$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/JL0TSYzPChcjHfmfhPdoDfZXSPg.roa File: JL0TSYzPChcjHfmfhPdoDfZXSPg.roa (raw, json) Hash identifier: QQMxpe2yNuHNKC5268QRJpfncVYFzUz+7N8TIlAJS6I= Subject key identifier: 24:BD:13:49:8C:CF:0A:17:23:1D:F9:9F:84:F7:68:0D:F6:57:48:F8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1618 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JL0TSYzPChcjHfmfhPdoDfZXSPg.roa Signing time: Mon 26 Aug 2024 05:21:46 +0000 ROA not before: Mon 26 Aug 2024 05:21:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.205.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5656 (0x1618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=24BD13498CCF0A17231DF99F84F7680DF65748F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:2a:d4:ae:99:66:60:24:ac:53:ce:b3:f5:c5: 6c:ed:52:51:91:28:35:37:e7:1c:62:4f:87:38:a7: ee:cf:9b:bf:22:b0:d9:fd:65:b0:12:d6:7a:37:e5: a3:e1:18:87:6a:61:62:90:5d:12:cc:67:44:cf:c1: e5:c6:10:94:16:4b:48:77:f6:d7:f1:2f:56:b4:30: 51:be:0a:a1:43:48:c1:8e:64:5b:aa:0b:3d:bd:a9: 80:c4:9a:3d:f1:2f:d1:47:ef:72:f0:84:6f:2b:38: b5:0e:03:9f:c6:ed:22:8d:ac:54:f0:1d:2c:ef:41: 77:7f:75:ce:08:6b:9b:cd:66:d3:39:85:71:4e:ad: 80:5a:7b:f3:4b:f5:2c:19:51:0c:5d:39:8c:81:43: 3a:81:c6:af:b2:cb:de:b5:3e:78:3b:cf:00:6c:7d: cd:32:df:0d:68:88:59:c9:de:ea:b5:2d:1f:64:5e: 2a:0d:7a:1b:1d:52:52:66:fa:0d:2c:40:ca:26:96: fc:d7:ed:90:78:dd:b8:6a:85:7d:14:5c:2a:a5:22: dc:58:d1:a3:cd:c6:88:8d:5c:73:7f:0e:6d:00:c8: 96:a5:9d:85:0c:b9:46:0f:8c:0b:ee:25:27:01:17: 08:75:3a:db:7c:8c:2f:bb:d0:3e:80:1b:fb:38:41: a7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BD:13:49:8C:CF:0A:17:23:1D:F9:9F:84:F7:68:0D:F6:57:48:F8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/JL0TSYzPChcjHfmfhPdoDfZXSPg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.15.0/24 Signature Algorithm: sha256WithRSAEncryption 20:66:b6:56:60:d8:90:ce:1a:d9:08:69:99:f1:07:59:26:a3: e5:37:6c:8a:8d:75:cf:6c:87:b8:20:03:76:0e:4b:f5:e3:94: 20:b0:0a:02:2e:23:1b:7e:a8:47:3c:95:46:49:d9:ba:3b:2c: 71:2b:ec:ff:3b:36:44:6f:7f:f7:96:b0:96:5e:4c:a2:0a:07: bb:2e:67:73:e0:3b:88:3d:9b:a9:7e:e9:c3:dd:6f:e8:b9:c8: ce:ec:65:78:ef:22:c9:c7:a4:e0:a2:8c:fc:15:41:6a:69:95: f8:70:7d:35:6f:cf:96:ef:33:18:ca:24:88:26:3a:c7:27:cf: 4f:3d:44:81:e3:8c:40:76:59:89:29:d1:fe:33:f2:43:51:a5: cb:cc:cd:6e:3d:2c:d6:f1:0c:a6:83:1b:a3:ed:91:f0:38:fe: 45:5d:30:ea:00:5b:7f:7f:a1:ee:5d:81:db:d4:9d:e0:38:b1: 29:2d:c3:43:4f:84:b6:8a:46:23:66:6f:88:e1:e2:81:a6:7c: 6a:b2:6f:27:fe:53:e6:d2:2f:50:35:5f:24:83:a0:ec:73:ba: 08:4b:99:51:47:9c:14:0b:a3:c1:95:08:57:63:f7:af:92:27: b6:e0:89:18:ac:66:f1:77:1f:0c:00:f8:a9:db:bb:95:5e:ca: 24:5f:84:9b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0QkQxMzQ5OENDRjBB MTcyMzFERjk5Rjg0Rjc2ODBERjY1NzQ4RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1KtSumWZgJKxTzrP1xWztUlGRKDU35xxiT4c4p+7Pm78isNn9 ZbAS1no35aPhGIdqYWKQXRLMZ0TPweXGEJQWS0h39tfxL1a0MFG+CqFDSMGOZFuq Cz29qYDEmj3xL9FH73LwhG8rOLUOA5/G7SKNrFTwHSzvQXd/dc4Ia5vNZtM5hXFO rYBae/NL9SwZUQxdOYyBQzqBxq+yy961Png7zwBsfc0y3w1oiFnJ3uq1LR9kXioN ehsdUlJm+g0sQMomlvzX7ZB43bhqhX0UXCqlItxY0aPNxoiNXHN/Dm0AyJalnYUM uUYPjAvuJScBFwh1Ott8jC+70D6AG/s4QaffAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUJL0TSYzPChcjHfmfhPdoDfZXSPgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvSkwwVFNZelBDaGNqSGZtZmhQZG9E ZlpYU1BnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNDzAN BgkqhkiG9w0BAQsFAAOCAQEAIGa2VmDYkM4a2QhpmfEHWSaj5Tdsio11z2yHuCAD dg5L9eOUILAKAi4jG36oRzyVRknZujsscSvs/zs2RG9/95awll5MogoHuy5nc+A7 iD2bqX7pw91v6LnIzuxleO8iycek4KKM/BVBammV+HB9NW/Plu8zGMokiCY6xyfP Tz1EgeOMQHZZiSnR/jPyQ1Gly8zNbj0s1vEMpoMbo+2R8Dj+RV0w6gBbf3+h7l2B 29Sd4DixKS3DQ0+EtopGI2ZviOHigaZ8arJvJ/5T5tIvUDVfJIOg7HO6CEuZUUec FAujwZUIV2P3r5IntuCJGKxm8XcfDAD4qdu7lV7KJF+Emw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org