$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/-Bk31cYsPiqEIrurl01EBA25VHI.roa File: -Bk31cYsPiqEIrurl01EBA25VHI.roa (raw, json) Hash identifier: IWskpnLO9PLWH6w/rModtFMVC8EBL8AdDp5F2Ty+ItU= Subject key identifier: F8:19:37:D5:C6:2C:3E:2A:84:22:BB:AB:97:4D:44:04:0D:B9:54:72 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1610 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-Bk31cYsPiqEIrurl01EBA25VHI.roa Signing time: Mon 26 Aug 2024 05:21:44 +0000 ROA not before: Mon 26 Aug 2024 05:21:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 211.78.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5648 (0x1610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F81937D5C62C3E2A8422BBAB974D44040DB95472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:ec:70:a7:65:d5:b4:7c:d6:41:87:fe:a2: 3b:42:b3:d8:89:d6:bb:99:d1:96:5d:9c:dd:95:d6: eb:d4:fa:5a:12:b2:73:4d:04:8f:2c:56:16:e3:7d: 97:f2:f6:12:5f:6b:49:c2:98:e7:86:57:93:a9:bf: 50:2a:37:40:59:3d:f1:23:7e:22:8f:cb:7d:c6:eb: 92:64:23:e0:72:6e:2a:be:0c:72:8f:23:9c:a2:eb: a1:cc:9b:d8:e5:4c:80:1e:ea:c4:63:cf:b8:16:30: 2d:a6:7b:a4:cd:cb:6b:33:8c:ac:b6:dd:7d:be:27: f5:6b:4e:88:47:4b:c0:97:63:4a:d8:a5:d5:b9:74: 5f:49:64:2c:ad:a9:79:ed:4a:be:cc:b2:53:a7:af: 69:c7:20:70:a2:04:ee:06:40:f6:2c:16:ad:1e:03: eb:7e:47:23:1b:ef:fa:a9:1f:ce:56:7b:00:49:34: 6b:c0:a2:33:8d:33:04:08:9f:10:f3:bb:57:c8:ea: 0a:3e:ca:a8:e3:3f:09:4d:de:ec:93:0e:c2:e8:7e: eb:e6:bf:e3:3a:16:d5:1e:c7:63:43:0d:11:7a:68: 91:5a:e3:64:5a:8c:3f:83:1f:fb:04:7a:a9:61:3d: 7d:d0:f3:92:07:a4:27:8e:77:2a:2b:6e:2f:db:23: 2f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:19:37:D5:C6:2C:3E:2A:84:22:BB:AB:97:4D:44:04:0D:B9:54:72 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/-Bk31cYsPiqEIrurl01EBA25VHI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.128.0/19 Signature Algorithm: sha256WithRSAEncryption 3f:76:75:e3:9f:1c:2b:85:74:ca:20:6a:ce:58:b3:57:d7:46: 69:ae:67:a0:32:ba:ae:02:07:8e:58:76:d2:9e:58:f8:0e:7a: bf:d2:75:6b:08:92:fc:38:15:64:bc:c1:f0:a3:8c:c3:73:52: 93:b9:d5:dd:1e:0e:e6:f8:76:bb:d5:de:65:77:56:35:89:10: dc:74:10:00:31:cf:78:35:ac:ef:dc:c0:fd:f6:c9:97:4f:de: 7e:3f:90:5b:9e:4a:e1:08:e4:e4:46:00:72:2b:98:62:5a:bc: f0:39:b3:3a:aa:19:d5:be:4a:8f:3f:f1:18:61:42:7c:d3:d7: ab:94:9d:1e:a1:25:7e:40:ba:b9:be:71:23:34:69:44:89:f6: 94:25:23:22:3d:8e:4e:6e:cd:a0:94:c9:ad:53:7a:b9:2e:1c: c4:0f:54:70:04:4b:bd:f9:33:1c:43:f0:2b:cf:f6:4f:42:d0: 0f:b9:24:a4:56:70:b9:55:16:3e:b4:ae:6a:33:ec:4f:6d:06: 79:a8:a0:64:4c:31:54:3d:fa:ca:0e:6c:f4:86:6e:f4:6f:83: 45:2d:21:4d:69:62:75:00:0b:23:f0:72:98:a1:a8:41:ac:16: 06:ba:2b:22:63:f8:2f:73:6f:65:91:33:aa:df:04:a0:5f:60: 0d:9e:a3:d9 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4MTkzN0Q1QzYyQzNF MkE4NDIyQkJBQjk3NEQ0NDA0MERCOTU0NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMsuxwp2XVtHzWQYf+ojtCs9iJ1ruZ0ZZdnN2V1uvU+loSsnNN BI8sVhbjfZfy9hJfa0nCmOeGV5Opv1AqN0BZPfEjfiKPy33G65JkI+Bybiq+DHKP I5yi66HMm9jlTIAe6sRjz7gWMC2me6TNy2szjKy23X2+J/VrTohHS8CXY0rYpdW5 dF9JZCytqXntSr7MslOnr2nHIHCiBO4GQPYsFq0eA+t+RyMb7/qpH85WewBJNGvA ojONMwQInxDzu1fI6go+yqjjPwlN3uyTDsLofuvmv+M6FtUex2NDDRF6aJFa42Ra jD+DH/sEeqlhPX3Q85IHpCeOdyorbi/bIy/tAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU+Bk31cYsPiqEIrurl01EBA25VHIwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvLUJrMzFjWXNQaXFFSXJ1cmwwMUVC QTI1VkhJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBdNOgDAN BgkqhkiG9w0BAQsFAAOCAQEAP3Z1458cK4V0yiBqzlizV9dGaa5noDK6rgIHjlh2 0p5Y+A56v9J1awiS/DgVZLzB8KOMw3NSk7nV3R4O5vh2u9XeZXdWNYkQ3HQQADHP eDWs79zA/fbJl0/efj+QW55K4Qjk5EYAciuYYlq88DmzOqoZ1b5Kjz/xGGFCfNPX q5SdHqElfkC6ub5xIzRpRIn2lCUjIj2OTm7NoJTJrVN6uS4cxA9UcARLvfkzHEPw K8/2T0LQD7kkpFZwuVUWPrSuajPsT20GeaigZEwxVD36yg5s9IZu9G+DRS0hTWli dQALI/BymKGoQawWBrorImP4L3NvZZEzqt8EoF9gDZ6j2Q== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org