$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/gny9E3gFR888C93bJnhWVwlgVzU.roa File: gny9E3gFR888C93bJnhWVwlgVzU.roa (raw, json) Hash identifier: JQTJNUKjQTjSAfkmdSwQIiF/jCip8g4cx/QckpNei7Q= Subject key identifier: 82:7C:BD:13:78:05:47:CF:3C:0B:DD:DB:26:78:56:57:09:60:57:35 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EDD Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gny9E3gFR888C93bJnhWVwlgVzU.roa Signing time: Mon 26 Aug 2024 05:22:10 +0000 ROA not before: Mon 26 Aug 2024 05:22:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 139.175.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3805 (0xedd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=827CBD13780547CF3C0BDDDB2678565709605735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:17:45:ec:ac:c1:52:95:97:04:aa:fc:f9:44: a5:83:20:3a:9d:53:8a:8c:fb:59:bb:6a:c4:7f:f9: a0:98:a0:0f:57:02:31:70:b7:52:13:84:28:cf:93: c8:95:4e:38:e2:dc:11:ed:a1:78:0b:db:57:43:14: 8f:4b:27:a1:35:b9:39:0c:fc:32:72:c5:e0:f1:3c: 24:b1:f1:30:73:d0:38:b1:7a:1a:45:16:d9:17:96: 4b:37:8a:a6:ae:24:cb:20:e5:28:c2:76:bf:d6:c6: fe:78:52:26:3d:ea:fd:04:47:3b:2c:cc:a8:b1:f7: 9c:ab:d7:fe:77:de:59:9b:7d:10:44:2c:8a:fb:f1: 4e:8e:e5:05:3c:b7:4b:1a:d6:b9:5d:0e:ea:82:27: b9:9b:33:3f:4a:ff:41:2e:f4:c2:2f:d3:30:0e:58: 0d:58:0f:6a:01:d6:a0:e5:cc:86:3b:68:8b:14:3f: d0:3d:da:3f:ba:fa:29:1f:25:0e:79:cc:8d:a7:8f: 7a:7b:52:82:7d:3c:b8:19:db:e4:61:28:f6:d3:1e: 99:53:f3:d3:60:f6:68:75:d7:fe:09:85:5a:d3:46: 46:28:e9:86:b4:af:27:07:7a:a1:e8:90:f5:00:09: 15:84:45:f6:2d:2d:6b:9c:e1:be:c0:9e:b3:01:50: c2:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7C:BD:13:78:05:47:CF:3C:0B:DD:DB:26:78:56:57:09:60:57:35 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/gny9E3gFR888C93bJnhWVwlgVzU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 139.175.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:96:33:32:bc:56:13:44:17:52:1f:52:09:e9:9d:81:54:dc: e0:89:90:a0:54:e6:c1:25:58:b8:e7:87:50:2a:56:3f:46:03: 55:bc:0a:a5:73:a6:da:54:e3:57:54:4f:33:8f:45:d5:6e:2b: 8a:2d:54:eb:5b:c7:6e:aa:4e:27:89:b7:49:46:4e:f0:30:a9: 52:6f:9e:0e:df:0a:d8:86:94:79:7f:14:e7:1c:40:d7:6d:1f: 2a:45:b1:2d:6c:f6:09:07:d5:e3:af:c9:d4:1d:34:5d:0e:13: d7:cc:8c:2a:de:d8:b8:c7:55:c5:d9:60:28:b3:73:e3:44:f6: 6e:61:e4:fc:d3:e2:74:0a:11:49:4e:d1:79:c2:e0:6d:62:8b: 8d:b4:c1:cb:a0:4b:9e:7c:c3:3f:37:ae:40:7a:c3:e4:a8:2d: 79:22:88:8e:70:77:70:6d:6d:17:5a:37:05:1f:b9:68:0e:2f: a0:75:72:69:a5:06:6c:2b:8d:d3:b0:e2:47:5c:d5:e3:43:40: 32:09:95:08:e7:55:09:d1:68:03:e7:bf:83:a9:60:4e:6f:f1: df:ad:3c:b4:7e:c5:d6:69:df:3c:2a:83:9d:df:e3:36:9c:f4: f4:6f:67:44:10:3c:0d:cb:81:d4:25:27:a2:24:f2:e8:ea:1a: 46:59:74:0f -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyN0NCRDEzNzgwNTQ3 Q0YzQzBCREREQjI2Nzg1NjU3MDk2MDU3MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfF0XsrMFSlZcEqvz5RKWDIDqdU4qM+1m7asR/+aCYoA9XAjFw t1IThCjPk8iVTjji3BHtoXgL21dDFI9LJ6E1uTkM/DJyxeDxPCSx8TBz0DixehpF FtkXlks3iqauJMsg5SjCdr/Wxv54UiY96v0ERzsszKix95yr1/533lmbfRBELIr7 8U6O5QU8t0sa1rldDuqCJ7mbMz9K/0Eu9MIv0zAOWA1YD2oB1qDlzIY7aIsUP9A9 2j+6+ikfJQ55zI2nj3p7UoJ9PLgZ2+RhKPbTHplT89Ng9mh11/4JhVrTRkYo6Ya0 rycHeqHokPUACRWERfYtLWuc4b7AnrMBUMLRAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUgny9E3gFR888C93bJnhWVwlgVzUwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvZ255OUUzZ0ZSODg4QzkzYkpuaFdW d2xnVnpVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDAIuvMA0G CSqGSIb3DQEBCwUAA4IBAQBVljMyvFYTRBdSH1IJ6Z2BVNzgiZCgVObBJVi454dQ KlY/RgNVvAqlc6baVONXVE8zj0XVbiuKLVTrW8duqk4nibdJRk7wMKlSb54O3wrY hpR5fxTnHEDXbR8qRbEtbPYJB9Xjr8nUHTRdDhPXzIwq3ti4x1XF2WAos3PjRPZu YeT80+J0ChFJTtF5wuBtYouNtMHLoEuefMM/N65AesPkqC15IoiOcHdwbW0XWjcF H7loDi+gdXJppQZsK43TsOJHXNXjQ0AyCZUI51UJ0WgD57+DqWBOb/HfrTy0fsXW ad88KoOd3+M2nPT0b2dEEDwNy4HUJSeiJPLo6hpGWXQP -----END CERTIFICATE-----Generated at Fri Nov 22 22:31:46 2024 by rpki-client on console-fra.rpki-client.org