$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCCC/rMt0kiU_t8SHHB1Ae_X-p7XypFw.roa File: rMt0kiU_t8SHHB1Ae_X-p7XypFw.roa (raw, json) Hash identifier: YHi42I8oSSXOuyxTl0OEsalNCeYMxCKyKl1d0eLeJsk= Subject key identifier: AC:CB:74:92:25:3F:B7:C4:87:1C:1D:40:7B:F5:FE:A7:B5:F2:A4:5C Certificate issuer: /CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Certificate serial: 07 Authority key identifier: 07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/rMt0kiU_t8SHHB1Ae_X-p7XypFw.roa Signing time: Tue 12 Mar 2024 08:36:33 +0000 ROA not before: Tue 12 Mar 2024 08:36:33 +0000 ROA not after: Wed 26 Feb 2025 15:30:21 +0000 asID: 150772 IP address blocks: 157.20.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07E36A3D219A8AFC84F88B30553E638CE6C2CECE Validity Not Before: Mar 12 08:36:33 2024 GMT Not After : Feb 26 15:30:21 2025 GMT Subject: CN=ACCB7492253FB7C4871C1D407BF5FEA7B5F2A45C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:76:b7:2c:c0:72:2a:69:c5:3e:89:c3:0f:70: 3b:37:57:e3:6f:55:23:6c:1c:20:82:c4:ee:54:79: 78:6e:c5:fb:c9:2d:81:c1:92:33:da:d8:19:f9:55: cb:a1:5d:42:94:d0:fe:0f:39:06:8c:48:5c:65:80: cd:b3:01:d3:a7:d3:dd:4f:dd:3d:39:b8:b9:a5:06: 23:d7:a7:28:71:93:7c:49:48:14:23:13:2c:6d:57: 9a:b9:5b:8c:99:c5:62:2d:a2:60:c2:bd:31:2d:c8: 2d:38:ec:30:49:ad:a4:52:40:29:9c:9e:bc:b0:55: 32:f3:ca:0e:0c:74:97:94:92:03:ab:0c:8a:af:77: f7:b6:3a:ff:58:d3:4e:fe:f3:b6:12:33:4d:0d:d7: dd:1b:6a:50:e8:99:be:ad:d4:06:fc:d3:4a:7c:b6: 05:94:46:0a:a2:93:58:14:c1:58:94:3c:96:3b:78: c2:98:76:9b:1f:f0:d5:69:18:96:64:a1:b8:62:f0: 9e:30:ff:69:98:08:19:12:fb:d8:26:29:73:a3:14: ea:79:f9:ca:41:14:1f:af:0f:bb:2e:89:a4:29:4b: 83:ae:b7:30:9e:ca:be:4d:20:ef:be:e6:14:df:23: 88:1e:08:3e:4e:b9:32:d0:b3:45:c0:b2:e4:38:d5: 0e:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:CB:74:92:25:3F:B7:C4:87:1C:1D:40:7B:F5:FE:A7:B5:F2:A4:5C X509v3 Authority Key Identifier: keyid:07:E3:6A:3D:21:9A:8A:FC:84:F8:8B:30:55:3E:63:8C:E6:C2:CE:CE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/B-NqPSGaivyE-IswVT5jjObCzs4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B-NqPSGaivyE-IswVT5jjObCzs4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCCC/rMt0kiU_t8SHHB1Ae_X-p7XypFw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.107.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:b0:6a:55:0d:9d:91:ce:9d:57:93:53:4a:72:5b:c0:bd:c0: 37:ae:85:87:31:31:ba:3f:19:3a:ef:d5:a3:ed:f7:c9:d3:08: f0:74:bc:09:2d:a3:fc:9f:7e:b9:5e:cb:70:a1:48:2e:57:e1: 18:77:86:58:28:40:4a:2a:55:33:82:ee:de:c7:61:40:b1:6c: ab:8b:35:e6:3e:70:ff:0f:6f:f0:76:57:f1:0e:95:5f:cf:f1: e3:2e:61:74:78:05:a1:15:9d:a4:4f:76:4c:76:99:e2:e9:67: 60:d0:10:79:c2:ec:e1:af:1f:31:dc:55:24:c0:a3:ed:d8:8a: 1c:99:85:01:2a:5a:39:87:bd:49:1d:1f:9f:5e:b3:5b:3b:a2: 72:2e:73:6a:c6:ea:f4:da:fc:7f:88:bb:2f:35:8a:3d:7c:03: 67:3c:2f:c9:80:85:de:8d:57:13:96:ca:80:30:e5:a4:59:84: c8:52:a3:8c:ea:1e:a7:f1:0c:36:77:eb:9f:00:f7:47:2f:64: f7:87:1f:24:90:cd:0d:fe:c8:40:a6:dd:26:ca:f4:ec:50:4a: 0a:1a:13:94:58:16:ca:cc:1c:f9:44:e0:1e:15:ba:32:a8:0a: 58:d0:95:86:ee:81:e7:6b:e5:b9:49:d3:8c:a6:7d:c6:d2:ea: 9f:7c:a6:53 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwN0Uz NkEzRDIxOUE4QUZDODRGODhCMzA1NTNFNjM4Q0U2QzJDRUNFMB4XDTI0MDMxMjA4 MzYzM1oXDTI1MDIyNjE1MzAyMVowMzExMC8GA1UEAxMoQUNDQjc0OTIyNTNGQjdD NDg3MUMxRDQwN0JGNUZFQTdCNUYyQTQ1QzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMN2tyzAcippxT6Jww9wOzdX429VI2wcIILE7lR5eG7F+8ktgcGS M9rYGflVy6FdQpTQ/g85BoxIXGWAzbMB06fT3U/dPTm4uaUGI9enKHGTfElIFCMT LG1XmrlbjJnFYi2iYMK9MS3ILTjsMEmtpFJAKZyevLBVMvPKDgx0l5SSA6sMiq93 97Y6/1jTTv7zthIzTQ3X3RtqUOiZvq3UBvzTSny2BZRGCqKTWBTBWJQ8ljt4wph2 mx/w1WkYlmShuGLwnjD/aZgIGRL72CYpc6MU6nn5ykEUH68Puy6JpClLg663MJ7K vk0g777mFN8jiB4IPk65MtCzRcCy5DjVDiECAwEAAaOCAeowggHmMB0GA1UdDgQW BBSsy3SSJT+3xIccHUB79f6ntfKkXDAfBgNVHSMEGDAWgBQH42o9IZqK/IT4izBV PmOM5sLOzjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OQ0NDL0It TnFQU0dhaXZ5RS1Jc3dWVDVqak9iQ3pzNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Qi1OcVBTR2FpdnlFLUlzd1ZUNWpqT2JDenM0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTkNDQy9yTXQwa2lVX3Q4U0hIQjFBZV9YLXA3 WHlwRncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRRrMA0G CSqGSIb3DQEBCwUAA4IBAQCfsGpVDZ2Rzp1Xk1NKclvAvcA3roWHMTG6Pxk679Wj 7ffJ0wjwdLwJLaP8n365XstwoUguV+EYd4ZYKEBKKlUzgu7ex2FAsWyrizXmPnD/ D2/wdlfxDpVfz/HjLmF0eAWhFZ2kT3ZMdpni6Wdg0BB5wuzhrx8x3FUkwKPt2Ioc mYUBKlo5h71JHR+fXrNbO6JyLnNqxur02vx/iLsvNYo9fANnPC/JgIXejVcTlsqA MOWkWYTIUqOM6h6n8Qw2d+ufAPdHL2T3hx8kkM0N/shApt0myvTsUEoKGhOUWBbK zBz5ROAeFboyqApY0JWG7oHna+W5SdOMpn3G0uqffKZT -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org