$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/8xiEIHudYwzOwyhdq0eHsjr_p2g.roa File: 8xiEIHudYwzOwyhdq0eHsjr_p2g.roa (raw, json) Hash identifier: Gf8kwBwoY9q2qrmEp08fL3FNgItHutQy0liJJl1FggM= Subject key identifier: F3:18:84:20:7B:9D:63:0C:CE:C3:28:5D:AB:47:87:B2:3A:FF:A7:68 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0ED6 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8xiEIHudYwzOwyhdq0eHsjr_p2g.roa Signing time: Mon 26 Aug 2024 05:21:50 +0000 ROA not before: Mon 26 Aug 2024 05:21:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3798 (0xed6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:21:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F31884207B9D630CCEC3285DAB4787B23AFFA768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0f:30:41:ce:5a:ac:28:e5:67:44:89:8a:c3: 64:21:09:a5:a3:d8:a5:69:e8:d3:2a:57:0a:e7:93: ba:d5:70:16:9a:79:63:f3:ba:24:c8:d8:61:d1:bf: 3f:c9:de:89:29:03:07:2e:cb:c7:bd:1f:e8:7f:84: af:34:d0:fe:33:b2:dc:96:73:ba:dc:49:98:84:02: cd:7b:0e:a6:56:6f:e4:cf:87:b8:04:d8:e2:cb:d9: 6b:a2:eb:40:8c:6a:70:e2:6c:4e:76:aa:0d:a6:d1: 13:2c:28:92:3a:f1:0d:eb:f6:46:4e:f1:05:76:01: a9:7b:3f:48:75:b9:52:68:54:1c:44:3f:ba:b1:ec: c5:11:6a:af:62:a8:d5:df:74:2c:0b:d4:dc:fb:d8: 04:e0:c4:57:d2:0d:1b:01:85:7c:41:7f:c5:6f:86: e6:c6:03:bb:d7:12:8f:49:45:f3:23:ac:7d:46:65: ab:7f:f5:87:72:48:0f:11:8a:02:e6:91:d3:30:87: 6c:75:38:76:2a:0e:88:28:30:76:53:65:3d:00:67: ca:86:b6:10:01:cd:05:5b:7f:be:70:f6:17:35:80: 46:7d:e5:46:cf:0d:ac:2c:ac:12:d9:b6:6f:da:33: 68:38:78:1c:55:72:90:87:2f:b3:a8:57:5d:39:0b: 49:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:18:84:20:7B:9D:63:0C:CE:C3:28:5D:AB:47:87:B2:3A:FF:A7:68 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/8xiEIHudYwzOwyhdq0eHsjr_p2g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.3.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:1f:53:ea:e4:33:67:9a:05:1b:7d:c6:77:43:b9:17:80:e6: 0e:a2:3e:cb:8d:19:c1:56:99:5f:2a:85:35:12:b4:31:48:d5: 0c:65:63:ed:da:3c:17:d2:69:63:d4:8a:eb:24:8e:bc:38:b9: f5:be:82:2a:63:61:a2:22:77:a0:81:6d:cc:12:97:a8:2e:31: b4:09:83:7b:80:0b:fe:52:56:1a:96:5d:b2:27:fa:60:52:9e: d8:d9:ee:d6:65:2e:a7:c6:76:0f:25:21:2e:fa:49:c4:bf:74: 53:73:61:e1:4b:40:19:e8:a2:5d:97:74:3d:a2:f2:6d:ea:b9: 0b:d9:0e:06:30:1d:5a:f7:f4:6c:e6:10:51:2f:21:1a:0c:0a: ef:bb:3b:49:ad:4f:68:d9:6d:4c:06:23:ff:38:c2:e6:b9:0a: 0e:98:2d:05:41:06:f1:1a:93:30:2a:6c:0b:6c:d1:66:cb:97: 5e:ac:d7:d9:b9:2e:52:64:c1:13:64:c5:d1:75:ad:65:f7:30: 16:b7:39:e9:db:2e:09:d2:b9:b5:9e:a5:a8:51:fd:99:07:d0: ba:f7:19:e2:b0:aa:b9:4e:a7:ff:7e:1f:a9:62:ab:9e:51:1b: 55:0f:32:ee:c0:27:55:62:d2:e3:ed:b0:07:89:17:a2:f5:1a: 3e:67:b3:1a -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIxNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzMTg4NDIwN0I5RDYz MENDRUMzMjg1REFCNDc4N0IyM0FGRkE3NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaDzBBzlqsKOVnRImKw2QhCaWj2KVp6NMqVwrnk7rVcBaaeWPz uiTI2GHRvz/J3okpAwcuy8e9H+h/hK800P4zstyWc7rcSZiEAs17DqZWb+TPh7gE 2OLL2Wui60CManDibE52qg2m0RMsKJI68Q3r9kZO8QV2Aal7P0h1uVJoVBxEP7qx 7MURaq9iqNXfdCwL1Nz72ATgxFfSDRsBhXxBf8VvhubGA7vXEo9JRfMjrH1GZat/ 9YdySA8RigLmkdMwh2x1OHYqDogoMHZTZT0AZ8qGthABzQVbf75w9hc1gEZ95UbP DawsrBLZtm/aM2g4eBxVcpCHL7OoV105C0mHAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU8xiEIHudYwzOwyhdq0eHsjr/p2gwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvOHhpRUlIdWRZd3pPd3loZHEwZUhz anJfcDJnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBIAzAN BgkqhkiG9w0BAQsFAAOCAQEAnB9T6uQzZ5oFG33Gd0O5F4DmDqI+y40ZwVaZXyqF NRK0MUjVDGVj7do8F9JpY9SK6ySOvDi59b6CKmNhoiJ3oIFtzBKXqC4xtAmDe4AL /lJWGpZdsif6YFKe2Nnu1mUup8Z2DyUhLvpJxL90U3Nh4UtAGeiiXZd0PaLybeq5 C9kOBjAdWvf0bOYQUS8hGgwK77s7Sa1PaNltTAYj/zjC5rkKDpgtBUEG8RqTMCps C2zRZsuXXqzX2bkuUmTBE2TF0XWtZfcwFrc56dsuCdK5tZ6lqFH9mQfQuvcZ4rCq uU6n/34fqWKrnlEbVQ8y7sAnVWLS4+2wB4kXovUaPmezGg== -----END CERTIFICATE-----Generated at Fri Nov 22 22:31:46 2024 by rpki-client on console-fra.rpki-client.org