$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/TZTPoIte2WVuaUPMUvBPtvb6UlA.roa File: TZTPoIte2WVuaUPMUvBPtvb6UlA.roa (raw, json) Hash identifier: XqGDdn1hYLm0F0BEV2QyP7YO8gt8F5h4wl+onReC/v0= Subject key identifier: 4D:94:CF:A0:8B:5E:D9:65:6E:69:43:CC:52:F0:4F:B6:F6:FA:52:50 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EE6 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TZTPoIte2WVuaUPMUvBPtvb6UlA.roa Signing time: Mon 26 Aug 2024 05:22:34 +0000 ROA not before: Mon 26 Aug 2024 05:22:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3814 (0xee6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4D94CFA08B5ED9656E6943CC52F04FB6F6FA5250 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:5d:61:e7:0b:4d:b9:b8:84:bf:bb:1d:6b:47: 18:db:a4:7a:e2:b4:57:df:ad:17:b8:18:0c:5f:72: 2e:f2:e6:c8:c8:dd:90:48:d0:39:dc:c5:b6:0f:c2: 20:13:97:8a:d9:a0:bd:5a:38:f5:0d:8d:28:bf:f6: 38:0b:b3:e7:5e:4a:6f:b2:bb:98:a3:73:a9:e5:79: 4d:87:e8:97:b5:dc:62:4c:68:66:d6:7b:00:96:71: 0e:3e:58:cb:58:75:5e:f3:9c:5f:77:22:03:c6:fb: b5:ab:a2:13:6c:ba:14:db:80:d3:f2:98:1f:3e:47: ef:db:9b:45:a9:8a:75:20:95:08:51:0d:73:30:3a: d2:20:6e:06:c0:b4:b4:7a:ee:26:29:5e:70:f0:6e: 37:30:37:70:9a:21:40:e9:ce:4b:89:b0:02:20:e0: f5:95:f9:f5:5a:a9:01:50:3a:36:15:4f:35:c4:14: e6:9f:80:ec:5d:de:c9:fd:06:e8:70:d0:41:6a:1f: 60:7b:8f:e4:c0:bf:65:12:c0:11:ff:73:b0:85:5c: de:d6:19:e5:2d:1d:9f:f0:03:00:93:60:7b:aa:b9: a1:ff:36:df:1d:f0:0a:bc:b2:9d:a1:7e:df:af:48: cc:11:c2:b4:3a:ad:ec:5f:27:4c:bd:d1:58:ae:7d: 5f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:94:CF:A0:8B:5E:D9:65:6E:69:43:CC:52:F0:4F:B6:F6:FA:52:50 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/TZTPoIte2WVuaUPMUvBPtvb6UlA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.252.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:b3:a2:91:c0:c7:63:50:a5:fd:71:7b:a3:5b:b2:32:b3:ee: 10:c8:d2:81:3c:27:4f:68:fc:83:c7:52:63:8e:63:94:08:0b: 5e:b1:ce:18:02:f9:45:d4:79:5f:1f:fb:bc:94:81:ab:11:95: a0:0c:e2:5c:ad:f5:6b:6c:3b:f3:b8:0b:24:a0:f3:3c:91:28: 26:fa:a1:75:2f:d9:5b:fc:f2:7d:82:1e:5c:de:71:51:9f:4c: 71:3f:7d:5c:93:87:bc:1f:d1:f8:e7:5e:9a:d6:a7:00:f5:34: 8d:63:ba:f3:80:b8:fc:5f:10:c9:4f:95:de:4f:46:0d:09:5e: 15:98:10:96:fb:aa:29:0f:14:8b:c6:dc:a3:ba:23:42:da:07: aa:4d:00:fa:5a:e3:88:23:f8:a5:8d:c9:95:6b:db:29:b6:86: c2:79:4d:ab:89:0f:6a:a1:7c:aa:a6:ac:06:d8:47:f9:e5:77: 06:f3:76:3f:e5:d1:c1:59:2e:a3:65:72:5f:fe:dd:8b:ef:b2: f8:5b:3e:11:aa:88:37:4a:76:9d:53:34:91:95:70:13:36:5e: 64:22:c4:e7:b9:88:ee:91:62:5a:ac:f2:36:13:63:08:a8:af: 7c:c5:13:14:71:c0:64:d7:32:6a:da:81:d3:76:84:e6:30:3f: 18:de:f3:11 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDuYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREOTRDRkEwOEI1RUQ5 NjU2RTY5NDNDQzUyRjA0RkI2RjZGQTUyNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD0XWHnC025uIS/ux1rRxjbpHritFffrRe4GAxfci7y5sjI3ZBI 0DncxbYPwiATl4rZoL1aOPUNjSi/9jgLs+deSm+yu5ijc6nleU2H6Je13GJMaGbW ewCWcQ4+WMtYdV7znF93IgPG+7WrohNsuhTbgNPymB8+R+/bm0WpinUglQhRDXMw OtIgbgbAtLR67iYpXnDwbjcwN3CaIUDpzkuJsAIg4PWV+fVaqQFQOjYVTzXEFOaf gOxd3sn9Buhw0EFqH2B7j+TAv2USwBH/c7CFXN7WGeUtHZ/wAwCTYHuquaH/Nt8d 8Aq8sp2hft+vSMwRwrQ6rexfJ0y90ViufV/FAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUTZTPoIte2WVuaUPMUvBPtvb6UlAwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVFpUUG9JdGUyV1Z1YVVQTVV2QlB0 dmI2VWxBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAMBI/DAN BgkqhkiG9w0BAQsFAAOCAQEAbbOikcDHY1Cl/XF7o1uyMrPuEMjSgTwnT2j8g8dS Y45jlAgLXrHOGAL5RdR5Xx/7vJSBqxGVoAziXK31a2w787gLJKDzPJEoJvqhdS/Z W/zyfYIeXN5xUZ9McT99XJOHvB/R+OdemtanAPU0jWO684C4/F8QyU+V3k9GDQle FZgQlvuqKQ8Ui8bco7ojQtoHqk0A+lrjiCP4pY3JlWvbKbaGwnlNq4kPaqF8qqas BthH+eV3BvN2P+XRwVkuo2VyX/7di++y+Fs+EaqIN0p2nVM0kZVwEzZeZCLE57mI 7pFiWqzyNhNjCKivfMUTFHHAZNcyatqB03aE5jA/GN7zEQ== -----END CERTIFICATE-----Generated at Fri Nov 22 23:43:00 2024 by rpki-client on console-fra.rpki-client.org