$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/M0qhLFdjBfq60_sNoiskJNggLmw.roa File: M0qhLFdjBfq60_sNoiskJNggLmw.roa (raw, json) Hash identifier: Fb3eWy2twgjqyFQoGIGufn2Wt3qspZfmICYdrADaVhE= Subject key identifier: 33:4A:A1:2C:57:63:05:FA:BA:D3:FB:0D:A2:2B:24:24:D8:20:2E:6C Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1676 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M0qhLFdjBfq60_sNoiskJNggLmw.roa Signing time: Mon 26 Aug 2024 05:22:14 +0000 ROA not before: Mon 26 Aug 2024 05:22:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 203.67.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5750 (0x1676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=334AA12C576305FABAD3FB0DA22B2424D8202E6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:dc:77:27:d9:e8:19:0b:fa:c8:dc:77:a6:2f: 92:83:97:98:b4:93:1f:bd:0b:9e:89:15:02:1b:0e: 84:6b:7f:07:59:dc:84:46:d9:ff:9a:cd:4c:aa:0b: 9a:0a:b7:3b:49:37:1a:6d:f9:2f:c2:f3:ed:b2:9f: 48:c7:5f:fb:79:63:61:7b:46:05:a8:26:33:e0:8f: 80:cf:f3:8a:04:cb:1a:ae:3f:c4:3d:64:e4:09:f9: e1:49:da:42:5e:9a:21:4a:22:23:0f:5b:13:1c:a3: dd:6c:22:10:39:32:b5:a5:4c:ff:c0:fe:a2:d4:ba: c7:0d:22:fe:b5:3e:88:a3:0f:7f:a2:bd:a6:ac:af: 8e:8e:2d:8a:f8:55:d3:cc:8a:cf:00:3e:95:d4:d3: f1:5f:5f:d0:bf:c7:ac:b4:d3:03:4c:f7:2d:a0:86: ea:8a:03:62:64:2d:ba:68:90:eb:ce:f6:95:bc:87: 21:a1:e2:10:6e:a2:64:3c:ab:47:ba:67:4b:5a:31: 38:ad:8f:61:45:9a:d8:ca:99:93:da:c5:f8:13:0f: b1:44:df:a2:90:bb:cc:c4:a3:61:48:86:22:71:32: 25:2e:3a:ce:7d:3a:7f:86:15:03:37:39:b9:3c:15: ba:a8:44:12:89:da:69:9e:61:ec:46:10:59:3e:73: 6c:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:4A:A1:2C:57:63:05:FA:BA:D3:FB:0D:A2:2B:24:24:D8:20:2E:6C X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/M0qhLFdjBfq60_sNoiskJNggLmw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.67.0.0/16 Signature Algorithm: sha256WithRSAEncryption ad:ba:63:36:08:51:97:96:8f:ad:f7:79:69:f7:0a:2b:9e:78: 5f:39:57:5a:17:d0:fb:0c:3e:f5:21:f6:1e:61:5a:63:33:7c: 82:23:3f:39:9b:21:eb:2a:41:a4:a7:f0:3f:6e:5f:39:93:00: ef:b8:92:c4:cf:4a:4c:53:1d:9e:d6:7c:ce:f2:c4:2e:9d:10: 6f:17:07:19:05:2c:e8:79:46:9c:69:32:06:c1:db:72:cb:c6: 7a:3a:fa:45:fb:a1:b6:b5:0d:84:09:4a:f3:85:71:fe:7e:39: c5:f6:fa:0e:1c:30:a7:7b:57:02:7f:47:0a:0a:ce:fd:3f:ce: 8b:00:30:f1:ef:4c:a5:04:b0:e5:35:b5:d0:6c:38:73:4e:38: 24:21:2c:55:63:ca:c3:99:3b:62:e8:64:da:31:14:9a:b6:22: 0d:3d:b7:90:e0:e4:ca:57:8d:a8:d6:4f:d8:c0:65:4c:9c:25: 58:c2:d4:13:10:e9:7a:41:45:24:98:d9:8d:39:29:35:13:4f: 9d:29:2a:f3:15:f8:27:2b:b8:a2:33:00:17:f2:91:c6:68:22: 14:6c:54:84:f5:61:9e:9e:df:68:25:3b:8e:fc:b8:83:2b:c8: da:94:5c:a4:b7:b2:6c:85:4d:3a:ed:67:56:bb:5c:3a:fb:9e: 63:bf:c9:3a -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFnYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzNEFBMTJDNTc2MzA1 RkFCQUQzRkIwREEyMkIyNDI0RDgyMDJFNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo3Hcn2egZC/rI3HemL5KDl5i0kx+9C56JFQIbDoRrfwdZ3IRG 2f+azUyqC5oKtztJNxpt+S/C8+2yn0jHX/t5Y2F7RgWoJjPgj4DP84oEyxquP8Q9 ZOQJ+eFJ2kJemiFKIiMPWxMco91sIhA5MrWlTP/A/qLUuscNIv61PoijD3+ivaas r46OLYr4VdPMis8APpXU0/FfX9C/x6y00wNM9y2ghuqKA2JkLbpokOvO9pW8hyGh 4hBuomQ8q0e6Z0taMTitj2FFmtjKmZPaxfgTD7FE36KQu8zEo2FIhiJxMiUuOs59 On+GFQM3Obk8FbqoRBKJ2mmeYexGEFk+c2wZAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUM0qhLFdjBfq60/sNoiskJNggLmwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTTBxaExGZGpCZnE2MF9zTm9pc2tK TmdnTG13LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtDMA0G CSqGSIb3DQEBCwUAA4IBAQCtumM2CFGXlo+t93lp9wornnhfOVdaF9D7DD71IfYe YVpjM3yCIz85myHrKkGkp/A/bl85kwDvuJLEz0pMUx2e1nzO8sQunRBvFwcZBSzo eUacaTIGwdtyy8Z6OvpF+6G2tQ2ECUrzhXH+fjnF9voOHDCne1cCf0cKCs79P86L ADDx70ylBLDlNbXQbDhzTjgkISxVY8rDmTti6GTaMRSatiINPbeQ4OTKV42o1k/Y wGVMnCVYwtQTEOl6QUUkmNmNOSk1E0+dKSrzFfgnK7iiMwAX8pHGaCIUbFSE9WGe nt9oJTuO/LiDK8jalFykt7JshU067WdWu1w6+55jv8k6 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org