$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/DcMLpwql4WOtDaYHD-vDPbaPScs.roa File: DcMLpwql4WOtDaYHD-vDPbaPScs.roa (raw, json) Hash identifier: ZE4n8JM9XaSF0rba249L6Cj8MEYx6PmKqs9jRBgoPCM= Subject key identifier: 0D:C3:0B:A7:0A:A5:E1:63:AD:0D:A6:07:0F:EB:C3:3D:B6:8F:49:CB Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1623 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DcMLpwql4WOtDaYHD-vDPbaPScs.roa Signing time: Mon 26 Aug 2024 05:21:49 +0000 ROA not before: Mon 26 Aug 2024 05:21:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 218.210.118.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5667 (0x1623) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0DC30BA70AA5E163AD0DA6070FEBC33DB68F49CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:e7:5d:c7:e7:07:23:08:6d:47:40:3d:a8:75: a8:31:a8:20:cf:01:aa:c7:13:35:c7:27:4f:9f:a2: 94:b2:d1:53:10:58:2e:88:c0:73:a1:5d:9a:12:14: c5:0f:01:fb:1e:f6:8e:b2:0a:fc:f6:8a:b9:32:17: 92:98:a3:ff:a0:69:c1:c2:f6:79:e3:bd:ad:64:f2: b1:53:83:f8:15:be:ea:39:e1:26:e1:81:db:5b:da: 61:ea:cc:2d:c5:ae:5e:e8:c3:23:3c:6a:c0:f2:ae: 8a:3a:84:99:1e:d6:a9:5c:b3:94:7c:f7:b7:5a:93: 44:af:0c:bf:ee:5b:80:ed:cc:d1:cd:da:be:b1:4d: ed:a1:f3:1b:b6:bd:3f:71:6e:96:4f:73:57:47:59: ca:9f:d9:62:e5:8c:9c:6f:89:d5:ae:b5:1c:f4:78: 1a:f9:aa:25:b7:80:4a:43:85:20:f9:e8:ec:e4:fb: 03:dd:25:c5:c4:cd:e8:9d:7b:86:01:e2:a6:8d:3e: 20:8d:89:94:a9:e3:f3:bf:ee:f3:24:86:4b:59:84: ef:8e:a8:90:b8:11:06:a8:13:fe:92:77:b4:d9:73: fb:2e:5b:dd:32:98:d1:7c:44:f7:b7:5e:25:c6:5a: 68:fe:26:eb:b9:82:9d:6e:7a:aa:37:66:54:34:ff: fb:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:C3:0B:A7:0A:A5:E1:63:AD:0D:A6:07:0F:EB:C3:3D:B6:8F:49:CB X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/DcMLpwql4WOtDaYHD-vDPbaPScs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.210.118.0/23 Signature Algorithm: sha256WithRSAEncryption 37:de:34:3d:e4:66:5c:48:21:51:a7:d2:02:43:a2:64:aa:d5: 1e:d6:a3:de:79:aa:12:db:6d:ce:88:2c:e3:d9:11:fd:15:85: 26:14:a9:7e:d2:81:43:53:f1:7c:47:7b:77:cd:00:19:23:93: f1:51:96:60:dd:61:0f:25:6c:9e:34:be:60:ca:29:83:64:4e: 51:d7:40:29:21:87:ca:0c:36:bd:5a:b1:ce:94:b5:00:87:9b: b7:24:0e:ce:c0:36:93:94:bf:1f:69:bc:4b:3c:77:2c:55:9b: a9:0d:be:06:0d:82:8a:e5:1c:a2:e3:c2:d8:47:68:8f:1c:8d: ce:9d:b6:62:8c:96:b0:73:29:5f:eb:21:ff:33:2f:e9:db:a3: fb:c3:ce:fc:1f:4b:65:5f:dd:b5:7c:ca:43:01:06:83:ea:c8: 2f:98:2f:a9:ba:5f:58:a4:8c:e1:48:25:eb:8f:63:4f:02:70: c9:78:be:f6:b8:d2:78:bb:01:50:bc:e5:70:b5:fa:bd:25:5a: be:15:85:13:f4:67:ce:83:29:db:b8:79:5f:23:cb:27:f9:2d: 8e:4d:52:45:0a:65:0c:9c:bd:e9:81:de:b4:c8:10:9f:ad:e0: 4b:78:70:cc:cf:34:bb:ee:29:6e:ac:23:9f:c3:d4:83:dd:73: c0:70:45:6f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBEQzMwQkE3MEFBNUUx NjNBRDBEQTYwNzBGRUJDMzNEQjY4RjQ5Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3513H5wcjCG1HQD2odagxqCDPAarHEzXHJ0+fopSy0VMQWC6I wHOhXZoSFMUPAfse9o6yCvz2irkyF5KYo/+gacHC9nnjva1k8rFTg/gVvuo54Sbh gdtb2mHqzC3Frl7owyM8asDyroo6hJke1qlcs5R897dak0SvDL/uW4DtzNHN2r6x Te2h8xu2vT9xbpZPc1dHWcqf2WLljJxvidWutRz0eBr5qiW3gEpDhSD56Ozk+wPd JcXEzeide4YB4qaNPiCNiZSp4/O/7vMkhktZhO+OqJC4EQaoE/6Sd7TZc/suW90y mNF8RPe3XiXGWmj+Juu5gp1ueqo3ZlQ0//uXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUDcMLpwql4WOtDaYHD+vDPbaPScswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRGNNTHB3cWw0V090RGFZSEQtdkRQ YmFQU2NzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAdrSdjAN BgkqhkiG9w0BAQsFAAOCAQEAN940PeRmXEghUafSAkOiZKrVHtaj3nmqEtttzogs 49kR/RWFJhSpftKBQ1PxfEd7d80AGSOT8VGWYN1hDyVsnjS+YMopg2ROUddAKSGH ygw2vVqxzpS1AIebtyQOzsA2k5S/H2m8Szx3LFWbqQ2+Bg2CiuUcouPC2EdojxyN zp22YoyWsHMpX+sh/zMv6duj+8PO/B9LZV/dtXzKQwEGg+rIL5gvqbpfWKSM4Ugl 649jTwJwyXi+9rjSeLsBULzlcLX6vSVavhWFE/RnzoMp27h5XyPLJ/ktjk1SRQpl DJy96YHetMgQn63gS3hwzM80u+4pbqwjn8PUg91zwHBFbw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org