$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/EYCyL0YAgIZY2sFQyi2oFPistQs.roa File: EYCyL0YAgIZY2sFQyi2oFPistQs.roa (raw, json) Hash identifier: 37rD4OJi9son9gBDWH9whkkmLPS5vwcdEupxDqz5mO4= Subject key identifier: 11:80:B2:2F:46:00:80:86:58:DA:C1:50:CA:2D:A8:14:F8:AC:B5:0B Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0ED5 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EYCyL0YAgIZY2sFQyi2oFPistQs.roa Signing time: Mon 26 Aug 2024 05:21:48 +0000 ROA not before: Mon 26 Aug 2024 05:21:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3797 (0xed5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:21:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1180B22F4600808658DAC150CA2DA814F8ACB50B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:93:81:1b:87:cb:f5:7a:85:53:ad:d0:3c:05: a3:3b:b1:5b:be:3c:22:3d:87:d2:f9:af:f5:76:4f: 4b:da:44:38:96:f7:6d:b4:b2:e5:7d:21:1a:38:97: a8:f6:0b:74:fd:8a:c0:ac:e3:5e:83:42:02:0d:c4: 9f:30:6f:d7:48:bf:50:b7:a4:ea:18:12:66:fc:f4: 4a:cf:df:a8:94:2f:79:e9:61:91:b3:bc:dc:2d:9f: 3e:7e:8b:dc:5f:89:97:e2:c9:d1:00:d7:a6:23:42: 3f:09:ad:6b:08:23:a1:60:3a:f7:97:23:c5:4e:2c: f4:8a:ba:95:01:4c:8e:54:20:6d:70:77:2f:35:61: e5:6f:f8:2b:e1:44:28:c8:d1:0e:70:f3:8b:cc:40: 35:47:ca:06:cb:f0:8a:3f:7b:99:21:43:65:dd:f4: 92:1a:49:fe:15:a5:c8:cd:dc:f1:32:81:f3:8d:91: de:3d:a4:05:d9:64:1b:77:ab:49:3c:46:2f:eb:c6: 8f:16:36:8b:c9:6e:2b:a9:b4:66:c3:2d:84:04:aa: 51:2a:66:7f:0d:f0:65:9d:65:e4:21:2f:25:f8:74: 44:78:2f:86:bf:46:fb:5a:dc:da:85:cd:21:4e:9d: a6:37:45:11:88:79:e8:e3:f9:86:86:28:34:d2:83: 80:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:80:B2:2F:46:00:80:86:58:DA:C1:50:CA:2D:A8:14:F8:AC:B5:0B X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/EYCyL0YAgIZY2sFQyi2oFPistQs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.32.0/19 Signature Algorithm: sha256WithRSAEncryption 90:e1:be:1f:eb:0d:b0:13:81:4b:47:72:59:ef:7b:c2:bb:50: 15:95:7e:cd:43:bb:7d:a7:4a:99:42:c2:76:5f:ef:f4:3b:ac: dc:2c:ab:8c:f5:1c:c7:61:21:7e:ce:b4:7d:36:d3:74:51:95: 21:29:18:0e:cc:fd:d8:09:ab:63:36:3d:05:86:ea:ee:7d:fe: 01:f5:33:81:e2:47:94:d6:92:22:99:97:a0:f7:44:1c:fa:31: 4b:d7:12:76:54:97:76:a6:54:91:7b:c1:cb:4e:d7:75:0a:c9: f4:1d:59:84:9f:08:e4:0d:35:23:ea:e1:93:34:9a:8c:17:3d: ae:4b:69:2b:82:b3:d2:5f:ee:5a:62:1b:8a:91:8c:31:16:62: 91:01:ae:2d:96:9e:00:d5:81:5e:5c:6d:76:9b:a6:e4:84:5e: 6a:85:bd:39:af:5f:8b:17:4c:68:00:c5:41:8d:d6:6a:b5:a8: 00:da:ed:d3:4b:ee:83:01:b1:4e:60:66:15:58:5f:b3:12:ab: 77:23:6a:11:20:79:98:7b:54:24:70:ec:87:24:4b:1b:99:9c: 04:27:d2:2f:0d:eb:62:af:7c:59:b1:20:22:a0:fc:9f:76:5f: bc:9f:98:e0:35:c5:f8:ea:aa:ad:0d:c6:85:c5:fb:4f:8c:c5: ee:f8:16:bc -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIxNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExODBCMjJGNDYwMDgw ODY1OERBQzE1MENBMkRBODE0RjhBQ0I1MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8k4Ebh8v1eoVTrdA8BaM7sVu+PCI9h9L5r/V2T0vaRDiW9220 suV9IRo4l6j2C3T9isCs416DQgINxJ8wb9dIv1C3pOoYEmb89ErP36iUL3npYZGz vNwtnz5+i9xfiZfiydEA16YjQj8JrWsII6FgOveXI8VOLPSKupUBTI5UIG1wdy81 YeVv+CvhRCjI0Q5w84vMQDVHygbL8Io/e5khQ2Xd9JIaSf4VpcjN3PEygfONkd49 pAXZZBt3q0k8Ri/rxo8WNovJbiuptGbDLYQEqlEqZn8N8GWdZeQhLyX4dER4L4a/ Rvta3NqFzSFOnaY3RRGIeejj+YaGKDTSg4DpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUEYCyL0YAgIZY2sFQyi2oFPistQswHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRVlDeUwwWUFnSVpZMnNGUXlpMm9G UGlzdFFzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIIDAN BgkqhkiG9w0BAQsFAAOCAQEAkOG+H+sNsBOBS0dyWe97wrtQFZV+zUO7fadKmULC dl/v9Dus3CyrjPUcx2Ehfs60fTbTdFGVISkYDsz92AmrYzY9BYbq7n3+AfUzgeJH lNaSIpmXoPdEHPoxS9cSdlSXdqZUkXvBy07XdQrJ9B1ZhJ8I5A01I+rhkzSajBc9 rktpK4Kz0l/uWmIbipGMMRZikQGuLZaeANWBXlxtdpum5IReaoW9Oa9fixdMaADF QY3WarWoANrt00vugwGxTmBmFVhfsxKrdyNqESB5mHtUJHDshyRLG5mcBCfSLw3r Yq98WbEgIqD8n3ZfvJ+Y4DXF+OqqrQ3GhcX7T4zF7vgWvA== -----END CERTIFICATE-----Generated at Fri Nov 22 20:34:43 2024 by rpki-client on console-ams.rpki-client.org