$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/gKxL0J1x_GeguEcKLTme-L13cmA.roa File: gKxL0J1x_GeguEcKLTme-L13cmA.roa (raw, json) Hash identifier: r02AI6GbpyD18ebvnrKZTJOVjg/Sy2pmrdxO/+ePCZk= Subject key identifier: 80:AC:4B:D0:9D:71:FC:67:A0:B8:47:0A:2D:39:9E:F8:BD:77:72:60 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E2F Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gKxL0J1x_GeguEcKLTme-L13cmA.roa Signing time: Mon 26 Aug 2024 05:25:07 +0000 ROA not before: Mon 26 Aug 2024 05:25:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 223.27.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3631 (0xe2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:25:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=80AC4BD09D71FC67A0B8470A2D399EF8BD777260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:20:1f:8e:0d:b2:db:c0:e1:89:55:53:9c:b0: 16:20:bd:38:22:30:d7:8b:99:84:e0:a5:84:e7:a1: 33:52:66:e9:78:d4:df:60:9a:14:bb:47:a9:ed:3e: 5c:83:79:d4:7c:57:63:0d:06:e0:51:ee:cd:9f:2c: 7d:04:a4:fd:d8:3f:c1:56:54:80:a0:d7:ca:48:5c: d5:85:9e:a3:88:d9:7a:25:08:53:6f:79:51:48:e9: 33:d7:0e:9e:eb:b2:2f:f1:ea:fa:8e:15:45:c6:90: 76:25:a7:e6:63:e8:e1:ec:8f:f4:86:28:6d:9a:08: 7d:8a:d5:57:a0:48:fb:d7:f5:8a:78:05:8f:b7:f3: ae:c9:34:dd:34:26:a1:94:7e:93:18:ae:a1:5f:6c: 42:33:15:3f:ce:9b:7e:00:8f:ce:3b:fa:f5:e0:d4: 90:27:4e:3b:11:1b:9a:62:b7:b5:8c:50:bc:cf:24: 34:80:e6:ca:23:3d:bd:43:fc:6e:14:21:ac:28:f0: c8:51:ae:89:ba:4c:30:74:50:7e:a2:7c:05:0f:4d: 3a:d1:60:73:be:b5:b8:45:ec:52:ed:fd:c0:d4:93: ba:b3:5d:ea:19:eb:f8:34:4c:8b:28:cc:79:af:39: b2:37:a9:10:e7:83:43:e8:09:5e:a3:6c:77:5e:af: ae:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AC:4B:D0:9D:71:FC:67:A0:B8:47:0A:2D:39:9E:F8:BD:77:72:60 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/gKxL0J1x_GeguEcKLTme-L13cmA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.35.0/24 Signature Algorithm: sha256WithRSAEncryption 73:ea:ae:e9:39:b1:18:40:24:4a:68:24:4c:2e:15:1b:66:c0: 54:6b:a3:d8:f1:40:fc:f9:4e:70:8d:e9:81:7b:53:4c:4b:2c: 7d:4c:f3:ff:68:81:19:3e:a1:cd:dc:f4:38:23:7b:52:50:ee: dd:5a:30:de:7b:5e:8d:a2:36:a5:b3:57:1d:04:0c:91:36:67: 9f:4e:eb:6f:cb:ee:74:bc:85:19:62:ee:b2:21:95:ad:53:09: 9b:0e:fe:02:a6:06:de:ea:da:28:4f:97:8b:48:2f:95:23:5f: da:dd:65:d2:25:aa:c9:3b:33:d3:d6:42:83:1a:d4:39:5e:ee: 42:e7:d5:c7:89:59:53:c3:b8:7c:37:42:1c:ea:34:cd:f5:2b: 3a:3d:7f:85:a4:7d:ed:58:ba:9b:b5:78:03:ef:f4:df:41:09: a5:a7:73:12:eb:6f:f7:81:23:1b:f6:b8:65:9a:15:53:e5:30: fd:8a:d6:53:d5:8b:a7:90:88:ee:fe:21:77:71:2f:45:70:df: 51:4e:b6:ee:c1:2b:4b:03:de:87:49:04:06:06:87:d9:e0:98: f6:22:2c:f9:5a:50:f2:81:f4:47:8e:42:af:e2:ac:1e:11:d0: 3a:76:23:b0:68:cb:51:a8:6b:d1:44:55:cc:04:bc:7d:55:50: 4f:1e:d3:f0 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI1MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwQUM0QkQwOUQ3MUZD NjdBMEI4NDcwQTJEMzk5RUY4QkQ3NzcyNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9IB+ODbLbwOGJVVOcsBYgvTgiMNeLmYTgpYTnoTNSZul41N9g mhS7R6ntPlyDedR8V2MNBuBR7s2fLH0EpP3YP8FWVICg18pIXNWFnqOI2XolCFNv eVFI6TPXDp7rsi/x6vqOFUXGkHYlp+Zj6OHsj/SGKG2aCH2K1VegSPvX9Yp4BY+3 867JNN00JqGUfpMYrqFfbEIzFT/Om34Aj847+vXg1JAnTjsRG5pit7WMULzPJDSA 5sojPb1D/G4UIawo8MhRrom6TDB0UH6ifAUPTTrRYHO+tbhF7FLt/cDUk7qzXeoZ 6/g0TIsozHmvObI3qRDng0PoCV6jbHder67PAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUgKxL0J1x/GeguEcKLTme+L13cmAwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vZ0t4TDBKMXhfR2VndUVjS0xUbWUt TDEzY21BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bIzAN BgkqhkiG9w0BAQsFAAOCAQEAc+qu6TmxGEAkSmgkTC4VG2bAVGuj2PFA/PlOcI3p gXtTTEssfUzz/2iBGT6hzdz0OCN7UlDu3Vow3ntejaI2pbNXHQQMkTZnn07rb8vu dLyFGWLusiGVrVMJmw7+AqYG3uraKE+Xi0gvlSNf2t1l0iWqyTsz09ZCgxrUOV7u QufVx4lZU8O4fDdCHOo0zfUrOj1/haR97Vi6m7V4A+/030EJpadzEutv94EjG/a4 ZZoVU+Uw/YrWU9WLp5CI7v4hd3EvRXDfUU627sErSwPeh0kEBgaH2eCY9iIs+VpQ 8oH0R45Cr+KsHhHQOnYjsGjLUahr0URVzAS8fVVQTx7T8A== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org