$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/YCPb_T7I7R4URARlG5z874I9OUw.roa File: YCPb_T7I7R4URARlG5z874I9OUw.roa (raw, json) Hash identifier: rc7dll9ynoxjE6uCgD+GG7DeQYBfBmJbOJQjP/KxL/0= Subject key identifier: 60:23:DB:FD:3E:C8:ED:1E:14:44:04:65:1B:9C:FC:EF:82:3D:39:4C Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E09 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/YCPb_T7I7R4URARlG5z874I9OUw.roa Signing time: Mon 26 Aug 2024 05:24:58 +0000 ROA not before: Mon 26 Aug 2024 05:24:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 223.27.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3593 (0xe09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:24:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6023DBFD3EC8ED1E144404651B9CFCEF823D394C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:c1:cc:16:f0:52:e8:e0:24:f4:e0:11:58:dd: 54:3f:97:da:16:5e:a2:b7:94:49:bb:7e:6b:fc:fc: 4c:c3:ec:79:41:66:d9:a6:e2:40:59:17:e2:0d:0e: 9f:8a:bf:0e:81:ab:3a:e8:51:2b:ee:9f:5a:df:e6: 59:e4:a2:d4:7c:9f:59:d9:5d:d3:2d:30:d0:1a:df: a6:9d:a0:c3:d4:32:19:52:ab:b3:b0:db:ec:83:63: bd:c7:db:30:d7:02:30:b9:54:51:90:16:c8:db:cb: a9:27:ba:a9:78:5a:65:23:88:fb:b7:1c:5c:ff:be: 6c:34:1a:b8:04:2b:e0:4a:88:3b:06:4e:1f:d0:28: d9:42:4b:b2:ba:99:e4:b2:05:8b:3d:fe:ac:ec:67: 86:3e:b3:c0:80:14:c8:f5:04:da:9f:64:8d:ce:b5: b1:18:da:0b:10:0d:d3:be:99:08:e4:c4:e8:68:ba: 87:75:2b:17:a5:f8:d8:ba:46:3d:5f:a7:36:a1:f0: a5:a7:a2:87:2b:a7:b7:50:4e:7d:a4:ce:6b:21:62: 90:df:fc:33:ec:6b:73:42:1a:69:bd:92:87:10:91: d4:f9:94:a3:50:30:ff:ae:4e:6c:7c:29:fa:8a:bd: 1d:45:64:52:d1:51:64:f9:bb:ac:9c:63:24:ff:84: a6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:23:DB:FD:3E:C8:ED:1E:14:44:04:65:1B:9C:FC:EF:82:3D:39:4C X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/YCPb_T7I7R4URARlG5z874I9OUw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.49.0/24 Signature Algorithm: sha256WithRSAEncryption 30:b5:9c:c3:64:05:cf:df:2b:1b:48:02:d3:ff:e4:d9:c9:fe: 24:92:e6:46:d9:96:b1:f2:54:6d:0c:ec:12:83:69:2e:20:9c: d5:7e:4b:30:af:63:95:6a:2f:cc:f8:c2:3b:87:db:37:63:05: 05:bb:06:63:30:1d:47:db:14:16:a7:30:f8:31:d7:72:78:61: fb:82:8a:88:59:d8:b3:ab:ef:51:25:b2:91:42:81:7b:20:4e: d2:33:85:41:59:33:7c:f3:cc:ac:dd:3a:8a:bc:c4:ad:7a:7c: cb:73:22:e9:b7:54:97:0a:27:be:31:2c:0d:cf:f3:c6:f0:34: 75:5c:16:36:e4:b6:c8:af:05:9e:90:0b:07:8d:fc:d5:79:ca: d7:85:c5:26:be:ed:cb:38:58:fb:19:84:99:b2:69:8f:a1:c8: f5:a3:5a:cc:6d:b4:0e:21:f9:f0:fd:80:66:16:b2:d6:e5:9e: 95:c0:9f:b7:4d:c5:ae:d6:0d:28:55:95:74:ae:5d:6c:d4:27: 82:d1:ab:87:fe:89:67:11:5d:7b:c5:23:1c:0a:c6:b1:f1:3c: c4:f4:e5:0e:5a:a1:fd:27:58:70:3d:08:80:76:39:08:e3:a1: 79:fd:63:98:88:d4:9c:84:b1:fd:2b:36:19:8c:81:c3:df:b4: 0d:1a:b3:29 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDgkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI0NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwMjNEQkZEM0VDOEVE MUUxNDQ0MDQ2NTFCOUNGQ0VGODIzRDM5NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcwcwW8FLo4CT04BFY3VQ/l9oWXqK3lEm7fmv8/EzD7HlBZtmm 4kBZF+INDp+Kvw6BqzroUSvun1rf5lnkotR8n1nZXdMtMNAa36adoMPUMhlSq7Ow 2+yDY73H2zDXAjC5VFGQFsjby6knuql4WmUjiPu3HFz/vmw0GrgEK+BKiDsGTh/Q KNlCS7K6meSyBYs9/qzsZ4Y+s8CAFMj1BNqfZI3OtbEY2gsQDdO+mQjkxOhouod1 Kxel+Ni6Rj1fpzah8KWnoocrp7dQTn2kzmshYpDf/DPsa3NCGmm9kocQkdT5lKNQ MP+uTmx8KfqKvR1FZFLRUWT5u6ycYyT/hKaZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUYCPb/T7I7R4URARlG5z874I9OUwwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vWUNQYl9UN0k3UjRVUkFSbEc1ejg3 NEk5T1V3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bMTAN BgkqhkiG9w0BAQsFAAOCAQEAMLWcw2QFz98rG0gC0//k2cn+JJLmRtmWsfJUbQzs EoNpLiCc1X5LMK9jlWovzPjCO4fbN2MFBbsGYzAdR9sUFqcw+DHXcnhh+4KKiFnY s6vvUSWykUKBeyBO0jOFQVkzfPPMrN06irzErXp8y3Mi6bdUlwonvjEsDc/zxvA0 dVwWNuS2yK8FnpALB4381XnK14XFJr7tyzhY+xmEmbJpj6HI9aNazG20DiH58P2A Zhay1uWelcCft03FrtYNKFWVdK5dbNQngtGrh/6JZxFde8UjHArGsfE8xPTlDlqh /SdYcD0IgHY5COOhef1jmIjUnISx/Ss2GYyBw9+0DRqzKQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org