$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/EgbNNe1nNJ4tQqmgwnGl7IMhPzc.roa File: EgbNNe1nNJ4tQqmgwnGl7IMhPzc.roa (raw, json) Hash identifier: eRB6e/vc33KZ5NzTBrp49Ls2apnzRHKkAnJAZ9dB0W4= Subject key identifier: 12:06:CD:35:ED:67:34:9E:2D:42:A9:A0:C2:71:A5:EC:83:21:3F:37 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CCF Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/EgbNNe1nNJ4tQqmgwnGl7IMhPzc.roa Signing time: Mon 26 Aug 2024 05:26:15 +0000 ROA not before: Mon 26 Aug 2024 05:26:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 203.121.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3279 (0xccf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1206CD35ED67349E2D42A9A0C271A5EC83213F37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:64:3e:79:06:1d:f3:4d:d6:b0:d1:44:76:18: 67:47:d4:93:d4:3f:e9:f3:2a:e9:97:3d:7c:b4:83: 79:62:0e:15:fa:a1:fe:7a:24:78:da:87:b4:48:c2: e0:4f:bd:ba:ae:09:17:1c:ab:bd:07:53:75:a8:3f: d4:47:74:4d:dc:58:74:a4:50:4a:d1:07:f2:aa:6e: 56:0f:5d:6d:43:4b:3d:20:93:5a:32:fe:5e:3b:1f: 6e:22:ac:99:1a:27:a1:a1:ac:1e:ba:67:25:60:2d: 47:c8:c1:a9:53:59:f6:ad:01:7c:67:fc:f8:1f:08: 29:93:2f:3d:45:89:d2:d1:f6:b9:88:c1:4a:5d:1f: 23:b7:cd:58:e5:f9:99:b3:cc:78:6a:4c:59:93:d7: b8:af:b1:6f:e4:16:0a:ce:25:ff:a1:69:fc:a1:92: a2:93:56:d2:54:e3:45:ea:d9:38:f8:14:0a:9b:d8: 72:9e:16:af:81:e6:95:b9:6a:ad:3e:ba:35:85:9d: 8c:c8:1b:5b:1a:80:26:23:e2:40:14:f9:ae:59:9c: 0e:a5:e5:28:1a:e7:01:90:3f:86:40:bd:ba:b4:d2: 93:36:4e:e4:2c:d0:7d:cb:c9:45:1d:fc:cc:69:f9: 9c:20:56:03:27:12:c0:18:24:44:a4:0c:88:d8:8f: a9:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:06:CD:35:ED:67:34:9E:2D:42:A9:A0:C2:71:A5:EC:83:21:3F:37 X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/EgbNNe1nNJ4tQqmgwnGl7IMhPzc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.121.224.0/20 Signature Algorithm: sha256WithRSAEncryption 48:c9:be:32:a8:48:42:62:6c:87:b6:d8:f0:e2:a7:42:56:cd: a5:a5:30:34:b3:a6:40:97:9a:1a:48:56:8f:cb:c4:1c:dc:2a: ed:bf:21:53:54:17:a5:10:df:fb:bf:c4:85:64:f0:af:93:9f: 78:27:a1:e0:0e:6d:f3:37:cd:b8:a4:07:ef:d1:24:cf:ba:70: dc:6f:a7:28:da:57:1b:df:84:35:86:0d:24:9a:7e:10:da:22: 4b:c8:17:97:7e:7d:e2:a1:e6:17:43:59:4e:e0:a2:6f:22:2c: 09:f8:d0:91:2c:85:9b:e6:cc:be:f2:d9:80:4d:da:46:4c:74: 39:32:4e:4f:e2:fa:8a:68:2f:ae:fe:ef:ee:87:ec:6b:8f:71: 7a:85:ba:ad:20:8a:a5:eb:45:a0:10:4c:bf:0e:90:c5:80:c1: 67:8e:d6:99:23:e5:89:4b:57:7d:ac:1b:69:b9:17:e8:c2:e9: f2:9d:ed:fe:08:b3:ad:20:9d:93:ff:cd:1d:9f:96:03:11:95: 6d:71:f9:e1:2d:4e:5f:5e:f1:3c:5e:bf:a7:0a:6d:d7:81:de: 45:74:4d:c5:9d:0d:72:5e:71:49:a9:b6:38:b9:5c:dc:66:fc: 70:ad:cf:3d:f7:97:3b:36:9b:12:ac:25:5b:87:b0:8c:65:ae: 30:94:5b:dc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDM8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyMDZDRDM1RUQ2NzM0 OUUyRDQyQTlBMEMyNzFBNUVDODMyMTNGMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHZD55Bh3zTdaw0UR2GGdH1JPUP+nzKumXPXy0g3liDhX6of56 JHjah7RIwuBPvbquCRccq70HU3WoP9RHdE3cWHSkUErRB/KqblYPXW1DSz0gk1oy /l47H24irJkaJ6GhrB66ZyVgLUfIwalTWfatAXxn/PgfCCmTLz1FidLR9rmIwUpd HyO3zVjl+ZmzzHhqTFmT17ivsW/kFgrOJf+hafyhkqKTVtJU40Xq2Tj4FAqb2HKe Fq+B5pW5aq0+ujWFnYzIG1sagCYj4kAU+a5ZnA6l5Sga5wGQP4ZAvbq00pM2TuQs 0H3LyUUd/Mxp+ZwgVgMnEsAYJESkDIjYj6n3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUEgbNNe1nNJ4tQqmgwnGl7IMhPzcwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9FZ2JOTmUxbk5KNHRRcW1nd25H bDdJTWhQemMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy3ng MA0GCSqGSIb3DQEBCwUAA4IBAQBIyb4yqEhCYmyHttjw4qdCVs2lpTA0s6ZAl5oa SFaPy8Qc3CrtvyFTVBelEN/7v8SFZPCvk594J6HgDm3zN824pAfv0STPunDcb6co 2lcb34Q1hg0kmn4Q2iJLyBeXfn3ioeYXQ1lO4KJvIiwJ+NCRLIWb5sy+8tmATdpG THQ5Mk5P4vqKaC+u/u/uh+xrj3F6hbqtIIql60WgEEy/DpDFgMFnjtaZI+WJS1d9 rBtpuRfowunyne3+CLOtIJ2T/80dn5YDEZVtcfnhLU5fXvE8Xr+nCm3Xgd5FdE3F nQ1yXnFJqbY4uVzcZvxwrc8995c7NpsSrCVbh7CMZa4wlFvc -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:13 2024 by rpki-client on console-fra.rpki-client.org