$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/ceBYoqE1qPukvW4kNuQM4wNHrIY.roa File: ceBYoqE1qPukvW4kNuQM4wNHrIY.roa (raw, json) Hash identifier: +g+p7HvH4mhLA+Xh5eVAQ9aSmpPjHJT8AnlInZOSGk0= Subject key identifier: 71:E0:58:A2:A1:35:A8:FB:A4:BD:6E:24:36:E4:0C:E3:03:47:AC:86 Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: D6 Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/ceBYoqE1qPukvW4kNuQM4wNHrIY.roa Signing time: Tue 08 Oct 2024 15:05:18 +0000 ROA not before: Tue 08 Oct 2024 15:05:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150766 IP address blocks: 36.50.229.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Oct 8 15:05:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=71E058A2A135A8FBA4BD6E2436E40CE30347AC86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:14:f9:a0:93:93:e1:fc:e8:79:df:c7:e8:4c: af:7d:88:82:01:62:5d:17:f3:57:d6:9a:21:26:0d: 8c:60:c9:48:58:30:a8:b3:b3:ac:87:04:b7:8c:6e: 38:7f:6e:c5:81:1f:3d:98:86:59:d5:3f:ba:1f:0a: 1f:13:ca:38:68:dd:a9:f9:f7:e2:32:da:a0:09:a9: 2d:f0:64:0d:fb:aa:f6:c6:64:85:e3:6a:07:74:bf: ea:12:c1:93:c9:3f:af:1c:f5:86:45:4e:c4:94:c7: 8a:8d:d9:32:79:71:13:b3:12:db:82:04:a7:37:6c: 78:be:b9:09:31:f0:75:31:5b:76:a6:1f:9f:9f:1e: e1:77:13:fd:28:ca:f8:a8:b4:1c:42:b4:0f:98:b1: 5b:04:e8:1f:fc:cb:63:20:ae:f0:54:77:04:54:1d: 73:59:7a:ef:e7:6d:e7:2d:95:bd:b7:6e:e2:47:9c: ab:1d:1f:16:1d:9b:ab:4f:b3:48:23:c2:e7:56:fc: 09:16:06:c5:69:b3:2b:c4:41:e2:71:16:a6:96:f3: 39:93:ce:11:be:35:80:e3:d7:ef:b7:28:2e:35:91: 8e:76:b5:86:33:d8:99:1c:2a:19:e8:2b:2d:ae:69: a5:04:c8:7f:85:4b:3d:25:df:57:6b:2f:b7:8b:25: 46:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:E0:58:A2:A1:35:A8:FB:A4:BD:6E:24:36:E4:0C:E3:03:47:AC:86 X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/ceBYoqE1qPukvW4kNuQM4wNHrIY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.50.229.0/24 Signature Algorithm: sha256WithRSAEncryption 45:57:71:9b:7d:3e:76:00:e7:15:39:03:a2:df:71:4b:64:6d: 0e:a8:65:3a:0b:6d:82:0b:4b:fc:3e:d2:a2:55:3b:eb:1a:1c: cf:e3:ad:69:75:de:42:44:61:0d:67:a2:d4:a2:8e:79:9a:44: 82:e4:d0:39:58:40:b7:2d:ef:77:a1:b0:8c:a4:c5:af:e1:b1: a6:5d:32:d0:cb:90:4e:d9:bb:a2:1b:22:a5:c9:3d:6f:4d:6f: 84:97:5a:14:27:02:26:e1:47:3c:cc:1d:fc:08:b4:28:22:f7: 44:69:23:62:bd:d4:7c:2c:f0:6c:2b:6c:38:a5:9b:e7:b0:bc: a5:4d:41:18:01:58:a9:7a:b8:8f:35:88:24:09:8b:cf:d7:d2: 15:6f:73:34:a9:70:27:d7:fb:44:4d:72:0e:14:e1:a6:08:93: 56:d8:56:f4:1d:1c:d1:db:e4:41:8d:70:88:d4:1a:d9:59:24: c1:b8:a0:24:90:a2:ec:3a:f0:16:19:29:05:48:7a:f0:90:1e: 40:6b:87:f8:11:f1:11:2c:a7:e5:52:29:49:22:c7:78:61:67: 5a:bc:c1:e5:8c:ee:87:0d:bf:31:a6:01:70:ae:37:35:16:f0: 0c:d3:52:2a:ba:42:3c:b1:cf:23:d8:75:cb:cd:8c:86:e2:1b: bb:7a:b7:f6 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJE NEREQjRCRjkzMkM1MDA2QjcwNEI5ODI4NDEwMTc0QUM0MTJBRDAeFw0yNDEwMDgx NTA1MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxRTA1OEEyQTEzNUE4 RkJBNEJENkUyNDM2RTQwQ0UzMDM0N0FDODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoFPmgk5Ph/Oh538foTK99iIIBYl0X81fWmiEmDYxgyUhYMKiz s6yHBLeMbjh/bsWBHz2YhlnVP7ofCh8Tyjho3an59+Iy2qAJqS3wZA37qvbGZIXj agd0v+oSwZPJP68c9YZFTsSUx4qN2TJ5cROzEtuCBKc3bHi+uQkx8HUxW3amH5+f HuF3E/0oyviotBxCtA+YsVsE6B/8y2MgrvBUdwRUHXNZeu/nbectlb23buJHnKsd HxYdm6tPs0gjwudW/AkWBsVpsyvEQeJxFqaW8zmTzhG+NYDj1++3KC41kY52tYYz 2JkcKhnoKy2uaaUEyH+FSz0l31drL7eLJUb/AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUceBYoqE1qPukvW4kNuQM4wNHrIYwHwYDVR0jBBgwFoAUq9TdtL+TLFAGtwS5 goQQF0rEEq0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJ R0lUL3E5VGR0TC1UTEZBR3R3UzVnb1FRRjByRUVxMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DT0RJR0lUL2NlQllvcUUxcVB1 a3ZXNGtOdVFNNHdOSHJJWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAkMuUwDQYJKoZIhvcNAQELBQADggEBAEVXcZt9PnYA5xU5A6LfcUtkbQ6o ZToLbYILS/w+0qJVO+saHM/jrWl13kJEYQ1notSijnmaRILk0DlYQLct73ehsIyk xa/hsaZdMtDLkE7Zu6IbIqXJPW9Nb4SXWhQnAibhRzzMHfwItCgi90RpI2K91Hws 8GwrbDilm+ewvKVNQRgBWKl6uI81iCQJi8/X0hVvczSpcCfX+0RNcg4U4aYIk1bY VvQdHNHb5EGNcIjUGtlZJMG4oCSQouw68BYZKQVIevCQHkBrh/gR8REsp+VSKUki x3hhZ1q8weWM7ocNvzGmAXCuNzUW8AzTUiq6QjyxzyPYdcvNjIbiG7t6t/Y= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org