$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/iBt7V4NrNsQbAsTuMB5PkBFzV-M.roa File: iBt7V4NrNsQbAsTuMB5PkBFzV-M.roa (raw, json) Hash identifier: M5EHUr3gRoQgEv9Ofo0HsdwT6UPH6IN1y16HRQwTHX8= Subject key identifier: 88:1B:7B:57:83:6B:36:C4:1B:02:C4:EE:30:1E:4F:90:11:73:57:E3 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0C46 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/iBt7V4NrNsQbAsTuMB5PkBFzV-M.roa Signing time: Mon 26 Aug 2024 05:23:49 +0000 ROA not before: Mon 26 Aug 2024 05:23:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17420 IP address blocks: 203.65.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3142 (0xc46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 26 05:23:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=881B7B57836B36C41B02C4EE301E4F90117357E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:07:42:b3:a3:c7:d7:ba:91:1f:48:37:95:89: 5f:8b:54:ec:00:56:d3:49:bd:a7:96:40:ee:2d:33: 0b:f0:50:b7:48:64:24:f7:05:e9:eb:c4:59:bd:be: a9:0c:6e:a4:bf:4b:35:ba:32:6e:e4:6b:6b:c5:bc: 0c:a1:71:30:b5:87:6d:30:0a:63:b7:88:1b:86:ac: fe:5a:39:3e:49:d8:71:69:23:07:ab:c9:45:63:cd: 5d:b8:c4:a5:3e:03:3a:f1:1b:82:03:cd:b8:7a:0f: 31:9d:e6:cd:b9:21:ef:47:6d:ce:7b:f1:9f:1d:10: 45:00:af:ab:b5:3f:4d:be:99:1b:0b:40:09:0b:79: bc:38:25:e7:46:55:0a:73:ab:0c:3e:79:e2:95:7d: 4f:f6:f6:6f:45:10:00:2e:1b:c3:96:be:87:da:4a: 37:c0:7d:5e:42:57:f5:45:29:7d:91:38:48:05:fa: f7:b2:c3:78:77:11:ae:e4:d4:59:84:6b:59:cf:4e: 63:45:89:22:3d:40:1a:1a:ab:95:68:b8:ca:47:d9: bb:29:9f:f6:13:07:7e:5e:35:d6:e3:51:c7:d1:7e: 8c:8b:d8:6b:50:87:57:77:4f:fb:f8:a1:6f:0d:8b: 34:95:92:51:37:89:76:07:44:ff:4c:f0:23:88:4e: d3:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:1B:7B:57:83:6B:36:C4:1B:02:C4:EE:30:1E:4F:90:11:73:57:E3 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/iBt7V4NrNsQbAsTuMB5PkBFzV-M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.65.192.0/19 Signature Algorithm: sha256WithRSAEncryption 75:b7:74:2d:c7:47:c4:fa:6d:ef:77:ca:8c:6e:04:98:aa:1d: 9d:44:c2:d6:9b:7e:a8:82:19:db:01:1c:47:12:ba:61:d9:d9: 56:9d:6e:0e:c4:d3:98:f7:7b:ad:22:12:88:8f:a0:91:1e:b0: 33:83:0b:72:0a:c9:c7:f3:8d:23:cc:81:cd:ad:13:6f:71:48: 03:bd:82:6d:02:3a:c9:1d:66:4c:f5:5f:d1:d2:79:90:e4:80: db:23:92:9d:6b:11:5e:5f:80:f7:b7:d7:6a:27:56:3d:b2:86: de:e0:3d:11:14:7d:3b:db:39:2a:84:19:69:13:65:d7:36:35: 19:61:c9:0b:5d:67:0d:29:8d:71:82:4b:6c:23:9a:14:9f:26: a9:7a:7d:77:91:13:2c:f5:b7:eb:aa:5a:75:df:6b:c6:61:fa: 88:b5:f4:e8:82:5d:88:d9:83:70:c9:67:a5:60:ca:36:16:a0: c2:4c:5f:e2:09:69:5e:02:f2:67:82:13:7c:f0:cb:26:b4:6b: 75:b6:7d:b8:27:e2:66:8b:1b:5e:2f:e9:7a:8a:44:c5:8c:aa: 7a:67:82:9c:b8:47:24:2d:ba:f1:1e:7b:f3:ff:d9:29:5f:d6: 5c:6e:10:8c:2c:0d:17:40:49:41:c2:45:0e:e6:11:70:6e:0a: 82:6c:32:1e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNDA4MjYw NTIzNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4MUI3QjU3ODM2QjM2 QzQxQjAyQzRFRTMwMUU0RjkwMTE3MzU3RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIB0Kzo8fXupEfSDeViV+LVOwAVtNJvaeWQO4tMwvwULdIZCT3 BenrxFm9vqkMbqS/SzW6Mm7ka2vFvAyhcTC1h20wCmO3iBuGrP5aOT5J2HFpIwer yUVjzV24xKU+AzrxG4IDzbh6DzGd5s25Ie9Hbc578Z8dEEUAr6u1P02+mRsLQAkL ebw4JedGVQpzqww+eeKVfU/29m9FEAAuG8OWvofaSjfAfV5CV/VFKX2ROEgF+vey w3h3Ea7k1FmEa1nPTmNFiSI9QBoaq5VouMpH2bspn/YTB35eNdbjUcfRfoyL2GtQ h1d3T/v4oW8NizSVklE3iXYHRP9M8COITtMBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUiBt7V4NrNsQbAsTuMB5PkBFzV+MwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9pQnQ3VjROck5zUWJBc1R1TUI1 UGtCRnpWLU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFy0HA MA0GCSqGSIb3DQEBCwUAA4IBAQB1t3Qtx0fE+m3vd8qMbgSYqh2dRMLWm36oghnb ARxHErph2dlWnW4OxNOY93utIhKIj6CRHrAzgwtyCsnH840jzIHNrRNvcUgDvYJt AjrJHWZM9V/R0nmQ5IDbI5KdaxFeX4D3t9dqJ1Y9sobe4D0RFH072zkqhBlpE2XX NjUZYckLXWcNKY1xgktsI5oUnyapen13kRMs9bfrqlp132vGYfqItfTogl2I2YNw yWelYMo2FqDCTF/iCWleAvJnghN88MsmtGt1tn24J+JmixteL+l6ikTFjKp6Z4Kc uEckLbrxHnvz/9kpX9ZcbhCMLA0XQElBwkUO5hFwbgqCbDIe -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org