$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/ZCBPHKAxdiG0qZnzKFVbBka4HCE.roa File: ZCBPHKAxdiG0qZnzKFVbBka4HCE.roa (raw, json) Hash identifier: /gEnQMGKR2L3v5ORqvnnM3fkGwyynd6NDKI3mzf5WUo= Subject key identifier: 64:20:4F:1C:A0:31:76:21:B4:A9:99:F3:28:55:5B:06:46:B8:1C:21 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0C94 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ZCBPHKAxdiG0qZnzKFVbBka4HCE.roa Signing time: Mon 26 Aug 2024 05:17:12 +0000 ROA not before: Mon 26 Aug 2024 05:17:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 211.79.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3220 (0xc94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 26 05:17:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=64204F1CA0317621B4A999F328555B0646B81C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1b:b5:15:52:f4:a7:ed:af:0a:17:39:aa:de: a6:63:74:e0:f6:23:3f:36:a1:68:83:ef:f5:5d:91: 9d:e9:1c:93:0f:6c:57:dd:2a:47:90:f3:91:f5:bb: 83:5d:6f:91:50:3c:3b:62:49:79:e4:89:65:fc:25: c0:15:f5:ec:71:74:13:25:fa:0e:68:cc:4e:4c:b5: e8:1a:3b:96:bb:c5:e0:7e:20:61:7f:70:ee:b9:df: 2c:a1:76:c8:21:38:db:af:00:8a:73:7c:2c:39:ed: c1:67:4a:7f:ae:2b:6c:53:61:34:96:b6:b6:db:b8: 26:49:d0:8d:a5:e7:61:6b:15:fd:45:9c:42:40:a5: 23:ab:ef:f7:a7:82:f9:f2:fa:3a:47:bb:41:ac:61: f0:28:89:8c:30:f6:49:fb:d6:05:aa:26:a1:f1:d3: 1b:35:37:89:8e:e6:ee:f6:e4:bf:cc:12:b2:1c:c1: 75:67:91:25:68:95:d2:de:ab:61:be:58:7a:72:53: 35:01:88:55:a1:19:ba:b5:7f:93:bb:8f:49:9b:ac: f5:69:b2:d7:d9:48:0d:c7:b4:38:48:e8:a4:4e:a3: 54:8a:19:63:a6:cf:2c:96:82:10:21:f0:a6:7b:c4: c4:c5:24:45:85:c8:23:32:e7:60:2d:81:d5:4e:3f: bd:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:20:4F:1C:A0:31:76:21:B4:A9:99:F3:28:55:5B:06:46:B8:1C:21 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/ZCBPHKAxdiG0qZnzKFVbBka4HCE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.128.0/19 Signature Algorithm: sha256WithRSAEncryption 88:37:eb:81:12:ff:75:48:6c:2c:19:4f:37:be:f6:00:e8:6e: c4:f1:e1:cb:04:43:61:0a:af:72:f7:e0:90:73:60:f5:f4:1e: 0f:4b:c7:df:85:6e:b9:75:75:af:ab:ca:24:1d:86:0c:9f:f9: cd:78:9f:bb:ba:95:4a:a5:f0:2f:6b:c3:96:13:4a:6e:f9:9a: e1:ea:b3:53:2f:1e:71:fe:44:ee:cd:62:13:1d:ee:80:c2:86: a7:69:78:4f:93:df:7b:25:71:65:7d:5e:b8:84:12:25:fd:e8: 1f:98:c3:6b:57:9a:e4:db:5e:44:a0:49:f2:41:61:55:32:c8: b7:79:aa:eb:68:8f:b9:d9:fd:08:fd:e2:eb:e2:79:0b:56:1c: a1:dd:84:b8:e3:6a:29:34:21:95:b0:72:b3:0f:15:2e:c8:9c: 58:bb:f8:60:20:b3:a6:57:d1:66:55:c5:0f:30:c7:16:6e:8e: 4d:01:5c:be:63:5f:d6:bb:8a:4a:27:74:89:86:e3:78:ef:b6: 02:57:f3:86:4d:61:90:61:34:19:d8:ec:9c:44:4d:75:9e:c5: a9:1c:6f:da:87:4c:b0:bc:96:a7:5f:f9:f0:32:14:03:30:2e: 89:c0:fd:21:81:9b:6e:41:32:1a:2e:f1:92:5a:ed:3e:fb:7c: e5:00:2f:0f -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDJQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNDA4MjYw NTE3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0MjA0RjFDQTAzMTc2 MjFCNEE5OTlGMzI4NTU1QjA2NDZCODFDMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCG7UVUvSn7a8KFzmq3qZjdOD2Iz82oWiD7/VdkZ3pHJMPbFfd KkeQ85H1u4Ndb5FQPDtiSXnkiWX8JcAV9exxdBMl+g5ozE5MtegaO5a7xeB+IGF/ cO653yyhdsghONuvAIpzfCw57cFnSn+uK2xTYTSWtrbbuCZJ0I2l52FrFf1FnEJA pSOr7/engvny+jpHu0GsYfAoiYww9kn71gWqJqHx0xs1N4mO5u725L/MErIcwXVn kSVoldLeq2G+WHpyUzUBiFWhGbq1f5O7j0mbrPVpstfZSA3HtDhI6KROo1SKGWOm zyyWghAh8KZ7xMTFJEWFyCMy52AtgdVOP70LAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUZCBPHKAxdiG0qZnzKFVbBka4HCEwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1pDQlBIS0F4ZGlHMHFabnpLRlZiQmth NEhDRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTT4AwDQYJ KoZIhvcNAQELBQADggEBAIg364ES/3VIbCwZTze+9gDobsTx4csEQ2EKr3L34JBz YPX0Hg9Lx9+Fbrl1da+ryiQdhgyf+c14n7u6lUql8C9rw5YTSm75muHqs1MvHnH+ RO7NYhMd7oDChqdpeE+T33slcWV9XriEEiX96B+Yw2tXmuTbXkSgSfJBYVUyyLd5 qutoj7nZ/Qj94uvieQtWHKHdhLjjaik0IZWwcrMPFS7InFi7+GAgs6ZX0WZVxQ8w xxZujk0BXL5jX9a7ikondImG43jvtgJX84ZNYZBhNBnY7JxETXWexakcb9qHTLC8 lqdf+fAyFAMwLonA/SGBm25BMhou8ZJa7T77fOUALw8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org