$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/3Ciqfi7TyT5aubqkVtpAwE9YBro.roa File: 3Ciqfi7TyT5aubqkVtpAwE9YBro.roa (raw, json) Hash identifier: NEAg2YWumGIVztiEZ9p7aUvFz7OpOEPCu3oFSeD71kc= Subject key identifier: DC:28:AA:7E:2E:D3:C9:3E:5A:B9:BA:A4:56:DA:40:C0:4F:58:06:BA Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E1B Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/3Ciqfi7TyT5aubqkVtpAwE9YBro.roa Signing time: Mon 26 Aug 2024 05:25:03 +0000 ROA not before: Mon 26 Aug 2024 05:25:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 124.150.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:25:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC28AA7E2ED3C93E5AB9BAA456DA40C04F5806BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:71:07:8a:35:ed:66:d0:58:e0:a0:f0:ee:b7: e6:fc:4e:fc:88:4e:71:a7:1b:86:bd:0c:79:0b:fa: a6:78:50:83:4d:54:d3:b5:73:07:bc:89:d1:a8:f3: 11:d4:46:64:19:37:97:06:6e:ae:b5:8f:56:2d:62: 33:09:df:66:ad:cb:54:79:93:c7:bf:0c:8a:06:c8: 80:82:bd:40:09:73:5f:f1:2b:23:90:37:7b:38:f0: 9e:d3:12:ec:7f:47:5c:9e:36:00:3c:21:b5:36:28: 19:78:ff:ca:71:df:45:ae:ab:4f:8c:a6:11:df:3a: cc:b4:7e:8a:1e:e2:06:e2:79:e4:71:45:59:84:87: e5:02:a9:66:6d:7c:94:e3:5a:f0:d4:2a:a8:dd:f1: bc:c9:24:e9:29:9a:5f:73:d7:bb:5f:71:4c:01:c2: 73:d4:70:ec:cf:9c:9e:76:35:42:13:8d:a7:4e:6d: 02:e3:fb:f7:6a:11:64:2a:3e:9e:0a:96:3f:da:33: 82:bc:07:f4:51:bb:be:a4:cc:3f:e5:af:85:e2:09: 4d:80:d4:50:e9:e1:2f:ed:b0:76:4d:e1:5f:52:8e: b7:f2:da:29:ff:bf:1e:34:c1:38:9f:4b:4d:c3:62: 97:76:53:11:eb:44:1c:7c:22:50:2a:b6:b4:e8:8b: 23:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:28:AA:7E:2E:D3:C9:3E:5A:B9:BA:A4:56:DA:40:C0:4F:58:06:BA X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/3Ciqfi7TyT5aubqkVtpAwE9YBro.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.150.129.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:40:92:44:27:d5:73:ef:14:7b:be:1a:3f:23:ed:58:1f:d5: d3:c5:15:ca:35:f1:4d:63:e8:c7:5d:be:3b:89:88:1d:ed:07: 95:8b:2e:f7:43:02:c2:f4:af:96:2f:04:25:67:06:91:15:2f: 54:d9:58:a9:2a:f2:da:b3:8b:03:51:53:37:5a:68:7c:7d:34: 7a:b3:67:51:4f:19:8c:da:4c:0a:c2:7a:3f:35:07:15:37:55: 55:ac:87:db:af:54:0a:35:a6:6a:78:6e:fe:1b:8e:43:2c:e8: 96:12:32:e4:46:f2:a2:1b:df:a3:d0:d1:7c:ea:c2:d9:59:8d: 77:e2:dc:0d:34:a2:9a:3a:ba:18:59:91:5b:cb:ca:95:0e:28: 1b:7a:dd:8e:56:52:19:9c:38:d5:fc:bc:89:e3:37:b6:cb:b5: 93:af:bf:c5:58:b6:1f:36:bd:b8:f1:f6:0c:ac:71:47:60:6d: cf:cf:b6:a9:27:25:45:5b:e9:86:d0:55:e1:1d:12:1f:1d:52: 08:a3:a1:ea:f5:00:14:79:05:2d:6d:d1:11:8f:ac:5a:22:ea: 0f:64:2b:a0:a4:05:18:32:ef:d3:cc:52:1b:1b:fa:3b:32:1c: 0a:9e:61:f8:5f:4c:21:5d:11:ba:b8:b5:99:96:e6:2e:84:d6: 24:03:cf:13 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDhswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI1MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDMjhBQTdFMkVEM0M5 M0U1QUI5QkFBNDU2REE0MEMwNEY1ODA2QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1cQeKNe1m0FjgoPDut+b8TvyITnGnG4a9DHkL+qZ4UINNVNO1 cwe8idGo8xHURmQZN5cGbq61j1YtYjMJ32aty1R5k8e/DIoGyICCvUAJc1/xKyOQ N3s48J7TEux/R1yeNgA8IbU2KBl4/8px30Wuq0+MphHfOsy0fooe4gbieeRxRVmE h+UCqWZtfJTjWvDUKqjd8bzJJOkpml9z17tfcUwBwnPUcOzPnJ52NUITjadObQLj +/dqEWQqPp4Klj/aM4K8B/RRu76kzD/lr4XiCU2A1FDp4S/tsHZN4V9Sjrfy2in/ vx40wTifS03DYpd2UxHrRBx8IlAqtrToiyPLAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU3Ciqfi7TyT5aubqkVtpAwE9YBrowHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vM0NpcWZpN1R5VDVhdWJxa1Z0cEF3 RTlZQnJvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWgTAN BgkqhkiG9w0BAQsFAAOCAQEAbUCSRCfVc+8Ue74aPyPtWB/V08UVyjXxTWPox12+ O4mIHe0HlYsu90MCwvSvli8EJWcGkRUvVNlYqSry2rOLA1FTN1pofH00erNnUU8Z jNpMCsJ6PzUHFTdVVayH269UCjWmanhu/huOQyzolhIy5Ebyohvfo9DRfOrC2VmN d+LcDTSimjq6GFmRW8vKlQ4oG3rdjlZSGZw41fy8ieM3tsu1k6+/xVi2Hza9uPH2 DKxxR2Btz8+2qSclRVvphtBV4R0SHx1SCKOh6vUAFHkFLW3REY+sWiLqD2QroKQF GDLv08xSGxv6OzIcCp5h+F9MIV0Ruri1mZbmLoTWJAPPEw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org