$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/pUn-xZKnMIX4aWpX24ELqoEDlpQ.roa File: pUn-xZKnMIX4aWpX24ELqoEDlpQ.roa (raw, json) Hash identifier: 0DoYH5pGQqtgB3Hd6KRnDlY50frHTBKxvbRw/xipeV0= Subject key identifier: A5:49:FE:C5:92:A7:30:85:F8:69:6A:57:DB:81:0B:AA:81:03:96:94 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1646 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pUn-xZKnMIX4aWpX24ELqoEDlpQ.roa Signing time: Mon 26 Aug 2024 05:21:59 +0000 ROA not before: Mon 26 Aug 2024 05:21:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 218.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5702 (0x1646) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A549FEC592A73085F8696A57DB810BAA81039694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:36:45:b3:ef:97:82:bb:ff:fe:59:ea:85:aa: ab:0c:ea:17:22:d9:0f:e1:a7:ba:fc:53:fa:e9:2b: c3:fd:8e:b1:80:0f:4b:c4:a8:a1:2e:fe:dd:aa:1d: 78:52:24:c1:6e:b8:7c:e0:a0:2d:48:e2:ce:96:42: 32:d8:60:85:48:45:db:66:15:e5:70:10:e4:18:71: f4:48:21:7b:6c:98:d2:3f:b8:7e:b6:6c:50:68:d5: c0:7a:c4:e7:93:39:de:95:3b:54:f0:70:06:01:ab: e3:ee:75:22:7a:3e:36:50:7e:5c:e4:ee:7b:b9:60: a3:ef:79:0e:8b:83:2b:4a:da:74:d4:53:d7:76:3a: 32:aa:f2:65:22:d8:3b:84:23:54:b4:3a:0c:74:2f: 03:01:0d:46:d4:7d:a6:67:5d:ef:8b:1c:9a:25:f6: 86:24:1d:0d:3b:a2:a7:bc:24:21:4d:54:b2:da:ff: a0:2a:19:61:8f:dd:89:30:d8:ab:a5:5c:e0:6f:9e: b4:76:7b:74:9e:b1:ac:e3:18:80:f3:b7:3a:e8:06: 33:08:40:cc:fd:4e:29:4f:51:08:c3:df:1c:1c:ee: c6:11:05:85:4d:48:66:8d:39:76:1d:e3:0d:ee:3c: c0:1f:cb:a7:87:35:a8:37:8e:d0:f2:af:3e:6e:de: 03:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:49:FE:C5:92:A7:30:85:F8:69:6A:57:DB:81:0B:AA:81:03:96:94 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/pUn-xZKnMIX4aWpX24ELqoEDlpQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption b8:76:11:dc:cb:cb:bf:2b:05:89:df:9c:6c:f2:6f:20:49:f8: 4c:94:2a:d9:7f:de:8a:67:0f:e3:a0:e2:64:7b:cb:d3:7e:e0: 80:88:c1:8c:f6:41:96:7a:60:21:e9:a6:f2:e5:bc:74:bd:92: ec:e6:92:d6:20:80:e1:73:69:11:9b:9b:d2:8f:dc:cd:b0:da: 6a:b4:b2:09:c8:92:a4:61:ce:0c:e2:52:93:d0:e8:f9:1f:f7: 6f:31:57:61:ef:68:b1:28:2d:b7:73:b7:ac:60:ea:50:43:db: 36:ca:d4:20:58:ac:ae:43:98:a1:16:44:fb:f7:1f:17:4c:0b: ba:da:2c:8a:75:5c:96:2d:fd:de:92:b3:f1:5e:96:af:98:39: 87:50:0d:38:4b:8e:f3:c1:84:d3:59:8b:bf:e2:ea:5b:7c:b7: 37:2e:a0:69:af:01:77:f7:d2:6a:d6:a7:b6:de:55:67:3d:a6: 01:46:cb:93:48:d6:2e:fd:4c:3d:26:4c:57:45:ba:44:5d:c1: 2a:6a:22:5f:7f:a0:7d:fd:ea:81:9e:15:59:c4:54:a6:b9:e6: 5b:92:00:15:39:53:70:b6:3a:83:1a:a3:2b:c5:23:33:77:be: 26:c5:93:ff:a8:37:7e:bb:27:87:81:c0:a2:67:82:94:1d:2a: aa:6e:2d:a5 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICFkYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1NDlGRUM1OTJBNzMw ODVGODY5NkE1N0RCODEwQkFBODEwMzk2OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpNkWz75eCu//+WeqFqqsM6hci2Q/hp7r8U/rpK8P9jrGAD0vE qKEu/t2qHXhSJMFuuHzgoC1I4s6WQjLYYIVIRdtmFeVwEOQYcfRIIXtsmNI/uH62 bFBo1cB6xOeTOd6VO1TwcAYBq+PudSJ6PjZQflzk7nu5YKPveQ6LgytK2nTUU9d2 OjKq8mUi2DuEI1S0Ogx0LwMBDUbUfaZnXe+LHJol9oYkHQ07oqe8JCFNVLLa/6Aq GWGP3Ykw2KulXOBvnrR2e3SesazjGIDztzroBjMIQMz9TilPUQjD3xwc7sYRBYVN SGaNOXYd4w3uPMAfy6eHNag3jtDyrz5u3gOtAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUpUn+xZKnMIX4aWpX24ELqoEDlpQwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcFVuLXhaS25NSVg0YVdwWDI0RUxx b0VEbHBRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMDANogMA0G CSqGSIb3DQEBCwUAA4IBAQC4dhHcy8u/KwWJ35xs8m8gSfhMlCrZf96KZw/joOJk e8vTfuCAiMGM9kGWemAh6aby5bx0vZLs5pLWIIDhc2kRm5vSj9zNsNpqtLIJyJKk Yc4M4lKT0Oj5H/dvMVdh72ixKC23c7esYOpQQ9s2ytQgWKyuQ5ihFkT79x8XTAu6 2iyKdVyWLf3ekrPxXpavmDmHUA04S47zwYTTWYu/4upbfLc3LqBprwF399Jq1qe2 3lVnPaYBRsuTSNYu/Uw9JkxXRbpEXcEqaiJff6B9/eqBnhVZxFSmueZbkgAVOVNw tjqDGqMrxSMzd74mxZP/qDd+uyeHgcCiZ4KUHSqqbi2l -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:32 2024 by rpki-client on console-fra.rpki-client.org