$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ezfJdYjRPhwzY9pyhR_M_xtMZSI.roa File: ezfJdYjRPhwzY9pyhR_M_xtMZSI.roa (raw, json) Hash identifier: YPgwtBLHyh2e6aSigvkUe68OV/Y0Y1CeOg4CqyTNg+k= Subject key identifier: 7B:37:C9:75:88:D1:3E:1C:33:63:DA:72:85:1F:CC:FF:1B:4C:65:22 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1014 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ezfJdYjRPhwzY9pyhR_M_xtMZSI.roa Signing time: Mon 26 Aug 2024 05:16:02 +0000 ROA not before: Mon 26 Aug 2024 05:16:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131591 IP address blocks: 223.23.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4116 (0x1014) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7B37C97588D13E1C3363DA72851FCCFF1B4C6522 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3c:53:58:db:d0:25:f6:2c:b6:7b:02:da:6b: ec:3e:8f:ce:02:b1:f3:cc:f1:33:de:1c:cc:67:f3: 31:99:6b:37:1c:05:06:11:4e:9c:bc:af:64:c3:d7: cc:b9:8d:72:ec:ae:0e:95:26:1b:ac:c2:66:ab:f8: bb:0e:1b:16:d9:d8:26:78:07:8d:2e:7f:fa:4e:f8: 13:8e:91:53:43:37:f8:56:6b:19:d3:cb:31:96:45: b5:97:d3:46:3a:e3:d5:e2:bb:ff:8f:f2:be:55:7c: a9:6a:a7:4c:7b:f4:30:1a:a4:7d:29:22:3d:fc:1d: 35:64:36:64:2d:ae:e6:3b:6d:20:d1:4f:83:e3:c8: 4f:3f:b6:f6:9d:ab:05:5b:bc:f2:06:2b:59:b3:f2: 93:5f:b2:72:39:06:e9:bb:fb:35:f0:2f:c8:6f:f8: 83:52:7b:5e:ae:50:cd:3d:75:d7:6f:d0:e2:b9:9b: 86:65:f1:8d:ef:be:d4:1a:74:73:09:c1:81:a1:00: dc:83:c6:04:ac:a0:72:1d:2a:5d:ce:51:1e:9a:cd: 56:65:4f:99:fd:9c:34:de:a5:32:eb:ea:e9:f4:8e: 7d:e4:ad:70:3f:b6:69:95:9e:48:b4:cc:fb:00:d9: 8b:3f:4f:d7:7d:61:b6:bb:65:96:be:f1:5e:be:98: d5:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:37:C9:75:88:D1:3E:1C:33:63:DA:72:85:1F:CC:FF:1B:4C:65:22 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ezfJdYjRPhwzY9pyhR_M_xtMZSI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.23.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:ec:4c:db:1a:35:5d:ff:1a:13:6c:90:0c:70:84:0e:0a:cd: ae:6b:c9:5e:cb:a1:06:d4:56:54:cb:d9:76:3e:e0:4a:68:58: bc:32:fb:cb:33:ea:6b:30:12:28:87:c9:31:95:e6:37:3e:9e: 9b:d7:f1:74:17:bd:28:d6:11:3c:84:d4:b0:75:e9:c4:40:7f: 47:da:13:7b:cc:ba:4e:37:0e:a4:7e:94:d3:e4:fd:12:b5:9e: 96:05:be:75:a1:29:42:a0:f2:15:43:c8:e3:5b:e4:0c:e6:7d: 83:71:69:2b:62:7a:3b:6f:30:d1:b8:5e:93:49:0a:2a:6b:6d: b0:aa:31:41:28:64:dd:2a:25:64:1b:63:27:45:b1:d8:41:97: b7:ec:68:e8:e5:14:29:02:f6:4e:51:a0:18:6a:66:5b:80:4e: da:d1:04:a5:7a:4a:6a:49:4d:16:da:8b:dc:55:62:87:5f:83: 96:28:46:05:07:99:29:b6:d0:46:5d:8d:fa:72:86:1d:6f:0a: bc:60:8f:9d:c0:69:84:d9:22:ab:83:88:08:f9:04:3b:9f:9e: f1:c7:8b:fa:2d:4c:7c:1e:3c:e1:91:68:55:34:ae:8c:4c:6a: 19:19:dc:7f:02:2e:25:ae:7a:b6:b4:b0:d3:7a:43:4f:f7:64: f7:c8:6e:f1 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdCMzdDOTc1ODhEMTNF MUMzMzYzREE3Mjg1MUZDQ0ZGMUI0QzY1MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvPFNY29Al9iy2ewLaa+w+j84CsfPM8TPeHMxn8zGZazccBQYR Tpy8r2TD18y5jXLsrg6VJhuswmar+LsOGxbZ2CZ4B40uf/pO+BOOkVNDN/hWaxnT yzGWRbWX00Y649Xiu/+P8r5VfKlqp0x79DAapH0pIj38HTVkNmQtruY7bSDRT4Pj yE8/tvadqwVbvPIGK1mz8pNfsnI5Bum7+zXwL8hv+INSe16uUM09dddv0OK5m4Zl 8Y3vvtQadHMJwYGhANyDxgSsoHIdKl3OUR6azVZlT5n9nDTepTLr6un0jn3krXA/ tmmVnki0zPsA2Ys/T9d9Yba7ZZa+8V6+mNXxAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUezfJdYjRPhwzY9pyhR/M/xtMZSIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2V6ZkpkWWpSUGh3elk5cHloUl9NX3h0 TVpTSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDfFzANBgkq hkiG9w0BAQsFAAOCAQEAauxM2xo1Xf8aE2yQDHCEDgrNrmvJXsuhBtRWVMvZdj7g SmhYvDL7yzPqazASKIfJMZXmNz6em9fxdBe9KNYRPITUsHXpxEB/R9oTe8y6TjcO pH6U0+T9ErWelgW+daEpQqDyFUPI41vkDOZ9g3FpK2J6O28w0bhek0kKKmttsKox QShk3SolZBtjJ0Wx2EGXt+xo6OUUKQL2TlGgGGpmW4BO2tEEpXpKaklNFtqL3FVi h1+DlihGBQeZKbbQRl2N+nKGHW8KvGCPncBphNkiq4OICPkEO5+e8ceL+i1MfB48 4ZFoVTSujExqGRncfwIuJa56trSw03pDT/dk98hu8Q== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org