$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/jFfOFv00FNdF4lHE7DqdkM8GeLI.roa File: jFfOFv00FNdF4lHE7DqdkM8GeLI.roa (raw, json) Hash identifier: kRK66cs7OTAWsVJJDBIM7HyQ8oXx7PIhBzySltWMv9M= Subject key identifier: 8C:57:CE:16:FD:34:14:D7:45:E2:51:C4:EC:3A:9D:90:CF:06:78:B2 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E19 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/jFfOFv00FNdF4lHE7DqdkM8GeLI.roa Signing time: Mon 26 Aug 2024 05:25:03 +0000 ROA not before: Mon 26 Aug 2024 05:25:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 223.27.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3609 (0xe19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:25:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C57CE16FD3414D745E251C4EC3A9D90CF0678B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:65:2b:c6:72:2c:11:03:da:49:38:f5:7a:1d: ff:99:4e:0b:3a:0a:f8:c3:16:c8:15:8b:e9:c2:18: 7c:26:c0:be:57:b4:52:f2:1b:81:53:c6:67:da:05: 14:d9:1d:41:b5:9f:e2:09:20:8c:4b:7b:9e:64:17: f5:9e:dc:ee:08:6c:61:19:11:3b:ec:d6:40:8a:b5: 6d:0c:92:c4:54:6e:1d:52:dc:b6:26:43:c9:08:03: c7:02:ee:04:76:b3:c4:c8:4c:f7:e6:0c:9b:13:8a: c4:88:f7:37:5a:ed:98:72:ae:f4:40:79:f4:54:92: 62:06:d9:33:21:61:bb:5b:08:73:e2:45:25:c5:73: 86:41:2e:e2:a5:c6:35:40:bc:f5:de:c9:eb:89:73: 57:ad:71:e5:5e:00:58:38:cc:92:5a:f2:3a:bc:17: f5:e5:88:89:50:33:e8:f9:67:a6:9a:92:22:30:42: ae:e2:5d:1d:21:fd:c2:0b:83:6f:12:f1:9b:d6:20: 54:d1:19:79:33:de:c2:77:50:a0:7f:f0:bf:28:fe: 9e:a1:af:2b:bb:98:93:51:65:00:b5:9f:7d:b1:ae: f0:49:94:64:8d:33:67:16:a6:ef:2a:d5:56:73:35: 04:ee:a5:30:98:4a:fd:62:d7:87:61:b6:18:5c:96: cd:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:57:CE:16:FD:34:14:D7:45:E2:51:C4:EC:3A:9D:90:CF:06:78:B2 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/jFfOFv00FNdF4lHE7DqdkM8GeLI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.57.0/24 Signature Algorithm: sha256WithRSAEncryption 21:bf:84:e5:96:a0:95:d1:cc:36:2b:94:a2:5b:62:13:62:26: 9a:8c:fa:5a:1c:0e:76:82:6f:e8:67:eb:f1:3b:6e:8f:9f:c7: 8f:50:7d:ec:33:ea:4b:33:1c:da:b4:82:7b:49:83:e5:f8:70: fe:f4:38:55:08:b9:e7:28:23:d2:fc:bb:37:97:39:60:10:0d: 50:e4:ea:4a:3f:1a:3b:23:94:28:37:7d:69:74:ca:4f:21:92: df:7c:57:36:6d:c5:b6:39:fc:65:e6:c6:c8:9d:f4:34:9f:88: 30:b9:59:a0:db:d9:50:ce:aa:ab:d7:5a:47:c6:24:6a:fb:e2: 41:f6:ed:6e:41:b2:3b:f5:e5:bb:b1:ea:a4:04:2c:05:97:00: 23:74:9c:e2:9c:08:90:97:38:8f:cb:2b:1b:d4:6b:86:5c:da: d8:4e:35:1f:f0:ac:28:02:c3:3f:71:f5:c3:5d:4f:1d:44:ad: 40:62:2d:fd:98:61:86:72:9f:2a:77:51:23:ec:34:c7:44:69: d2:e9:71:d2:ee:5a:27:d8:67:1e:62:53:5f:c5:c4:73:4d:64: 8b:5c:10:57:6d:72:a6:e5:12:13:b5:c3:73:72:98:44:e7:5a: 40:f3:f0:20:52:ee:a1:7d:62:32:30:7b:a0:18:2d:a4:d6:a6: 16:0d:f5:63 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI1MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDNTdDRTE2RkQzNDE0 RDc0NUUyNTFDNEVDM0E5RDkwQ0YwNjc4QjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6ZSvGciwRA9pJOPV6Hf+ZTgs6CvjDFsgVi+nCGHwmwL5XtFLy G4FTxmfaBRTZHUG1n+IJIIxLe55kF/We3O4IbGEZETvs1kCKtW0MksRUbh1S3LYm Q8kIA8cC7gR2s8TITPfmDJsTisSI9zda7ZhyrvRAefRUkmIG2TMhYbtbCHPiRSXF c4ZBLuKlxjVAvPXeyeuJc1etceVeAFg4zJJa8jq8F/XliIlQM+j5Z6aakiIwQq7i XR0h/cILg28S8ZvWIFTRGXkz3sJ3UKB/8L8o/p6hryu7mJNRZQC1n32xrvBJlGSN M2cWpu8q1VZzNQTupTCYSv1i14dhthhcls2BAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUjFfOFv00FNdF4lHE7DqdkM8GeLIwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vakZmT0Z2MDBGTmRGNGxIRTdEcWRr TThHZUxJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bOTAN BgkqhkiG9w0BAQsFAAOCAQEAIb+E5ZagldHMNiuUoltiE2Immoz6WhwOdoJv6Gfr 8Ttuj5/Hj1B97DPqSzMc2rSCe0mD5fhw/vQ4VQi55ygj0vy7N5c5YBANUOTqSj8a OyOUKDd9aXTKTyGS33xXNm3Ftjn8ZebGyJ30NJ+IMLlZoNvZUM6qq9daR8Ykavvi QfbtbkGyO/Xlu7HqpAQsBZcAI3Sc4pwIkJc4j8srG9Rrhlza2E41H/CsKALDP3H1 w11PHUStQGIt/ZhhhnKfKndRI+w0x0Rp0ulx0u5aJ9hnHmJTX8XEc01ki1wQV21y puUSE7XDc3KYROdaQPPwIFLuoX1iMjB7oBgtpNamFg31Yw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org