$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/MQoXn0nVo8pXl-X4RbicEnDbEuQ.roa File: MQoXn0nVo8pXl-X4RbicEnDbEuQ.roa (raw, json) Hash identifier: M7LX7SqpYfna2TuRb00eHTbRsMqFRl8a3xVH64RHJJ8= Subject key identifier: 31:0A:17:9F:49:D5:A3:CA:57:97:E5:F8:45:B8:9C:12:70:DB:12:E4 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16DD Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MQoXn0nVo8pXl-X4RbicEnDbEuQ.roa Signing time: Mon 26 Aug 2024 05:22:42 +0000 ROA not before: Mon 26 Aug 2024 05:22:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.205.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5853 (0x16dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=310A179F49D5A3CA5797E5F845B89C1270DB12E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:3c:d5:82:19:7e:27:be:a4:40:c7:37:1f:3e: a4:cc:64:a4:4f:8d:f8:1d:97:38:4d:60:af:56:1f: 23:61:dd:a5:cf:cd:fd:27:d2:b5:e4:1c:fd:ef:3b: 23:73:5d:36:03:ce:41:64:2f:78:f1:9a:47:54:e8: 1b:6c:de:e2:6b:6e:9a:45:87:43:29:e6:e2:48:ec: 33:9a:47:27:58:2d:d4:3d:d2:63:a1:42:43:32:d6: 87:ed:57:b5:2d:6d:8a:1a:ab:15:50:16:77:b8:47: 70:e4:17:f5:6b:9f:c7:ad:d3:69:41:6b:28:25:11: 4b:fb:ed:90:60:c5:e0:34:17:99:2f:20:cc:03:c7: bd:91:45:e1:cb:e8:8e:5b:be:28:11:39:0a:10:44: 71:69:8e:8f:64:4b:7c:84:eb:85:45:de:40:48:ad: c1:ea:9a:e4:fb:1a:15:dc:40:71:c6:fa:11:55:29: 6c:33:d1:54:61:57:8b:64:8c:27:c3:83:e8:cd:9a: 32:9f:54:05:66:f0:2c:5e:93:8f:5d:05:d2:8e:14: b3:5e:b5:31:6b:55:1d:9f:59:4d:3d:f5:52:97:3c: 14:79:4b:e7:3b:1b:f5:22:ca:6b:f8:14:b2:e3:55: 3c:da:89:98:d2:5e:00:96:b4:33:4e:b5:5a:bb:8e: 2a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0A:17:9F:49:D5:A3:CA:57:97:E5:F8:45:B8:9C:12:70:DB:12:E4 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/MQoXn0nVo8pXl-X4RbicEnDbEuQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.32.0/19 Signature Algorithm: sha256WithRSAEncryption 60:4f:b9:c8:be:06:1e:73:c0:cf:50:94:87:69:f1:3c:81:65: de:ba:11:af:ef:3a:06:a8:53:e7:25:29:b0:41:63:73:5d:05: 01:66:9c:eb:ee:c7:b9:57:25:f5:a8:55:71:aa:ae:71:5b:a6: 60:75:db:1d:6a:af:f3:17:27:2b:92:85:dd:b4:80:83:0e:74: 93:8a:44:3e:35:76:f5:ae:f3:f1:ca:bf:51:4c:f3:b0:f2:61: 09:1e:d2:90:40:76:11:33:12:0e:15:42:84:a2:70:a9:55:64: 5e:d8:31:b1:67:c9:45:a5:d6:a4:e8:f4:4a:28:c3:cb:fe:23: d3:c7:4f:57:bb:45:e9:98:15:f9:41:66:18:cb:3e:26:d2:3f: 5b:b4:05:57:4a:3a:06:50:be:99:7b:2c:e6:9c:0c:42:3e:75: 01:6e:e8:79:b6:10:a0:8d:9a:aa:6c:2e:9c:13:85:2e:b5:d2: 92:82:24:20:96:22:ee:1a:7f:86:12:37:fd:61:5d:13:83:c7: 64:30:7a:25:26:95:61:1e:8e:b5:de:5c:b7:3a:59:ec:0a:70: 84:04:f7:09:5b:be:a1:0a:c8:22:17:51:9c:8f:88:5b:97:cf: 86:cd:d9:df:07:30:f5:53:19:95:26:f7:38:b7:b4:91:65:8e: 83:c0:aa:a2 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxMEExNzlGNDlENUEz Q0E1Nzk3RTVGODQ1Qjg5QzEyNzBEQjEyRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIPNWCGX4nvqRAxzcfPqTMZKRPjfgdlzhNYK9WHyNh3aXPzf0n 0rXkHP3vOyNzXTYDzkFkL3jxmkdU6Bts3uJrbppFh0Mp5uJI7DOaRydYLdQ90mOh QkMy1oftV7UtbYoaqxVQFne4R3DkF/Vrn8et02lBayglEUv77ZBgxeA0F5kvIMwD x72RReHL6I5bvigROQoQRHFpjo9kS3yE64VF3kBIrcHqmuT7GhXcQHHG+hFVKWwz 0VRhV4tkjCfDg+jNmjKfVAVm8Cxek49dBdKOFLNetTFrVR2fWU099VKXPBR5S+c7 G/Uiymv4FLLjVTzaiZjSXgCWtDNOtVq7jipbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUMQoXn0nVo8pXl+X4RbicEnDbEuQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvTVFvWG4wblZvOHBYbC1YNFJiaWNF bkRiRXVRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBXvNIDAN BgkqhkiG9w0BAQsFAAOCAQEAYE+5yL4GHnPAz1CUh2nxPIFl3roRr+86BqhT5yUp sEFjc10FAWac6+7HuVcl9ahVcaqucVumYHXbHWqv8xcnK5KF3bSAgw50k4pEPjV2 9a7z8cq/UUzzsPJhCR7SkEB2ETMSDhVChKJwqVVkXtgxsWfJRaXWpOj0SijDy/4j 08dPV7tF6ZgV+UFmGMs+JtI/W7QFV0o6BlC+mXss5pwMQj51AW7oebYQoI2aqmwu nBOFLrXSkoIkIJYi7hp/hhI3/WFdE4PHZDB6JSaVYR6Otd5ctzpZ7ApwhAT3CVu+ oQrIIhdRnI+IW5fPhs3Z3wcw9VMZlSb3OLe0kWWOg8Cqog== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:41 2024 by rpki-client on console-fra.rpki-client.org