$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/uqBLvWKidkJtDn4Uj9bwARdtpbw.roa File: uqBLvWKidkJtDn4Uj9bwARdtpbw.roa (raw, json) Hash identifier: u0wThK7s8vyGTaOYLm0acDWtkzcKcwYemcm4ysi6LEE= Subject key identifier: BA:A0:4B:BD:62:A2:76:42:6D:0E:7E:14:8F:D6:F0:01:17:6D:A5:BC Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0EE5 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uqBLvWKidkJtDn4Uj9bwARdtpbw.roa Signing time: Mon 26 Aug 2024 05:22:33 +0000 ROA not before: Mon 26 Aug 2024 05:22:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 192.72.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3813 (0xee5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:22:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BAA04BBD62A276426D0E7E148FD6F001176DA5BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:b4:86:f7:7c:fa:04:83:1f:5d:60:c7:0b:3f: a6:1a:23:1d:d7:ab:26:45:e1:96:aa:e2:65:2c:69: 8f:b2:d5:c7:b0:b6:e4:4f:2e:8a:ef:3a:4a:2b:97: 31:c1:2d:b1:da:bd:e2:56:2f:7c:e8:e5:ad:ec:34: a0:d6:7a:20:5e:46:21:03:65:c3:bf:f5:d9:65:34: 9e:90:61:00:58:53:16:e0:34:fc:6b:5d:db:45:e7: 96:a8:f5:a5:35:f4:a5:fd:97:1f:8f:bd:8a:c4:8d: 9e:28:56:94:50:31:79:57:3c:fd:3c:f0:0f:96:5d: f4:ff:24:e9:3a:51:93:1a:07:a6:d3:d6:44:c0:36: 56:05:78:6f:f1:b1:1b:75:aa:45:88:2f:2a:65:44: df:7c:45:ae:cf:0f:31:84:ca:5f:38:7c:d0:5a:4d: f2:6a:6d:01:44:12:d5:40:b4:64:27:f0:8f:56:36: 7b:a0:c9:18:72:14:50:db:cb:9b:f5:72:9d:ac:a6: fc:3e:47:e0:85:d8:50:46:5f:90:bc:c7:f4:d0:ce: 7b:6d:91:18:71:55:96:87:e9:db:50:40:9e:45:77: 72:8d:88:67:50:22:ce:84:c4:d6:37:44:22:ba:ab: 1b:a2:71:4c:70:42:63:83:35:87:d0:fe:a4:c5:9b: 50:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:A0:4B:BD:62:A2:76:42:6D:0E:7E:14:8F:D6:F0:01:17:6D:A5:BC X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/uqBLvWKidkJtDn4Uj9bwARdtpbw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.64.0/18 Signature Algorithm: sha256WithRSAEncryption 41:97:76:a0:0b:df:d1:54:2e:57:4b:b8:99:a0:05:14:e3:2e: a6:10:61:05:c7:a3:3f:4d:bd:40:22:d9:57:c8:bb:44:ee:15: 86:2b:86:d7:fa:36:4d:72:6e:9d:da:7b:e4:94:f4:3b:9b:ad: 60:45:82:38:ae:97:de:9a:c9:16:05:56:d4:43:80:f6:3e:b0: 59:3d:34:8e:f5:3e:35:c3:6c:10:5c:57:2e:25:2e:6d:2d:cd: 8d:c2:7a:c9:c4:ba:30:f7:5c:dc:99:bf:08:e5:45:8c:5c:c3: 32:73:9d:99:de:44:b0:a8:d0:08:98:c0:8d:71:bb:b5:b6:db: 6d:77:c1:ff:19:6d:ed:67:78:34:9f:75:a3:4b:4f:19:b4:2d: 9b:80:f3:1c:e0:33:57:45:db:82:4f:01:c5:de:d0:54:cf:84: ed:3b:a7:92:8d:db:1c:52:39:2d:19:28:af:ec:f8:41:1d:70: fc:7a:de:21:8a:0d:d1:28:fc:f3:bf:fb:ea:3a:b2:c5:bc:c1: 4c:db:3e:4d:82:3a:de:60:82:56:eb:8a:8b:05:e3:b8:40:84: e4:19:45:37:d5:6d:f0:16:21:b5:a8:c5:ff:b0:85:86:71:3b: 61:73:6a:21:bd:89:c0:0f:03:41:23:96:45:97:2d:70:e3:57: e5:a8:68:ed -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIyMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJBQTA0QkJENjJBMjc2 NDI2RDBFN0UxNDhGRDZGMDAxMTc2REE1QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxtIb3fPoEgx9dYMcLP6YaIx3XqyZF4Zaq4mUsaY+y1cewtuRP LorvOkorlzHBLbHaveJWL3zo5a3sNKDWeiBeRiEDZcO/9dllNJ6QYQBYUxbgNPxr XdtF55ao9aU19KX9lx+PvYrEjZ4oVpRQMXlXPP088A+WXfT/JOk6UZMaB6bT1kTA NlYFeG/xsRt1qkWILyplRN98Ra7PDzGEyl84fNBaTfJqbQFEEtVAtGQn8I9WNnug yRhyFFDby5v1cp2spvw+R+CF2FBGX5C8x/TQznttkRhxVZaH6dtQQJ5Fd3KNiGdQ Is6ExNY3RCK6qxuicUxwQmODNYfQ/qTFm1AzAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUuqBLvWKidkJtDn4Uj9bwARdtpbwwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdXFCTHZXS2lka0p0RG40VWo5YndB UmR0cGJ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBsBIQDAN BgkqhkiG9w0BAQsFAAOCAQEAQZd2oAvf0VQuV0u4maAFFOMuphBhBcejP029QCLZ V8i7RO4VhiuG1/o2TXJundp75JT0O5utYEWCOK6X3prJFgVW1EOA9j6wWT00jvU+ NcNsEFxXLiUubS3NjcJ6ycS6MPdc3Jm/COVFjFzDMnOdmd5EsKjQCJjAjXG7tbbb bXfB/xlt7Wd4NJ91o0tPGbQtm4DzHOAzV0Xbgk8Bxd7QVM+E7Tunko3bHFI5LRko r+z4QR1w/HreIYoN0Sj887/76jqyxbzBTNs+TYI63mCCVuuKiwXjuECE5BlFN9Vt 8BYhtajF/7CFhnE7YXNqIb2JwA8DQSOWRZctcONX5aho7Q== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org