$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bcVI7uh8YH_rRkKt--69gu64eRc.roa File: bcVI7uh8YH_rRkKt--69gu64eRc.roa (raw, json) Hash identifier: 77k1COlF19VFJFLP9oQy0cqW3o8IFTib3YBky1uipTU= Subject key identifier: 6D:C5:48:EE:E8:7C:60:7F:EB:46:42:AD:FB:EE:BD:82:EE:B8:79:17 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0ED2 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bcVI7uh8YH_rRkKt--69gu64eRc.roa Signing time: Mon 26 Aug 2024 05:21:45 +0000 ROA not before: Mon 26 Aug 2024 05:21:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3794 (0xed2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:21:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6DC548EEE87C607FEB4642ADFBEEBD82EEB87917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6f:cd:8b:56:8f:f2:d0:5f:72:b3:e0:d2:49: 5a:5f:61:08:2e:70:30:e3:49:b9:27:4c:cd:91:a1: 21:79:63:98:c9:62:0d:15:19:bc:67:39:5a:4d:d3: 58:22:4b:2e:5c:20:98:fc:17:ed:52:94:93:4b:45: 37:ca:89:16:a8:b8:ef:11:de:d0:f4:5f:5e:45:78: 28:9c:8d:f5:0f:7f:7f:c3:41:ca:82:31:6f:60:be: d0:03:4a:1f:28:93:20:81:e0:a9:8c:b1:d7:ad:c5: eb:14:eb:45:1f:a6:ce:e1:89:5b:33:e8:c8:51:73: 51:14:dd:3e:c6:96:c4:f8:42:cb:95:0b:02:66:5e: d2:7e:e2:d7:ff:4b:be:55:c8:22:8c:4f:3f:13:6d: 80:c6:d6:df:47:7f:32:f4:bd:93:ac:74:e9:11:07: 91:af:57:76:fa:2c:c6:27:62:97:9f:c5:8d:24:8d: aa:31:e7:3d:a9:bc:34:29:3d:e7:25:e6:61:0e:11: 84:4a:7a:f8:f2:9f:79:8d:ad:cb:73:7d:ee:51:4e: ee:2b:c8:7d:25:3e:13:30:8d:d8:fa:bd:d9:59:75: 08:e0:ce:d9:e6:e2:d1:52:9d:21:c7:f8:d9:4a:c8: fe:8b:0a:5c:32:e5:fd:73:f0:43:14:55:5b:5f:b1: 44:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:C5:48:EE:E8:7C:60:7F:EB:46:42:AD:FB:EE:BD:82:EE:B8:79:17 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bcVI7uh8YH_rRkKt--69gu64eRc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:bb:36:2d:a9:4b:ec:96:24:05:98:e3:9d:87:bd:67:16:b1: 3d:bb:ea:71:92:98:12:a9:a6:fd:da:e8:af:ca:63:a4:39:28: 0b:2b:40:39:3a:9d:96:a1:0c:ae:d6:f3:38:33:8f:64:67:f9: 85:cf:ee:f2:b1:d2:9d:fe:25:9d:19:38:6b:b8:8b:14:30:4f: ee:ff:08:da:1b:d9:1b:fc:0e:70:01:33:2d:d4:d2:3e:23:4a: f4:16:83:72:e3:c2:d4:72:b1:a1:70:cf:8d:69:a5:a7:88:60: d7:c3:4b:8a:8c:96:b0:6c:db:94:c5:b3:01:b0:9e:6d:d4:2d: 31:3a:73:53:c9:ec:ef:c0:45:33:4f:85:a1:cc:03:13:c4:5e: 8a:16:1f:e6:11:84:9e:e1:34:b8:2c:ee:f3:6e:e2:fd:08:24: 43:4d:f2:cb:66:3d:e9:85:07:49:e6:5d:68:dc:82:d1:53:01: be:92:c1:e1:4a:09:66:ce:d2:38:68:e2:8e:ce:20:39:6c:19: 10:34:80:a8:7f:05:99:d6:77:bd:02:40:11:b9:ef:93:6e:c9: ca:9b:84:61:7e:a7:ba:e1:5a:12:a4:47:cf:a7:bb:f4:91:49: f0:49:f9:55:eb:98:3b:99:a0:51:41:ca:0c:c3:1c:a7:88:a4: b3:c1:ff:ec -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIxNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZEQzU0OEVFRTg3QzYw N0ZFQjQ2NDJBREZCRUVCRDgyRUVCODc5MTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdb82LVo/y0F9ys+DSSVpfYQgucDDjSbknTM2RoSF5Y5jJYg0V GbxnOVpN01giSy5cIJj8F+1SlJNLRTfKiRaouO8R3tD0X15FeCicjfUPf3/DQcqC MW9gvtADSh8okyCB4KmMsdetxesU60Ufps7hiVsz6MhRc1EU3T7GlsT4QsuVCwJm XtJ+4tf/S75VyCKMTz8TbYDG1t9HfzL0vZOsdOkRB5GvV3b6LMYnYpefxY0kjaox 5z2pvDQpPecl5mEOEYRKevjyn3mNrctzfe5RTu4ryH0lPhMwjdj6vdlZdQjgztnm 4tFSnSHH+NlKyP6LClwy5f1z8EMUVVtfsUQnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUbcVI7uh8YH/rRkKt++69gu64eRcwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYmNWSTd1aDhZSF9yUmtLdC0tNjln dTY0ZVJjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBI4DAN BgkqhkiG9w0BAQsFAAOCAQEAers2LalL7JYkBZjjnYe9ZxaxPbvqcZKYEqmm/dro r8pjpDkoCytAOTqdlqEMrtbzODOPZGf5hc/u8rHSnf4lnRk4a7iLFDBP7v8I2hvZ G/wOcAEzLdTSPiNK9BaDcuPC1HKxoXDPjWmlp4hg18NLioyWsGzblMWzAbCebdQt MTpzU8ns78BFM0+FocwDE8ReihYf5hGEnuE0uCzu827i/QgkQ03yy2Y96YUHSeZd aNyC0VMBvpLB4UoJZs7SOGjijs4gOWwZEDSAqH8FmdZ3vQJAEbnvk27JypuEYX6n uuFaEqRHz6e79JFJ8En5VeuYO5mgUUHKDMMcp4iks8H/7A== -----END CERTIFICATE-----Generated at Fri Nov 22 20:34:43 2024 by rpki-client on console-ams.rpki-client.org