$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yM5w-AY2D23-grggO2PyIYdhycw.roa File: yM5w-AY2D23-grggO2PyIYdhycw.roa (raw, json) Hash identifier: 3weSAsgWoqg1zDEJzw5jgHx40daa0wTomJLlCL8WonQ= Subject key identifier: C8:CE:70:F8:06:36:0F:6D:FE:82:B8:20:3B:63:F2:21:87:61:C9:CC Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 1620 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yM5w-AY2D23-grggO2PyIYdhycw.roa Signing time: Mon 26 Aug 2024 05:21:48 +0000 ROA not before: Mon 26 Aug 2024 05:21:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.56.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5664 (0x1620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:21:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C8CE70F806360F6DFE82B8203B63F2218761C9CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:08:de:08:1e:ba:dd:ab:72:0c:7d:ee:6f:bd: 66:c7:81:b5:73:ae:e3:9e:96:b6:4c:d7:0d:c3:2d: 18:63:d8:3e:f0:c1:c3:31:7b:76:60:0d:3f:74:33: a8:e2:6f:0e:30:e0:0f:18:e6:f7:a6:f7:be:b7:e1: 0b:0b:6b:86:75:5f:3b:38:42:d6:72:c6:82:94:63: 5a:85:bf:91:c2:8c:2c:ea:9c:2a:26:4f:a2:0c:c0: 76:58:e9:2e:00:ce:75:62:18:88:e7:7b:24:62:54: f2:a5:0a:d2:1e:c9:dc:05:6c:a6:e2:27:f5:57:62: c2:54:b7:c1:ea:08:6d:63:1c:aa:0d:9f:3b:30:78: 11:98:7a:a3:06:bf:e3:28:61:64:4e:bf:a5:ac:c5: 3b:9d:2b:51:06:e0:ae:d6:d1:81:5f:cd:d1:ed:2a: 1a:1c:1b:54:d2:e9:32:2f:e2:5d:52:d7:ea:a6:29: e4:c9:29:db:96:c4:9b:62:83:28:28:7b:ae:1a:ed: 19:cd:17:8a:c4:25:e5:02:35:df:f5:28:cb:fd:57: 54:7e:28:ce:29:09:a6:ed:00:a7:27:c1:43:6b:0c: 03:9b:1d:8d:e0:58:63:6b:95:e2:b7:2f:80:46:59: d2:fa:cd:7b:35:7f:f6:b4:18:8c:c8:d4:3f:06:7b: 95:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CE:70:F8:06:36:0F:6D:FE:82:B8:20:3B:63:F2:21:87:61:C9:CC X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yM5w-AY2D23-grggO2PyIYdhycw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.192.0/19 Signature Algorithm: sha256WithRSAEncryption 88:41:48:7e:45:79:ac:e8:6a:30:37:ff:05:d2:42:84:3e:f9: c1:40:9f:07:70:e7:f2:12:e7:50:46:7d:11:b4:c9:8c:f2:5b: 82:77:29:0f:df:bb:b7:e5:b3:7f:21:83:25:ba:8b:dc:c4:fe: 5f:2b:98:8f:c7:1c:36:df:13:e7:79:a9:0e:78:b9:54:03:67: 48:43:ab:8a:1a:40:75:7e:27:c5:86:76:78:89:59:3f:64:4b: 45:0d:91:59:f2:f2:ef:e0:1c:80:90:65:bb:57:da:f1:8e:fc: 9d:77:21:24:99:0a:89:98:24:9d:83:51:c5:66:5c:8f:5d:e1: 71:1f:88:63:43:9a:bc:cb:88:41:dc:5f:28:70:d7:ef:a4:c8: e7:b4:1a:3d:b6:d1:c4:62:c2:52:ec:f4:b9:4f:64:5e:c1:34: bb:c5:39:94:66:aa:5b:13:da:ec:b3:55:a7:a4:65:87:e1:9c: e3:06:be:a8:e9:f3:a5:64:2a:04:13:6a:5f:0b:e0:0a:c8:72: ec:69:50:5e:5c:5c:61:31:72:65:9d:3e:2c:78:0f:fe:3b:e7: 13:d7:ac:94:2d:cf:bc:8e:94:90:5f:32:d9:20:33:73:e7:06: d7:0f:4c:bf:75:ba:19:6d:8a:d7:31:ee:6b:65:a4:f4:51:77: 5e:46:a0:e3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIxNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4Q0U3MEY4MDYzNjBG NkRGRTgyQjgyMDNCNjNGMjIxODc2MUM5Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1CN4IHrrdq3IMfe5vvWbHgbVzruOelrZM1w3DLRhj2D7wwcMx e3ZgDT90M6jibw4w4A8Y5vem97634QsLa4Z1Xzs4QtZyxoKUY1qFv5HCjCzqnCom T6IMwHZY6S4AznViGIjneyRiVPKlCtIeydwFbKbiJ/VXYsJUt8HqCG1jHKoNnzsw eBGYeqMGv+MoYWROv6WsxTudK1EG4K7W0YFfzdHtKhocG1TS6TIv4l1S1+qmKeTJ KduWxJtigygoe64a7RnNF4rEJeUCNd/1KMv9V1R+KM4pCabtAKcnwUNrDAObHY3g WGNrleK3L4BGWdL6zXs1f/a0GIzI1D8Ge5UnAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUyM5w+AY2D23+grggO2PyIYdhycwwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveU01dy1BWTJEMjMtZ3JnZ08yUHlJ WWRoeWN3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBT04wDAN BgkqhkiG9w0BAQsFAAOCAQEAiEFIfkV5rOhqMDf/BdJChD75wUCfB3Dn8hLnUEZ9 EbTJjPJbgncpD9+7t+WzfyGDJbqL3MT+XyuYj8ccNt8T53mpDni5VANnSEOrihpA dX4nxYZ2eIlZP2RLRQ2RWfLy7+AcgJBlu1fa8Y78nXchJJkKiZgknYNRxWZcj13h cR+IY0OavMuIQdxfKHDX76TI57QaPbbRxGLCUuz0uU9kXsE0u8U5lGaqWxPa7LNV p6Rlh+Gc4wa+qOnzpWQqBBNqXwvgCshy7GlQXlxcYTFyZZ0+LHgP/jvnE9eslC3P vI6UkF8y2SAzc+cG1w9Mv3W6GW2K1zHua2Wk9FF3Xkag4w== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:12 2024 by rpki-client on console-fra.rpki-client.org