$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/wuiY89yx3NBiWpbE0tV7Pok_2-Y.roa File: wuiY89yx3NBiWpbE0tV7Pok_2-Y.roa (raw, json) Hash identifier: NZXSfziQg/s32hmgyYYayrn+DE9FAhdz3e2CaGvwydM= Subject key identifier: C2:E8:98:F3:DC:B1:DC:D0:62:5A:96:C4:D2:D5:7B:3E:89:3F:DB:E6 Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 02DB Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/wuiY89yx3NBiWpbE0tV7Pok_2-Y.roa Signing time: Mon 26 Aug 2024 05:22:57 +0000 ROA not before: Mon 26 Aug 2024 05:22:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 103.158.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Aug 26 05:22:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C2E898F3DCB1DCD0625A96C4D2D57B3E893FDBE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:e1:fc:fe:5e:e3:f2:d2:e6:af:2f:8a:55:8b: 2c:6f:9f:c6:9c:93:e9:f1:51:eb:90:29:cf:ab:5f: 73:38:db:e0:84:7b:30:9c:d8:fa:20:47:cd:6e:df: 43:97:c3:d7:57:e8:62:d0:f2:13:57:69:8e:49:1e: cf:69:80:07:7a:5e:fb:be:7f:ca:c9:65:54:22:20: 32:90:85:30:f9:81:e6:8b:fd:2e:f1:09:5e:e6:b7: bc:35:40:58:26:f4:92:34:18:84:5d:dc:4a:90:bc: de:86:56:7c:4b:e1:b9:81:d6:5a:ab:a8:68:16:ff: bb:79:4b:93:7d:c5:f7:14:7e:a5:65:49:bb:7b:16: 55:51:d7:5c:d3:fc:cc:de:39:2f:90:3c:d3:6a:f3: f9:56:4c:69:8c:c3:94:e5:6b:cb:bf:07:84:8b:0c: 29:37:31:15:16:5f:c5:61:ab:fd:c2:a9:c3:16:b0: d7:b5:27:66:e7:41:b0:2a:32:2d:81:30:7f:fc:4d: 51:f9:eb:27:13:17:9d:85:81:12:2a:3c:fe:b5:e3: bc:37:d1:4e:5c:30:fb:fe:1e:3e:02:ad:55:e3:5d: a1:56:3e:bb:60:84:52:d4:62:38:bf:61:42:33:5e: 23:a2:40:32:89:2e:08:cd:59:f8:3a:81:d2:aa:00: ae:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:E8:98:F3:DC:B1:DC:D0:62:5A:96:C4:D2:D5:7B:3E:89:3F:DB:E6 X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/wuiY89yx3NBiWpbE0tV7Pok_2-Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.158.186.0/24 Signature Algorithm: sha256WithRSAEncryption b3:88:e9:03:b0:55:c5:51:01:cf:03:55:bd:f8:81:ba:0a:27: 02:b8:1c:3c:9b:d5:ce:93:6e:a8:54:89:70:2a:2f:05:6f:33: 61:b9:26:9d:05:97:2e:88:a7:d5:25:47:53:bc:2c:fa:4c:b1: d1:cd:06:43:7a:20:6a:df:32:ac:ac:f1:a1:45:48:05:a2:38: f9:6f:fd:2e:c5:98:86:e3:59:28:b6:7e:64:f8:64:28:4a:23: 72:d8:fb:fb:13:1e:c1:3e:a0:91:be:b7:15:ee:f2:71:d1:83: 0b:11:2b:c7:45:c9:c5:02:e0:99:57:49:6d:c7:c5:4f:c3:3a: 75:f6:ea:23:56:cb:93:ef:1e:7d:5d:43:7f:af:07:74:c8:9b: 26:c5:d2:54:d8:4f:e3:2a:d0:12:6e:2f:58:18:d2:e3:b8:61: 06:8e:cd:bc:a5:11:c3:3c:d9:09:2a:01:55:57:3e:19:a8:43: 5e:91:b1:92:1a:fb:1b:95:12:98:6d:ca:5c:ee:90:a4:f1:43: d0:43:44:6c:4a:d9:ee:b4:12:e1:f0:94:ce:3b:23:6f:14:75: 0c:02:71:6d:2d:6c:32:ee:a5:77:92:c0:0a:11:3b:5b:d3:60: 3c:26:1f:67:06:51:a9:2c:e2:e3:88:a5:c5:42:2c:30:97:3e: 44:6d:57:62 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNDA4MjYw NTIyNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyRTg5OEYzRENCMURD RDA2MjVBOTZDNEQyRDU3QjNFODkzRkRCRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDw4fz+XuPy0uavL4pViyxvn8ack+nxUeuQKc+rX3M42+CEezCc 2PogR81u30OXw9dX6GLQ8hNXaY5JHs9pgAd6Xvu+f8rJZVQiIDKQhTD5geaL/S7x CV7mt7w1QFgm9JI0GIRd3EqQvN6GVnxL4bmB1lqrqGgW/7t5S5N9xfcUfqVlSbt7 FlVR11zT/MzeOS+QPNNq8/lWTGmMw5Tla8u/B4SLDCk3MRUWX8Vhq/3CqcMWsNe1 J2bnQbAqMi2BMH/8TVH56ycTF52FgRIqPP6147w30U5cMPv+Hj4CrVXjXaFWPrtg hFLUYji/YUIzXiOiQDKJLgjNWfg6gdKqAK6PAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUwuiY89yx3NBiWpbE0tV7Pok/2+YwHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvd3VpWTg5eXgzTkJpV3Bi RTB0VjdQb2tfMi1ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeeujANBgkqhkiG9w0BAQsFAAOCAQEAs4jpA7BVxVEBzwNVvfiBugonArgcPJvV zpNuqFSJcCovBW8zYbkmnQWXLoin1SVHU7ws+kyx0c0GQ3ogat8yrKzxoUVIBaI4 +W/9LsWYhuNZKLZ+ZPhkKEojctj7+xMewT6gkb63Fe7ycdGDCxErx0XJxQLgmVdJ bcfFT8M6dfbqI1bLk+8efV1Df68HdMibJsXSVNhP4yrQEm4vWBjS47hhBo7NvKUR wzzZCSoBVVc+GahDXpGxkhr7G5USmG3KXO6QpPFD0ENEbErZ7rQS4fCUzjsjbxR1 DAJxbS1sMu6ld5LAChE7W9NgPCYfZwZRqSzi44ilxUIsMJc+RG1XYg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org