$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jDysP3hLyqMXHl4QpmRlyi5O3hU.roa File: jDysP3hLyqMXHl4QpmRlyi5O3hU.roa (raw, json) Hash identifier: PPkDtiFxAXSgvMsHJNYWEcYIVMknsNMkwh3rRsP8ah0= Subject key identifier: 8C:3C:AC:3F:78:4B:CA:A3:17:1E:5E:10:A6:64:65:CA:2E:4E:DE:15 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 15F3 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jDysP3hLyqMXHl4QpmRlyi5O3hU.roa Signing time: Mon 26 Aug 2024 05:21:37 +0000 ROA not before: Mon 26 Aug 2024 05:21:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 123.51.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5619 (0x15f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C3CAC3F784BCAA3171E5E10A66465CA2E4EDE15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b0:1a:4c:e8:43:3e:ea:45:98:70:24:4a:9c: 4a:d7:6a:f2:d9:dc:0c:25:42:fd:d5:3a:0d:15:30: 11:0f:29:6b:c1:9c:52:6f:76:80:97:81:40:65:ac: 61:a0:2c:76:38:a7:19:8f:f7:d2:86:e5:8b:40:3e: 36:28:48:da:20:3e:ac:77:64:23:02:81:b9:8a:ee: 88:58:b2:2f:e7:25:86:1c:b5:6f:51:a7:ff:60:51: 9a:60:0a:98:9f:af:57:db:b8:d0:6b:8a:78:3c:e6: 4f:62:60:76:09:00:c9:70:44:a8:fb:be:51:da:bb: c4:38:5a:39:e7:22:37:d8:4c:ad:33:36:69:64:9d: e8:15:29:83:61:de:51:e8:35:0e:a4:95:82:b8:b6: df:8e:79:89:18:e1:18:38:42:f7:e5:b2:80:3e:9c: 65:1e:d5:3c:a9:19:ea:25:a0:02:2b:4a:80:db:67: 73:ef:2b:74:b1:5c:ef:e9:92:80:09:67:3a:39:06: 75:2f:1a:9d:9f:9f:a4:e2:a8:68:77:99:47:82:a1: 1c:fc:48:e7:d4:d8:f7:46:59:be:c2:1c:96:2c:ba: 05:e5:57:7b:61:e5:4f:6b:de:8e:e0:29:a3:d0:6a: c2:21:2b:b8:00:b5:2d:89:2b:d6:54:99:fe:14:52: 43:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:3C:AC:3F:78:4B:CA:A3:17:1E:5E:10:A6:64:65:CA:2E:4E:DE:15 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jDysP3hLyqMXHl4QpmRlyi5O3hU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.51.180.0/24 Signature Algorithm: sha256WithRSAEncryption 95:bf:63:dd:95:cc:fd:01:d1:c4:a5:d1:3b:e1:52:75:60:b7: 21:e1:01:24:06:e7:dd:6e:ed:f0:ef:94:8d:03:0c:69:7f:5a: 22:4f:45:7c:40:34:bf:9e:fd:8c:89:f0:da:11:5a:61:6a:64: cd:fa:3f:65:e2:96:49:4f:de:56:8b:32:2c:41:15:0d:73:57: b8:80:1f:89:5a:23:9a:96:9c:fb:0a:c4:64:25:2a:58:5e:da: 8f:37:63:1c:b4:8c:ec:05:11:89:d0:99:f8:8d:3c:69:f8:62: 94:bf:a1:34:7c:74:35:8e:63:eb:d4:c4:a4:f9:31:21:06:ea: f5:ff:41:fd:42:46:c3:2e:af:77:b7:67:b9:b0:55:db:d6:2c: 85:9e:be:f6:22:8c:06:6b:a7:7a:77:c2:ae:d5:23:c0:e3:76: c1:88:8e:6c:12:2b:42:d6:92:8f:ee:b1:26:af:04:1d:ee:eb: c5:0d:a7:9b:ff:0e:1e:87:f1:2e:25:3b:f0:5f:27:ac:ac:ff: 2d:44:b3:cb:8f:3d:55:a1:41:2a:78:64:e1:c7:38:46:ca:60: 69:34:95:3f:a4:55:23:e7:04:8f:ae:98:8c:73:90:25:b3:f7: 5c:02:bc:bb:ae:d2:75:28:36:54:6d:d4:e8:6d:69:c0:1e:4d: 43:a7:23:68 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDM0NBQzNGNzg0QkNB QTMxNzFFNUUxMEE2NjQ2NUNBMkU0RURFMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYsBpM6EM+6kWYcCRKnErXavLZ3AwlQv3VOg0VMBEPKWvBnFJv doCXgUBlrGGgLHY4pxmP99KG5YtAPjYoSNogPqx3ZCMCgbmK7ohYsi/nJYYctW9R p/9gUZpgCpifr1fbuNBring85k9iYHYJAMlwRKj7vlHau8Q4WjnnIjfYTK0zNmlk negVKYNh3lHoNQ6klYK4tt+OeYkY4Rg4QvflsoA+nGUe1TypGeoloAIrSoDbZ3Pv K3SxXO/pkoAJZzo5BnUvGp2fn6TiqGh3mUeCoRz8SOfU2PdGWb7CHJYsugXlV3th 5U9r3o7gKaPQasIhK7gAtS2JK9ZUmf4UUkNVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUjDysP3hLyqMXHl4QpmRlyi5O3hUwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvakR5c1AzaEx5cU1YSGw0UXBtUmx5 aTVPM2hVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHsztDAN BgkqhkiG9w0BAQsFAAOCAQEAlb9j3ZXM/QHRxKXRO+FSdWC3IeEBJAbn3W7t8O+U jQMMaX9aIk9FfEA0v579jInw2hFaYWpkzfo/ZeKWSU/eVosyLEEVDXNXuIAfiVoj mpac+wrEZCUqWF7ajzdjHLSM7AURidCZ+I08afhilL+hNHx0NY5j69TEpPkxIQbq 9f9B/UJGwy6vd7dnubBV29YshZ6+9iKMBmunenfCrtUjwON2wYiObBIrQtaSj+6x Jq8EHe7rxQ2nm/8OHofxLiU78F8nrKz/LUSzy489VaFBKnhk4cc4RspgaTSVP6RV I+cEj66YjHOQJbP3XAK8u67SdSg2VG3U6G1pwB5NQ6cjaA== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org