$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/yjtOhC3SKdtjiufc1tD046-snQE.roa File: yjtOhC3SKdtjiufc1tD046-snQE.roa (raw, json) Hash identifier: ieS9HMOg3WKyP2Bs6d5+wNhbF+NsBamOA0UZuV83ewM= Subject key identifier: CA:3B:4E:84:2D:D2:29:DB:63:8A:E7:DC:D6:D0:F4:E3:AF:AC:9D:01 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16C5 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yjtOhC3SKdtjiufc1tD046-snQE.roa Signing time: Mon 26 Aug 2024 05:22:36 +0000 ROA not before: Mon 26 Aug 2024 05:22:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 113.196.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5829 (0x16c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CA3B4E842DD229DB638AE7DCD6D0F4E3AFAC9D01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a5:1c:e1:53:29:fb:b3:c7:42:8d:31:82:4b: 8b:07:06:26:c2:2c:37:fc:68:04:33:c8:f9:74:f6: 49:e8:fe:d0:a6:7d:a9:5c:9b:59:72:0b:0b:0a:1a: 54:d9:b3:0b:49:84:71:af:38:52:51:2c:4d:34:80: 6a:b6:2b:7e:a5:f3:c7:6a:50:aa:bf:39:08:1d:18: 44:76:b8:1b:64:41:20:cf:9c:ee:f1:b6:57:5c:06: 39:5e:12:9f:20:6c:23:e7:58:bf:69:38:8d:f8:ef: 00:e1:15:5b:33:83:5f:8c:1a:42:2c:30:40:6d:60: d8:60:e3:6e:50:4b:28:3c:8f:f7:c7:1a:b6:fd:cb: 13:b5:e3:69:f7:e5:7d:fb:b2:42:5b:e9:29:fe:cf: 9a:a5:85:1e:fe:a6:38:13:d5:84:48:b5:ab:48:4f: 94:64:6d:49:41:8a:8a:87:3f:49:03:57:a2:8e:ad: 0c:bc:83:8c:2d:5b:4a:b9:e9:7d:ab:0e:c6:f7:83: 99:5e:de:ba:e2:92:b3:05:19:8c:43:93:43:c3:91: 0f:08:f1:29:c1:6d:08:a7:0d:dc:c3:59:83:f3:b6: 83:20:7e:6c:42:40:d0:57:23:15:83:93:8f:d7:26: f3:7b:c9:8d:dc:89:8f:f4:e1:49:9f:fa:39:86:3d: 83:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:3B:4E:84:2D:D2:29:DB:63:8A:E7:DC:D6:D0:F4:E3:AF:AC:9D:01 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/yjtOhC3SKdtjiufc1tD046-snQE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.196.152.0/21 Signature Algorithm: sha256WithRSAEncryption 16:3f:b0:11:73:dd:41:60:85:8e:20:46:80:c3:9a:ca:0c:26: de:a2:cb:f7:32:d9:67:52:45:a9:3e:92:86:9f:60:1e:80:67: d1:65:60:37:44:86:9e:ce:c0:1a:a9:39:4a:46:36:7c:1f:3e: 5c:38:ff:33:bf:76:a0:09:5d:30:3e:d4:48:9c:0a:c4:12:4b: a0:1e:6a:4c:c2:dd:cf:e5:93:ff:3c:8f:ef:1d:d5:a2:9e:66: 77:29:36:56:a9:f2:28:54:02:87:2b:d1:31:f5:84:b1:37:e9: ca:ff:a1:b9:e3:c6:17:87:6a:be:50:ac:21:68:06:42:75:67: fb:e9:60:d9:d7:d1:9b:47:6a:d7:87:ed:f8:c2:85:e1:2c:12: a3:03:4e:78:10:b2:da:94:e4:72:71:bf:f3:c8:55:53:b3:c6: 74:4c:3e:ca:ee:d5:f5:02:77:74:b6:75:00:00:c9:e6:a0:b4: 54:17:03:66:84:81:99:4f:af:5a:5a:5a:72:e6:5f:2e:aa:96: 23:20:84:49:21:8c:ec:7f:24:fd:34:4c:03:97:12:ac:8c:e0: 2e:33:00:8d:94:ab:19:0b:4d:bc:26:20:82:5a:b0:05:36:c0: c3:0a:6f:2a:0c:d2:8a:96:a1:4d:51:2d:67:81:38:0d:b0:34: 72:8b:86:a0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBM0I0RTg0MkREMjI5 REI2MzhBRTdEQ0Q2RDBGNEUzQUZBQzlEMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1pRzhUyn7s8dCjTGCS4sHBibCLDf8aAQzyPl09kno/tCmfalc m1lyCwsKGlTZswtJhHGvOFJRLE00gGq2K36l88dqUKq/OQgdGER2uBtkQSDPnO7x tldcBjleEp8gbCPnWL9pOI347wDhFVszg1+MGkIsMEBtYNhg425QSyg8j/fHGrb9 yxO142n35X37skJb6Sn+z5qlhR7+pjgT1YRItatIT5RkbUlBioqHP0kDV6KOrQy8 g4wtW0q56X2rDsb3g5le3rrikrMFGYxDk0PDkQ8I8SnBbQinDdzDWYPztoMgfmxC QNBXIxWDk4/XJvN7yY3ciY/04Umf+jmGPYNxAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUyjtOhC3SKdtjiufc1tD046+snQEwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMveWp0T2hDM1NLZHRqaXVmYzF0RDA0 Ni1zblFFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEA3HEmDAN BgkqhkiG9w0BAQsFAAOCAQEAFj+wEXPdQWCFjiBGgMOaygwm3qLL9zLZZ1JFqT6S hp9gHoBn0WVgN0SGns7AGqk5SkY2fB8+XDj/M792oAldMD7USJwKxBJLoB5qTMLd z+WT/zyP7x3Vop5mdyk2VqnyKFQChyvRMfWEsTfpyv+huePGF4dqvlCsIWgGQnVn ++lg2dfRm0dq14ft+MKF4SwSowNOeBCy2pTkcnG/88hVU7PGdEw+yu7V9QJ3dLZ1 AADJ5qC0VBcDZoSBmU+vWlpacuZfLqqWIyCESSGM7H8k/TRMA5cSrIzgLjMAjZSr GQtNvCYgglqwBTbAwwpvKgzSipahTVEtZ4E4DbA0couGoA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org