d:fc:92:76:5d:95: 64:7d:cb:95:67:1e:b0:c2:df:dc:38:db:a5:bc:94: 95:8b:69:61:3d:5b:34:01:5b:da:a8:b0:16:c3:2c: 0b:ca:0e:8a:59:36:26:42:69:89:25:44:81:98:ad: 0f:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C5:77:0A:1A:B0:CB:F0:0A:82:08:57:A6:15:D9:22:A5:7A:84:D5 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/IcV3Chqwy_AKgghXphXZIqV6hNU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.190.16.0/21 Signature Algorithm: sha256WithRSAEncryption c8:bb:e3:df:b2:c1:65:fe:08:ad:60:e1:7c:46:61:0b:5c:9f: 81:75:5a:ac:d6:dd:f7:16:d3:2d:c9:98:27:e7:68:54:4d:9d: 75:ed:eb:d2:88:db:64:4b:07:e1:d4:8f:6c:5d:c5:37:72:47: d6:4a:08:20:e5:1f:93:77:07:63:c7:a6:53:0a:b7:3d:7c:46: 65:82:51:e4:42:d9:a2:9b:5f:6d:4a:f8:f2:d5:a8:b6:89:72: e6:0a:d8:84:a3:19:88:39:eb:3f:17:d1:0f:a5:cc:87:71:df: 61:06:ec:44:f8:c3:6c:26:5b:51:af:ee:e2:7e:cf:05:0d:a9: fd:dd:de:1e:bc:3a:76:9b:44:8e:05:51:63:4c:4e:3a:77:3e: eb:a3:d3:07:f9:1a:d2:8e:35:8c:79:b6:d6:1c:e3:a3:bd:93: a3:f0:19:39:2d:50:9a:3b:01:29:7a:39:fb:ab:27:9e:4f:c0: 1b:26:5a:b2:ff:2f:62:84:d4:b3:99:d8:45:cd:cd:40:c0:5a: 52:04:ee:88:8f:fa:55:54:3a:e1:d4:41:2b:4a:35:b5:68:e4: 14:82:0b:9b:2a:95:37:c6:df:5c:f2:93:48:58:cc:c3:7d:98: ab:4f:17:46:f3:68:08:0f:f4:fd:95:a9:af:e0:6d:99:cd:ab: b7:d3:b9:11 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICGEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNTAyMTAx NDA3NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIxQzU3NzBBMUFCMENC RjAwQTgyMDg1N0E2MTVEOTIyQTU3QTg0RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR1Z4rAsTXNVvpPgV6HF8lgr+NsvCMtTEu+dkhBXWSsjjOnvvj s5P7mWr4uqX0veZPcPfUP6i0VLvUpa8SUN+3bZKvvyXczhOrfVNOw6dhaoN52GL+ /xm2ZIMJoHkjOtxMZiJaIUEU3rWkVF0XJwJbwrm6I6kMbC2QSzrcz9nkXsewI85G 5a+BeYsrtshYrW7sIXwWzB9gMw3V+fAxEO6yJHWXLvYb8HCyxhcHoHy7VcBAa14G Q/+m84zplQn7Ew0egNNCp16G86etYY38knZdlWR9y5VnHrDC39w426W8lJWLaWE9 WzQBW9qosBbDLAvKDopZNiZCaYklRIGYrQ9jAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUIcV3Chqwy/AKgghXphXZIqV6hNUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSWNWM0NocXd5X0FLZ2doWHBoWFpJ cVY2aE5VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8u+EDAN BgkqhkiG9w0BAQsFAAOCAQEAyLvj37LBZf4IrWDhfEZhC1yfgXVarNbd9xbTLcmY J+doVE2dde3r0ojbZEsH4dSPbF3FN3JH1koIIOUfk3cHY8emUwq3PXxGZYJR5ELZ optfbUr48tWotoly5grYhKMZiDnrPxfRD6XMh3HfYQbsRPjDbCZbUa/u4n7PBQ2p /d3eHrw6dptEjgVRY0xOOnc+66PTB/ka0o41jHm21hzjo72To/AZOS1QmjsBKXo5 +6snnk/AGyZasv8vYoTUs5nYRc3NQMBaUgTuiI/6VVQ64dRBK0o1tWjkFIILmyqV N8bfXPKTSFjMw32Yq08XRvNoCA/0/ZWpr+Btmc2rt9O5EQ== -----END CERTIFICATE-----Generated at Sat Apr 26 14:42:12 2025 by rpki-client