$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/jGZKI3ObvB4dHN71oVD6pQkrlsI.roa File: jGZKI3ObvB4dHN71oVD6pQkrlsI.roa (raw, json) Hash identifier: aKKArVsmj+jKef6jU5PMWOSEgfQkTkxCQRn7vAUcSYg= Subject key identifier: 8C:66:4A:23:73:9B:BC:1E:1D:1C:DE:F5:A1:50:FA:A5:09:2B:96:C2 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0ED9 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jGZKI3ObvB4dHN71oVD6pQkrlsI.roa Signing time: Mon 26 Aug 2024 05:22:03 +0000 ROA not before: Mon 26 Aug 2024 05:22:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3801 (0xed9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C664A23739BBC1E1D1CDEF5A150FAA5092B96C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c8:d7:ed:61:4c:44:72:86:c2:12:c7:86:93: 88:39:09:7c:82:5d:02:98:36:c7:18:fe:20:8e:90: 13:33:3a:30:80:94:21:ab:b1:16:5c:31:ea:7c:25: 09:13:b0:ff:33:70:e9:0b:cc:26:7d:5a:d4:40:7b: 52:4f:cf:c1:22:2a:5f:cb:aa:e6:93:9a:37:1f:8e: 69:81:4a:ee:31:ee:99:39:16:1a:a9:c3:0c:77:27: e1:db:34:96:d4:2a:98:95:1b:46:9d:ac:01:c5:92: fe:f7:63:1b:46:0a:c9:f8:13:53:2b:39:c9:ca:4e: 76:5a:26:5b:70:00:51:ec:b3:75:95:56:bc:b7:b5: b6:34:93:c9:c5:20:91:b8:c5:2e:9f:7e:f4:f2:25: e0:8f:bd:d1:96:05:71:9d:89:78:44:fe:fe:9b:0a: 9d:96:59:31:00:be:0d:f1:a6:25:d2:b4:87:29:03: e0:17:cc:1c:36:67:42:0e:ec:8f:78:0f:80:36:d1: 57:b2:e9:ae:a0:2d:72:3e:e3:20:e2:d7:e8:81:51: a4:f3:35:dd:e3:2c:b4:6a:6d:ce:76:df:a7:23:bf: bf:f9:8d:98:75:22:fd:23:48:85:c7:e9:c0:a6:cc: 5a:dd:8a:04:85:21:e8:fd:d4:de:6f:9c:f2:12:84: 50:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:66:4A:23:73:9B:BC:1E:1D:1C:DE:F5:A1:50:FA:A5:09:2B:96:C2 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/jGZKI3ObvB4dHN71oVD6pQkrlsI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.248.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:14:84:f5:b2:9d:e8:24:cd:80:5b:31:75:d7:aa:5f:a1:90: d5:e9:3f:84:1b:37:07:7c:f8:89:2d:85:35:24:b0:82:b6:7f: b9:75:46:84:89:cf:fd:89:4b:e5:b1:fa:f1:fb:39:88:86:ab: b2:f8:3b:52:b2:13:05:3e:c1:55:b6:82:fa:3b:2b:8d:7b:8e: 0c:8c:50:70:01:05:72:7b:0c:a8:d5:b0:72:e9:e1:1a:61:b8: 5b:f8:5b:9c:83:55:cd:a9:27:7c:92:62:ea:fe:9c:d8:d0:35: c1:b1:a5:3c:5c:73:c3:1d:85:80:06:6b:3d:3b:a0:ac:13:72: 1b:b7:60:b8:ef:99:81:92:8c:ee:42:1a:94:22:14:cb:c7:79: c0:0f:7f:ca:9a:e0:da:f2:2a:ff:34:29:c0:b2:79:39:9f:ee: 4c:f3:2e:ee:59:1b:ad:fa:b8:61:e5:4b:75:67:92:d8:62:d7: dd:d5:15:81:2b:5a:07:cc:87:51:13:32:a3:44:52:b5:3c:2a: 9a:f8:42:68:ec:79:a1:1d:3a:01:0f:5d:90:70:27:ed:0c:a6: d8:09:e5:e6:a3:ca:69:16:29:28:a8:17:91:9e:49:59:56:bd: 8f:c5:b8:fc:6c:f5:c0:50:b7:8d:52:65:6b:6b:47:8e:3f:cb: 27:17:c2:a0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDNjY0QTIzNzM5QkJD MUUxRDFDREVGNUExNTBGQUE1MDkyQjk2QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0yNftYUxEcobCEseGk4g5CXyCXQKYNscY/iCOkBMzOjCAlCGr sRZcMep8JQkTsP8zcOkLzCZ9WtRAe1JPz8EiKl/LquaTmjcfjmmBSu4x7pk5Fhqp wwx3J+HbNJbUKpiVG0adrAHFkv73YxtGCsn4E1MrOcnKTnZaJltwAFHss3WVVry3 tbY0k8nFIJG4xS6ffvTyJeCPvdGWBXGdiXhE/v6bCp2WWTEAvg3xpiXStIcpA+AX zBw2Z0IO7I94D4A20Vey6a6gLXI+4yDi1+iBUaTzNd3jLLRqbc5236cjv7/5jZh1 Iv0jSIXH6cCmzFrdigSFIej91N5vnPIShFC9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUjGZKI3ObvB4dHN71oVD6pQkrlsIwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvakdaS0kzT2J2QjRkSE43MW9WRDZw UWtybHNJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBI+DAN BgkqhkiG9w0BAQsFAAOCAQEAbxSE9bKd6CTNgFsxddeqX6GQ1ek/hBs3B3z4iS2F NSSwgrZ/uXVGhInP/YlL5bH68fs5iIarsvg7UrITBT7BVbaC+jsrjXuODIxQcAEF cnsMqNWwcunhGmG4W/hbnINVzaknfJJi6v6c2NA1wbGlPFxzwx2FgAZrPTugrBNy G7dguO+ZgZKM7kIalCIUy8d5wA9/yprg2vIq/zQpwLJ5OZ/uTPMu7lkbrfq4YeVL dWeS2GLX3dUVgStaB8yHURMyo0RStTwqmvhCaOx5oR06AQ9dkHAn7Qym2Anl5qPK aRYpKKgXkZ5JWVa9j8W4/Gz1wFC3jVJla2tHjj/LJxfCoA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:31:46 2024 by rpki-client on console-fra.rpki-client.org