$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/SLOAUQOOekQRO_cDjfs2lEcfDxc.roa File: SLOAUQOOekQRO_cDjfs2lEcfDxc.roa (raw, json) Hash identifier: WWpLz6TwPH26d7napnKLxvsWRdDnybtKeqW88XDFNfY= Subject key identifier: 48:B3:80:51:03:8E:7A:44:11:3B:F7:03:8D:FB:36:94:47:1F:0F:17 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EDB Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SLOAUQOOekQRO_cDjfs2lEcfDxc.roa Signing time: Mon 26 Aug 2024 05:22:05 +0000 ROA not before: Mon 26 Aug 2024 05:22:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 192.72.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3803 (0xedb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=48B38051038E7A44113BF7038DFB3694471F0F17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0a:f0:99:cc:d3:6d:0d:fd:37:c8:77:2d:34: a9:fe:73:ba:b7:93:83:70:24:1b:b2:28:f5:5e:a7: b9:ff:a9:a7:45:b8:6c:12:c0:55:7a:ae:44:f8:9b: a7:bb:59:c8:9e:8b:4b:e7:fd:17:31:1e:e7:87:9a: e5:2b:2f:66:1d:20:d3:91:3d:af:7b:a8:61:58:86: 0e:71:52:d0:4a:7a:b6:cc:42:f9:51:dc:c4:b4:dd: 7b:55:89:e8:e7:62:3e:63:61:ed:1a:74:dc:73:17: 05:5a:69:33:61:7f:9e:c2:94:01:66:d9:04:58:8b: 8b:1e:38:8d:f5:7c:0b:0e:f2:6c:bb:eb:9b:29:99: 9e:50:0f:08:4f:6e:92:09:43:fc:9e:0b:42:32:04: a6:d6:09:13:3e:13:06:f8:17:44:14:77:8c:91:aa: e6:91:9b:80:4e:e7:85:20:60:5b:5f:a3:16:c0:80: 2f:84:a3:04:75:6e:7c:50:ed:87:a9:e1:94:36:7b: 3c:fa:28:4e:4c:51:f3:33:b0:67:aa:16:dd:71:92: 98:71:48:9d:0a:ba:e1:27:16:eb:89:67:8a:d3:6b: 04:2e:ce:22:c9:05:75:2f:18:3a:d2:26:99:76:4e: fe:ac:7b:9c:8d:f8:12:29:ee:c2:7f:95:f2:86:53: 11:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B3:80:51:03:8E:7A:44:11:3B:F7:03:8D:FB:36:94:47:1F:0F:17 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/SLOAUQOOekQRO_cDjfs2lEcfDxc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.224.0/20 Signature Algorithm: sha256WithRSAEncryption 34:6f:8b:eb:ac:6d:8d:14:50:da:7d:fc:c6:f1:cb:95:7d:a6: b8:c4:23:b8:51:4d:dd:1b:f4:07:51:7e:bf:dc:14:61:62:1a: 89:da:a5:ce:0c:dd:5b:df:c1:38:95:01:12:51:f7:3c:4e:ed: 2c:77:40:ab:32:55:0f:c7:29:18:b2:b3:b4:0d:3d:2f:d0:9d: 58:13:c1:63:a1:60:36:7d:64:af:93:fb:fb:63:43:a8:43:59: 67:97:f6:52:b1:1d:d9:62:ce:4b:51:30:6c:d5:39:a3:51:7c: 0d:25:1a:39:19:59:25:c2:83:76:5d:a3:10:36:16:09:02:6d: 19:3b:91:a8:ba:9e:a7:7c:ab:40:b4:1d:c0:47:fa:e2:e1:0f: 37:a2:1a:08:c1:f6:35:94:be:41:f6:f3:fd:5f:d1:6f:e9:1e: a1:a8:44:cf:f3:eb:97:1b:de:b8:75:d0:5e:84:8f:f6:74:cc: f5:27:95:d8:7d:5f:6c:55:8a:6f:c0:a3:32:0e:ff:34:86:90: f8:11:9e:1c:e5:a1:36:c6:a5:ea:0d:f8:69:d3:0b:1f:95:cf: e5:18:fd:8e:c2:75:8e:8c:9b:5b:3e:ba:f2:8b:73:14:1c:28: 4e:4c:f3:69:d5:dd:25:56:3d:b9:58:c5:ac:54:a0:db:11:cd: e0:a8:09:19 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4QjM4MDUxMDM4RTdB NDQxMTNCRjcwMzhERkIzNjk0NDcxRjBGMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpCvCZzNNtDf03yHctNKn+c7q3k4NwJBuyKPVep7n/qadFuGwS wFV6rkT4m6e7Wciei0vn/RcxHueHmuUrL2YdINORPa97qGFYhg5xUtBKerbMQvlR 3MS03XtViejnYj5jYe0adNxzFwVaaTNhf57ClAFm2QRYi4seOI31fAsO8my765sp mZ5QDwhPbpIJQ/yeC0IyBKbWCRM+Ewb4F0QUd4yRquaRm4BO54UgYFtfoxbAgC+E owR1bnxQ7Yep4ZQ2ezz6KE5MUfMzsGeqFt1xkphxSJ0KuuEnFuuJZ4rTawQuziLJ BXUvGDrSJpl2Tv6se5yN+BIp7sJ/lfKGUxFpAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSLOAUQOOekQRO/cDjfs2lEcfDxcwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvU0xPQVVRT09la1FST19jRGpmczJs RWNmRHhjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBI4DAN BgkqhkiG9w0BAQsFAAOCAQEANG+L66xtjRRQ2n38xvHLlX2muMQjuFFN3Rv0B1F+ v9wUYWIaidqlzgzdW9/BOJUBElH3PE7tLHdAqzJVD8cpGLKztA09L9CdWBPBY6Fg Nn1kr5P7+2NDqENZZ5f2UrEd2WLOS1EwbNU5o1F8DSUaORlZJcKDdl2jEDYWCQJt GTuRqLqep3yrQLQdwEf64uEPN6IaCMH2NZS+Qfbz/V/Rb+keoahEz/PrlxveuHXQ XoSP9nTM9SeV2H1fbFWKb8CjMg7/NIaQ+BGeHOWhNsal6g34adMLH5XP5Rj9jsJ1 joybWz668otzFBwoTkzzadXdJVY9uVjFrFSg2xHN4KgJGQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org