$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/16gXSVu5aRMj0B23kCNG-HfAu3k.roa File: 16gXSVu5aRMj0B23kCNG-HfAu3k.roa (raw, json) Hash identifier: 1z0QHYt8c6eFmwJxBiLxs/nAo7oo1vLkRxlV4s4BMLU= Subject key identifier: D7:A8:17:49:5B:B9:69:13:23:D0:1D:B7:90:23:46:F8:77:C0:BB:79 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EE7 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/16gXSVu5aRMj0B23kCNG-HfAu3k.roa Signing time: Mon 26 Aug 2024 05:22:39 +0000 ROA not before: Mon 26 Aug 2024 05:22:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 192.72.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3815 (0xee7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7A817495BB9691323D01DB7902346F877C0BB79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7b:55:3c:ba:a1:73:8f:d4:6a:7a:51:b9:b6: f8:26:5f:27:ee:50:83:2e:fa:d4:7e:1f:b5:16:10: 71:ea:d3:91:33:f5:f4:60:9c:d4:8c:c2:8f:08:c3: 54:d5:c3:30:5d:c9:b7:78:1e:40:66:dc:3b:3b:f1: 87:f8:28:ba:6f:21:80:b1:da:39:5c:b7:4a:59:15: 5e:ea:39:74:5f:24:c0:d0:95:94:49:2e:c6:3b:7b: a9:43:cd:4b:0f:23:8c:16:cb:49:b7:fd:37:3c:a3: 38:31:db:53:0f:a5:58:f8:ee:b1:e3:3c:4b:e8:35: a0:21:2d:25:78:ab:ed:79:ec:94:b2:bd:03:a7:33: 00:44:84:1f:ae:6c:29:4f:21:5a:5d:e0:25:67:8d: 28:e3:11:3d:6c:cd:97:04:4c:fd:b2:28:ef:68:4e: bd:33:4d:c6:62:01:37:22:42:52:bb:6a:c0:da:b3: b4:75:6c:37:b6:2d:f1:63:7c:aa:98:a0:80:e3:75: d6:c0:22:8d:b8:63:aa:1f:3c:b1:bd:e8:e5:82:9f: 5e:c3:be:f2:12:22:da:6f:7e:e9:fd:81:0e:5a:9d: fd:96:ae:87:e0:a7:ca:7f:f9:01:d8:f6:01:b0:a3: a9:2c:a1:45:a9:3e:d5:57:18:f0:7a:08:97:57:98: 62:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:A8:17:49:5B:B9:69:13:23:D0:1D:B7:90:23:46:F8:77:C0:BB:79 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/16gXSVu5aRMj0B23kCNG-HfAu3k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.192.0/19 Signature Algorithm: sha256WithRSAEncryption 2d:99:a7:cf:82:d2:37:53:54:f4:b7:76:4c:11:6c:1e:e6:a9: 8a:8c:0f:85:4e:8f:06:a7:cf:1b:7c:59:4f:eb:bb:6b:66:37: 97:8a:13:f3:6a:4f:fc:5e:7a:1f:7b:5b:f3:18:f2:43:e6:14: 4a:76:ee:e0:5f:57:eb:17:dc:80:13:27:4e:0a:6c:20:39:c8: 42:ec:ca:81:65:07:36:9d:61:63:e4:f5:84:61:45:cb:64:73: c3:61:c1:09:7c:d9:2a:9e:f7:86:71:2b:72:99:71:22:88:b8: 4b:c6:4a:fc:89:b8:4e:9f:c3:c9:a6:5d:04:05:fd:be:f5:44: 4c:80:c5:a7:e2:b0:fa:c0:c4:ad:29:ee:c2:9d:31:68:13:fb: 50:63:5e:f7:2a:ff:2e:2e:3d:6c:26:44:68:c9:21:cb:ae:88: ed:63:21:66:ca:3d:41:0e:f6:cd:a8:ca:58:9a:e9:a8:0f:ca: 9f:6e:63:c6:67:7d:9d:6f:a8:62:53:2b:35:b7:aa:17:99:68: 13:29:41:be:dd:10:de:e0:fc:2e:15:ec:40:da:d7:99:25:d9: b6:9c:c4:11:f8:2a:87:69:cf:ea:19:c3:85:2c:b1:87:5b:2a: 58:e0:1d:fd:ea:6f:3e:fb:92:56:a8:17:52:0c:ae:5d:27:1e: 16:5a:e0:4d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDucwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3QTgxNzQ5NUJCOTY5 MTMyM0QwMURCNzkwMjM0NkY4NzdDMEJCNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxe1U8uqFzj9RqelG5tvgmXyfuUIMu+tR+H7UWEHHq05Ez9fRg nNSMwo8Iw1TVwzBdybd4HkBm3Ds78Yf4KLpvIYCx2jlct0pZFV7qOXRfJMDQlZRJ LsY7e6lDzUsPI4wWy0m3/Tc8ozgx21MPpVj47rHjPEvoNaAhLSV4q+157JSyvQOn MwBEhB+ubClPIVpd4CVnjSjjET1szZcETP2yKO9oTr0zTcZiATciQlK7asDas7R1 bDe2LfFjfKqYoIDjddbAIo24Y6ofPLG96OWCn17DvvISItpvfun9gQ5anf2Wrofg p8p/+QHY9gGwo6ksoUWpPtVXGPB6CJdXmGIjAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU16gXSVu5aRMj0B23kCNG+HfAu3kwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvMTZnWFNWdTVhUk1qMEIyM2tDTkct SGZBdTNrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIwDAN BgkqhkiG9w0BAQsFAAOCAQEALZmnz4LSN1NU9Ld2TBFsHuapiowPhU6PBqfPG3xZ T+u7a2Y3l4oT82pP/F56H3tb8xjyQ+YUSnbu4F9X6xfcgBMnTgpsIDnIQuzKgWUH Np1hY+T1hGFFy2Rzw2HBCXzZKp73hnErcplxIoi4S8ZK/Im4Tp/DyaZdBAX9vvVE TIDFp+Kw+sDErSnuwp0xaBP7UGNe9yr/Li49bCZEaMkhy66I7WMhZso9QQ72zajK WJrpqA/Kn25jxmd9nW+oYlMrNbeqF5loEylBvt0Q3uD8LhXsQNrXmSXZtpzEEfgq h2nP6hnDhSyxh1sqWOAd/epvPvuSVqgXUgyuXSceFlrgTQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org