$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/EfYBvoJnOFWjxMAV2ZM41a_TAO4.roa File: EfYBvoJnOFWjxMAV2ZM41a_TAO4.roa (raw, json) Hash identifier: soeTPzeaE5eZPzPzrXtOwh15B2dvjIMFWO0surbR1NE= Subject key identifier: 11:F6:01:BE:82:67:38:55:A3:C4:C0:15:D9:93:38:D5:AF:D3:00:EE Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C73 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/EfYBvoJnOFWjxMAV2ZM41a_TAO4.roa Signing time: Mon 26 Aug 2024 05:11:21 +0000 ROA not before: Mon 26 Aug 2024 05:11:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24169 IP address blocks: 150.129.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=11F601BE82673855A3C4C015D99338D5AFD300EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:24:94:be:af:5e:db:1f:22:64:54:cc:ac:9d: 25:a9:f9:98:21:2f:93:b1:89:62:94:04:75:b5:fb: 80:f4:4d:55:0a:92:ff:a6:ea:9b:50:d6:1c:24:96: 74:96:b8:19:a3:e5:bf:fc:26:9a:f0:a5:fd:98:ad: c7:81:bd:a5:2a:0b:c7:d5:ec:47:02:56:b5:b8:42: bb:a5:22:a0:9d:8c:a2:2d:91:88:f9:93:d8:00:39: 25:95:6e:69:31:af:19:e2:ca:cc:71:14:47:3c:28: 7b:e4:a9:43:38:f0:0d:1a:86:4f:16:a4:22:32:ba: 12:c4:3c:02:7f:53:3f:b1:95:8a:00:82:87:af:f9: c6:a3:8a:f1:35:e7:20:5e:b0:f4:99:10:bb:00:f1: e3:36:86:15:74:7a:ef:78:c4:2d:22:bf:de:96:09: a4:c9:90:af:28:32:fc:59:8f:63:8c:d8:a3:7f:72: 02:23:d2:c4:a1:77:a9:0a:ed:ec:a1:59:4d:08:f6: 57:ba:ce:27:f4:6b:96:0b:2d:38:bb:0c:b5:77:f4: 7c:ef:d7:35:ce:0b:0a:d1:5d:f6:81:f4:09:f7:87: 63:d1:15:6c:86:df:8a:07:95:13:75:07:5f:98:67: fd:c8:e5:bf:7d:b4:77:e3:4a:2d:dd:b2:77:11:e9: f5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:F6:01:BE:82:67:38:55:A3:C4:C0:15:D9:93:38:D5:AF:D3:00:EE X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/EfYBvoJnOFWjxMAV2ZM41a_TAO4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.129.36.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:6d:71:7b:9c:6d:00:97:be:77:e8:c9:04:e9:8a:53:e7:5b: 5d:89:f8:d0:c4:f8:f6:12:d8:ff:b5:d1:a3:a7:5e:37:6d:ec: b4:db:c9:93:80:6e:5d:0e:cc:f9:76:63:c4:c2:d1:39:00:1b: d8:ba:c8:ff:ff:36:e3:53:2e:50:f1:fd:c4:0a:68:13:6c:15: 33:e6:08:72:9f:75:a6:a7:c8:1c:6e:90:56:fc:03:35:d2:70: e1:e0:ff:da:c3:6d:2d:f4:e2:d3:a4:50:26:3d:0e:91:70:a1: c5:1e:0e:4d:8a:e0:58:e4:99:43:1f:f7:21:46:10:8e:7d:7b: e1:93:84:f4:32:9f:53:b4:fe:1d:df:cc:4f:33:9c:26:ac:60: 36:50:70:c8:ce:51:21:ae:ec:ec:9b:23:28:f5:7c:40:04:5f: 2b:17:df:9f:4d:90:31:9e:cc:f9:d0:d1:fd:9e:26:fa:97:79: a2:c3:44:80:99:97:2d:45:2d:b2:b3:5f:62:93:af:c3:b5:2b: d7:74:c6:39:f9:bb:94:4b:19:24:96:1d:45:6a:ef:9a:1a:2b: 3c:6b:39:2b:37:06:3e:5f:99:e2:e2:00:07:58:5d:9e:89:db: a6:c1:8d:90:21:a2:2f:39:1d:3d:f4:53:72:cc:fc:d1:ad:7c: c9:e4:57:f1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExRjYwMUJFODI2NzM4 NTVBM0M0QzAxNUQ5OTMzOEQ1QUZEMzAwRUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKJJS+r17bHyJkVMysnSWp+ZghL5OxiWKUBHW1+4D0TVUKkv+m 6ptQ1hwklnSWuBmj5b/8Jprwpf2YrceBvaUqC8fV7EcCVrW4QrulIqCdjKItkYj5 k9gAOSWVbmkxrxniysxxFEc8KHvkqUM48A0ahk8WpCIyuhLEPAJ/Uz+xlYoAgoev +cajivE15yBesPSZELsA8eM2hhV0eu94xC0iv96WCaTJkK8oMvxZj2OM2KN/cgIj 0sShd6kK7eyhWU0I9le6zif0a5YLLTi7DLV39Hzv1zXOCwrRXfaB9An3h2PRFWyG 34oHlRN1B1+YZ/3I5b99tHfjSi3dsncR6fWJAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUEfYBvoJnOFWjxMAV2ZM41a/TAO4wHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vRWZZQnZvSm5P RldqeE1BVjJaTTQxYV9UQU80LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAJaBJDANBgkqhkiG9w0BAQsFAAOCAQEATW1xe5xtAJe+d+jJBOmKU+db XYn40MT49hLY/7XRo6deN23stNvJk4BuXQ7M+XZjxMLROQAb2LrI//8241MuUPH9 xApoE2wVM+YIcp91pqfIHG6QVvwDNdJw4eD/2sNtLfTi06RQJj0OkXChxR4OTYrg WOSZQx/3IUYQjn174ZOE9DKfU7T+Hd/MTzOcJqxgNlBwyM5RIa7s7JsjKPV8QARf Kxffn02QMZ7M+dDR/Z4m+pd5osNEgJmXLUUtsrNfYpOvw7Ur13TGOfm7lEsZJJYd RWrvmhorPGs5KzcGPl+Z4uIAB1hdnonbpsGNkCGiLzkdPfRTcsz80a18yeRX8Q== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org