$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/m9egX4n9uwie_YRwuYXqe9lhnII.roa File: m9egX4n9uwie_YRwuYXqe9lhnII.roa (raw, json) Hash identifier: /r5sTxU1XGzUBLRw5+EHCWnOuOsSCjoJ95UTwRCXi3E= Subject key identifier: 9B:D7:A0:5F:89:FD:BB:08:9E:FD:84:70:B9:85:EA:7B:D9:61:9C:82 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0C92 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/m9egX4n9uwie_YRwuYXqe9lhnII.roa Signing time: Mon 26 Aug 2024 05:17:12 +0000 ROA not before: Mon 26 Aug 2024 05:17:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 124.199.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3218 (0xc92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 26 05:17:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9BD7A05F89FDBB089EFD8470B985EA7BD9619C82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:82:bd:1d:91:f5:80:b9:29:7e:9e:83:58:ce: b3:59:ed:bb:2f:ab:b2:50:f2:bd:be:98:e4:5a:b2: 7c:7a:a1:8f:6e:cb:f7:5e:79:6d:9a:4e:4e:b5:e3: 35:b8:49:3b:b0:cb:11:2d:1e:7a:53:3b:d2:20:91: aa:62:58:57:56:9f:e8:28:16:45:4a:70:f6:b0:4c: a9:b8:73:de:8e:20:c1:af:8f:9d:07:b6:5c:48:55: 94:e7:e2:82:b3:33:64:37:c1:64:4b:a6:a2:79:1a: c2:38:f2:ba:f0:2f:18:3e:7f:8a:ff:fc:79:84:09: 01:65:7b:ea:52:0d:b5:33:84:b1:32:d7:71:76:27: c8:4f:ef:c3:3a:a1:f4:da:c8:7d:58:35:6d:53:bc: f0:cd:ac:97:df:ab:32:16:b4:f5:4e:89:0c:21:88: 3e:aa:68:40:04:f5:29:41:3a:b9:92:46:68:f5:8d: 85:dc:34:f7:9f:f2:81:7b:27:16:8f:eb:30:d8:14: 61:0d:26:31:df:72:47:69:e4:4a:ba:56:d6:ad:dc: 2b:05:f3:83:35:49:dc:8b:d9:ba:0d:fd:92:97:63: b9:ff:62:55:16:d7:2a:7f:d8:1f:1c:f5:7b:86:ed: e4:90:40:8c:3f:56:b1:e6:a6:91:28:04:fe:94:8e: 54:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:D7:A0:5F:89:FD:BB:08:9E:FD:84:70:B9:85:EA:7B:D9:61:9C:82 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/m9egX4n9uwie_YRwuYXqe9lhnII.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.199.64.0/19 Signature Algorithm: sha256WithRSAEncryption 0c:78:aa:9a:50:7e:63:67:62:fd:d8:85:33:4a:21:ed:e7:28: f2:45:85:4c:a8:7a:b2:01:8b:02:2c:ef:6d:39:f4:4b:db:06: 03:df:08:50:88:83:aa:ec:11:a7:a8:ef:c7:a8:96:2c:e8:1c: fc:51:ee:30:1e:68:9f:6f:53:f2:29:a3:3b:c7:e7:bb:b5:64: 03:c7:3c:42:38:fe:a9:19:d7:2c:d4:1d:c7:6d:58:06:84:9a: c5:47:70:f7:8d:01:93:20:ec:cb:99:17:76:d6:5d:f8:c5:0b: 5f:b6:cc:94:40:e5:37:dc:b9:bb:37:49:93:74:a4:60:e9:a0: f7:13:69:ac:1a:6c:4f:ad:0b:0e:b1:71:78:e7:ee:c2:63:6c: 04:a5:38:fd:ae:20:af:ee:c5:51:b7:89:60:46:d3:95:6c:60: 48:36:bf:e6:26:7b:97:ae:5f:fd:6b:39:5c:9b:7a:06:78:ff: 2d:58:40:03:1e:84:87:56:95:89:9e:13:93:3d:24:0b:8e:70: a8:af:6a:d5:b1:a7:ef:27:a7:a2:1b:a9:dc:35:18:ea:aa:79: b7:b2:15:7b:1f:bb:2c:07:d3:5d:b5:56:ba:c2:42:cb:2f:3a: 8a:d4:62:44:a6:e0:6e:39:3e:2e:e1:2a:0a:84:05:bf:7c:84: 28:ba:bc:86 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNDA4MjYw NTE3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCRDdBMDVGODlGREJC MDg5RUZEODQ3MEI5ODVFQTdCRDk2MTlDODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/gr0dkfWAuSl+noNYzrNZ7bsvq7JQ8r2+mORasnx6oY9uy/de eW2aTk614zW4STuwyxEtHnpTO9IgkapiWFdWn+goFkVKcPawTKm4c96OIMGvj50H tlxIVZTn4oKzM2Q3wWRLpqJ5GsI48rrwLxg+f4r//HmECQFle+pSDbUzhLEy13F2 J8hP78M6ofTayH1YNW1TvPDNrJffqzIWtPVOiQwhiD6qaEAE9SlBOrmSRmj1jYXc NPef8oF7JxaP6zDYFGENJjHfckdp5Eq6Vtat3CsF84M1SdyL2boN/ZKXY7n/YlUW 1yp/2B8c9XuG7eSQQIw/VrHmppEoBP6UjlQ1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUm9egX4n9uwie/YRwuYXqe9lhnIIwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL205ZWdYNG45dXdpZV9ZUnd1WVhxZTls aG5JSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8x0AwDQYJ KoZIhvcNAQELBQADggEBAAx4qppQfmNnYv3YhTNKIe3nKPJFhUyoerIBiwIs7205 9EvbBgPfCFCIg6rsEaeo78eolizoHPxR7jAeaJ9vU/IpozvH57u1ZAPHPEI4/qkZ 1yzUHcdtWAaEmsVHcPeNAZMg7MuZF3bWXfjFC1+2zJRA5Tfcubs3SZN0pGDpoPcT aawabE+tCw6xcXjn7sJjbASlOP2uIK/uxVG3iWBG05VsYEg2v+Yme5euX/1rOVyb egZ4/y1YQAMehIdWlYmeE5M9JAuOcKivatWxp+8np6Ibqdw1GOqqebeyFXsfuywH 0121VrrCQssvOorUYkSm4G45Pi7hKgqEBb98hCi6vIY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org