$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/EcaNZmbDYUiA65GijV2JOn7vS8s.roa File: EcaNZmbDYUiA65GijV2JOn7vS8s.roa (raw, json) Hash identifier: YwhuEOHU4JaED3br8Fq5luTuEKesNBhfT6bQzUnWAFI= Subject key identifier: 11:C6:8D:66:66:C3:61:48:80:EB:91:A2:8D:5D:89:3A:7E:EF:4B:CB Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0C95 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/EcaNZmbDYUiA65GijV2JOn7vS8s.roa Signing time: Mon 26 Aug 2024 05:17:13 +0000 ROA not before: Mon 26 Aug 2024 05:17:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 210.69.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3221 (0xc95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 26 05:17:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=11C68D6666C3614880EB91A28D5D893A7EEF4BCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ad:8a:b9:c6:38:a8:c3:86:7c:8f:dc:74:12: 8a:a4:59:24:e1:01:ae:06:58:86:be:97:d9:82:1e: 17:f0:e1:ef:59:78:01:e8:27:47:b5:10:98:db:84: 13:14:f3:59:61:5e:b3:84:3a:d5:91:09:a1:a0:0c: ee:0e:52:ab:66:07:3b:2e:ee:e0:24:73:4f:1d:d6: b6:6d:81:9c:86:53:18:d0:86:08:f7:38:9c:4e:8b: a1:04:c6:ec:05:fa:aa:c8:ad:5e:b6:48:07:c0:74: b3:e0:3d:db:31:1a:cb:d7:40:b0:3f:91:f3:ba:ef: 9d:1c:1e:d2:6a:ad:33:9b:c3:d6:a7:0a:6e:72:e5: 33:48:9b:4e:04:d6:44:93:70:36:04:e8:5d:d8:f7: 3c:63:0c:84:b8:73:9f:5b:2b:98:43:25:91:fb:4b: 68:8d:a5:c9:fe:50:bf:f7:5e:a9:d7:34:e8:5e:eb: 79:90:31:cf:67:27:ee:58:23:ad:8f:13:be:9c:31: 08:9c:67:3c:71:25:6f:61:f4:7d:d0:dc:e0:82:f5: ac:ad:27:5d:96:6d:e5:b5:bf:90:f2:e9:82:e6:8c: 3f:77:bc:08:7f:d4:35:07:d2:15:c1:44:2c:ff:b3: af:ef:d2:7c:5d:4d:84:62:bb:ee:3e:2d:ea:ad:2a: 66:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:C6:8D:66:66:C3:61:48:80:EB:91:A2:8D:5D:89:3A:7E:EF:4B:CB X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/EcaNZmbDYUiA65GijV2JOn7vS8s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.69.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:08:94:da:1f:cc:3b:8c:ff:92:0c:df:61:bd:d5:f2:f1:7c: 6b:22:a3:bd:83:5a:e6:20:96:de:29:68:15:c7:af:47:c5:a9: 19:18:0d:7c:ff:3a:d4:91:11:71:54:18:10:43:73:8e:5f:7e: e7:0e:b4:63:c5:e0:ec:47:c7:18:d0:c9:41:0f:b1:72:06:72: a1:28:88:c2:34:e3:23:ec:56:a8:65:be:ea:01:4f:30:df:6a: 96:47:a9:b7:36:c5:c6:02:38:35:9c:45:e6:f1:0f:97:b3:8e: ac:36:ae:c7:e5:92:a6:35:eb:0e:27:bb:a7:f9:81:f3:0f:5d: 10:3c:35:39:9b:51:9a:85:d9:85:ec:2c:4c:68:4e:ed:9c:ab: 6c:11:ad:7d:bd:4b:15:57:2a:69:75:b2:75:86:74:09:39:49: 05:cc:da:c2:8a:83:6a:7b:18:2c:75:e2:62:fc:54:ea:44:8d: 66:4e:f0:c6:6e:f2:57:c8:61:b8:e4:d5:ee:db:8a:32:bd:36: e3:6f:77:41:93:f6:d1:25:bb:e4:16:71:01:db:98:ac:ff:42: d7:2b:c2:ff:71:c7:99:21:e6:3f:84:21:0a:7c:65:94:a3:7a: 3f:66:95:72:ba:59:32:1b:80:71:50:62:72:69:00:30:52:d7: 8c:ab:8c:20 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDJUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNDA4MjYw NTE3MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExQzY4RDY2NjZDMzYx NDg4MEVCOTFBMjhENUQ4OTNBN0VFRjRCQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsrYq5xjiow4Z8j9x0EoqkWSThAa4GWIa+l9mCHhfw4e9ZeAHo J0e1EJjbhBMU81lhXrOEOtWRCaGgDO4OUqtmBzsu7uAkc08d1rZtgZyGUxjQhgj3 OJxOi6EExuwF+qrIrV62SAfAdLPgPdsxGsvXQLA/kfO6750cHtJqrTObw9anCm5y 5TNIm04E1kSTcDYE6F3Y9zxjDIS4c59bK5hDJZH7S2iNpcn+UL/3XqnXNOhe63mQ Mc9nJ+5YI62PE76cMQicZzxxJW9h9H3Q3OCC9aytJ12WbeW1v5Dy6YLmjD93vAh/ 1DUH0hXBRCz/s6/v0nxdTYRiu+4+LeqtKma1AgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUEcaNZmbDYUiA65GijV2JOn7vS8swHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL0VjYU5abWJEWVVpQTY1R2lqVjJKT243 dlM4cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSRTANBgkq hkiG9w0BAQsFAAOCAQEAowiU2h/MO4z/kgzfYb3V8vF8ayKjvYNa5iCW3iloFcev R8WpGRgNfP861JERcVQYEENzjl9+5w60Y8Xg7EfHGNDJQQ+xcgZyoSiIwjTjI+xW qGW+6gFPMN9qlkeptzbFxgI4NZxF5vEPl7OOrDaux+WSpjXrDie7p/mB8w9dEDw1 OZtRmoXZhewsTGhO7ZyrbBGtfb1LFVcqaXWydYZ0CTlJBczawoqDansYLHXiYvxU 6kSNZk7wxm7yV8hhuOTV7tuKMr024293QZP20SW75BZxAduYrP9C1yvC/3HHmSHm P4QhCnxllKN6P2aVcrpZMhuAcVBicmkAMFLXjKuMIA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org