$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/UMY-L-RUcsU1nXGfEM_wHbS27QE.roa File: UMY-L-RUcsU1nXGfEM_wHbS27QE.roa (raw, json) Hash identifier: hBaILKOsq7KwQzJoEW+IvkE1brnRJI+XqjOa0dDGy2g= Subject key identifier: 50:C6:3E:2F:E4:54:72:C5:35:9D:71:9F:10:CF:F0:1D:B4:B6:ED:01 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16F1 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UMY-L-RUcsU1nXGfEM_wHbS27QE.roa Signing time: Mon 26 Aug 2024 05:22:49 +0000 ROA not before: Mon 26 Aug 2024 05:22:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.205.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5873 (0x16f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=50C63E2FE45472C5359D719F10CFF01DB4B6ED01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a8:7c:2c:39:6f:6b:7c:1a:13:70:c0:8f:68: 29:47:e2:a3:63:2e:21:18:1b:7c:7b:bb:b3:3c:83: 84:f7:75:94:ff:6b:c2:3e:b1:c9:51:ad:a5:cc:d9: 7f:95:6c:a4:05:7d:e4:30:c6:d5:32:e8:1f:2d:bb: f0:80:3a:d8:5b:08:f4:05:40:d0:8b:6f:ad:83:72: 66:4e:94:6d:30:b8:08:ad:a6:dc:6c:d6:0c:58:47: 1c:4b:dc:d5:aa:20:97:aa:39:a4:c8:d3:59:0e:1a: c5:15:1c:06:c2:a6:5e:68:ba:ad:ad:e1:b2:b5:88: 83:a1:b2:16:70:a3:f1:2b:74:63:6c:51:b9:80:2b: 99:fe:49:dc:4d:bc:df:a6:bd:8d:47:08:eb:95:3b: 79:5e:c7:b1:ae:14:e4:8a:4c:ef:12:4b:40:f6:5b: 18:47:6f:d9:ce:02:82:6c:84:66:ba:a3:84:75:7e: dc:c8:32:2b:93:bd:55:00:c5:40:02:38:43:28:cb: d1:77:53:73:7f:17:cf:14:67:8a:c6:e5:a9:58:3f: 2a:52:2d:ae:1c:29:0e:b5:da:65:79:e5:ea:00:d3: d3:23:f6:c8:35:b7:e4:57:88:f1:cf:a9:6f:35:02: 54:c0:1b:4e:65:a2:b0:b8:00:eb:6a:04:6d:5a:8b: ff:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:C6:3E:2F:E4:54:72:C5:35:9D:71:9F:10:CF:F0:1D:B4:B6:ED:01 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/UMY-L-RUcsU1nXGfEM_wHbS27QE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.76.0/24 Signature Algorithm: sha256WithRSAEncryption 94:a8:f9:b3:c6:0d:9a:f6:8c:c9:7e:e2:84:bf:fc:62:24:40: 1a:ab:91:9e:9d:1d:51:24:31:4d:37:7f:31:4b:85:d4:57:3b: e8:d1:f2:cf:85:a4:96:bd:6c:a0:35:46:08:fe:32:51:12:c5: d1:e2:1a:bf:cb:d7:a8:b9:c2:b8:2a:84:29:31:da:cb:17:4c: a2:3b:ab:ca:d8:60:3c:9e:f4:12:7e:71:ec:00:2b:17:fd:64: 69:5b:ed:58:ec:40:d8:e9:0f:f9:fa:92:da:58:60:49:e1:68: 63:10:1d:3b:07:f8:52:fb:2e:df:8a:9e:d2:f9:43:16:5e:49: 47:86:67:b9:54:ee:78:7d:20:0f:cb:6d:55:01:3c:b0:3e:3b: fb:e0:09:98:71:5f:4f:21:9e:61:ed:a8:08:4a:8e:5e:82:3a: 89:3c:c3:00:f4:68:0d:64:78:6a:a6:4c:47:6f:25:c7:4b:06: 52:0e:d4:30:cc:04:95:7b:9d:7b:cc:e0:35:f5:26:81:8e:80: 3e:80:db:b0:a3:a7:7f:9a:62:54:8b:08:ec:22:81:20:5f:45: f5:81:0c:5f:db:82:36:47:91:24:90:91:5f:02:7a:58:39:34: 34:f2:4f:2c:0b:c1:bd:4a:48:23:c2:1d:28:bb:7d:e1:a2:b0: 22:92:10:9d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFvEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwQzYzRTJGRTQ1NDcy QzUzNTlENzE5RjEwQ0ZGMDFEQjRCNkVEMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSqHwsOW9rfBoTcMCPaClH4qNjLiEYG3x7u7M8g4T3dZT/a8I+ sclRraXM2X+VbKQFfeQwxtUy6B8tu/CAOthbCPQFQNCLb62DcmZOlG0wuAitptxs 1gxYRxxL3NWqIJeqOaTI01kOGsUVHAbCpl5ouq2t4bK1iIOhshZwo/ErdGNsUbmA K5n+SdxNvN+mvY1HCOuVO3lex7GuFOSKTO8SS0D2WxhHb9nOAoJshGa6o4R1ftzI MiuTvVUAxUACOEMoy9F3U3N/F88UZ4rG5alYPypSLa4cKQ612mV55eoA09Mj9sg1 t+RXiPHPqW81AlTAG05lorC4AOtqBG1ai/9pAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUUMY+L+RUcsU1nXGfEM/wHbS27QEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvVU1ZLUwtUlVjc1UxblhHZkVNX3dI YlMyN1FFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNTDAN BgkqhkiG9w0BAQsFAAOCAQEAlKj5s8YNmvaMyX7ihL/8YiRAGquRnp0dUSQxTTd/ MUuF1Fc76NHyz4Wklr1soDVGCP4yURLF0eIav8vXqLnCuCqEKTHayxdMojurythg PJ70En5x7AArF/1kaVvtWOxA2OkP+fqS2lhgSeFoYxAdOwf4Uvsu34qe0vlDFl5J R4ZnuVTueH0gD8ttVQE8sD47++AJmHFfTyGeYe2oCEqOXoI6iTzDAPRoDWR4aqZM R28lx0sGUg7UMMwElXude8zgNfUmgY6APoDbsKOnf5piVIsI7CKBIF9F9YEMX9uC NkeRJJCRXwJ6WDk0NPJPLAvBvUpII8IdKLt94aKwIpIQnQ== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:41 2024 by rpki-client on console-fra.rpki-client.org