$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/neuDaaTVZZZFAQkQcJ8hsr7IQzQ.roa File: neuDaaTVZZZFAQkQcJ8hsr7IQzQ.roa (raw, json) Hash identifier: h9Xeb1yZjonSQlS5MSJx9yZIV33J+d2SiUGID6FgYxI= Subject key identifier: 9D:EB:83:69:A4:D5:65:96:45:01:09:10:70:9F:21:B2:BE:C8:43:34 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0C48 Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/neuDaaTVZZZFAQkQcJ8hsr7IQzQ.roa Signing time: Mon 26 Aug 2024 05:13:02 +0000 ROA not before: Mon 26 Aug 2024 05:13:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18411 IP address blocks: 119.30.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Aug 26 05:13:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9DEB8369A4D5659645010910709F21B2BEC84334 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:11:9f:62:26:c9:57:11:2c:b1:7a:20:38:35: 1c:78:b3:36:e9:50:06:3b:0b:b2:9b:18:bf:21:e0: a2:70:a7:46:ab:bd:f1:6a:b5:dc:b9:d2:a4:e2:94: 87:1a:06:cd:60:d6:75:7b:04:c4:a8:d7:34:93:f1: 2b:13:fc:8e:7d:6f:a3:1c:2a:e9:ad:dc:da:3e:62: 3a:08:be:ba:ce:0d:4d:fc:fe:b8:7f:3c:2b:10:b3: 4a:ed:07:20:e6:c7:13:0d:d4:18:0b:d4:bd:03:84: 38:88:c2:3c:1a:13:e6:73:f0:14:eb:80:65:09:5f: 14:d3:83:5a:85:0a:64:78:36:81:0b:68:12:95:18: 87:64:20:c1:6e:5e:3f:6f:51:0d:3d:fa:c4:28:9b: 95:ea:04:03:95:49:22:6a:d0:6c:5c:06:2e:50:18: 62:93:f9:43:de:36:4b:de:dc:b0:96:d3:29:3a:7b: 7d:66:65:5a:04:73:c0:0c:ba:df:72:f9:8a:5d:3b: e6:2e:a4:58:7e:0b:02:97:91:e3:57:97:42:a5:41: b7:c5:0f:ae:92:f7:74:78:6d:21:77:9a:2a:cb:b9: 40:fd:67:63:8e:1e:a1:91:b7:cf:d2:47:8a:08:19: 54:a8:c2:cd:89:5d:fe:26:5f:52:0b:80:f2:40:6b: fa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:EB:83:69:A4:D5:65:96:45:01:09:10:70:9F:21:B2:BE:C8:43:34 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/neuDaaTVZZZFAQkQcJ8hsr7IQzQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.30.16.0/20 Signature Algorithm: sha256WithRSAEncryption d7:6e:39:a9:f0:50:ff:3e:97:77:21:23:06:6f:38:9d:ce:4f: 3b:09:0b:d4:ed:dd:18:c9:e3:f7:7a:b0:ea:3c:4e:a3:50:3b: 87:a2:75:a1:3b:fe:26:5b:3e:94:21:16:f7:79:bc:97:13:14: 4a:8c:0c:16:c5:cc:c7:fa:b2:8e:50:b2:ba:4a:ba:50:82:76: bc:09:2c:bf:45:34:be:71:93:58:53:a5:ec:6a:b7:a6:f2:00: 7e:84:93:da:af:11:2f:4c:04:a2:57:5d:48:6c:32:d1:60:39: d8:91:8e:8b:33:62:ed:1b:3c:7b:5a:62:f5:40:74:2b:6e:54: 2a:f6:d1:87:5c:21:11:50:07:89:49:dd:59:b7:f3:2d:25:a9: fa:ac:69:1a:01:6b:3d:2a:40:ab:cd:db:21:0c:b5:b8:39:e1: 7b:89:a6:13:4d:3b:3a:9f:17:4e:fd:96:a8:af:9a:a5:4a:fb: 1d:9c:86:49:d1:d4:53:1b:9a:a4:23:19:78:81:d2:fd:92:20: 91:11:80:76:e0:6c:af:12:6c:a0:df:f7:a1:a0:81:26:40:12: ef:c9:a5:e6:70:56:f0:88:97:b8:72:fd:54:cb:40:b0:d0:f9: 71:0e:e1:c3:dd:3b:bb:62:fa:17:79:ab:ba:c9:66:c4:41:99: f5:23:37:d0 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNDA4MjYw NTEzMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlERUI4MzY5QTRENTY1 OTY0NTAxMDkxMDcwOUYyMUIyQkVDODQzMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUEZ9iJslXESyxeiA4NRx4szbpUAY7C7KbGL8h4KJwp0arvfFq tdy50qTilIcaBs1g1nV7BMSo1zST8SsT/I59b6McKumt3No+YjoIvrrODU38/rh/ PCsQs0rtByDmxxMN1BgL1L0DhDiIwjwaE+Zz8BTrgGUJXxTTg1qFCmR4NoELaBKV GIdkIMFuXj9vUQ09+sQom5XqBAOVSSJq0GxcBi5QGGKT+UPeNkve3LCW0yk6e31m ZVoEc8AMut9y+YpdO+YupFh+CwKXkeNXl0KlQbfFD66S93R4bSF3mirLuUD9Z2OO HqGRt8/SR4oIGVSows2JXf4mX1ILgPJAa/oLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUneuDaaTVZZZFAQkQcJ8hsr7IQzQwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9uZXVEYWFUVlpaWkZBUWtRY0o4 aHNyN0lRelEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEdx4Q MA0GCSqGSIb3DQEBCwUAA4IBAQDXbjmp8FD/Ppd3ISMGbzidzk87CQvU7d0YyeP3 erDqPE6jUDuHonWhO/4mWz6UIRb3ebyXExRKjAwWxczH+rKOULK6SrpQgna8CSy/ RTS+cZNYU6Xsarem8gB+hJParxEvTASiV11IbDLRYDnYkY6LM2LtGzx7WmL1QHQr blQq9tGHXCERUAeJSd1Zt/MtJan6rGkaAWs9KkCrzdshDLW4OeF7iaYTTTs6nxdO /Zaor5qlSvsdnIZJ0dRTG5qkIxl4gdL9kiCREYB24GyvEmyg3/ehoIEmQBLvyaXm cFbwiJe4cv1Uy0Cw0PlxDuHD3Tu7YvoXeau6yWbEQZn1IzfQ -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org