$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/AHJbG7tGQZaDkCbNruVE2brYPgg.roa File: AHJbG7tGQZaDkCbNruVE2brYPgg.roa (raw, json) Hash identifier: yk3ArMnUsyJ8QnIGmSwBipZF8cyVFlRhuOCJ7TgduYU= Subject key identifier: 00:72:5B:1B:BB:46:41:96:83:90:26:CD:AE:E5:44:D9:BA:D8:3E:08 Certificate issuer: /CN=3730D9A195AB710286722CE5CCA467CFBA5BD494 Certificate serial: B9 Authority key identifier: 37:30:D9:A1:95:AB:71:02:86:72:2C:E5:CC:A4:67:CF:BA:5B:D4:94 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/AHJbG7tGQZaDkCbNruVE2brYPgg.roa Signing time: Mon 26 Aug 2024 05:23:07 +0000 ROA not before: Mon 26 Aug 2024 05:23:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 132369 IP address blocks: 64.78.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3730D9A195AB710286722CE5CCA467CFBA5BD494 Validity Not Before: Aug 26 05:23:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=00725B1BBB464196839026CDAEE544D9BAD83E08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:7b:83:90:a5:79:18:f3:9c:32:6c:ab:e7:ec: 01:ec:1f:77:e1:bf:b6:af:16:52:ea:d0:75:26:e7: a9:db:8b:f5:b1:21:60:28:69:ec:f3:c1:3b:a5:36: 9f:25:39:65:96:92:76:cf:7b:c6:78:38:03:69:79: 21:c0:68:ab:e3:57:dc:0c:53:30:36:2a:28:1d:6f: 17:bf:cf:3d:00:79:81:1b:5b:7c:4f:6a:bc:31:63: 30:f6:ee:2e:ad:04:ae:15:dc:12:26:7c:35:ed:a9: 88:80:65:53:40:64:0d:9b:d9:68:fb:c7:6b:95:8f: b4:62:ad:ae:33:9d:53:36:c0:25:bc:eb:59:29:eb: cc:a5:ae:ea:c3:5e:ac:6e:d5:a5:74:de:8a:e2:42: 16:6b:87:f9:82:3d:34:ce:dc:03:fb:50:2f:c0:c8: 9b:07:f6:8e:dd:8f:85:15:65:48:52:24:38:c3:c3: a4:eb:2e:05:c7:21:73:f5:de:5b:ae:23:03:3a:9d: 07:84:93:43:27:8e:2a:95:7e:56:c5:cf:56:ae:d2: 51:0f:af:c6:03:39:9c:9b:9b:5b:63:2b:10:12:e6: 0e:e5:32:73:12:69:9e:ee:96:b8:48:73:45:37:27: 95:ae:77:4f:ac:71:a2:9e:00:5c:c4:f1:13:d7:b7: b4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:72:5B:1B:BB:46:41:96:83:90:26:CD:AE:E5:44:D9:BA:D8:3E:08 X509v3 Authority Key Identifier: keyid:37:30:D9:A1:95:AB:71:02:86:72:2C:E5:CC:A4:67:CF:BA:5B:D4:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/AHJbG7tGQZaDkCbNruVE2brYPgg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 64.78.160.0/20 Signature Algorithm: sha256WithRSAEncryption 01:87:61:dc:7d:f7:72:af:66:d9:49:8f:19:39:92:3a:27:42: a6:ec:a3:97:a3:bd:ad:ba:bb:d6:e4:ed:52:b9:b7:9f:b9:26: 89:01:1e:0a:73:5b:03:ec:b6:03:74:39:a9:3a:23:4b:87:68: 5d:5e:f4:dc:74:b3:2b:3a:44:05:09:1d:a8:26:97:aa:42:f5: 8d:bb:ef:28:54:6a:30:67:e1:db:1f:ec:fb:80:74:1b:90:a6: c1:5b:74:81:0f:17:2b:9f:dc:1c:a2:25:9d:4a:2c:5b:14:cd: ed:4c:39:dc:58:a7:c9:d5:21:01:f7:cd:20:1f:72:bd:fb:12: 9f:6c:ee:b1:1e:99:01:10:ef:a2:52:85:f0:a2:8a:2f:fd:ad: 12:f9:d5:6c:f5:45:bb:79:d4:52:a4:d1:25:5c:12:00:2c:55: 62:83:73:b8:9c:3d:fe:c0:bf:9b:92:62:8f:fe:00:81:bd:a1: 08:4e:cf:ef:0e:23:b6:1e:da:e8:0b:ab:6b:ad:fa:55:a7:65: 0c:64:f1:c3:10:dc:09:fa:6d:1c:2a:ce:ef:44:40:a3:98:9e: 16:75:1e:dd:15:f8:09:97:21:93:71:77:aa:48:e6:c9:c7:2b: e0:8f:6d:e4:e7:2e:aa:00:88:16:84:9a:eb:97:ef:6a:24:31: fa:3a:ba:4a -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzcz MEQ5QTE5NUFCNzEwMjg2NzIyQ0U1Q0NBNDY3Q0ZCQTVCRDQ5NDAeFw0yNDA4MjYw NTIzMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAwNzI1QjFCQkI0NjQx OTY4MzkwMjZDREFFRTU0NEQ5QkFEODNFMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8e4OQpXkY85wybKvn7AHsH3fhv7avFlLq0HUm56nbi/WxIWAo aezzwTulNp8lOWWWknbPe8Z4OANpeSHAaKvjV9wMUzA2Kigdbxe/zz0AeYEbW3xP arwxYzD27i6tBK4V3BImfDXtqYiAZVNAZA2b2Wj7x2uVj7Rira4znVM2wCW861kp 68ylrurDXqxu1aV03oriQhZrh/mCPTTO3AP7UC/AyJsH9o7dj4UVZUhSJDjDw6Tr LgXHIXP13luuIwM6nQeEk0MnjiqVflbFz1au0lEPr8YDOZybm1tjKxAS5g7lMnMS aZ7ulrhIc0U3J5Wud0+scaKeAFzE8RPXt7TNAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUAHJbG7tGQZaDkCbNruVE2brYPggwHwYDVR0jBBgwFoAUNzDZoZWrcQKGcizl zKRnz7pb1JQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVT Q09NL056RFpvWldyY1FLR2Npemx6S1JuejdwYjFKUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTnpEWm9aV3JjUUtHY2l6bHpLUm56N3BiMUpRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVTQ09NL0FISmJHN3RHUVph RGtDYk5ydVZFMmJyWVBnZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARATqAwDQYJKoZIhvcNAQELBQADggEBAAGHYdx993KvZtlJjxk5kjonQqbs o5ejva26u9bk7VK5t5+5JokBHgpzWwPstgN0Oak6I0uHaF1e9Nx0sys6RAUJHagm l6pC9Y277yhUajBn4dsf7PuAdBuQpsFbdIEPFyuf3ByiJZ1KLFsUze1MOdxYp8nV IQH3zSAfcr37Ep9s7rEemQEQ76JShfCiii/9rRL51Wz1Rbt51FKk0SVcEgAsVWKD c7icPf7Av5uSYo/+AIG9oQhOz+8OI7Ye2ugLq2ut+lWnZQxk8cMQ3An6bRwqzu9E QKOYnhZ1Ht0V+AmXIZNxd6pI5snHK+CPbeTnLqoAiBaEmuuX72okMfo6uko= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org