$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/KmTayuH13oeGwcbiE-XDcaxdwKw.roa File: KmTayuH13oeGwcbiE-XDcaxdwKw.roa (raw, json) Hash identifier: HezlPeJ7qLE+eZ7oTay5QHyHavlp2rw3Q6oUiBr66ss= Subject key identifier: 2A:64:DA:CA:E1:F5:DE:87:86:C1:C6:E2:13:E5:C3:71:AC:5D:C0:AC Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EDC Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KmTayuH13oeGwcbiE-XDcaxdwKw.roa Signing time: Mon 26 Aug 2024 05:22:07 +0000 ROA not before: Mon 26 Aug 2024 05:22:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 192.72.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3804 (0xedc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2A64DACAE1F5DE8786C1C6E213E5C371AC5DC0AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:64:63:42:80:c1:0f:28:f0:d3:d7:54:e9:87: 4d:a0:8c:ce:62:a6:63:1b:60:39:5d:be:2d:0b:07: 17:83:ad:98:66:c9:f0:bb:39:97:48:32:09:16:e9: a1:51:fa:cc:ad:a1:6e:2f:f1:cc:d6:1b:81:da:6f: 0a:bd:c1:24:3d:d6:db:b6:06:66:7a:a7:38:2a:90: f4:9d:26:82:37:53:bb:98:50:3b:02:79:f4:48:43: da:1f:42:a7:cd:af:6d:5f:af:19:52:18:c7:e3:38: 54:f9:de:d2:e9:c2:2a:5c:68:07:3b:c2:0c:07:19: 0e:d1:1d:9b:21:57:db:70:0b:0a:16:bf:a7:37:af: 18:dc:a6:83:04:ce:63:99:ef:eb:93:5c:a7:9b:c0: 26:8f:8d:6e:b6:37:65:34:99:5e:7b:c7:1e:b6:06: 1c:8b:f6:fd:78:6f:93:80:9e:1c:e9:4f:42:ed:1f: 14:29:a6:61:be:df:f4:9f:8e:dc:f3:99:aa:60:35: 06:1d:60:eb:28:ad:4f:d2:06:6e:79:96:61:42:7a: 4e:40:10:9d:5b:6c:20:90:f8:12:d2:b3:12:28:b5: fc:34:24:e2:14:53:9d:2f:f8:3a:da:53:c8:59:4c: 90:19:65:0a:0a:b5:e2:cf:4e:07:1f:62:57:54:7e: 88:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:64:DA:CA:E1:F5:DE:87:86:C1:C6:E2:13:E5:C3:71:AC:5D:C0:AC X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/KmTayuH13oeGwcbiE-XDcaxdwKw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.252.0/24 Signature Algorithm: sha256WithRSAEncryption 68:a9:2d:ed:13:3d:a6:1f:3a:e6:2c:17:2c:51:4d:bb:c8:d2: 2d:92:3d:92:99:60:d6:d1:17:2c:bf:9a:a2:96:e7:5e:fe:6b: 4b:bc:b3:84:f0:ec:d0:98:a5:27:0d:50:49:0b:58:f8:d9:fd: f3:c1:29:c3:9d:b2:be:75:1b:e5:26:3e:40:df:8c:06:fe:fe: 71:8e:55:ec:25:36:a0:ce:da:9e:ba:d5:ed:fe:20:07:99:ff: e7:60:f8:e3:9e:56:d9:af:05:09:29:41:e0:87:1f:f5:9a:f2: ab:22:83:8b:bb:0f:aa:23:09:7e:39:ef:2b:a4:32:99:3d:f9: 70:8b:64:95:28:e7:e8:d2:ee:c9:29:33:4b:22:cf:60:b3:e9: 40:80:4f:05:03:a1:25:b7:ef:52:63:70:b7:4e:df:1e:74:dd: ec:a2:fb:5d:95:b0:86:0c:30:f7:7d:be:82:de:fe:d7:57:af: 92:cf:7b:a9:f9:28:8e:93:32:3e:60:e7:7c:ef:86:96:c8:5e: 67:b7:d5:90:7d:0a:77:52:b7:a4:83:8a:a6:13:72:c1:30:ce: c9:57:77:42:f9:3d:70:f5:1a:6a:45:27:66:59:87:21:a2:0d: b8:52:90:9d:40:d9:5c:b3:00:e4:7d:2e:9f:e7:ff:2b:94:17: b5:df:74:29 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBNjREQUNBRTFGNURF ODc4NkMxQzZFMjEzRTVDMzcxQUM1REMwQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvZGNCgMEPKPDT11Tph02gjM5ipmMbYDldvi0LBxeDrZhmyfC7 OZdIMgkW6aFR+sytoW4v8czWG4Habwq9wSQ91tu2BmZ6pzgqkPSdJoI3U7uYUDsC efRIQ9ofQqfNr21frxlSGMfjOFT53tLpwipcaAc7wgwHGQ7RHZshV9twCwoWv6c3 rxjcpoMEzmOZ7+uTXKebwCaPjW62N2U0mV57xx62BhyL9v14b5OAnhzpT0LtHxQp pmG+3/SfjtzzmapgNQYdYOsorU/SBm55lmFCek5AEJ1bbCCQ+BLSsxIotfw0JOIU U50v+DraU8hZTJAZZQoKteLPTgcfYldUfojhAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUKmTayuH13oeGwcbiE+XDcaxdwKwwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvS21UYXl1SDEzb2VHd2NiaUUtWERj YXhkd0t3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN BgkqhkiG9w0BAQsFAAOCAQEAaKkt7RM9ph865iwXLFFNu8jSLZI9kplg1tEXLL+a opbnXv5rS7yzhPDs0JilJw1QSQtY+Nn988Epw52yvnUb5SY+QN+MBv7+cY5V7CU2 oM7anrrV7f4gB5n/52D4455W2a8FCSlB4Icf9ZryqyKDi7sPqiMJfjnvK6QymT35 cItklSjn6NLuySkzSyLPYLPpQIBPBQOhJbfvUmNwt07fHnTd7KL7XZWwhgww932+ gt7+11evks97qfkojpMyPmDnfO+GlsheZ7fVkH0Kd1K3pIOKphNywTDOyVd3Qvk9 cPUaakUnZlmHIaINuFKQnUDZXLMA5H0un+f/K5QXtd90KQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org