$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCCC/DCUtlDl16OJHJDawdX6ljM7G-N4.roa File: DCUtlDl16OJHJDawdX6ljM7G-N4.roa (raw, json) Hash identifier: S2y7mUIbNn67sAZ4U+pZBVoTSujoVwUJqqcERX2+tIk= Subject key identifier: 0C:25:2D:94:39:75:E8:E2:47:24:36:B0:75:7E:A5:8C:CE:C6:F8:DE Certificate issuer: /CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Certificate serial: 0F Authority key identifier: 07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/DCUtlDl16OJHJDawdX6ljM7G-N4.roa Signing time: Mon 18 Mar 2024 09:57:34 +0000 ROA not before: Mon 18 Mar 2024 09:57:34 +0000 ROA not after: Wed 26 Feb 2025 15:30:21 +0000 asID: 19551 IP address blocks: 157.20.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:24:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Validity Not Before: Mar 18 09:57:34 2024 GMT Not After : Feb 26 15:30:21 2025 GMT Subject: CN=0C252D943975E8E2472436B0757EA58CCEC6F8DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:03:24:3f:94:92:5a:c2:b7:0e:28:3b:65:d9: ee:bc:b1:ab:16:ab:1f:99:59:8e:61:51:18:5b:ad: 3e:4c:55:b8:c0:fa:c0:b3:89:bc:4a:4c:96:e9:b3: f3:5f:fa:83:66:61:5d:a5:fa:75:53:6e:71:49:6e: 4e:71:d5:eb:5b:8c:c2:7c:e3:df:42:39:67:ff:0c: 61:e3:a4:3c:3d:9b:cb:49:09:c7:0d:e8:d6:0e:06: bb:75:90:2b:23:3f:e4:ef:88:de:23:30:f9:27:8f: 31:12:41:47:ee:39:8f:2b:9e:6e:40:de:04:0a:c0: 65:51:79:13:98:7f:e8:1f:5c:3b:69:b7:61:9d:37: 66:09:99:61:6a:8d:4f:a2:07:8e:1f:43:c2:05:d0: a5:6f:ab:95:f7:bc:81:65:da:11:a5:60:99:a4:1a: 50:8b:02:7b:64:89:54:a6:1a:df:7b:5e:4e:29:3a: ad:5b:06:ea:6a:35:68:b4:2f:b1:0e:e1:a0:a6:99: 77:0d:32:af:b8:5f:9e:cc:0f:3c:7d:84:76:2b:ea: 8c:71:97:1c:1b:4f:39:28:98:42:b3:35:9a:78:e3: b0:dc:91:d2:37:d6:bc:6d:56:4f:0c:b6:e3:74:37: de:be:84:0b:3d:e7:54:fe:4d:90:9e:e1:06:af:e3: 53:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:25:2D:94:39:75:E8:E2:47:24:36:B0:75:7E:A5:8C:CE:C6:F8:DE X509v3 Authority Key Identifier: keyid:07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/DCUtlDl16OJHJDawdX6ljM7G-N4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.107.0/24 Signature Algorithm: sha256WithRSAEncryption 79:7a:cd:2d:57:07:d2:bd:bd:ec:78:84:a4:54:d7:e2:a0:62: 70:02:c2:94:26:6c:f2:d5:e4:d9:b2:98:11:44:41:1b:d3:12: 12:7d:17:83:15:2d:99:60:bf:c0:1d:f8:13:39:0b:53:54:93: 59:19:16:2e:b7:8c:b3:d5:87:52:ad:9f:23:17:d9:ab:c8:c9: 74:dc:96:24:89:30:70:18:37:22:db:6e:55:74:fa:31:e8:e0: b2:5b:2d:11:00:54:0c:4f:33:47:cf:9b:c7:8e:43:2d:ca:f1: 99:4f:14:bf:d7:06:f3:36:76:92:c5:a7:95:27:bd:df:73:65: f2:ac:d1:c0:7d:ce:7c:de:52:a5:9d:7e:07:34:71:7b:6a:d5: 4f:dd:a7:1f:cb:cd:93:5a:db:b3:73:f3:f8:66:8e:a7:1c:c4: 4f:92:15:8e:73:8e:06:75:fc:41:dd:62:9f:56:df:09:94:55: cd:e9:a0:e2:8c:da:a1:9b:03:f9:1f:2e:a5:33:86:a0:8c:77: c4:95:bc:7e:fb:ef:87:d3:af:57:9b:f6:99:df:ec:6d:e7:25: 16:db:f8:84:dc:97:a6:0a:d6:bd:e2:e2:d6:9b:de:a5:7c:df: 56:61:3b:38:09:d3:3f:4d:45:82:88:91:a4:10:bd:46:fd:d2: 0e:3f:9c:ab -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIBDzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwN0Uz NkEzRDIxOUE4QUZDODRGODhCMzA1NTNFNjM4Q0U2QzJDRUNFMB4XDTI0MDMxODA5 NTczNFoXDTI1MDIyNjE1MzAyMVowMzExMC8GA1UEAxMoMEMyNTJEOTQzOTc1RThF MjQ3MjQzNkIwNzU3RUE1OENDRUM2RjhERTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALUDJD+UklrCtw4oO2XZ7ryxqxarH5lZjmFRGFutPkxVuMD6wLOJ vEpMlumz81/6g2ZhXaX6dVNucUluTnHV61uMwnzj30I5Z/8MYeOkPD2by0kJxw3o 1g4Gu3WQKyM/5O+I3iMw+SePMRJBR+45jyuebkDeBArAZVF5E5h/6B9cO2m3YZ03 ZgmZYWqNT6IHjh9DwgXQpW+rlfe8gWXaEaVgmaQaUIsCe2SJVKYa33teTik6rVsG 6mo1aLQvsQ7hoKaZdw0yr7hfnswPPH2EdivqjHGXHBtPOSiYQrM1mnjjsNyR0jfW vG1WTwy243Q33r6ECz3nVP5NkJ7hBq/jU8UCAwEAAaOCAeowggHmMB0GA1UdDgQW BBQMJS2UOXXo4kckNrB1fqWMzsb43jAfBgNVHSMEGDAWgBQH42o9IZqK/IT4izBV PmOM5sLOzjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ0NDL0It TnFQU0dhaXZ5RS1Jc3dWVDVqak9iQ3pzNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Qi1OcVBTR2FpdnlFLUlzd1ZUNWpqT2JDenM0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy9EQ1V0bERsMTZPSkhKRGF3ZFg2bGpN N0ctTjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRRrMA0G CSqGSIb3DQEBCwUAA4IBAQB5es0tVwfSvb3seISkVNfioGJwAsKUJmzy1eTZspgR REEb0xISfReDFS2ZYL/AHfgTOQtTVJNZGRYut4yz1YdSrZ8jF9mryMl03JYkiTBw GDci225VdPox6OCyWy0RAFQMTzNHz5vHjkMtyvGZTxS/1wbzNnaSxaeVJ73fc2Xy rNHAfc583lKlnX4HNHF7atVP3acfy82TWtuzc/P4Zo6nHMRPkhWOc44GdfxB3WKf Vt8JlFXN6aDijNqhmwP5Hy6lM4agjHfElbx++++H069Xm/aZ3+xt5yUW2/iE3Jem Cta94uLWm96lfN9WYTs4CdM/TUWCiJGkEL1G/dIOP5yr -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:28 2024 by rpki-client on console-fra.rpki-client.org