$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/BJA_Wsy1H6VcBmdMQoQEZvXWRIo.roa File: BJA_Wsy1H6VcBmdMQoQEZvXWRIo.roa (raw, json) Hash identifier: EppUktsjHBa/EAdjA+plXUxQ0oHgtH3VpKGVpIXLV3Q= Subject key identifier: 04:90:3F:5A:CC:B5:1F:A5:5C:06:67:4C:42:84:04:66:F5:D6:44:8A Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 02DC Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/BJA_Wsy1H6VcBmdMQoQEZvXWRIo.roa Signing time: Mon 26 Aug 2024 05:22:58 +0000 ROA not before: Mon 26 Aug 2024 05:22:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 2406:bfc0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Aug 26 05:22:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=04903F5ACCB51FA55C06674C42840466F5D6448A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:33:a1:9b:72:c7:ab:b9:c1:16:71:ba:e5:a0: b7:18:28:37:8e:4c:5e:67:ad:06:76:54:2a:84:22: f5:6e:ae:5e:1d:fe:20:bb:d5:64:76:a1:c9:f7:ba: c7:7b:0f:e3:33:a7:bd:90:87:9f:eb:13:1e:93:d6: f3:4f:c4:ca:7d:f5:12:97:1f:ee:eb:8c:b7:79:3d: c3:98:53:8b:1d:a4:b0:da:63:6a:75:42:d0:8c:e7: c2:c2:3f:22:8f:7e:44:83:df:0c:4f:65:4c:b8:86: b6:b0:5e:b5:74:d7:e5:04:18:29:af:2a:e5:ba:aa: de:42:25:b7:c5:b2:2f:fa:0c:6e:c6:4f:6d:5c:89: 04:c7:9f:57:8a:09:b9:02:cf:5e:a3:04:5a:3a:de: 4c:59:02:09:b7:f9:76:43:1c:32:79:4f:3b:4f:65: 48:bb:a2:fb:f9:1b:9d:ee:7b:d4:36:62:f0:b7:50: 35:3d:be:fa:61:fd:9a:ef:ff:9d:c4:2b:f9:e3:99: 7b:34:ba:62:7b:0f:ed:50:fc:13:6c:c6:e8:5d:9d: 48:d1:7a:78:7e:92:4f:9b:f2:de:1d:96:e9:c5:62: 1c:ef:f0:74:30:08:c7:90:55:54:cb:44:51:3d:78: 3f:f1:14:b4:51:8a:c7:18:ad:69:7d:33:3b:cb:2f: b4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:90:3F:5A:CC:B5:1F:A5:5C:06:67:4C:42:84:04:66:F5:D6:44:8A X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/BJA_Wsy1H6VcBmdMQoQEZvXWRIo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:bfc0::/32 Signature Algorithm: sha256WithRSAEncryption a5:97:3f:1d:86:03:b6:53:09:d4:11:ff:d0:ed:25:6f:39:a6: 6d:7a:c1:cf:2c:8a:07:d1:75:e1:14:5f:b4:41:77:49:5c:79: 94:64:ab:f0:1c:b4:8a:02:14:ff:53:2f:ff:13:31:25:2d:98: 46:eb:23:d7:39:4d:1e:65:c9:7b:65:2d:62:1c:6b:ce:43:97: 43:1f:55:b5:b3:a3:42:2f:88:68:5e:e4:d8:ee:72:43:f9:fb: 87:8c:73:0f:28:2b:e6:f1:5c:49:8f:39:cc:a4:10:12:ab:47: ef:85:48:19:3a:d4:34:d9:62:26:7d:1f:b3:7f:b2:41:d2:79: 21:07:10:5a:bf:a6:3e:ef:e3:5e:ed:eb:9d:03:12:4d:e0:e9: 31:6a:85:b3:a8:87:02:3f:ca:1f:56:0d:4e:bd:82:66:27:39: 52:f4:8a:07:a5:0f:12:bf:ff:b8:ce:ee:fb:d0:80:f1:84:4d: b6:cb:c8:a1:8b:96:38:eb:87:49:38:fe:e4:03:d9:95:91:f5: ba:09:e8:93:e8:1b:57:e2:3b:2c:d9:81:99:96:3c:5d:4e:d6: 39:af:75:e3:62:aa:50:fd:c7:85:f2:dc:cc:80:65:75:e6:48: 79:e9:9f:86:d0:16:f4:fd:63:0a:21:2b:20:e3:69:2f:80:41: 46:2f:64:1f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNDA4MjYw NTIyNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0OTAzRjVBQ0NCNTFG QTU1QzA2Njc0QzQyODQwNDY2RjVENjQ0OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLM6GbcserucEWcbrloLcYKDeOTF5nrQZ2VCqEIvVurl4d/iC7 1WR2ocn3usd7D+Mzp72Qh5/rEx6T1vNPxMp99RKXH+7rjLd5PcOYU4sdpLDaY2p1 QtCM58LCPyKPfkSD3wxPZUy4hrawXrV01+UEGCmvKuW6qt5CJbfFsi/6DG7GT21c iQTHn1eKCbkCz16jBFo63kxZAgm3+XZDHDJ5TztPZUi7ovv5G53ue9Q2YvC3UDU9 vvph/Zrv/53EK/njmXs0umJ7D+1Q/BNsxuhdnUjRenh+kk+b8t4dlunFYhzv8HQw CMeQVVTLRFE9eD/xFLRRiscYrWl9MzvLL7RrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUBJA/Wsy1H6VcBmdMQoQEZvXWRIowHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvQkpBX1dzeTFINlZjQm1k TVFvUUVadlhXUklvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQGv8AwDQYJKoZIhvcNAQELBQADggEBAKWXPx2GA7ZTCdQR/9DtJW85pm16wc8s igfRdeEUX7RBd0lceZRkq/ActIoCFP9TL/8TMSUtmEbrI9c5TR5lyXtlLWIca85D l0MfVbWzo0IviGhe5NjuckP5+4eMcw8oK+bxXEmPOcykEBKrR++FSBk61DTZYiZ9 H7N/skHSeSEHEFq/pj7v417t650DEk3g6TFqhbOohwI/yh9WDU69gmYnOVL0igel DxK//7jO7vvQgPGETbbLyKGLljjrh0k4/uQD2ZWR9boJ6JPoG1fiOyzZgZmWPF1O 1jmvdeNiqlD9x4Xy3MyAZXXmSHnpn4bQFvT9YwohKyDjaS+AQUYvZB8= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org