$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/fQzh5GLx5g35SYXqbp_hWiWjOrQ.roa File: fQzh5GLx5g35SYXqbp_hWiWjOrQ.roa (raw, json) Hash identifier: czJQcofJ3/LjQf9HK0BpKj/xV6PCNNVWLT9G66mzfcE= Subject key identifier: 7D:0C:E1:E4:62:F1:E6:0D:F9:49:85:EA:6E:9F:E1:5A:25:A3:3A:B4 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E16 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/fQzh5GLx5g35SYXqbp_hWiWjOrQ.roa Signing time: Mon 26 Aug 2024 05:25:02 +0000 ROA not before: Mon 26 Aug 2024 05:25:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 223.27.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3606 (0xe16) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:25:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7D0CE1E462F1E60DF94985EA6E9FE15A25A33AB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3e:e4:b8:49:d8:ff:cd:ba:09:46:4b:f4:6c: 3f:13:51:5f:ea:54:bd:9c:d8:a6:f3:bf:ff:74:3d: 3a:57:43:98:b8:ae:e1:f9:c3:7f:6f:90:b9:a3:c5: 30:ec:e5:3b:dc:fd:41:b1:3a:ae:30:cf:0e:ed:16: 69:78:ee:f3:1a:fc:73:06:ef:80:dc:ba:ea:b4:04: f0:7d:de:a4:07:d3:42:60:06:bf:bf:0e:e3:45:59: a9:d4:cb:07:ab:a8:04:ec:66:cc:61:18:30:f0:f8: b5:61:a7:77:90:9b:99:e3:ed:ae:86:47:59:e6:a0: f5:06:a9:50:0f:e1:9a:c9:8c:ea:34:8a:a3:54:a3: bb:8c:79:92:45:6c:e5:b9:81:41:4f:2c:be:51:0a: d0:1b:25:ba:4c:60:46:4f:2f:51:2d:41:c1:50:8f: 13:5d:bc:10:f3:bf:b9:67:1f:b4:fc:51:24:bb:79: 76:5d:ed:a4:8a:ce:2a:79:e7:68:c6:09:9b:6c:26: 91:49:0f:a7:05:3b:c0:eb:58:c5:47:56:f7:ae:fa: 19:70:60:99:07:d0:a6:4f:c2:5e:2b:78:a1:64:41: 42:24:ee:c4:b7:82:1b:2b:23:9b:6d:1b:3c:5f:c5: 93:b1:6b:64:ae:94:0d:ed:63:90:2c:01:30:d0:be: f1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:0C:E1:E4:62:F1:E6:0D:F9:49:85:EA:6E:9F:E1:5A:25:A3:3A:B4 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/fQzh5GLx5g35SYXqbp_hWiWjOrQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.54.0/24 Signature Algorithm: sha256WithRSAEncryption 60:8e:51:e0:a3:5a:74:2a:32:58:a6:1a:6f:9a:99:78:a0:4a: 2f:b8:19:04:07:9a:c5:d0:4e:2e:39:69:ed:77:3b:54:b7:fc: c3:2e:de:ca:87:c8:c2:13:12:04:31:78:49:c2:83:4f:bd:aa: a2:49:81:56:d7:73:1a:cd:a3:c8:33:3d:9d:d4:f5:91:db:1a: 3a:36:08:c8:42:3d:42:c8:5a:04:fe:ef:f1:16:cd:ff:0d:a3: 14:ae:f3:65:ac:42:49:01:a0:13:72:95:bb:d5:95:8b:df:86: 95:e2:cd:26:a8:2d:ab:fb:0f:e0:da:89:bf:b1:74:45:7e:49: 8f:62:0e:41:d4:b6:42:52:b7:f5:90:df:2b:9c:ff:e1:15:21: 0b:f5:ba:40:b6:28:37:bb:b8:14:fb:de:c8:71:74:a8:ca:29: 29:d7:2e:e6:b4:bb:d6:b8:e2:4e:0e:f0:19:32:79:eb:11:98: 26:e8:aa:82:4f:b2:d4:eb:6d:5f:bf:23:03:42:3d:45:16:13: 53:e4:3f:d3:e4:c7:5b:9b:5a:61:7e:38:24:a9:ed:5d:7d:60: 23:97:00:7d:a0:d6:42:2d:c9:18:b8:53:03:8d:8d:91:49:ef: 88:f6:a7:83:6a:b5:1a:a8:23:ee:0f:3c:05:5d:e2:5a:e5:10: 25:ed:a3:2e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDhYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI1MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdEMENFMUU0NjJGMUU2 MERGOTQ5ODVFQTZFOUZFMTVBMjVBMzNBQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3PuS4Sdj/zboJRkv0bD8TUV/qVL2c2Kbzv/90PTpXQ5i4ruH5 w39vkLmjxTDs5Tvc/UGxOq4wzw7tFml47vMa/HMG74Dcuuq0BPB93qQH00JgBr+/ DuNFWanUywerqATsZsxhGDDw+LVhp3eQm5nj7a6GR1nmoPUGqVAP4ZrJjOo0iqNU o7uMeZJFbOW5gUFPLL5RCtAbJbpMYEZPL1EtQcFQjxNdvBDzv7lnH7T8USS7eXZd 7aSKzip552jGCZtsJpFJD6cFO8DrWMVHVveu+hlwYJkH0KZPwl4reKFkQUIk7sS3 ghsrI5ttGzxfxZOxa2SulA3tY5AsATDQvvHZAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUfQzh5GLx5g35SYXqbp/hWiWjOrQwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vZlF6aDVHTHg1ZzM1U1lYcWJwX2hX aVdqT3JRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bNjAN BgkqhkiG9w0BAQsFAAOCAQEAYI5R4KNadCoyWKYab5qZeKBKL7gZBAeaxdBOLjlp 7Xc7VLf8wy7eyofIwhMSBDF4ScKDT72qokmBVtdzGs2jyDM9ndT1kdsaOjYIyEI9 QshaBP7v8RbN/w2jFK7zZaxCSQGgE3KVu9WVi9+GleLNJqgtq/sP4NqJv7F0RX5J j2IOQdS2QlK39ZDfK5z/4RUhC/W6QLYoN7u4FPveyHF0qMopKdcu5rS71rjiTg7w GTJ56xGYJuiqgk+y1OttX78jA0I9RRYTU+Q/0+THW5taYX44JKntXX1gI5cAfaDW Qi3JGLhTA42NkUnviPang2q1Gqgj7g88BV3iWuUQJe2jLg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org