$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/bg8SO3FnFAuYXyLUF88_L38PkOE.roa File: bg8SO3FnFAuYXyLUF88_L38PkOE.roa (raw, json) Hash identifier: W2pLvfNcrZv+0LuHUX/ZkWJdVHkEnfyWqcgeEX/qoFQ= Subject key identifier: 6E:0F:12:3B:71:67:14:0B:98:5F:22:D4:17:CF:3F:2F:7F:0F:90:E1 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1644 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bg8SO3FnFAuYXyLUF88_L38PkOE.roa Signing time: Mon 26 Aug 2024 05:21:58 +0000 ROA not before: Mon 26 Aug 2024 05:21:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.205.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5700 (0x1644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6E0F123B7167140B985F22D417CF3F2F7F0F90E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6f:49:e5:bb:9a:0e:11:de:7e:1e:57:85:de: f2:54:b7:95:78:da:f4:e4:5f:d8:ca:a6:d5:2d:c1: 6c:f0:71:9f:1a:b2:71:eb:b9:1e:c4:cc:bc:69:6f: 28:f8:47:c1:e9:30:22:50:f6:b8:d5:37:87:d2:53: 37:23:35:6b:1e:97:bb:39:86:11:16:b5:7e:9c:91: fe:5b:0d:d3:1d:2d:81:4b:52:bf:f2:d0:6e:dc:09: a1:5e:9d:ba:a6:a8:c6:60:55:93:20:74:4c:75:45: bb:10:cf:3a:df:54:2c:86:af:8d:49:95:a9:b9:13: a9:48:34:48:d3:c0:55:24:6d:51:85:af:09:36:b3: 44:44:a0:5f:5f:8f:6a:7a:ba:af:9e:aa:2e:f4:a8: 46:79:43:95:c8:cc:88:98:cb:6a:28:07:e4:90:7b: da:1c:dc:e9:58:8e:71:b2:5c:57:f0:dc:7e:c0:95: 6f:88:8f:12:ab:15:66:b4:6b:9b:12:f0:8c:6a:99: 08:d4:77:c9:48:0f:6d:96:f9:c7:55:76:c2:e8:e8: 24:12:fe:e6:c1:d7:65:fd:a6:73:67:4b:64:8f:83: 38:17:77:2c:1d:e8:ff:e7:b1:3d:89:ae:88:c7:e4: 31:ea:67:96:70:d3:27:a7:e4:56:d9:f6:62:36:da: 7d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:0F:12:3B:71:67:14:0B:98:5F:22:D4:17:CF:3F:2F:7F:0F:90:E1 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/bg8SO3FnFAuYXyLUF88_L38PkOE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.205.56.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:3e:8b:f7:3c:11:9b:47:58:3a:f8:eb:fb:81:5d:d7:c9:ca: 6e:30:91:98:cf:50:6e:76:34:e4:1d:6e:32:61:d2:aa:af:1b: a2:89:ff:d7:4e:3e:b3:c7:3e:ce:a5:fa:0e:dc:e6:ff:34:6f: 51:1a:76:fa:47:41:8b:5b:8a:6d:cc:eb:12:b5:a7:64:5a:62: c7:4c:30:af:83:04:15:98:a3:9a:fb:4c:56:c4:29:3f:4c:5d: 43:9a:48:08:d8:b1:2c:92:65:ce:0b:3c:22:57:7f:11:20:7c: 07:37:64:ee:49:3b:f4:05:2d:67:56:d3:eb:cd:a6:18:85:ba: 4a:7b:d2:57:8e:77:c8:32:2d:41:a0:16:78:ee:27:9e:49:d4: 72:e6:8c:a4:1e:2d:e3:5b:58:24:b5:9d:b9:ed:45:be:53:ff: 4e:79:ad:18:30:3d:0a:20:3b:86:41:e2:6e:0a:b3:7a:1d:51: 13:90:26:6b:b7:6f:15:a0:5b:b8:a8:9e:85:65:26:07:53:20: dc:0b:81:bc:2b:d5:62:3f:4c:1a:22:1c:d1:c8:5b:92:80:77: 98:d3:c8:09:a9:df:eb:b8:3d:12:c5:c7:0a:44:16:d2:ed:3c: 42:3b:09:30:53:ba:c4:e6:32:55:33:da:07:ad:07:a3:0c:64: e7:2a:d5:01 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFkQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFMEYxMjNCNzE2NzE0 MEI5ODVGMjJENDE3Q0YzRjJGN0YwRjkwRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrb0nlu5oOEd5+HleF3vJUt5V42vTkX9jKptUtwWzwcZ8asnHr uR7EzLxpbyj4R8HpMCJQ9rjVN4fSUzcjNWsel7s5hhEWtX6ckf5bDdMdLYFLUr/y 0G7cCaFenbqmqMZgVZMgdEx1RbsQzzrfVCyGr41Jlam5E6lINEjTwFUkbVGFrwk2 s0REoF9fj2p6uq+eqi70qEZ5Q5XIzIiYy2ooB+SQe9oc3OlYjnGyXFfw3H7AlW+I jxKrFWa0a5sS8IxqmQjUd8lID22W+cdVdsLo6CQS/ubB12X9pnNnS2SPgzgXdywd 6P/nsT2JrojH5DHqZ5Zw0yen5FbZ9mI22n01AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUbg8SO3FnFAuYXyLUF88/L38PkOEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvYmc4U08zRm5GQXVZWHlMVUY4OF9M MzhQa09FLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHvNODAN BgkqhkiG9w0BAQsFAAOCAQEACz6L9zwRm0dYOvjr+4Fd18nKbjCRmM9QbnY05B1u MmHSqq8boon/104+s8c+zqX6Dtzm/zRvURp2+kdBi1uKbczrErWnZFpix0wwr4ME FZijmvtMVsQpP0xdQ5pICNixLJJlzgs8Ild/ESB8Bzdk7kk79AUtZ1bT682mGIW6 SnvSV453yDItQaAWeO4nnknUcuaMpB4t41tYJLWdue1FvlP/TnmtGDA9CiA7hkHi bgqzeh1RE5Ama7dvFaBbuKiehWUmB1Mg3AuBvCvVYj9MGiIc0chbkoB3mNPICanf 67g9EsXHCkQW0u08QjsJMFO6xOYyVTPaB60Howxk5yrVAQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org