$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/7ZhgO17xQhWXxejKoWtCZBoY24g.roa File: 7ZhgO17xQhWXxejKoWtCZBoY24g.roa (raw, json) Hash identifier: AX9uvP2FnzM4PbGLRcDBZBHercjcI0484HUWy2OWZok= Subject key identifier: ED:98:60:3B:5E:F1:42:15:97:C5:E8:CA:A1:6B:42:64:1A:18:DB:88 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1663 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7ZhgO17xQhWXxejKoWtCZBoY24g.roa Signing time: Mon 26 Aug 2024 05:22:08 +0000 ROA not before: Mon 26 Aug 2024 05:22:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 115.30.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5731 (0x1663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ED98603B5EF1421597C5E8CAA16B42641A18DB88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e4:13:32:b0:a5:7e:0b:d3:5f:7f:37:42:55: af:c5:79:6a:83:63:a8:16:07:21:a4:be:8b:7d:83: 0c:0b:ee:20:76:2f:b6:76:56:1e:51:be:ab:8e:be: 14:f9:1e:16:2b:d1:5d:b2:e2:9c:e1:e4:a0:94:fb: 21:aa:96:eb:53:62:c9:53:a0:67:57:1e:7c:82:9a: 18:75:45:2a:f9:a7:e4:54:7d:dc:ac:fb:03:c5:77: 51:4f:a1:f3:20:90:b1:f3:c5:5a:f6:b4:4b:26:f3: 31:57:ed:66:5e:bd:6d:fc:15:05:be:c5:35:2d:e9: a8:84:20:7a:02:de:ac:58:a7:1c:f6:d8:fe:ce:62: 53:4f:c0:de:83:c5:f9:4c:f6:cc:a4:b4:66:45:9f: 01:0a:82:b2:81:d5:19:0c:74:fe:4a:61:74:04:3f: 4d:09:04:29:01:7e:b8:f1:90:64:af:a2:8e:69:bd: 85:07:c0:c2:a1:fc:3c:bf:be:4f:e8:48:ea:05:09: 43:ba:01:e9:35:9f:2f:26:17:0f:d6:e1:c9:57:26: ee:e6:10:11:3e:08:4a:cc:79:8e:f4:a4:39:37:7d: 30:30:99:23:7c:8f:34:8c:3a:1f:cd:be:53:52:0a: 97:73:ca:94:1e:c8:f3:d2:57:c5:91:13:e2:f8:c5: b1:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:98:60:3B:5E:F1:42:15:97:C5:E8:CA:A1:6B:42:64:1A:18:DB:88 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/7ZhgO17xQhWXxejKoWtCZBoY24g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.30.64.0/18 Signature Algorithm: sha256WithRSAEncryption 5f:76:03:67:2d:83:fb:61:e5:fc:b8:b6:cc:17:0b:ab:3c:c5: 5d:61:b6:0b:f4:18:8d:fb:ce:69:7c:84:98:27:9f:7a:e1:fc: db:fd:61:4b:a0:59:87:8e:29:e0:1b:40:ae:cb:04:ad:b7:ba: 1c:a0:38:ed:fd:ce:5d:06:19:86:d2:00:e7:ba:97:ae:d6:88: a5:ce:38:44:c6:05:e7:ab:05:33:53:4c:df:d2:b6:67:b4:bb: e4:db:f9:1f:1b:f8:23:4a:33:9c:40:cb:00:00:66:0e:71:62: be:a0:50:b4:17:ca:84:7f:fa:a4:e5:68:52:6f:0e:7c:09:c5: 43:b8:0a:c8:02:fe:08:2a:22:fe:98:71:70:2c:4d:73:48:c4: 93:e7:13:41:14:fa:54:51:b8:ff:3a:d0:5b:dd:e9:5a:a5:c9: ff:18:cb:f9:f6:dd:2c:3b:d8:21:ea:e8:6a:8d:e7:99:8e:0a: 9b:18:c1:6b:9e:7d:a1:72:83:9b:b4:e1:b3:65:73:94:33:51: b5:1e:0c:83:17:60:4c:71:33:c7:4e:75:87:72:3f:f1:07:44: 59:dc:31:c1:3d:da:20:8e:5c:5e:53:02:a5:c9:08:e1:bc:db: 7b:56:64:06:a3:5f:61:b0:2b:85:48:43:82:71:2d:2d:25:70: 16:1c:a3:99 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFmMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVEOTg2MDNCNUVGMTQy MTU5N0M1RThDQUExNkI0MjY0MUExOERCODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDP5BMysKV+C9NffzdCVa/FeWqDY6gWByGkvot9gwwL7iB2L7Z2 Vh5RvquOvhT5HhYr0V2y4pzh5KCU+yGqlutTYslToGdXHnyCmhh1RSr5p+RUfdys +wPFd1FPofMgkLHzxVr2tEsm8zFX7WZevW38FQW+xTUt6aiEIHoC3qxYpxz22P7O YlNPwN6DxflM9syktGZFnwEKgrKB1RkMdP5KYXQEP00JBCkBfrjxkGSvoo5pvYUH wMKh/Dy/vk/oSOoFCUO6Aek1ny8mFw/W4clXJu7mEBE+CErMeY70pDk3fTAwmSN8 jzSMOh/NvlNSCpdzypQeyPPSV8WRE+L4xbErAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU7ZhgO17xQhWXxejKoWtCZBoY24gwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvN1poZ08xN3hRaFdYeGVqS29XdENa Qm9ZMjRnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnMeQDAN BgkqhkiG9w0BAQsFAAOCAQEAX3YDZy2D+2Hl/Li2zBcLqzzFXWG2C/QYjfvOaXyE mCefeuH82/1hS6BZh44p4BtArssErbe6HKA47f3OXQYZhtIA57qXrtaIpc44RMYF 56sFM1NM39K2Z7S75Nv5Hxv4I0oznEDLAABmDnFivqBQtBfKhH/6pOVoUm8OfAnF Q7gKyAL+CCoi/phxcCxNc0jEk+cTQRT6VFG4/zrQW93pWqXJ/xjL+fbdLDvYIero ao3nmY4KmxjBa559oXKDm7Ths2VzlDNRtR4MgxdgTHEzx051h3I/8QdEWdwxwT3a II5cXlMCpckI4bzbe1ZkBqNfYbArhUhDgnEtLSVwFhyjmQ== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:10 2024 by rpki-client on console-ams.rpki-client.org