$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/5X8-IlRpVuQ1rHEXtcMozJHeoy4.roa File: 5X8-IlRpVuQ1rHEXtcMozJHeoy4.roa (raw, json) Hash identifier: rFGpOPNfwEX8DB0HY1uJyY1PV6kSq7YF4QWLB96j8tg= Subject key identifier: E5:7F:3E:22:54:69:56:E4:35:AC:71:17:B5:C3:28:CC:91:DE:A3:2E Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EDE Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5X8-IlRpVuQ1rHEXtcMozJHeoy4.roa Signing time: Mon 26 Aug 2024 05:22:11 +0000 ROA not before: Mon 26 Aug 2024 05:22:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 192.72.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3806 (0xede) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E57F3E22546956E435AC7117B5C328CC91DEA32E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:a8:aa:78:5b:95:4f:2a:fc:e8:b1:f2:07: 29:5c:92:5b:ed:b5:c4:23:41:d6:9f:93:6f:fd:c6: af:d3:82:43:67:24:aa:86:df:28:b0:73:95:4e:5f: 8e:82:96:89:cb:97:4e:96:82:10:f9:c1:78:ed:97: 14:64:df:77:db:e2:3f:a2:80:f1:52:74:94:7f:12: 45:c1:ea:c4:9f:87:bc:19:4a:db:4e:39:bd:7a:60: 59:b2:86:f2:08:38:07:7b:8e:7d:51:5f:d6:c7:23: cf:e3:9a:1f:c9:2b:c7:b9:d2:11:d1:82:b8:24:3c: 1d:22:8d:3d:5f:22:3e:22:71:df:da:88:86:f1:26: 3b:02:6f:f4:ff:a6:c3:b9:ca:ac:00:4d:76:ae:c6: 06:d9:e1:8c:26:6c:c5:29:06:43:a2:bf:c2:d3:a8: 1c:96:06:7f:6e:45:60:f9:26:11:c4:a2:7c:b4:01: 29:09:c7:80:a4:ac:7d:bf:f5:1e:55:3d:4f:29:55: d2:5e:28:71:07:a6:59:cd:e7:7e:19:ad:51:6b:d4: f3:c5:36:7d:f7:f8:81:3a:2b:aa:02:2c:55:66:4a: 7b:45:53:ed:d0:64:87:40:a5:81:64:7f:5d:c7:c1: 1c:5f:8c:85:1c:97:e6:cc:6a:25:89:68:9e:e2:a7: 96:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:7F:3E:22:54:69:56:E4:35:AC:71:17:B5:C3:28:CC:91:DE:A3:2E X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/5X8-IlRpVuQ1rHEXtcMozJHeoy4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.248.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:cf:b9:ba:dc:e5:6a:4c:6e:09:06:c6:1e:72:31:69:13:8f: 2b:1d:4c:13:27:67:c6:ea:f2:c7:96:8f:56:e8:b3:a2:80:6c: 11:1c:b7:ec:fd:f7:3f:63:f8:f9:3e:b0:3f:d6:f4:5d:8f:93: 0d:22:2a:bc:d2:4b:db:e0:93:9e:f1:dc:2d:ad:02:23:eb:3a: 9c:6b:27:96:65:f4:f1:99:63:cf:fa:70:81:57:e6:4a:e5:9e: 2c:af:ae:a7:03:d0:9c:bb:19:51:39:34:6b:c9:ad:fb:d6:31: 29:f6:1d:d5:3d:b6:37:45:a5:9b:15:22:ce:09:d5:8e:cb:c2: 4c:b2:57:29:77:de:6a:b6:9c:36:2d:0a:b0:ff:58:e6:2c:f3: e3:bf:74:48:31:b6:64:8e:c7:75:b7:af:70:6a:6e:33:82:58: da:e5:df:14:b9:40:9f:64:d8:93:cc:37:e2:8f:e4:09:09:cc: eb:85:b5:80:a1:bc:fe:db:7d:d9:0a:f7:0b:d2:d0:8f:b3:7b: 77:19:bd:66:0a:d3:b8:f0:d7:42:1a:88:5b:a1:af:18:c7:5b: e2:e6:b8:da:e3:71:38:cd:d4:e3:b8:6b:82:7c:18:b1:38:cd: 8c:a4:28:5f:b8:06:b3:db:ad:83:43:f9:14:91:b3:bf:40:8b: 49:23:d4:c1 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU1N0YzRTIyNTQ2OTU2 RTQzNUFDNzExN0I1QzMyOENDOTFERUEzMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIFqiqeFuVTyr86LHyBylcklvttcQjQdafk2/9xq/TgkNnJKqG 3yiwc5VOX46ClonLl06WghD5wXjtlxRk33fb4j+igPFSdJR/EkXB6sSfh7wZSttO Ob16YFmyhvIIOAd7jn1RX9bHI8/jmh/JK8e50hHRgrgkPB0ijT1fIj4icd/aiIbx JjsCb/T/psO5yqwATXauxgbZ4YwmbMUpBkOiv8LTqByWBn9uRWD5JhHEony0ASkJ x4CkrH2/9R5VPU8pVdJeKHEHplnN534ZrVFr1PPFNn33+IE6K6oCLFVmSntFU+3Q ZIdApYFkf13HwRxfjIUcl+bMaiWJaJ7ip5ahAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU5X8+IlRpVuQ1rHEXtcMozJHeoy4wHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvNVg4LUlsUnBWdVExckhFWHRjTW96 Skhlb3k0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBI+DAN BgkqhkiG9w0BAQsFAAOCAQEAjs+5utzlakxuCQbGHnIxaROPKx1MEydnxuryx5aP VuizooBsERy37P33P2P4+T6wP9b0XY+TDSIqvNJL2+CTnvHcLa0CI+s6nGsnlmX0 8Zljz/pwgVfmSuWeLK+upwPQnLsZUTk0a8mt+9YxKfYd1T22N0WlmxUizgnVjsvC TLJXKXfearacNi0KsP9Y5izz4790SDG2ZI7HdbevcGpuM4JY2uXfFLlAn2TYk8w3 4o/kCQnM64W1gKG8/tt92Qr3C9LQj7N7dxm9ZgrTuPDXQhqIW6GvGMdb4ua42uNx OM3U47hrgnwYsTjNjKQoX7gGs9utg0P5FJGzv0CLSSPUwQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org