$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/ELbvA8vKhR2ivQifJqNZbUkEZyA.roa File: ELbvA8vKhR2ivQifJqNZbUkEZyA.roa (raw, json) Hash identifier: GdCBxQ83+awFqg/cg4F4z3ZEpsXk5S0F5RvUaQ+A+T0= Subject key identifier: 10:B6:EF:03:CB:CA:85:1D:A2:BD:08:9F:26:A3:59:6D:49:04:67:20 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EE4 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ELbvA8vKhR2ivQifJqNZbUkEZyA.roa Signing time: Mon 26 Aug 2024 05:22:32 +0000 ROA not before: Mon 26 Aug 2024 05:22:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3812 (0xee4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10B6EF03CBCA851DA2BD089F26A3596D49046720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8c:9f:37:14:9b:5a:ff:59:22:7a:dc:ae:49: ae:4e:1f:7f:12:01:12:78:90:59:b3:27:24:58:4d: 9e:99:51:11:7d:60:9e:22:a1:96:6b:d1:f3:9e:f7: cc:e3:0e:b9:25:5b:02:07:a2:70:0e:fe:1c:75:76: ac:6e:eb:57:e4:2a:64:54:25:a5:dd:70:d1:1e:a8: aa:ce:6c:24:9f:a7:44:6f:ce:b1:d1:1e:4c:14:75: ab:9f:2b:4d:a5:53:62:79:1f:46:73:e2:d7:75:8d: cf:41:b8:ef:55:6e:32:26:3a:ba:9d:68:61:b8:7c: 84:88:7b:52:8c:a3:a3:6d:e4:1b:30:95:b7:b9:0a: 8b:03:ed:f0:a4:71:30:08:96:62:1c:1f:3e:0c:48: 21:0e:3d:84:70:68:78:2d:1e:1b:bd:47:36:60:53: a9:24:70:66:2f:6b:36:c0:db:1b:a8:15:39:7f:7b: da:75:c2:68:4c:29:aa:a9:34:98:08:c4:f4:4a:e6: 20:df:e3:72:cd:9b:fb:73:73:d2:2a:4a:7b:99:09: 05:e3:8a:fd:3c:8e:7a:46:c6:9c:c5:87:ee:9d:d8: f6:a6:46:f8:c3:64:8d:e3:4e:fb:12:21:01:40:7c: 8e:46:6d:6d:2c:aa:15:07:ed:cf:90:07:40:57:7e: dc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B6:EF:03:CB:CA:85:1D:A2:BD:08:9F:26:A3:59:6D:49:04:67:20 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/ELbvA8vKhR2ivQifJqNZbUkEZyA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 6d:6f:ec:3f:90:87:30:5f:eb:25:f0:be:ba:91:3b:8b:af:2d: 14:17:d1:6a:98:f0:0f:d4:f3:76:79:63:65:77:20:79:4b:6f: 2f:48:0e:37:9b:96:8c:58:d0:0f:14:0a:81:14:25:86:29:45: f9:2f:d1:c9:4f:d0:b4:ed:a1:4b:0d:8e:f2:d4:7f:d3:95:ab: 98:f4:fe:5c:3e:9c:23:45:30:61:97:6e:4e:6f:6b:99:08:65: 18:21:0f:53:ec:ed:df:a7:a1:28:67:e5:78:8b:3a:4f:39:ca: 89:1e:f8:2b:a7:ed:3a:cd:d3:e9:34:37:0b:45:cd:d1:e7:af: 66:24:5a:59:ae:c5:90:7c:e0:a5:3f:cf:d9:ff:72:81:34:49: 8b:db:4f:69:8f:fa:f6:f6:b8:db:69:0c:64:ca:05:d0:82:3e: 60:a7:66:b4:a4:7f:85:0b:07:cf:a7:15:5b:64:2f:73:f3:0c: 5f:0c:6b:e8:d2:2a:11:37:a1:74:65:cd:7e:84:cc:ac:5a:0f: ad:94:ea:64:99:d6:e2:a5:35:69:8a:81:1a:8e:ef:0f:f6:fc: dd:da:f5:7f:8c:c7:0b:35:bb:25:80:69:de:2d:1e:b9:ff:99: 59:ac:23:08:ef:d0:13:5d:23:4b:90:f1:cc:98:93:7e:cc:0c: e7:f5:1d:f8 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDuQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwQjZFRjAzQ0JDQTg1 MURBMkJEMDg5RjI2QTM1OTZENDkwNDY3MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCijJ83FJta/1kietyuSa5OH38SARJ4kFmzJyRYTZ6ZURF9YJ4i oZZr0fOe98zjDrklWwIHonAO/hx1dqxu61fkKmRUJaXdcNEeqKrObCSfp0RvzrHR HkwUdaufK02lU2J5H0Zz4td1jc9BuO9VbjImOrqdaGG4fISIe1KMo6Nt5Bswlbe5 CosD7fCkcTAIlmIcHz4MSCEOPYRwaHgtHhu9RzZgU6kkcGYvazbA2xuoFTl/e9p1 wmhMKaqpNJgIxPRK5iDf43LNm/tzc9IqSnuZCQXjiv08jnpGxpzFh+6d2PamRvjD ZI3jTvsSIQFAfI5GbW0sqhUH7c+QB0BXftwDAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUELbvA8vKhR2ivQifJqNZbUkEZyAwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRUxidkE4dktoUjJpdlFpZkpxTlpi VWtFWnlBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BI8DAN BgkqhkiG9w0BAQsFAAOCAQEAbW/sP5CHMF/rJfC+upE7i68tFBfRapjwD9Tzdnlj ZXcgeUtvL0gON5uWjFjQDxQKgRQlhilF+S/RyU/QtO2hSw2O8tR/05WrmPT+XD6c I0UwYZduTm9rmQhlGCEPU+zt36ehKGfleIs6TznKiR74K6ftOs3T6TQ3C0XN0eev ZiRaWa7FkHzgpT/P2f9ygTRJi9tPaY/69va422kMZMoF0II+YKdmtKR/hQsHz6cV W2Qvc/MMXwxr6NIqETehdGXNfoTMrFoPrZTqZJnW4qU1aYqBGo7vD/b83dr1f4zH CzW7JYBp3i0euf+ZWawjCO/QE10jS5DxzJiTfswM5/Ud+A== -----END CERTIFICATE-----Generated at Fri Nov 22 22:31:46 2024 by rpki-client on console-fra.rpki-client.org