$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HYA/O4gBk2wQ7BFEZyUQYbqO-FSpWOg.roa File: O4gBk2wQ7BFEZyUQYbqO-FSpWOg.roa (raw, json) Hash identifier: JgCkspoq746nUafJ+FbZOKgPG40DG0wqe67cy2JaG7g= Subject key identifier: 3B:88:01:93:6C:10:EC:11:44:67:25:10:61:BA:8E:F8:54:A9:58:E8 Certificate issuer: /CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4 Certificate serial: 0C1B Authority key identifier: 0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/O4gBk2wQ7BFEZyUQYbqO-FSpWOg.roa Signing time: Mon 26 Aug 2024 05:18:52 +0000 ROA not before: Mon 26 Aug 2024 05:18:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10085 IP address blocks: 114.29.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAE2D331F2C4280C16AA8BAFE16FDDCCE3715B4 Validity Not Before: Aug 26 05:18:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3B8801936C10EC114467251061BA8EF854A958E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:70:75:41:79:3c:a4:9a:4d:97:d3:13:46:1d: 0b:17:ef:78:46:9d:a7:05:f3:da:50:77:22:dd:a3: b4:ae:cf:84:38:f8:2c:46:a1:ef:47:32:ac:1b:c0: 28:5d:28:e5:e4:bc:bf:b6:a5:7b:a6:87:7a:44:21: b8:b5:03:5b:57:50:4f:9b:38:51:04:6b:c7:d3:ca: 8e:16:68:3d:08:49:e7:ee:ea:55:84:d7:ea:d2:03: 29:45:cf:44:97:df:9d:4b:25:3b:66:58:f4:7f:7d: 43:2a:34:1d:42:b7:d4:55:c4:d3:26:35:b1:ed:38: dc:a5:6d:cc:c0:35:78:f2:86:4d:c0:1a:ba:4c:ac: f9:93:c8:5b:10:96:2a:45:5a:ff:fc:57:7b:9d:87: 3f:57:cf:25:fe:f3:6c:9b:29:0b:a5:a1:a9:37:04: e2:8a:d4:b3:60:dc:09:c3:b4:7d:56:10:b5:e3:51: 0c:c5:e2:92:29:73:b6:e4:48:03:01:b8:58:3f:ec: 53:87:b0:67:7a:fe:d0:36:73:83:3b:c2:85:7c:7b: a4:17:fa:e8:96:56:7e:57:f2:38:81:47:84:3d:7d: ad:5e:df:4c:9a:24:6c:3b:db:73:8c:59:0e:18:01: fc:8f:a4:d5:8e:f9:6c:8b:f8:53:af:dc:7a:00:1c: 30:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:88:01:93:6C:10:EC:11:44:67:25:10:61:BA:8E:F8:54:A9:58:E8 X509v3 Authority Key Identifier: keyid:0E:AE:2D:33:1F:2C:42:80:C1:6A:A8:BA:FE:16:FD:DC:CE:37:15:B4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Dq4tMx8sQoDBaqi6_hb93M43FbQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HYA/O4gBk2wQ7BFEZyUQYbqO-FSpWOg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.29.240.0/22 Signature Algorithm: sha256WithRSAEncryption 90:03:7e:cc:32:1d:34:14:d7:d3:cc:af:0b:0a:e3:c9:f1:dc: b8:41:e4:6e:76:11:64:b0:c3:4e:99:7d:87:5d:bc:d1:52:57: 7e:3d:06:0f:57:b4:f7:bc:13:94:21:85:2d:f0:a1:88:7e:60: 8f:43:33:44:97:60:f3:33:f2:8f:23:fd:0a:5a:29:58:bb:b5: b3:18:80:97:57:61:7d:c1:7c:58:d4:f2:79:8d:e6:23:a9:68: 20:ff:1d:44:8f:a0:4e:cb:bd:95:1c:cd:a3:50:c7:57:04:fa: 26:cc:dd:25:8a:9d:ec:7f:27:a8:b1:12:2d:51:3a:8f:bb:88: 79:a1:4a:52:99:88:30:d4:a2:41:af:cc:22:7d:b2:22:0d:31: 87:d6:1b:40:d0:2d:b6:4d:7d:66:54:ab:15:d3:74:c8:ab:9a: a8:8f:8c:3c:bb:c2:55:b7:ad:4e:00:79:71:be:08:23:2a:3e: 3c:6a:fc:8b:ab:f2:36:c4:d1:b4:0b:27:0e:c8:56:53:79:0c: a6:b5:d1:cb:17:d0:6b:be:e8:73:a7:f1:88:44:22:c5:94:6c: 80:14:8d:d2:d3:a5:c4:b1:5d:19:3b:47:9b:99:0c:5d:4d:f9: 94:a5:dd:52:cb:9d:fe:79:c0:a9:a5:a8:99:ef:68:31:31:f4: d2:82:af:08 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEVB RTJEMzMxRjJDNDI4MEMxNkFBOEJBRkUxNkZERENDRTM3MTVCNDAeFw0yNDA4MjYw NTE4NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCODgwMTkzNkMxMEVD MTE0NDY3MjUxMDYxQkE4RUY4NTRBOTU4RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD6cHVBeTykmk2X0xNGHQsX73hGnacF89pQdyLdo7Suz4Q4+CxG oe9HMqwbwChdKOXkvL+2pXumh3pEIbi1A1tXUE+bOFEEa8fTyo4WaD0ISefu6lWE 1+rSAylFz0SX351LJTtmWPR/fUMqNB1Ct9RVxNMmNbHtONylbczANXjyhk3AGrpM rPmTyFsQlipFWv/8V3udhz9XzyX+82ybKQuloak3BOKK1LNg3AnDtH1WELXjUQzF 4pIpc7bkSAMBuFg/7FOHsGd6/tA2c4M7woV8e6QX+uiWVn5X8jiBR4Q9fa1e30ya JGw723OMWQ4YAfyPpNWO+WyL+FOv3HoAHDCjAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUO4gBk2wQ7BFEZyUQYbqO+FSpWOgwHwYDVR0jBBgwFoAUDq4tMx8sQoDBaqi6 /hb93M43FbQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL0Rx NHRNeDhzUW9EQmFxaTZfaGI5M000M0ZiUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev RHE0dE14OHNRb0RCYXFpNl9oYjkzTTQzRmJRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFlBL080Z0JrMndRN0JGRVp5VVFZYnFPLUZT cFdPZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJyHfAwDQYJ KoZIhvcNAQELBQADggEBAJADfswyHTQU19PMrwsK48nx3LhB5G52EWSww06ZfYdd vNFSV349Bg9XtPe8E5QhhS3woYh+YI9DM0SXYPMz8o8j/QpaKVi7tbMYgJdXYX3B fFjU8nmN5iOpaCD/HUSPoE7LvZUczaNQx1cE+ibM3SWKnex/J6ixEi1ROo+7iHmh SlKZiDDUokGvzCJ9siINMYfWG0DQLbZNfWZUqxXTdMirmqiPjDy7wlW3rU4AeXG+ CCMqPjxq/Iur8jbE0bQLJw7IVlN5DKa10csX0Gu+6HOn8YhEIsWUbIAUjdLTpcSx XRk7R5uZDF1N+ZSl3VLLnf55wKmlqJnvaDEx9NKCrwg= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:49 2024 by rpki-client on console-ams.rpki-client.org