$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/wjvEeRIoLGsGHCNRLT1MNx4StTk.roa File: wjvEeRIoLGsGHCNRLT1MNx4StTk.roa (raw, json) Hash identifier: llnGmbfQabCJwg4gEasvZWBEXdimHi87lw5NWLW6JJ0= Subject key identifier: C2:3B:C4:79:12:28:2C:6B:06:1C:23:51:2D:3D:4C:37:1E:12:B5:39 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0ED4 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wjvEeRIoLGsGHCNRLT1MNx4StTk.roa Signing time: Mon 26 Aug 2024 05:21:47 +0000 ROA not before: Mon 26 Aug 2024 05:21:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 192.72.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3796 (0xed4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:21:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C23BC47912282C6B061C23512D3D4C371E12B539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:33:3b:9d:c0:a7:6b:25:a9:81:6c:be:f0:df: 16:09:df:be:83:f0:36:11:2d:36:dc:b7:74:19:10: d3:2f:f3:76:8d:e5:e0:72:82:92:e0:8a:29:49:23: 2a:c6:b0:6d:62:f2:72:51:7e:21:44:60:f8:6c:d1: 24:70:1b:33:b7:ce:0a:b0:2f:28:6e:80:2c:af:18: 05:ef:4f:98:63:1b:0f:d1:10:ff:ad:48:d4:f0:de: dd:33:f3:5d:ca:13:e7:17:b7:2f:ea:8d:94:b3:88: 8c:96:e0:a7:f7:3b:2d:92:8f:44:bb:29:81:31:cd: 65:46:50:0e:25:6f:ed:f2:d4:d4:a1:21:68:ec:e6: 65:fb:8e:ad:df:75:f5:14:c0:a1:eb:10:fd:8c:9f: fb:ca:c6:50:97:ed:f6:48:c5:b8:d3:f6:9a:ff:cd: c3:b6:4c:10:68:a4:28:95:38:af:7f:2a:e9:7f:5c: a7:87:39:58:d0:4c:ab:ec:57:b8:d8:1d:44:6a:01: 45:cb:4e:27:1b:cf:9d:a5:23:bf:e0:a2:e2:de:77: 36:65:d2:ee:a6:6a:36:0e:90:4b:42:8a:01:a9:00: 26:17:34:e0:ad:b7:35:79:28:9c:f5:4e:11:f5:2d: b6:e5:e8:a7:33:a5:17:22:7a:40:61:c7:1a:e7:d3: 55:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:3B:C4:79:12:28:2C:6B:06:1C:23:51:2D:3D:4C:37:1E:12:B5:39 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/wjvEeRIoLGsGHCNRLT1MNx4StTk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.16.0/20 Signature Algorithm: sha256WithRSAEncryption 9e:a9:60:2b:8e:a4:26:16:06:75:2d:14:59:12:49:93:32:b4: 6f:75:bb:de:18:ed:60:d4:72:be:9c:a9:88:a3:83:ae:f8:6a: 58:e3:f9:9c:ca:2a:ea:da:17:73:f9:d9:7b:25:8d:49:98:97: e6:99:ee:1f:65:1f:83:b2:17:d1:bc:8f:59:44:8e:2b:6b:96: e5:37:a9:83:20:21:57:b9:e8:b5:25:3c:12:38:a5:54:c2:ba: ba:19:0d:b1:a0:af:11:9f:81:63:3f:cc:72:b8:63:c2:9c:fa: 53:6e:89:63:ef:38:e4:8e:08:1a:42:74:5c:67:42:05:a3:d8: 78:a7:5b:42:7d:fe:01:af:06:bf:22:db:a3:7b:38:14:18:ad: d5:d0:bc:6b:1c:fb:77:4c:87:57:d1:40:75:63:3b:44:1f:f7: db:52:0b:33:14:cc:38:42:6d:df:0c:38:dc:6f:80:6a:09:e2: a0:f4:31:4e:64:b3:4c:bc:74:80:a2:e3:20:64:f6:df:04:ab: b3:f0:e3:8e:4a:ed:f2:0d:21:93:9a:4a:2a:63:96:b2:00:3d: 68:d5:06:f5:a0:c8:19:e2:68:30:0c:19:23:7f:90:b8:d4:db: 79:a8:8e:29:d3:63:f6:37:c2:72:e8:61:7b:60:38:7d:3e:31: a6:08:48:67 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIxNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyM0JDNDc5MTIyODJD NkIwNjFDMjM1MTJEM0Q0QzM3MUUxMkI1MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLMzudwKdrJamBbL7w3xYJ376D8DYRLTbct3QZENMv83aN5eBy gpLgiilJIyrGsG1i8nJRfiFEYPhs0SRwGzO3zgqwLyhugCyvGAXvT5hjGw/REP+t SNTw3t0z813KE+cXty/qjZSziIyW4Kf3Oy2Sj0S7KYExzWVGUA4lb+3y1NShIWjs 5mX7jq3fdfUUwKHrEP2Mn/vKxlCX7fZIxbjT9pr/zcO2TBBopCiVOK9/Kul/XKeH OVjQTKvsV7jYHURqAUXLTicbz52lI7/gouLedzZl0u6majYOkEtCigGpACYXNOCt tzV5KJz1ThH1Lbbl6KczpRciekBhxxrn01WxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUwjvEeRIoLGsGHCNRLT1MNx4StTkwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvd2p2RWVSSW9MR3NHSENOUkxUMU1O eDRTdFRrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBMBIEDAN BgkqhkiG9w0BAQsFAAOCAQEAnqlgK46kJhYGdS0UWRJJkzK0b3W73hjtYNRyvpyp iKODrvhqWOP5nMoq6toXc/nZeyWNSZiX5pnuH2Ufg7IX0byPWUSOK2uW5TepgyAh V7notSU8EjilVMK6uhkNsaCvEZ+BYz/Mcrhjwpz6U26JY+845I4IGkJ0XGdCBaPY eKdbQn3+Aa8GvyLbo3s4FBit1dC8axz7d0yHV9FAdWM7RB/321ILMxTMOEJt3ww4 3G+AagnioPQxTmSzTLx0gKLjIGT23wSrs/Djjkrt8g0hk5pKKmOWsgA9aNUG9aDI GeJoMAwZI3+QuNTbeaiOKdNj9jfCcuhhe2A4fT4xpghIZw== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:32 2024 by rpki-client on console-fra.rpki-client.org