$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/N2-g1iyPFWl7O7k3GPmLuKc3Xnk.roa File: N2-g1iyPFWl7O7k3GPmLuKc3Xnk.roa (raw, json) Hash identifier: pbRrnIqkV0KSe/fIc65irN/ETfXaPeJCEq/9HdXSiu8= Subject key identifier: 37:6F:A0:D6:2C:8F:15:69:7B:3B:B9:37:18:F9:8B:B8:A7:37:5E:79 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1046 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/N2-g1iyPFWl7O7k3GPmLuKc3Xnk.roa Signing time: Mon 26 Aug 2024 05:16:15 +0000 ROA not before: Mon 26 Aug 2024 05:16:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 124.219.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4166 (0x1046) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=376FA0D62C8F15697B3BB93718F98BB8A7375E79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:2d:bc:e3:99:c8:70:a0:bf:0d:95:e6:da:1a: d2:39:f2:7b:93:ee:93:6b:6c:07:07:3c:7e:92:7c: 77:4c:cc:2d:0e:ce:2b:52:fa:f6:4c:ed:c2:0c:88: 8b:98:25:fd:13:b4:30:b8:53:c1:eb:78:22:98:1c: 8d:58:56:df:71:a3:ea:41:0f:17:3c:eb:15:20:27: de:dd:be:b1:b3:38:ea:04:ac:ab:15:5f:5f:db:8f: 28:66:51:27:03:e6:a6:5b:a4:7c:f4:08:db:65:f5: cf:24:7d:8c:1f:7e:31:47:0e:cc:bb:f8:a1:18:63: 8e:a9:08:11:3c:ad:79:e7:ca:0c:0b:1b:07:d0:19: 55:1d:93:eb:54:6c:fe:1d:d1:16:e3:c3:bc:4f:9d: 87:5a:ec:54:c1:d5:69:22:6d:53:72:64:01:84:40: 91:b5:2b:85:aa:dd:b2:3b:5b:1e:af:31:5e:04:21: 2c:1d:01:82:c0:1d:5b:b5:96:f4:6f:1a:4b:6a:f3: 6c:95:bf:e9:dd:9d:53:7f:88:43:18:8f:5d:7d:51: 5a:c0:f6:37:d5:8b:4a:e2:20:f1:d1:73:b3:38:d0: bc:8c:47:5e:58:e5:d1:ed:10:57:8d:eb:2f:05:af: 16:3f:c6:c0:3a:39:a6:8d:31:b9:ba:ce:2c:f7:5f: e9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6F:A0:D6:2C:8F:15:69:7B:3B:B9:37:18:F9:8B:B8:A7:37:5E:79 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/N2-g1iyPFWl7O7k3GPmLuKc3Xnk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.219.0.0/17 Signature Algorithm: sha256WithRSAEncryption 55:4b:37:08:59:ed:68:5d:81:f4:a6:c6:26:8b:9e:aa:25:14: 65:e4:ee:85:9c:f5:ff:ed:96:97:93:1c:02:ba:59:bb:00:ed: 0b:29:8e:49:d8:4c:14:44:b3:d3:11:ca:ae:6e:a4:10:9c:c2: a9:0e:29:ba:40:f9:04:c3:6f:93:12:03:69:27:91:d7:3a:93: 3b:b0:0a:0c:2c:64:be:52:d6:2c:49:59:04:e5:02:9c:f1:af: a1:6c:25:1d:aa:58:d0:0a:47:27:47:03:e6:56:89:fa:fb:15: e2:6b:87:cc:98:10:71:94:b3:c4:f6:57:89:2e:3e:53:a0:9c: 26:71:0d:96:8c:9e:ec:48:37:f7:d0:f2:3f:1f:ff:80:a1:48: 39:6a:ba:cd:97:b1:69:31:e4:d7:d4:bb:41:b5:51:9c:d3:77: 9b:7e:05:8a:8d:66:05:9c:12:b7:2b:20:a0:8e:15:1f:29:a0: 03:3e:8c:71:ae:e5:61:34:fd:73:5a:7b:45:72:ec:27:05:5a: 20:29:77:de:d3:51:9a:91:47:e3:9e:ba:40:16:78:ac:ae:ec: 3e:2b:6d:14:60:e4:16:db:3c:5d:ec:20:32:e4:b8:4d:dd:4f: 9b:52:f7:2a:b7:99:ec:a6:17:73:02:61:5e:e5:ec:45:bf:da: 33:62:f2:0f -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3NkZBMEQ2MkM4RjE1 Njk3QjNCQjkzNzE4Rjk4QkI4QTczNzVFNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWLbzjmchwoL8NlebaGtI58nuT7pNrbAcHPH6SfHdMzC0OzitS +vZM7cIMiIuYJf0TtDC4U8HreCKYHI1YVt9xo+pBDxc86xUgJ97dvrGzOOoErKsV X1/bjyhmUScD5qZbpHz0CNtl9c8kfYwffjFHDsy7+KEYY46pCBE8rXnnygwLGwfQ GVUdk+tUbP4d0Rbjw7xPnYda7FTB1WkibVNyZAGEQJG1K4Wq3bI7Wx6vMV4EISwd AYLAHVu1lvRvGktq82yVv+ndnVN/iEMYj119UVrA9jfVi0riIPHRc7M40LyMR15Y 5dHtEFeN6y8FrxY/xsA6OaaNMbm6ziz3X+kdAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUN2+g1iyPFWl7O7k3GPmLuKc3XnkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL04yLWcxaXlQRldsN083azNHUG1MdUtj M1huay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd82wAwDQYJ KoZIhvcNAQELBQADggEBAFVLNwhZ7WhdgfSmxiaLnqolFGXk7oWc9f/tlpeTHAK6 WbsA7QspjknYTBREs9MRyq5upBCcwqkOKbpA+QTDb5MSA2knkdc6kzuwCgwsZL5S 1ixJWQTlApzxr6FsJR2qWNAKRydHA+ZWifr7FeJrh8yYEHGUs8T2V4kuPlOgnCZx DZaMnuxIN/fQ8j8f/4ChSDlqus2XsWkx5NfUu0G1UZzTd5t+BYqNZgWcErcrIKCO FR8poAM+jHGu5WE0/XNae0Vy7CcFWiApd97TUZqRR+OeukAWeKyu7D4rbRRg5Bbb PF3sIDLkuE3dT5tS9yq3meymF3MCYV7l7EW/2jNi8g8= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:27 2024 by rpki-client on console-fra.rpki-client.org