$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/Egc3I-yIcxm0yxoCu_sZklIBSmg.roa File: Egc3I-yIcxm0yxoCu_sZklIBSmg.roa (raw, json) Hash identifier: w7LH9LLJVb4he2+4f48pXdibWhit+xDoejOUDqcqVmA= Subject key identifier: 12:07:37:23:EC:88:73:19:B4:CB:1A:02:BB:FB:19:92:52:01:4A:68 Certificate issuer: /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891 Certificate serial: 0C3B Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/Egc3I-yIcxm0yxoCu_sZklIBSmg.roa Signing time: Mon 26 Aug 2024 05:21:29 +0000 ROA not before: Mon 26 Aug 2024 05:21:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7539 IP address blocks: 211.73.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3131 (0xc3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891 Validity Not Before: Aug 26 05:21:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=12073723EC887319B4CB1A02BBFB199252014A68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:23:97:14:b0:1c:1a:62:48:82:9c:c8:6a:68: 69:53:f0:35:5b:09:ea:10:c9:7c:ed:1d:fe:ba:68: 3e:a6:cb:fc:a3:8b:ed:15:e5:22:d0:95:f7:c7:58: f5:6f:9b:22:32:46:5b:83:b4:12:03:b1:c2:d9:09: 92:9f:3b:b8:e4:18:17:9b:48:18:f9:cd:23:08:f4: 69:25:b5:8c:d6:c1:75:52:73:15:a3:5c:6b:5b:92: e6:bd:a8:8d:87:a0:a1:db:87:79:ee:26:8e:de:03: 6d:24:16:60:79:5a:d0:4a:83:1d:f5:77:bb:60:af: dc:43:62:ab:75:9d:b4:85:f7:19:13:c1:68:fb:8e: 52:13:30:6b:6f:fd:68:9c:84:a6:ec:f6:8d:d4:48: 1a:fd:1a:38:cc:87:5b:26:ec:2d:db:a8:64:00:e3: 92:75:0f:cd:d8:6e:44:30:0d:a9:30:d1:27:35:ce: 14:90:4c:09:b8:df:83:58:e2:a9:e9:b2:bb:b9:f6: e6:b4:25:0e:18:eb:7e:94:3f:7d:6c:6e:6d:25:db: f8:5c:ee:6a:8f:1c:5c:e3:f6:93:54:f4:be:fb:dd: 3e:d0:f2:b3:f9:da:96:83:3b:ea:81:4f:28:4e:45: 37:0e:24:61:86:3d:77:e1:5c:8e:81:bf:0e:39:8d: f8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:07:37:23:EC:88:73:19:B4:CB:1A:02:BB:FB:19:92:52:01:4A:68 X509v3 Authority Key Identifier: keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/Egc3I-yIcxm0yxoCu_sZklIBSmg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.73.64.0/19 Signature Algorithm: sha256WithRSAEncryption 31:da:01:71:f8:df:8a:e9:d7:60:a4:4e:77:f7:59:8a:9a:da: b4:2a:95:4b:35:5d:1e:a6:10:bd:41:e6:e6:82:68:b0:aa:d8: 57:b9:b3:24:58:8f:c8:09:a0:c5:39:11:d6:15:a1:de:24:aa: 8e:fd:35:d9:bb:d2:8d:9f:3f:5b:f0:d4:2c:43:a0:b9:70:39: 81:ec:7a:1d:06:67:b7:62:0a:13:73:89:93:22:d9:79:68:a7: d9:f2:f9:26:94:22:48:39:49:c6:6d:64:41:b3:96:6f:29:ed: e3:2e:8a:03:aa:45:3a:d0:07:a0:09:20:ef:de:58:bd:0e:e9: 96:49:de:b2:c1:65:8b:b3:38:92:91:58:14:18:a0:d7:13:4c: b3:2b:e6:5f:23:ff:bd:54:f6:3a:cf:02:0d:d8:2e:1c:35:6f: 10:ac:2a:28:ce:b2:f6:e3:38:24:30:52:45:ed:a6:e9:eb:a4: e2:bd:d1:3c:b0:b8:75:97:fd:f6:8f:f5:7f:99:a5:35:f5:4c: 4f:2f:7c:b4:b9:03:b8:75:b7:9e:24:20:d9:b1:d2:39:42:1e: ce:0a:16:e6:1d:ea:a4:2c:5d:c2:c6:12:05:83:0d:92:3c:c5: cd:33:b4:19:63:e8:54:32:09:73:9a:67:df:02:03:f8:11:4f: dc:ba:25:8a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQz ODY4NUZGM0VBMUY0NjY4NURFNUY1N0M2QTRCODEwNDQ4MTg5MTAeFw0yNDA4MjYw NTIxMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyMDczNzIzRUM4ODcz MTlCNENCMUEwMkJCRkIxOTkyNTIwMTRBNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtI5cUsBwaYkiCnMhqaGlT8DVbCeoQyXztHf66aD6my/yji+0V 5SLQlffHWPVvmyIyRluDtBIDscLZCZKfO7jkGBebSBj5zSMI9GkltYzWwXVScxWj XGtbkua9qI2HoKHbh3nuJo7eA20kFmB5WtBKgx31d7tgr9xDYqt1nbSF9xkTwWj7 jlITMGtv/WichKbs9o3USBr9GjjMh1sm7C3bqGQA45J1D83YbkQwDakw0Sc1zhSQ TAm434NY4qnpsru59ua0JQ4Y636UP31sbm0l2/hc7mqPHFzj9pNU9L773T7Q8rP5 2paDO+qBTyhORTcOJGGGPXfhXI6Bvw45jfinAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUEgc3I+yIcxm0yxoCu/sZklIBSmgwHwYDVR0jBBgwFoAU7ThoX/PqH0ZoXeX1 fGpLgQRIGJEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNIQy83 VGhvWF9QcUgwWm9YZVgxZkdwTGdRUklHSkUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzdUaG9YX1BxSDBab1hlWDFmR3BMZ1FSSUdKRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSEMvRWdjM0kteUljeG0weXhvQ3Vfc1pr bElCU21nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdNJQDAN BgkqhkiG9w0BAQsFAAOCAQEAMdoBcfjfiunXYKROd/dZipratCqVSzVdHqYQvUHm 5oJosKrYV7mzJFiPyAmgxTkR1hWh3iSqjv012bvSjZ8/W/DULEOguXA5gex6HQZn t2IKE3OJkyLZeWin2fL5JpQiSDlJxm1kQbOWbynt4y6KA6pFOtAHoAkg795YvQ7p lknessFli7M4kpFYFBig1xNMsyvmXyP/vVT2Os8CDdguHDVvEKwqKM6y9uM4JDBS Re2m6euk4r3RPLC4dZf99o/1f5mlNfVMTy98tLkDuHW3niQg2bHSOUIezgoW5h3q pCxdwsYSBYMNkjzFzTO0GWPoVDIJc5pn3wID+BFP3Lolig== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:41 2024 by rpki-client on console-fra.rpki-client.org