$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/wqb4MbKOtH_lR__mdhFY8GNwwOA.roa File: wqb4MbKOtH_lR__mdhFY8GNwwOA.roa (raw, json) Hash identifier: rbxq5EVv2sNhtV+jTscQX6jMLJVICxDhvZhgPC+z2MU= Subject key identifier: C2:A6:F8:31:B2:8E:B4:7F:E5:47:FF:E6:76:11:58:F0:63:70:C0:E0 Certificate issuer: /CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Certificate serial: 590F Authority key identifier: B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/wqb4MbKOtH_lR__mdhFY8GNwwOA.roa Signing time: Mon 26 Aug 2024 05:23:26 +0000 ROA not before: Mon 26 Aug 2024 05:23:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 43.227.24.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22799 (0x590f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4320FD78DFB6A4D1C92322F794966B8525DFDD2 Validity Not Before: Aug 26 05:23:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C2A6F831B28EB47FE547FFE6761158F06370C0E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e0:27:02:95:73:35:13:40:64:cf:ce:37:20: 47:95:4e:1d:27:67:68:b5:d7:cd:b7:d5:88:44:7e: 73:0f:20:15:c9:15:ac:21:f2:95:22:f1:33:54:bd: d2:1a:ee:c6:10:43:fe:9d:f6:aa:32:f0:93:6c:50: c6:c1:e5:c1:f7:e4:0a:7b:ea:8a:75:b1:f9:a9:3b: 09:6a:24:be:e4:01:0a:59:22:f5:42:69:e2:1c:08: 54:95:81:25:b0:97:ce:35:67:e2:12:27:1d:52:21: ee:6e:82:1a:34:81:5c:b5:a7:2f:3c:7b:a3:18:98: bb:92:9b:59:7a:4c:bc:79:22:12:97:6c:78:10:c5: 87:8b:c5:0b:14:a5:ed:98:73:a5:9f:0e:80:e4:ee: 3b:8e:95:f4:d8:77:a5:b5:94:6c:dd:da:ad:ea:7c: 2a:39:2f:46:92:a0:1e:cf:06:ce:8a:8c:f3:72:b1: df:91:4e:15:79:a7:24:1a:04:24:7a:d7:df:b1:38: b3:a8:99:e6:af:3d:25:b5:75:c3:4b:46:eb:c2:01: 2f:2a:eb:d8:94:41:db:82:32:59:7f:39:0e:77:96: 08:8a:c0:45:57:84:24:74:c6:7b:d1:08:a4:53:e1: f3:d5:12:45:e4:ce:1c:ac:49:16:0c:ea:0a:62:6e: 18:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:A6:F8:31:B2:8E:B4:7F:E5:47:FF:E6:76:11:58:F0:63:70:C0:E0 X509v3 Authority Key Identifier: keyid:B4:32:0F:D7:8D:FB:6A:4D:1C:92:32:2F:79:49:66:B8:52:5D:FD:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/tDIP1437ak0ckjIveUlmuFJd_dI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tDIP1437ak0ckjIveUlmuFJd_dI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCCATV/wqb4MbKOtH_lR__mdhFY8GNwwOA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.227.24.0/22 Signature Algorithm: sha256WithRSAEncryption a3:00:0c:68:89:4f:f2:69:37:22:f0:10:b8:c7:53:7a:f0:ff: ae:1f:b5:a3:ae:b1:0a:fc:19:41:ab:5e:c9:ba:bb:cf:3a:cb: cf:b7:01:b2:5b:cc:f8:d5:8b:90:a7:75:9c:f4:bd:79:db:b6: 85:e7:9c:90:c7:0b:e9:0b:17:15:70:c4:15:17:bc:9c:e9:e4: 55:b7:c8:69:dd:ca:6f:ed:e3:81:8b:df:a4:be:43:a4:d7:31: 63:16:67:e0:64:41:f0:92:c1:5b:53:eb:64:25:8e:a1:ee:b4: 15:b2:b0:01:95:15:e4:9d:5e:4f:1f:d2:23:b0:ab:1a:17:d7: d8:4e:02:a3:d2:a7:da:9d:e0:54:00:aa:60:82:9f:b9:3e:d6: 91:c7:ef:fc:98:54:79:1a:ed:34:53:8f:61:3f:59:15:e1:94: 36:ca:9d:e4:02:fb:e6:c1:62:25:79:50:1c:49:68:48:45:42: 4f:c1:ae:ab:78:c5:d1:1f:14:dd:19:29:af:40:67:9a:d9:62: 5f:6a:20:f8:a7:c7:0d:5f:e3:b8:8c:87:3a:36:32:29:e4:23: 5b:18:7f:0c:0a:f9:c5:9f:50:ce:64:d4:4c:bf:84:97:0d:94: 49:d0:ce:6f:80:cc:05:06:c8:7a:78:b8:d7:47:72:ce:0c:58: da:ce:17:b6 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICWQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjQz MjBGRDc4REZCNkE0RDFDOTIzMjJGNzk0OTY2Qjg1MjVERkREMjAeFw0yNDA4MjYw NTIzMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyQTZGODMxQjI4RUI0 N0ZFNTQ3RkZFNjc2MTE1OEYwNjM3MEMwRTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC14CcClXM1E0Bkz843IEeVTh0nZ2i118231YhEfnMPIBXJFawh 8pUi8TNUvdIa7sYQQ/6d9qoy8JNsUMbB5cH35Ap76op1sfmpOwlqJL7kAQpZIvVC aeIcCFSVgSWwl841Z+ISJx1SIe5ugho0gVy1py88e6MYmLuSm1l6TLx5IhKXbHgQ xYeLxQsUpe2Yc6WfDoDk7juOlfTYd6W1lGzd2q3qfCo5L0aSoB7PBs6KjPNysd+R ThV5pyQaBCR619+xOLOomeavPSW1dcNLRuvCAS8q69iUQduCMll/OQ53lgiKwEVX hCR0xnvRCKRT4fPVEkXkzhysSRYM6gpibhiBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUwqb4MbKOtH/lR//mdhFY8GNwwOAwHwYDVR0jBBgwFoAUtDIP1437ak0ckjIv eUlmuFJd/dIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDQ0FU Vi90RElQMTQzN2FrMGNrakl2ZVVsbXVGSmRfZEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RESVAxNDM3YWswY2tqSXZlVWxtdUZKZF9kSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0NBVFYvd3FiNE1iS090SF9sUl9f bWRoRlk4R053d09BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AivjGDANBgkqhkiG9w0BAQsFAAOCAQEAowAMaIlP8mk3IvAQuMdTevD/rh+1o66x CvwZQateybq7zzrLz7cBslvM+NWLkKd1nPS9edu2heeckMcL6QsXFXDEFRe8nOnk VbfIad3Kb+3jgYvfpL5DpNcxYxZn4GRB8JLBW1PrZCWOoe60FbKwAZUV5J1eTx/S I7CrGhfX2E4Co9Kn2p3gVACqYIKfuT7Wkcfv/JhUeRrtNFOPYT9ZFeGUNsqd5AL7 5sFiJXlQHEloSEVCT8Guq3jF0R8U3Rkpr0BnmtliX2og+KfHDV/juIyHOjYyKeQj Wxh/DAr5xZ9QzmTUTL+Elw2USdDOb4DMBQbIeni410dyzgxY2s4Xtg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org