$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/bTbsdbE0WS7DGHhVCNB15M0S9P8.roa File: bTbsdbE0WS7DGHhVCNB15M0S9P8.roa (raw, json) Hash identifier: IUYCctu/EKA4QNob1Gj03pmdJbvOa66dLr8zT3BuM3w= Subject key identifier: 6D:36:EC:75:B1:34:59:2E:C3:18:78:55:08:D0:75:E4:CD:12:F4:FF Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C7B Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/bTbsdbE0WS7DGHhVCNB15M0S9P8.roa Signing time: Mon 26 Aug 2024 05:32:41 +0000 ROA not before: Mon 26 Aug 2024 05:32:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 2914 IP address blocks: 122.255.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6D36EC75B134592EC318785508D075E4CD12F4FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:31:b1:2d:29:77:63:96:ef:5f:7b:d8:3f:20: f2:fb:29:6f:4b:da:cc:56:b0:79:a2:23:67:2f:c5: 2f:bf:a5:04:f3:3f:be:49:e3:73:2b:eb:a7:00:2d: 28:b4:10:75:a6:8a:8c:9a:ff:99:0b:9f:ba:d8:31: 40:37:ce:33:5d:8d:5f:d4:17:91:b5:0d:4f:0b:f9: cb:d3:f9:4f:8e:ab:39:1a:84:5e:68:cf:f8:78:d2: ba:1b:8f:17:f5:d7:db:f2:00:73:73:d9:b3:78:08: 3f:e7:ab:87:f6:5c:93:fc:8c:8b:6e:c5:ca:71:9c: a0:d3:75:27:11:0c:94:89:7b:da:e4:99:94:09:15: e9:69:1d:e3:eb:ac:f1:06:36:b7:e3:56:b8:b0:8c: 44:3d:80:c2:11:d5:e4:f1:7f:17:ac:58:f0:c7:5f: 53:1d:6f:3e:2f:57:41:09:00:31:ab:84:41:fe:db: 72:86:4f:b7:5a:24:4e:21:2d:f4:54:12:dc:9d:31: 39:c1:0e:5b:77:93:43:34:61:49:b9:85:5c:8b:d5: 30:d2:b1:c9:9b:3e:ad:5d:8c:60:6e:d4:44:b8:a0: eb:72:26:81:38:5b:9b:91:46:1d:1f:20:ed:80:70: 34:36:68:fd:73:0a:e7:cd:5b:ad:6f:c8:66:56:7c: e0:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:36:EC:75:B1:34:59:2E:C3:18:78:55:08:D0:75:E4:CD:12:F4:FF X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/bTbsdbE0WS7DGHhVCNB15M0S9P8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.80.0/20 Signature Algorithm: sha256WithRSAEncryption 01:ee:35:bc:07:b4:fc:2a:bc:a6:8c:18:3b:bc:dd:c8:36:48: ed:37:19:cb:73:51:6e:ac:33:a5:92:bf:b8:4a:1c:28:0e:9d: b3:36:51:ed:6f:2e:0d:ea:9b:ba:82:9f:ab:d0:92:9f:f2:99: 59:6c:b7:a0:39:67:f2:11:7f:70:3b:56:08:51:ae:c7:32:19: 8d:af:a4:6c:e7:0e:19:7f:3c:84:80:91:a4:6a:b0:3b:ea:09: dd:6b:ab:fe:d9:6a:8f:5b:c3:bb:3b:33:03:ad:b1:68:95:44: e8:df:e7:5d:9a:0e:e8:74:1e:ac:3c:e6:b2:c6:1f:18:78:8f: 95:ee:a7:15:ae:19:4d:40:5e:52:31:a1:04:23:68:2a:f3:b7: 2f:1d:24:41:ea:ea:81:7a:42:43:c7:a6:8f:cd:b4:38:72:a9: 86:34:b3:2c:09:f9:61:6e:2c:e1:01:cd:35:cd:e4:6f:2d:20: 81:d3:89:d4:a5:10:8b:18:bd:cb:72:76:94:c7:06:4e:22:e6: a2:31:61:bb:b9:65:62:46:e4:3d:b8:9f:71:b1:f8:0f:f3:6f: bd:0b:01:6b:a8:ee:7f:8d:05:de:73:84:45:c4:0e:c1:d2:e5: d9:e0:ee:78:91:78:21:e2:62:23:69:e3:83:17:bb:3b:b8:b0: da:ea:1e:ed -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZEMzZFQzc1QjEzNDU5 MkVDMzE4Nzg1NTA4RDA3NUU0Q0QxMkY0RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnMbEtKXdjlu9fe9g/IPL7KW9L2sxWsHmiI2cvxS+/pQTzP75J 43Mr66cALSi0EHWmioya/5kLn7rYMUA3zjNdjV/UF5G1DU8L+cvT+U+OqzkahF5o z/h40robjxf119vyAHNz2bN4CD/nq4f2XJP8jItuxcpxnKDTdScRDJSJe9rkmZQJ FelpHePrrPEGNrfjVriwjEQ9gMIR1eTxfxesWPDHX1Mdbz4vV0EJADGrhEH+23KG T7daJE4hLfRUEtydMTnBDlt3k0M0YUm5hVyL1TDSscmbPq1djGBu1ES4oOtyJoE4 W5uRRh0fIO2AcDQ2aP1zCufNW61vyGZWfOBfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUbTbsdbE0WS7DGHhVCNB15M0S9P8wHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9iVGJzZGJFMFdTN0RHSGhWQ05C MTVNMFM5UDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEev9Q MA0GCSqGSIb3DQEBCwUAA4IBAQAB7jW8B7T8KrymjBg7vN3INkjtNxnLc1FurDOl kr+4ShwoDp2zNlHtby4N6pu6gp+r0JKf8plZbLegOWfyEX9wO1YIUa7HMhmNr6Rs 5w4ZfzyEgJGkarA76gnda6v+2WqPW8O7OzMDrbFolUTo3+ddmg7odB6sPOayxh8Y eI+V7qcVrhlNQF5SMaEEI2gq87cvHSRB6uqBekJDx6aPzbQ4cqmGNLMsCflhbizh Ac01zeRvLSCB04nUpRCLGL3LcnaUxwZOIuaiMWG7uWViRuQ9uJ9xsfgP82+9CwFr qO5/jQXec4RFxA7B0uXZ4O54kXgh4mIjaeODF7s7uLDa6h7t -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:17 2024 by rpki-client on console-fra.rpki-client.org