$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/PzCnumNVNZXhq6ESAvU3928ifTg.roa File: PzCnumNVNZXhq6ESAvU3928ifTg.roa (raw, json) Hash identifier: omDDPmYdjAeCc2thPhEctmLcBCilL+J1HLlop0ZHYFM= Subject key identifier: 3F:30:A7:BA:63:55:35:95:E1:AB:A1:12:02:F5:37:F7:6F:22:7D:38 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EE1 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PzCnumNVNZXhq6ESAvU3928ifTg.roa Signing time: Mon 26 Aug 2024 05:22:17 +0000 ROA not before: Mon 26 Aug 2024 05:22:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3809 (0xee1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3F30A7BA63553595E1ABA11202F537F76F227D38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a2:88:9d:6f:4a:1a:07:a0:03:03:a2:02:ad: 7d:9b:3d:00:be:4b:a5:55:38:9a:83:39:3c:4b:c8: f7:73:9a:b9:c9:93:b2:b8:b6:32:c4:21:df:68:e0: 2e:99:30:dd:86:9e:0c:de:24:78:9c:81:85:93:5e: c8:36:ce:38:ef:46:76:8f:f9:72:18:10:0b:3a:b0: c7:d3:77:da:00:56:81:15:05:82:01:b4:15:a2:51: 34:85:c2:86:ee:b4:18:e3:fa:43:eb:fd:6f:e1:3f: 09:68:b1:21:b7:87:ad:5d:8c:92:6d:05:bd:19:fc: cc:2b:43:c3:71:b8:08:54:d4:19:55:ef:6d:33:a9: 21:2e:c9:ea:c5:ad:59:50:34:5e:32:3c:18:77:91: e7:84:36:90:52:ff:df:09:52:cb:b6:20:e7:2e:5e: d1:8d:68:de:f0:1c:8d:98:8e:cf:41:f2:2c:8c:50: f4:f1:5d:6f:1a:fe:45:5c:80:56:1f:37:fd:b5:de: 59:99:ec:c8:a2:d1:2d:ec:9f:64:3e:cb:b8:64:b8: 6e:72:7e:02:44:bf:6b:f9:b7:c0:58:07:26:c7:28: b9:a6:34:f8:66:6d:b6:da:88:2a:b4:b4:81:84:a6: 2b:f5:c5:0b:3f:f6:ef:b5:91:fe:65:fb:b3:87:b3: 37:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:30:A7:BA:63:55:35:95:E1:AB:A1:12:02:F5:37:F7:6F:22:7D:38 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/PzCnumNVNZXhq6ESAvU3928ifTg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.192.0/19 Signature Algorithm: sha256WithRSAEncryption a9:6a:d6:41:f3:7e:a9:f1:18:3f:ee:a2:4f:87:2d:7c:5d:65: 5b:eb:99:9a:32:72:4d:74:8c:c4:af:bc:c4:ef:3b:78:41:5e: a7:20:1b:d3:24:31:25:8d:f4:00:ee:8d:46:74:85:d8:04:22: 6f:f5:cb:17:57:b1:22:a4:aa:7f:36:2b:8e:a2:bc:11:f0:4d: 66:1e:2b:dc:f5:da:7f:1e:f5:3e:b3:56:9b:1b:03:a6:81:1b: 60:b3:52:79:b7:f5:a8:93:4f:f8:c7:3b:e5:7d:06:a8:01:3a: 7f:bb:da:dd:7b:44:58:1f:38:43:53:d9:ca:2b:d7:fc:c9:69: 1d:96:9e:20:be:1b:a3:7d:f3:9d:91:5d:71:c3:cc:79:4c:b9: fe:0a:a1:17:f9:83:69:61:80:b5:17:01:b8:ba:6b:15:48:7f: 43:d3:ac:dc:de:5f:7f:3c:65:5e:2d:82:3e:a0:59:43:56:0a: fa:69:29:3f:30:a2:08:ea:3e:83:9c:21:66:08:29:c0:cd:40: 51:ef:b7:67:47:ae:eb:e9:d4:58:f4:c8:75:d7:4f:c4:96:39: ab:e5:85:de:74:42:57:0a:6e:1a:a7:a4:60:83:81:82:ee:b1: 2f:5d:c4:58:78:d9:38:a9:7c:86:63:6d:cd:97:82:43:bc:34: ec:d6:2a:fc -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDuEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGMzBBN0JBNjM1NTM1 OTVFMUFCQTExMjAyRjUzN0Y3NkYyMjdEMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6ooidb0oaB6ADA6ICrX2bPQC+S6VVOJqDOTxLyPdzmrnJk7K4 tjLEId9o4C6ZMN2GngzeJHicgYWTXsg2zjjvRnaP+XIYEAs6sMfTd9oAVoEVBYIB tBWiUTSFwobutBjj+kPr/W/hPwlosSG3h61djJJtBb0Z/MwrQ8NxuAhU1BlV720z qSEuyerFrVlQNF4yPBh3keeENpBS/98JUsu2IOcuXtGNaN7wHI2Yjs9B8iyMUPTx XW8a/kVcgFYfN/213lmZ7Mii0S3sn2Q+y7hkuG5yfgJEv2v5t8BYBybHKLmmNPhm bbbaiCq0tIGEpiv1xQs/9u+1kf5l+7OHszc3AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUPzCnumNVNZXhq6ESAvU3928ifTgwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUHpDbnVtTlZOWlhocTZFU0F2VTM5 MjhpZlRnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBcBIwDAN BgkqhkiG9w0BAQsFAAOCAQEAqWrWQfN+qfEYP+6iT4ctfF1lW+uZmjJyTXSMxK+8 xO87eEFepyAb0yQxJY30AO6NRnSF2AQib/XLF1exIqSqfzYrjqK8EfBNZh4r3PXa fx71PrNWmxsDpoEbYLNSebf1qJNP+Mc75X0GqAE6f7va3XtEWB84Q1PZyivX/Mlp HZaeIL4bo33znZFdccPMeUy5/gqhF/mDaWGAtRcBuLprFUh/Q9Os3N5ffzxlXi2C PqBZQ1YK+mkpPzCiCOo+g5whZggpwM1AUe+3Z0eu6+nUWPTIdddPxJY5q+WF3nRC VwpuGqekYIOBgu6xL13EWHjZOKl8hmNtzZeCQ7w07NYq/A== -----END CERTIFICATE-----Generated at Fri Nov 22 20:34:43 2024 by rpki-client on console-ams.rpki-client.org