$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/nOlpW5rbcnLbdKZRKocXPEwADbQ.roa File: nOlpW5rbcnLbdKZRKocXPEwADbQ.roa (raw, json) Hash identifier: CEcJA2urA8ND1/Dw5phVJ10nYPiQrLmQmY8YNOY6Fpo= Subject key identifier: 9C:E9:69:5B:9A:DB:72:72:DB:74:A6:51:2A:87:17:3C:4C:00:0D:B4 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0C57 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/nOlpW5rbcnLbdKZRKocXPEwADbQ.roa Signing time: Mon 26 Aug 2024 05:12:39 +0000 ROA not before: Mon 26 Aug 2024 05:12:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17416 IP address blocks: 211.78.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 26 05:12:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9CE9695B9ADB7272DB74A6512A87173C4C000DB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f9:f2:ed:e4:f7:ca:84:bf:53:9c:e9:79:ca: 0f:61:45:3f:5a:b5:48:81:38:db:de:ce:f0:79:d1: bd:fa:f5:02:9c:59:55:6d:07:42:ce:43:10:c5:43: 72:bd:ab:c8:2f:1e:2a:ee:a0:f8:c1:6f:fb:19:1f: a1:50:60:5a:6d:ed:90:4b:d6:23:4a:8d:d0:a6:cb: ac:f1:90:e0:00:f8:23:89:de:1e:8a:63:7c:b1:fa: c3:a3:7c:00:49:28:a8:32:be:c6:57:1f:14:54:f2: 29:20:9e:03:fa:e5:41:6e:19:68:4d:b3:12:cf:0a: 00:85:6b:a6:6e:c8:b2:6e:0f:3f:1c:42:a2:9d:50: f6:09:64:e4:a2:b5:ef:a6:10:e2:61:42:b6:fa:43: 31:11:fa:22:14:6a:b3:f3:cb:63:71:03:a7:47:24: fd:f2:aa:5d:cb:83:c7:de:32:42:58:2b:35:66:e2: 7d:d5:14:2c:b7:6a:c5:e2:1a:0f:f3:ba:a3:f9:60: fb:97:d5:ee:e9:a2:52:17:f3:d6:45:05:17:b4:43: a4:0d:12:6f:2c:53:16:12:8f:9c:0e:a5:ba:bd:4c: 54:9a:a2:10:67:4d:bb:30:4b:20:40:ef:ed:64:54: 3f:b3:37:51:d4:e5:c2:ce:aa:4d:1d:86:3f:25:89: 2e:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:E9:69:5B:9A:DB:72:72:DB:74:A6:51:2A:87:17:3C:4C:00:0D:B4 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/nOlpW5rbcnLbdKZRKocXPEwADbQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.80.0/20 Signature Algorithm: sha256WithRSAEncryption 62:64:f5:a8:b8:69:9e:29:f0:01:1a:4c:22:67:f4:4e:39:48: ce:25:6a:b0:d7:eb:dd:71:41:2c:29:d8:2e:d0:fe:5e:51:84: c5:f4:f0:5b:62:4d:ba:e7:74:bb:76:c1:6a:e4:f6:3c:cf:8d: 1b:85:d6:9b:fd:d3:8d:24:4e:44:9e:85:eb:96:63:05:9e:e0: ed:c1:cd:b0:94:83:a2:83:d4:86:a6:af:34:56:6c:eb:22:42: 72:4c:d0:15:b8:83:12:a8:5d:94:e1:b1:cb:fc:13:79:3b:7e: 37:6b:6a:a9:46:29:9d:cc:1e:d6:d1:e8:da:97:0a:91:0d:9e: b2:bb:7d:60:10:df:be:3d:e7:21:6d:3f:6a:8d:19:5a:e8:45: 87:24:2a:5c:3b:a3:3e:42:c1:06:0a:da:62:ca:89:93:4f:63: 0d:e2:fc:80:dd:74:10:84:45:1e:a1:e0:b8:23:67:5b:03:1c: 3b:34:10:14:ef:60:e8:91:99:c5:d0:ce:be:a6:74:04:51:f6: 6d:61:1b:d1:ee:12:a0:f8:76:a0:19:f6:10:9b:1f:38:11:cd: 6a:df:86:d7:5e:3f:65:0e:1b:ba:e4:84:48:3f:41:1c:ea:3b: eb:40:9b:d2:1e:23:32:ac:91:6e:5f:68:be:87:82:6d:37:6a: 93:3f:f9:96 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNDA4MjYw NTEyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlDRTk2OTVCOUFEQjcy NzJEQjc0QTY1MTJBODcxNzNDNEMwMDBEQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI+fLt5PfKhL9TnOl5yg9hRT9atUiBONvezvB50b369QKcWVVt B0LOQxDFQ3K9q8gvHiruoPjBb/sZH6FQYFpt7ZBL1iNKjdCmy6zxkOAA+COJ3h6K Y3yx+sOjfABJKKgyvsZXHxRU8ikgngP65UFuGWhNsxLPCgCFa6ZuyLJuDz8cQqKd UPYJZOSite+mEOJhQrb6QzER+iIUarPzy2NxA6dHJP3yql3Lg8feMkJYKzVm4n3V FCy3asXiGg/zuqP5YPuX1e7polIX89ZFBRe0Q6QNEm8sUxYSj5wOpbq9TFSaohBn TbswSyBA7+1kVD+zN1HU5cLOqk0dhj8liS7dAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUnOlpW5rbcnLbdKZRKocXPEwADbQwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9uT2xwVzVyYmNuTGJkS1pSS29j WFBFd0FEYlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE005Q MA0GCSqGSIb3DQEBCwUAA4IBAQBiZPWouGmeKfABGkwiZ/ROOUjOJWqw1+vdcUEs Kdgu0P5eUYTF9PBbYk2653S7dsFq5PY8z40bhdab/dONJE5EnoXrlmMFnuDtwc2w lIOig9SGpq80VmzrIkJyTNAVuIMSqF2U4bHL/BN5O343a2qpRimdzB7W0ejalwqR DZ6yu31gEN++PechbT9qjRla6EWHJCpcO6M+QsEGCtpiyomTT2MN4vyA3XQQhEUe oeC4I2dbAxw7NBAU72DokZnF0M6+pnQEUfZtYRvR7hKg+HagGfYQmx84Ec1q34bX Xj9lDhu65IRIP0Ec6jvrQJvSHiMyrJFuX2i+h4JtN2qTP/mW -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:03 2024 by rpki-client on console-ams.rpki-client.org