$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zxbw3GulTIFrazJOulB_Qu7geWs.roa File: Zxbw3GulTIFrazJOulB_Qu7geWs.roa (raw, json) Hash identifier: wd5ElWU0Jj8EZlOxIj/OPCUWk7nA2mUHmIBzdkq14zg= Subject key identifier: 67:16:F0:DC:6B:A5:4C:81:6B:6B:32:4E:BA:50:7F:42:EE:E0:79:6B Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16F5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zxbw3GulTIFrazJOulB_Qu7geWs.roa Signing time: Mon 26 Aug 2024 05:22:50 +0000 ROA not before: Mon 26 Aug 2024 05:22:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 203.73.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5877 (0x16f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6716F0DC6BA54C816B6B324EBA507F42EEE0796B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7e:8e:c5:26:34:41:9d:5e:ba:5f:bc:51:41: 4c:2f:a2:85:5d:7b:c4:70:1f:cc:84:e4:05:94:6b: 24:b7:a0:a8:fb:ab:22:df:aa:8e:72:f7:22:76:db: 42:44:a0:1b:b2:94:e0:1a:fa:f6:90:a7:63:ab:4d: 66:6b:8a:5d:41:32:c5:f9:1c:3c:c2:31:91:51:d0: 5f:93:8c:6d:14:c2:8c:9f:e5:86:47:9e:0e:5c:ae: b5:c2:33:31:c1:6c:54:3d:75:0c:fb:42:93:91:95: 4c:f8:53:a6:c5:04:95:f4:f5:f1:47:4e:83:a7:2f: 0e:84:f6:ea:ad:c4:75:62:82:88:4c:a5:1c:a2:c2: 47:0e:66:38:05:a0:73:0e:5b:70:c7:9f:0b:44:4e: c3:3f:f4:fe:35:e0:33:91:b3:91:cf:6c:76:fc:c5: 49:6c:8d:04:68:7a:7f:82:ce:c2:19:81:79:48:e7: b0:0c:09:05:7b:16:80:11:a3:f3:ec:54:9b:c3:3f: 19:b5:6a:38:d1:70:c3:60:05:36:55:d9:69:e3:56: 0d:fe:02:b4:66:30:4b:a8:ef:7f:40:9a:56:75:55: 40:28:1c:df:b2:56:0d:69:30:9d:76:c3:bb:b9:7e: 57:ab:a5:7e:f8:16:ac:a9:3d:07:4d:3f:08:aa:c1: b0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:16:F0:DC:6B:A5:4C:81:6B:6B:32:4E:BA:50:7F:42:EE:E0:79:6B X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Zxbw3GulTIFrazJOulB_Qu7geWs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption bf:4d:a4:cf:b3:93:77:48:d3:12:a1:33:f5:ec:95:cb:55:69: 52:bb:5c:70:d5:d3:59:eb:df:e0:37:a9:6a:63:af:3a:32:fc: 0f:3c:18:12:4a:1b:68:a1:1a:00:7f:fb:34:e8:70:d1:cb:a9: e9:6d:b6:62:16:f1:a4:9f:9b:c3:12:56:11:5a:fd:1c:81:66: ac:02:b5:1e:9a:f6:7c:c6:ee:b3:e0:1a:3d:7e:f7:fa:62:41: 3f:4e:be:66:dc:db:dd:a3:60:85:5c:cc:51:c1:6b:fb:55:b5: 08:1b:84:1b:37:ac:bf:ce:22:6d:a5:d4:ea:70:76:de:9e:49: 27:5d:81:a7:f1:de:47:ab:ae:b5:3b:d1:64:ec:b1:09:ac:00: 8b:9a:34:b9:b7:cd:e6:19:2a:80:69:41:60:2f:9d:ac:5e:0c: 96:1f:18:b3:8d:dd:a1:4b:a4:37:f9:85:95:f1:40:df:15:57: c0:52:d3:66:61:e4:4b:46:89:3e:3b:f1:31:e0:e0:dd:83:9d: 4b:13:df:c7:3f:b0:d6:b5:73:2f:92:a0:a5:5c:4d:59:3f:27: 47:6f:15:ef:f5:e9:f7:5a:e0:f7:6d:52:e4:af:9d:88:f8:d9: 4b:9c:1b:8e:5b:1e:f8:dc:7a:a0:0e:78:30:e0:83:50:02:39: ac:d3:7b:2d -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFvUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3MTZGMERDNkJBNTRD ODE2QjZCMzI0RUJBNTA3RjQyRUVFMDc5NkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkfo7FJjRBnV66X7xRQUwvooVde8RwH8yE5AWUayS3oKj7qyLf qo5y9yJ220JEoBuylOAa+vaQp2OrTWZril1BMsX5HDzCMZFR0F+TjG0Uwoyf5YZH ng5crrXCMzHBbFQ9dQz7QpORlUz4U6bFBJX09fFHToOnLw6E9uqtxHVigohMpRyi wkcOZjgFoHMOW3DHnwtETsM/9P414DORs5HPbHb8xUlsjQRoen+CzsIZgXlI57AM CQV7FoARo/PsVJvDPxm1ajjRcMNgBTZV2WnjVg3+ArRmMEuo739AmlZ1VUAoHN+y Vg1pMJ12w7u5flerpX74FqypPQdNPwiqwbCDAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUZxbw3GulTIFrazJOulB/Qu7geWswHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvWnhidzNHdWxUSUZyYXpKT3VsQl9R dTdnZVdzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAMtJMA0G CSqGSIb3DQEBCwUAA4IBAQC/TaTPs5N3SNMSoTP17JXLVWlSu1xw1dNZ69/gN6lq Y686MvwPPBgSShtooRoAf/s06HDRy6npbbZiFvGkn5vDElYRWv0cgWasArUemvZ8 xu6z4Bo9fvf6YkE/Tr5m3Nvdo2CFXMxRwWv7VbUIG4QbN6y/ziJtpdTqcHbenkkn XYGn8d5Hq661O9Fk7LEJrACLmjS5t83mGSqAaUFgL52sXgyWHxizjd2hS6Q3+YWV 8UDfFVfAUtNmYeRLRok+O/Ex4ODdg51LE9/HP7DWtXMvkqClXE1ZPydHbxXv9en3 WuD3bVLkr52I+NlLnBuOWx743HqgDngw4INQAjms03st -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org