$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wn1YElWCGXQhZQjbb-NiGXZ3oPE.roa File: Wn1YElWCGXQhZQjbb-NiGXZ3oPE.roa (raw, json) Hash identifier: nc4Ls+3UMFs9W6qOk5YSvYfJx0OXoVmw1MY0532mWyo= Subject key identifier: 5A:7D:58:12:55:82:19:74:21:65:08:DB:6F:E3:62:19:76:77:A0:F1 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EE2 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wn1YElWCGXQhZQjbb-NiGXZ3oPE.roa Signing time: Mon 26 Aug 2024 05:22:29 +0000 ROA not before: Mon 26 Aug 2024 05:22:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 192.72.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3810 (0xee2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5A7D581255821974216508DB6FE362197677A0F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9d:d6:ec:91:f1:74:24:e1:b1:55:1c:f5:dd: 9f:71:13:f1:7d:0c:c4:d3:8e:ad:27:ad:00:8d:d7: e5:5d:bb:f7:33:cf:25:bf:18:c0:44:77:67:96:23: fa:66:8c:21:14:78:b3:6f:d8:4a:ee:f0:c4:d4:2c: d3:6c:e2:44:37:50:9d:f9:e1:be:42:6c:6f:fd:92: 6a:a1:46:d5:eb:db:9a:89:06:36:31:af:c1:2d:db: af:2f:dd:60:8b:47:ae:21:81:9e:c8:12:8d:6b:de: 35:da:ea:ba:43:55:5c:84:b8:7d:b6:ed:93:ad:6b: 58:9f:8b:57:c6:5f:2b:f4:23:17:ae:90:a0:c0:a6: 6a:1e:5b:8e:21:f6:06:a9:24:7b:dc:40:71:03:e0: b2:ba:fc:d9:b0:83:5a:55:da:10:66:f5:dd:7f:3a: 4c:77:24:12:8a:6b:7b:1e:2c:dc:cd:8b:07:99:8c: fc:21:09:a4:9d:b4:71:d2:96:3e:de:b8:15:3a:31: cf:5c:4e:bd:4d:09:bf:72:34:f4:6b:f9:14:3f:21: d3:bc:0f:c4:d1:6f:d5:a5:aa:58:ef:64:86:ed:00: 20:c5:ad:33:f5:4e:eb:21:94:b3:d6:f7:60:62:ed: c9:d1:a7:d4:74:b0:ce:55:ad:14:68:36:32:11:fd: 6d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:7D:58:12:55:82:19:74:21:65:08:DB:6F:E3:62:19:76:77:A0:F1 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Wn1YElWCGXQhZQjbb-NiGXZ3oPE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.240.0/21 Signature Algorithm: sha256WithRSAEncryption 86:f3:d9:c8:61:c4:7c:36:fe:08:c1:f2:8e:8b:b1:58:09:be: 1c:ad:36:5f:46:5d:03:7c:5b:df:ff:7f:6e:b8:28:44:73:32: c6:0b:b6:dc:18:a1:35:ad:81:64:ef:cb:8b:99:90:19:5a:c2: d9:c6:8c:8b:01:8c:0b:0e:ad:b7:e9:17:8e:53:20:af:4a:50: a8:40:be:43:f8:83:34:99:8f:8b:7e:ec:4a:71:ac:3f:01:b0: bd:1b:da:1a:38:32:a3:45:56:fe:b6:ea:fc:f3:e1:6a:3c:39: 3d:f3:9c:77:9b:61:ea:62:27:79:db:45:87:67:6b:5c:a7:6d: 92:35:1b:f9:3f:8d:7e:0b:c3:75:1d:f4:13:51:30:14:d7:18: 6c:10:20:42:0b:8c:0c:53:79:68:a1:33:2a:3d:c5:57:04:21: 57:d9:d9:fc:e9:c6:5e:bd:76:e5:87:6d:6b:ca:5e:53:e8:8f: a7:07:c8:e5:c9:a6:c2:03:c5:35:25:15:6e:07:b0:51:92:7e: 9c:8d:98:67:bc:e2:b4:2c:e8:20:78:59:19:80:a4:9d:1b:13: 28:f0:1a:7e:5f:f2:f4:30:33:45:72:2d:8a:c0:25:f4:6d:13: 4e:55:dd:ef:54:76:a7:23:5a:09:45:0e:04:51:10:a4:7d:05: 0a:eb:89:12 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDuIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVBN0Q1ODEyNTU4MjE5 NzQyMTY1MDhEQjZGRTM2MjE5NzY3N0EwRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAndbskfF0JOGxVRz13Z9xE/F9DMTTjq0nrQCN1+Vdu/czzyW/ GMBEd2eWI/pmjCEUeLNv2Eru8MTULNNs4kQ3UJ354b5CbG/9kmqhRtXr25qJBjYx r8Et268v3WCLR64hgZ7IEo1r3jXa6rpDVVyEuH227ZOta1ifi1fGXyv0IxeukKDA pmoeW44h9gapJHvcQHED4LK6/Nmwg1pV2hBm9d1/Okx3JBKKa3seLNzNiweZjPwh CaSdtHHSlj7euBU6Mc9cTr1NCb9yNPRr+RQ/IdO8D8TRb9WlqljvZIbtACDFrTP1 TushlLPW92Bi7cnRp9R0sM5VrRRoNjIR/W07AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUWn1YElWCGXQhZQjbb+NiGXZ3oPEwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvV24xWUVsV0NHWFFoWlFqYmItTmlH WFozb1BFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA8BI8DAN BgkqhkiG9w0BAQsFAAOCAQEAhvPZyGHEfDb+CMHyjouxWAm+HK02X0ZdA3xb3/9/ brgoRHMyxgu23BihNa2BZO/Li5mQGVrC2caMiwGMCw6tt+kXjlMgr0pQqEC+Q/iD NJmPi37sSnGsPwGwvRvaGjgyo0VW/rbq/PPhajw5PfOcd5th6mInedtFh2drXKdt kjUb+T+NfgvDdR30E1EwFNcYbBAgQguMDFN5aKEzKj3FVwQhV9nZ/OnGXr125Ydt a8peU+iPpwfI5cmmwgPFNSUVbgewUZJ+nI2YZ7zitCzoIHhZGYCknRsTKPAafl/y 9DAzRXItisAl9G0TTlXd71R2pyNaCUUOBFEQpH0FCuuJEg== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:41 2024 by rpki-client on console-fra.rpki-client.org