$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/eNGgVE0JPHbsTl2yVhKxPIpcZIM.roa File: eNGgVE0JPHbsTl2yVhKxPIpcZIM.roa (raw, json) Hash identifier: RpZgILHQRI5Rl8Hy7rB/nmXSaCZFMOejnOMUFVaDEgY= Subject key identifier: 78:D1:A0:54:4D:09:3C:76:EC:4E:5D:B2:56:12:B1:3C:8A:5C:64:83 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10C8 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eNGgVE0JPHbsTl2yVhKxPIpcZIM.roa Signing time: Mon 26 Aug 2024 05:16:47 +0000 ROA not before: Mon 26 Aug 2024 05:16:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9674 IP address blocks: 211.73.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4296 (0x10c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=78D1A0544D093C76EC4E5DB25612B13C8A5C6483 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:83:0e:f1:0a:61:0a:23:19:aa:a6:8a:5a: 41:3f:b2:5d:28:fe:b0:99:76:d5:96:93:81:c3:ae: cd:32:5f:e4:b1:01:1d:5b:57:70:5d:88:9c:b6:0e: 77:c3:aa:dd:01:90:ee:9b:85:94:a5:89:3e:2b:f8: cf:67:41:70:4e:01:40:39:36:b7:e2:09:d6:4d:44: b5:68:2f:16:3d:c8:1f:94:9b:52:06:c3:90:e5:57: 3f:dd:be:a3:e4:2b:f7:6e:86:34:9f:f6:e3:eb:b5: 1c:4c:36:dd:a9:ca:ad:b2:2b:7e:27:b8:e1:d6:6b: d7:72:26:5c:15:90:89:79:61:fc:c5:1d:00:39:c4: 6a:d3:4a:fa:d8:34:57:c1:63:c3:f2:49:8d:f6:0d: 2f:67:ea:42:55:6f:1e:0f:d0:1e:dc:65:bf:c9:d2: 1c:74:cd:1b:18:e7:2b:8f:df:3c:c1:22:ea:cd:fc: 7b:a7:75:9f:42:d7:39:c7:8d:5d:de:0f:04:07:2c: 7d:1a:7d:e4:73:c0:d5:cd:7f:86:d1:63:a6:50:ff: 9e:d2:73:e7:11:4d:d9:94:ab:bf:88:a9:d3:7b:e0: 5d:cd:7b:c5:df:4b:7e:35:df:16:3d:99:94:b4:6e: 42:68:78:f1:b0:cc:15:94:db:79:2f:db:8b:61:d0: c3:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D1:A0:54:4D:09:3C:76:EC:4E:5D:B2:56:12:B1:3C:8A:5C:64:83 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eNGgVE0JPHbsTl2yVhKxPIpcZIM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.73.128.0/19 Signature Algorithm: sha256WithRSAEncryption 2a:06:3f:c8:7a:43:aa:d5:6e:92:89:93:af:1a:68:c0:90:d5: b9:ef:f6:c2:4e:70:bf:56:f5:65:a4:0e:0a:7f:f1:1d:a4:45: a6:c1:e1:a8:3a:74:3a:c2:82:28:7b:b2:06:f8:da:fc:1b:6b: 6e:a2:be:1c:65:80:75:df:e2:ab:00:8d:34:b9:ec:08:8a:a4: 9b:93:9f:73:d9:06:07:54:3a:d3:c2:18:b8:21:40:7a:8a:a6: 47:6e:2f:65:2a:ac:23:52:2d:54:3e:d5:11:e4:10:56:8b:97: be:0b:81:cb:7d:80:8f:ab:cd:54:0b:f8:ee:1e:8b:a0:53:25: d5:18:ee:52:0a:2f:8e:5a:2d:56:bd:59:5a:ec:25:3f:51:26: 00:13:3f:d2:c6:47:c5:30:b0:3a:41:b9:b8:82:86:66:38:94: 3a:74:0a:c5:a5:f3:75:32:71:cd:1d:4f:6e:68:db:34:3e:10: 21:bd:10:55:e7:91:05:3e:91:49:d0:10:d5:c8:ac:8d:77:89: 2d:5a:85:29:03:89:88:94:bd:d9:49:b4:4b:11:30:ce:5a:5b: e4:4b:2d:e6:db:d5:95:ad:32:ca:e2:a8:0f:0e:96:8a:55:f7: 45:a3:6c:8b:f5:91:56:69:77:27:7f:b9:c8:62:3a:62:ec:3d: eb:f3:1c:58 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4RDFBMDU0NEQwOTND NzZFQzRFNURCMjU2MTJCMTNDOEE1QzY0ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC5oMO8QphCiMZqqaKWkE/sl0o/rCZdtWWk4HDrs0yX+SxAR1b V3BdiJy2DnfDqt0BkO6bhZSliT4r+M9nQXBOAUA5NrfiCdZNRLVoLxY9yB+Um1IG w5DlVz/dvqPkK/duhjSf9uPrtRxMNt2pyq2yK34nuOHWa9dyJlwVkIl5YfzFHQA5 xGrTSvrYNFfBY8PySY32DS9n6kJVbx4P0B7cZb/J0hx0zRsY5yuP3zzBIurN/Hun dZ9C1znHjV3eDwQHLH0afeRzwNXNf4bRY6ZQ/57Sc+cRTdmUq7+IqdN74F3Ne8Xf S3413xY9mZS0bkJoePGwzBWU23kv24th0MPVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUeNGgVE0JPHbsTl2yVhKxPIpcZIMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2VOR2dWRTBKUEhic1RsMnlWaEt4UElw Y1pJTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTSYAwDQYJ KoZIhvcNAQELBQADggEBACoGP8h6Q6rVbpKJk68aaMCQ1bnv9sJOcL9W9WWkDgp/ 8R2kRabB4ag6dDrCgih7sgb42vwba26ivhxlgHXf4qsAjTS57AiKpJuTn3PZBgdU OtPCGLghQHqKpkduL2UqrCNSLVQ+1RHkEFaLl74Lgct9gI+rzVQL+O4ei6BTJdUY 7lIKL45aLVa9WVrsJT9RJgATP9LGR8UwsDpBubiChmY4lDp0CsWl83Uycc0dT25o 2zQ+ECG9EFXnkQU+kUnQENXIrI13iS1ahSkDiYiUvdlJtEsRMM5aW+RLLebb1ZWt MsriqA8OlopV90WjbIv1kVZpdyd/uchiOmLsPevzHFg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org