$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/Gn2eAs6uAdjnQ00gfBpqzzZsAzI.roa File: Gn2eAs6uAdjnQ00gfBpqzzZsAzI.roa (raw, json) Hash identifier: h2zzJcH0BXG2tMUgl8ali2bhMd0ZSemaiTH9HMmhpho= Subject key identifier: 1A:7D:9E:02:CE:AE:01:D8:E7:43:4D:20:7C:1A:6A:CF:36:6C:03:32 Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Certificate serial: 0BCC Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/Gn2eAs6uAdjnQ00gfBpqzzZsAzI.roa Signing time: Mon 26 Aug 2024 05:10:05 +0000 ROA not before: Mon 26 Aug 2024 05:10:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 43.248.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3020 (0xbcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Validity Not Before: Aug 26 05:10:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1A7D9E02CEAE01D8E7434D207C1A6ACF366C0332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d0:d6:51:62:da:79:c4:a3:0f:c9:1a:fc:d5: 95:71:af:6a:bf:c8:25:1b:18:21:30:4e:d0:09:3a: 20:ba:99:0c:88:ff:ce:2a:f1:e9:05:90:bb:c4:5f: 4b:84:34:3b:de:3e:84:0b:9b:5f:ca:98:74:33:d9: 9c:1a:9d:06:a4:94:a8:25:f2:ed:0a:43:cb:71:31: 9f:40:b0:d1:05:b7:20:a4:a2:a1:c7:ea:fa:3e:09: 3c:ef:ae:85:23:f0:12:f8:28:c2:a8:4b:bc:e5:24: df:a6:3c:ae:0a:22:2f:76:11:8f:f3:05:86:a0:c5: 88:12:cf:88:35:ba:e5:cd:ae:89:05:6b:67:db:a3: 0d:9e:55:08:e2:19:cc:aa:1f:9c:9c:ea:12:13:06: 88:82:10:15:b2:27:b4:94:e7:a3:7f:14:77:28:c1: 69:9d:7a:bc:d6:c7:00:5b:4d:49:83:a6:c7:13:e0: 1c:7d:79:f3:9e:33:af:12:58:f3:49:de:95:ef:22: 79:66:94:05:4f:4f:8f:e1:2e:56:ca:57:72:73:a9: 18:05:35:4b:45:c1:93:5a:fb:3a:52:e1:0d:a8:c1: d0:46:75:f8:04:8a:ff:f0:8e:33:c5:37:f2:89:fe: d9:11:7e:b0:6f:03:8f:9e:89:c6:a5:a4:a9:48:a4: a3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:7D:9E:02:CE:AE:01:D8:E7:43:4D:20:7C:1A:6A:CF:36:6C:03:32 X509v3 Authority Key Identifier: keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/Gn2eAs6uAdjnQ00gfBpqzzZsAzI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.248.16.0/22 Signature Algorithm: sha256WithRSAEncryption 15:90:51:91:bd:9b:29:aa:88:50:d8:95:18:54:fc:92:96:10: 31:9c:dd:56:84:7d:2d:70:6c:ae:df:b0:a6:35:fb:cd:03:00: ff:25:ba:9b:ca:8f:ba:6d:72:27:60:b2:72:e3:bf:09:5b:5f: 7f:73:59:82:c1:e1:42:f8:50:3c:79:e7:cc:f6:dc:c2:34:75: 41:36:90:41:cd:9c:1f:75:84:cc:37:a8:95:76:5e:f1:d0:5c: 6b:45:6c:ef:f3:2a:31:9d:69:98:89:36:7f:cd:68:a4:67:49: eb:6f:09:52:fc:f6:14:fa:95:d8:69:9d:be:cb:38:ac:e6:ca: 5e:30:f7:24:3a:48:00:fc:1a:4d:1b:81:f0:2b:05:19:67:93: c2:38:68:69:ff:d5:60:dd:88:02:00:1f:91:3e:1b:48:ff:f3: 75:61:21:3c:d8:2b:d4:d0:82:ea:d4:89:ef:12:16:01:2d:72: 2d:48:f0:ef:18:69:43:61:4b:7e:e8:cd:87:82:12:50:3d:7e: 36:7d:92:76:56:d5:df:fe:b0:34:0a:27:ec:71:15:dd:12:73: f8:6d:a0:b5:c4:00:53:3c:80:a3:9c:50:eb:08:83:cc:bb:95: c2:7f:01:ee:68:23:d7:da:58:7d:d0:b9:f1:0d:e2:89:b2:60: 70:3a:4d:41 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC8wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkQ4 MjJEOTkyQjBGNjhCNjFFNkUwQTJFNjE0M0YyQkY4OTE1QkI2MTAeFw0yNDA4MjYw NTEwMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFBN0Q5RTAyQ0VBRTAx RDhFNzQzNEQyMDdDMUE2QUNGMzY2QzAzMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCW0NZRYtp5xKMPyRr81ZVxr2q/yCUbGCEwTtAJOiC6mQyI/84q 8ekFkLvEX0uENDvePoQLm1/KmHQz2ZwanQaklKgl8u0KQ8txMZ9AsNEFtyCkoqHH 6vo+CTzvroUj8BL4KMKoS7zlJN+mPK4KIi92EY/zBYagxYgSz4g1uuXNrokFa2fb ow2eVQjiGcyqH5yc6hITBoiCEBWyJ7SU56N/FHcowWmderzWxwBbTUmDpscT4Bx9 efOeM68SWPNJ3pXvInlmlAVPT4/hLlbKV3JzqRgFNUtFwZNa+zpS4Q2owdBGdfgE iv/wjjPFN/KJ/tkRfrBvA4+eicalpKlIpKNdAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUGn2eAs6uAdjnQ00gfBpqzzZsAzIwHwYDVR0jBBgwFoAUvYItmSsPaLYebgou YUPyv4kVu2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUVklT UC92WUl0bVNzUGFMWWViZ291WVVQeXY0a1Z1MkUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3ZZSXRtU3NQYUxZZWJnb3VZVVB5djRrVnUyRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NBVFZJU1AvR24yZUFzNnVBZGpuUTAw Z2ZCcHF6elpzQXpJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Aiv4EDANBgkqhkiG9w0BAQsFAAOCAQEAFZBRkb2bKaqIUNiVGFT8kpYQMZzdVoR9 LXBsrt+wpjX7zQMA/yW6m8qPum1yJ2CycuO/CVtff3NZgsHhQvhQPHnnzPbcwjR1 QTaQQc2cH3WEzDeolXZe8dBca0Vs7/MqMZ1pmIk2f81opGdJ628JUvz2FPqV2Gmd vss4rObKXjD3JDpIAPwaTRuB8CsFGWeTwjhoaf/VYN2IAgAfkT4bSP/zdWEhPNgr 1NCC6tSJ7xIWAS1yLUjw7xhpQ2FLfujNh4ISUD1+Nn2SdlbV3/6wNAon7HEV3RJz +G2gtcQAUzyAo5xQ6wiDzLuVwn8B7mgj19pYfdC58Q3iibJgcDpNQQ== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:23 2024 by rpki-client on console-fra.rpki-client.org