$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/nPLcfy3x_oJJp7_COxMdp2_Ttto.roa File: nPLcfy3x_oJJp7_COxMdp2_Ttto.roa (raw, json) Hash identifier: XYsrMibXfr8HO0eHDhflQT1ZotB5M4Mim1bU/VX4pHg= Subject key identifier: 9C:F2:DC:7F:2D:F1:FE:82:49:A7:BF:C2:3B:13:1D:A7:6F:D3:B6:DA Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Certificate serial: 0122 Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/nPLcfy3x_oJJp7_COxMdp2_Ttto.roa Signing time: Sun 17 Nov 2024 13:31:09 +0000 ROA not before: Sun 17 Nov 2024 13:31:09 +0000 ROA not after: Tue 23 Sep 2025 15:30:20 +0000 asID: 152618 IP address blocks: 160.187.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 21:53:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Validity Not Before: Nov 17 13:31:09 2024 GMT Not After : Sep 23 15:30:20 2025 GMT Subject: CN=9CF2DC7F2DF1FE8249A7BFC23B131DA76FD3B6DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:77:b0:1c:30:62:a7:f2:85:2c:be:13:b7:07: 40:ee:46:f1:7e:04:ad:81:b1:69:5b:45:d5:c8:5d: 1f:ca:06:70:87:4e:0e:9b:26:e1:25:4e:bb:32:b3: 38:84:1f:d0:10:bb:48:55:99:61:e4:ba:bc:02:f0: 96:38:ae:72:b5:d7:0a:9a:04:17:b2:0b:32:e8:53: b6:c9:39:c7:d1:53:46:05:a1:b8:f6:a6:8e:aa:d7: ee:03:c7:8a:4d:99:30:62:08:1a:81:7c:80:63:79: 71:f3:39:c8:f8:04:59:5a:bf:dd:b8:74:22:3d:bf: 49:37:01:8c:52:76:74:e4:c7:29:7d:1a:e7:6c:33: 8c:b8:06:1b:53:05:31:62:99:8e:84:3f:b5:a7:bd: 13:41:09:5d:5b:eb:9a:61:8d:56:dd:e7:2e:d2:5b: 20:aa:aa:99:63:8b:06:b5:bc:9f:85:90:1a:74:64: a9:37:7f:b3:b0:69:58:46:46:ab:a6:7b:23:38:34: ff:6d:25:0a:6a:88:d0:6a:d5:9a:c6:37:69:75:3e: 2e:98:0c:3b:12:49:56:aa:3b:75:6e:c7:98:ab:0f: 6c:95:93:cf:90:1b:53:06:cc:e2:c2:58:2f:bf:b4: eb:20:19:f8:5a:52:ca:c5:91:b5:e1:25:02:8b:5e: e0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F2:DC:7F:2D:F1:FE:82:49:A7:BF:C2:3B:13:1D:A7:6F:D3:B6:DA X509v3 Authority Key Identifier: keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/nPLcfy3x_oJJp7_COxMdp2_Ttto.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.100.0/23 Signature Algorithm: sha256WithRSAEncryption 05:77:e2:a2:64:26:4e:eb:a7:a9:31:5c:3b:4a:65:11:57:eb: 21:57:18:f3:3d:19:97:9c:b2:d3:06:75:86:26:cb:fb:ea:03: cd:8c:a2:74:47:8e:76:56:b5:a9:f7:28:b6:26:ed:64:9f:6b: 37:16:b9:ea:bb:ac:84:67:7e:8a:22:c3:e0:46:e4:f2:d6:f5: a8:cd:17:69:c4:b9:e3:ed:9f:84:ac:f6:83:fc:f8:04:3c:5e: 11:21:9e:fe:0f:a7:e9:10:f5:27:01:87:bd:03:cb:e8:87:a9: 79:35:a3:c0:51:df:b3:ca:4a:d5:70:cf:c9:73:02:c0:1a:46: 49:b5:eb:e8:9f:dd:ed:86:25:96:8e:17:2d:95:a5:5a:c3:54: 4c:4b:8c:81:f3:a5:a1:b5:1d:06:f5:cd:07:18:fa:dc:66:16: 39:ef:3e:8e:2d:c0:69:93:65:4d:95:a6:16:4c:13:9a:f7:1d: 2d:7a:a8:d2:9f:b6:81:cb:6b:04:cf:b1:c2:60:19:b8:fd:3d: 99:86:c0:86:04:db:ab:c9:c7:33:fa:e5:07:71:9b:ae:a8:2b: cf:44:34:b9:6f:3a:34:dc:af:b6:b5:c6:82:02:06:94:d2:12: 9e:b1:b7:3c:d4:bc:79:44:fa:8f:fd:e4:a3:cc:e8:bf:83:8e: f9:63:59:22 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEy QjEzOTZDMTQyREE2NzExNTE4ODc1RTkwQzRBRUM5MEIwRjVDNDAeFw0yNDExMTcx MzMxMDlaFw0yNTA5MjMxNTMwMjBaMDMxMTAvBgNVBAMTKDlDRjJEQzdGMkRGMUZF ODI0OUE3QkZDMjNCMTMxREE3NkZEM0I2REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLd7AcMGKn8oUsvhO3B0DuRvF+BK2BsWlbRdXIXR/KBnCHTg6b JuElTrsysziEH9AQu0hVmWHkurwC8JY4rnK11wqaBBeyCzLoU7bJOcfRU0YFobj2 po6q1+4Dx4pNmTBiCBqBfIBjeXHzOcj4BFlav924dCI9v0k3AYxSdnTkxyl9Guds M4y4BhtTBTFimY6EP7WnvRNBCV1b65phjVbd5y7SWyCqqpljiwa1vJ+FkBp0ZKk3 f7OwaVhGRqumeyM4NP9tJQpqiNBq1ZrGN2l1Pi6YDDsSSVaqO3Vux5irD2yVk8+Q G1MGzOLCWC+/tOsgGfhaUsrFkbXhJQKLXuDfAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUnPLcfy3x/oJJp7/COxMdp2/TttowHwYDVR0jBBgwFoAUaisTlsFC2mcRUYh1 6QxK7JCw9cQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9UX1RG Tl9DTy9haXNUbHNGQzJtY1JVWWgxNlF4SzdKQ3c5Y1EuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2Fpc1Rsc0ZDMm1jUlVZaDE2UXhLN0pDdzljUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PVF9URk5fQ08vblBMY2Z5M3hf b0pKcDdfQ094TWRwMl9UdHRvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAaC7ZDANBgkqhkiG9w0BAQsFAAOCAQEABXfiomQmTuunqTFcO0plEVfr IVcY8z0Zl5yy0wZ1hibL++oDzYyidEeOdla1qfcotibtZJ9rNxa56rushGd+iiLD 4Ebk8tb1qM0XacS54+2fhKz2g/z4BDxeESGe/g+n6RD1JwGHvQPL6IepeTWjwFHf s8pK1XDPyXMCwBpGSbXr6J/d7YYllo4XLZWlWsNUTEuMgfOlobUdBvXNBxj63GYW Oe8+ji3AaZNlTZWmFkwTmvcdLXqo0p+2gctrBM+xwmAZuP09mYbAhgTbq8nHM/rl B3Gbrqgrz0Q0uW86NNyvtrXGggIGlNISnrG3PNS8eUT6j/3ko8zov4OO+WNZIg== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:32 2024 by rpki-client on console-fra.rpki-client.org