$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/F7WGoJZenYarvD2HVH3kYggmtWQ.roa File: F7WGoJZenYarvD2HVH3kYggmtWQ.roa (raw, json) Hash identifier: i2/nZ0tajwWP2rmrXDUUCL7tsNnem0m7EZKAgICrJBc= Subject key identifier: 17:B5:86:A0:96:5E:9D:86:AB:BC:3D:87:54:7D:E4:62:08:26:B5:64 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 15F4 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/F7WGoJZenYarvD2HVH3kYggmtWQ.roa Signing time: Mon 26 Aug 2024 05:21:37 +0000 ROA not before: Mon 26 Aug 2024 05:21:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 175.183.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5620 (0x15f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=17B586A0965E9D86ABBC3D87547DE4620826B564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:e2:8d:44:0b:87:6b:8c:bb:af:15:68:fe:6c: 1c:f6:f5:8f:67:eb:df:11:b5:f8:36:c8:9a:e2:b7: 59:c5:c3:52:77:a7:83:e1:63:67:95:ad:7f:b8:3a: 1d:e8:2e:37:3f:9e:b3:a2:4e:77:ae:fe:48:75:9a: a8:e8:82:4f:ac:8d:e9:8f:af:d4:6c:17:a2:8b:36: e7:f3:59:57:d2:d9:a4:df:d3:d8:fe:2a:57:19:50: f2:f6:5a:d3:62:9f:0d:cc:00:73:86:82:3f:0c:df: 50:b1:8b:ca:10:30:ae:52:e2:03:d6:d8:76:64:c4: e8:ae:4b:8b:c8:e3:75:ce:59:39:15:4c:ff:48:5b: 0c:5a:a6:2d:5e:1d:31:02:8b:8b:55:ef:d1:38:0e: e7:5a:ad:97:2a:2f:92:32:c9:d2:32:68:58:e8:ee: 3d:3d:17:8b:c4:dc:10:c6:14:e5:fa:b4:8d:76:8f: c6:2b:97:3d:98:0e:27:fb:6b:ba:26:7c:c7:90:4f: 29:a3:d5:4d:6f:37:d9:66:82:5c:47:80:62:6b:ca: 30:eb:fe:32:ea:42:6a:96:54:ef:ee:73:ff:90:71: 0e:f2:44:8b:fe:f1:80:b2:28:1c:70:21:69:fb:bf: 92:a6:d7:53:b2:1d:21:36:25:ce:29:d8:a5:91:64: c6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:B5:86:A0:96:5E:9D:86:AB:BC:3D:87:54:7D:E4:62:08:26:B5:64 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/F7WGoJZenYarvD2HVH3kYggmtWQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.183.32.0/19 Signature Algorithm: sha256WithRSAEncryption 48:4f:41:a0:2d:03:bd:38:12:f1:8b:ac:bd:13:3b:b3:57:43: 72:09:bc:90:1f:47:99:37:91:cc:94:ab:6e:02:05:f0:a7:af: 6d:dd:d9:c2:e1:b4:d4:bc:98:96:da:e0:2c:43:64:4a:79:ab: 09:73:51:e8:ac:42:13:b5:82:80:96:84:f9:9b:af:9d:6e:49: 00:26:e0:cb:1d:c8:ed:dc:07:b1:20:c2:d6:a8:45:34:b1:85: 15:b1:56:99:f4:90:d6:6a:1a:13:6f:6b:63:c4:bb:c3:28:f0: b5:2e:ad:44:8d:df:d0:15:4a:cc:4e:3f:17:04:dc:42:10:32: b6:67:04:5c:d0:0c:77:67:f0:f6:e8:36:f7:e4:88:c8:2c:e9: 6e:9e:8c:79:2b:a3:21:87:dd:56:5b:e8:5c:fa:29:bd:b2:be: 11:d6:7d:90:fc:ad:2b:57:d5:56:6f:9c:4a:ed:3d:fc:98:e9: 76:37:37:94:fd:87:cc:d8:1d:2a:62:26:4c:6d:fd:9c:39:dc: 70:63:f2:ce:87:67:7e:b9:ec:cb:df:b7:ce:e9:3c:d4:9f:9e: 38:06:c8:ab:23:5c:6b:2f:73:2a:33:60:04:98:5d:8f:bc:d3: 2e:dc:c7:e4:8e:c2:9c:e9:aa:fd:07:90:14:b0:54:b7:d6:5f: ec:d1:95:65 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE3QjU4NkEwOTY1RTlE ODZBQkJDM0Q4NzU0N0RFNDYyMDgyNkI1NjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw4o1EC4drjLuvFWj+bBz29Y9n698Rtfg2yJrit1nFw1J3p4Ph Y2eVrX+4Oh3oLjc/nrOiTneu/kh1mqjogk+sjemPr9RsF6KLNufzWVfS2aTf09j+ KlcZUPL2WtNinw3MAHOGgj8M31Cxi8oQMK5S4gPW2HZkxOiuS4vI43XOWTkVTP9I Wwxapi1eHTECi4tV79E4DudarZcqL5IyydIyaFjo7j09F4vE3BDGFOX6tI12j8Yr lz2YDif7a7omfMeQTymj1U1vN9lmglxHgGJryjDr/jLqQmqWVO/uc/+QcQ7yRIv+ 8YCyKBxwIWn7v5Km11OyHSE2Jc4p2KWRZMY7AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUF7WGoJZenYarvD2HVH3kYggmtWQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvRjdXR29KWmVuWWFydkQySFZIM2tZ Z2dtdFdRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBa+3IDAN BgkqhkiG9w0BAQsFAAOCAQEASE9BoC0DvTgS8YusvRM7s1dDcgm8kB9HmTeRzJSr bgIF8Kevbd3ZwuG01LyYltrgLENkSnmrCXNR6KxCE7WCgJaE+ZuvnW5JACbgyx3I 7dwHsSDC1qhFNLGFFbFWmfSQ1moaE29rY8S7wyjwtS6tRI3f0BVKzE4/FwTcQhAy tmcEXNAMd2fw9ug29+SIyCzpbp6MeSujIYfdVlvoXPopvbK+EdZ9kPytK1fVVm+c Su09/Jjpdjc3lP2HzNgdKmImTG39nDnccGPyzodnfrnsy9+3zuk81J+eOAbIqyNc ay9zKjNgBJhdj7zTLtzH5I7CnOmq/QeQFLBUt9Zf7NGVZQ== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:31 2024 by rpki-client on console-fra.rpki-client.org