$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uGKDxBQQoaWjCicdRoLItTYgUF0.roa File: uGKDxBQQoaWjCicdRoLItTYgUF0.roa (raw, json) Hash identifier: IF9o/1lLNtloRktuOOs8gHCMmok7BTRdml0cLjqz+Zc= Subject key identifier: B8:62:83:C4:14:10:A1:A5:A3:0A:27:1D:46:82:C8:B5:36:20:50:5D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 103B Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uGKDxBQQoaWjCicdRoLItTYgUF0.roa Signing time: Mon 26 Aug 2024 05:16:12 +0000 ROA not before: Mon 26 Aug 2024 05:16:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 124.218.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4155 (0x103b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B86283C41410A1A5A30A271D4682C8B53620505D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:36:54:3a:4f:60:72:3f:0e:77:d1:cc:46:34: 97:e6:16:cb:69:a5:59:23:01:5e:f9:a3:45:bb:41: c5:cb:63:62:84:ef:b8:b1:6a:2e:09:d8:ef:dc:02: fd:8e:a4:a4:0c:3c:eb:aa:fd:44:97:7c:39:f9:f7: 5a:05:8c:d7:36:09:ba:cc:35:97:ee:d4:07:dd:21: bf:5d:a5:5e:12:ca:0f:07:04:c6:08:a3:ed:63:0f: a2:ef:ec:84:73:85:3a:d8:3c:6c:5a:8b:38:ae:4b: a8:e4:a2:db:65:46:eb:30:b2:c8:e0:71:55:0c:44: 4e:71:c2:8c:7c:89:84:12:7c:f2:9e:30:09:b8:40: f1:66:7f:08:99:72:a2:c8:91:21:2f:10:d5:fe:7c: bf:a5:a1:64:c0:db:e0:66:c4:f7:88:4f:c3:56:95: 46:59:d7:a8:53:12:f0:4c:dc:12:66:5f:d4:6a:5e: 66:b7:d5:46:af:e2:b1:81:83:81:fd:84:c0:7d:7e: 77:92:9b:75:33:6b:aa:dd:76:0d:0d:0c:c0:7f:75: 33:69:25:db:c5:5b:59:28:81:f5:bf:a7:f9:27:fd: e6:be:0c:d4:24:6a:ff:54:04:01:1b:b9:d9:7d:d5: cc:d2:8d:74:b0:42:ce:15:74:a8:79:07:dd:bd:d7: 29:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:62:83:C4:14:10:A1:A5:A3:0A:27:1D:46:82:C8:B5:36:20:50:5D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uGKDxBQQoaWjCicdRoLItTYgUF0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.224.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:f1:bb:3f:30:d9:17:94:b4:92:6b:6d:e5:73:d7:bf:e9:5a: ab:9a:c4:d1:17:bb:f1:3c:00:af:ac:07:52:e5:d6:6d:20:78: b0:75:97:b4:78:34:c9:29:0d:5c:ed:82:68:98:57:9f:5e:b2: 13:a3:32:02:38:d5:de:ab:59:d3:da:91:da:2d:07:17:ee:7d: d2:17:ee:f7:8f:ef:6c:94:de:3d:89:8d:22:5a:e0:88:f5:87: 73:e5:75:bd:03:86:44:1e:ba:b4:d2:47:b7:51:2f:88:d8:f8: 0a:a6:cc:12:df:08:e7:c7:c8:75:aa:18:f5:76:6a:48:53:2f: d9:79:81:b9:2e:bb:5b:43:86:28:41:4b:58:16:91:e3:ea:65: 10:9a:a4:dd:b3:d0:cc:fa:6a:4b:fa:9a:02:30:43:0b:08:48: 7a:a3:47:8a:02:46:af:ba:5b:34:1d:ce:55:a0:03:80:93:a1: 88:0a:78:91:da:c2:49:23:67:26:55:70:cd:e6:26:ed:cb:84: ed:c8:35:13:ba:17:9e:99:fc:ef:61:cd:dc:4b:31:c6:48:94: e9:e9:04:04:fc:0a:bc:26:99:46:44:d5:a1:dc:c6:c4:c8:6a: 57:da:68:e2:09:6c:ca:f8:ee:28:66:08:1e:98:57:4a:bf:ce: 07:dc:df:15 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4NjI4M0M0MTQxMEEx QTVBMzBBMjcxRDQ2ODJDOEI1MzYyMDUwNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoNlQ6T2ByPw530cxGNJfmFstppVkjAV75o0W7QcXLY2KE77ix ai4J2O/cAv2OpKQMPOuq/USXfDn591oFjNc2CbrMNZfu1AfdIb9dpV4Syg8HBMYI o+1jD6Lv7IRzhTrYPGxaiziuS6jkottlRuswssjgcVUMRE5xwox8iYQSfPKeMAm4 QPFmfwiZcqLIkSEvENX+fL+loWTA2+BmxPeIT8NWlUZZ16hTEvBM3BJmX9RqXma3 1Uav4rGBg4H9hMB9fneSm3Uza6rddg0NDMB/dTNpJdvFW1kogfW/p/kn/ea+DNQk av9UBAEbudl91czSjXSwQs4VdKh5B9291ykxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUuGKDxBQQoaWjCicdRoLItTYgUF0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3VHS0R4QlFRb2FXakNpY2RSb0xJdFRZ Z1VGMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN82uAwDQYJ KoZIhvcNAQELBQADggEBAFvxuz8w2ReUtJJrbeVz17/pWquaxNEXu/E8AK+sB1Ll 1m0geLB1l7R4NMkpDVztgmiYV59eshOjMgI41d6rWdPakdotBxfufdIX7veP72yU 3j2JjSJa4Ij1h3Pldb0DhkQeurTSR7dRL4jY+AqmzBLfCOfHyHWqGPV2akhTL9l5 gbkuu1tDhihBS1gWkePqZRCapN2z0Mz6akv6mgIwQwsISHqjR4oCRq+6WzQdzlWg A4CToYgKeJHawkkjZyZVcM3mJu3LhO3INRO6F56Z/O9hzdxLMcZIlOnpBAT8Crwm mUZE1aHcxsTIalfaaOIJbMr47ihmCB6YV0q/zgfc3xU= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:28 2024 by rpki-client on console-fra.rpki-client.org