$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/gL-tfAgLl5p9BStn4aTHjNyRnfM.roa File: gL-tfAgLl5p9BStn4aTHjNyRnfM.roa (raw, json) Hash identifier: TBMb+ZxXBEjFyRZofm7TmREMlb9IFfHrUv8oFCTjxu8= Subject key identifier: 80:BF:AD:7C:08:0B:97:9A:7D:05:2B:67:E1:A4:C7:8C:DC:91:9D:F3 Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0C33 Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/gL-tfAgLl5p9BStn4aTHjNyRnfM.roa Signing time: Mon 26 Aug 2024 05:12:59 +0000 ROA not before: Mon 26 Aug 2024 05:12:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10135 IP address blocks: 115.85.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3123 (0xc33) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Aug 26 05:12:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=80BFAD7C080B979A7D052B67E1A4C78CDC919DF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:46:fc:40:76:77:b7:fb:41:ed:d4:79:9e:f1: 5a:ca:1b:cd:7b:6e:4e:e8:d1:74:f0:6a:b4:78:7f: 0f:69:52:92:bb:60:b4:97:e3:b1:b9:85:bb:9a:f3: d5:77:cb:94:77:cc:64:4b:cf:db:77:bd:bc:39:32: 41:06:c1:10:50:9a:4b:e8:09:46:f4:df:2b:ea:23: 38:23:0b:88:5c:43:ac:a3:7b:54:50:78:78:bf:ed: 78:12:4b:a2:87:2f:7c:31:e2:1b:14:a3:3e:64:1f: 40:01:6b:ca:00:35:71:8f:e1:6f:e9:06:2a:8a:36: 21:31:f4:2a:68:cb:fc:6d:8c:85:55:da:f5:d3:98: 28:a1:71:94:25:f1:88:88:75:0d:27:9c:47:17:a4: 6b:3e:d3:9a:d7:ba:d8:0d:fe:e8:d7:2e:79:35:7e: b1:66:25:72:c5:b9:40:06:8a:5e:dc:78:74:a2:76: f0:7b:eb:aa:16:41:30:1c:67:e7:cc:c9:51:99:a7: d9:17:4d:7a:9d:58:81:7a:bb:51:07:5e:09:b5:91: 86:00:0a:dc:fe:38:80:26:4c:c3:43:b9:82:96:1b: 60:df:3d:62:8d:47:66:c9:5f:0e:f5:c1:e3:09:07: b6:06:5e:28:dc:4f:59:d5:c9:49:f8:81:3e:b8:90: 64:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:BF:AD:7C:08:0B:97:9A:7D:05:2B:67:E1:A4:C7:8C:DC:91:9D:F3 X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/gL-tfAgLl5p9BStn4aTHjNyRnfM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.85.144.0/20 Signature Algorithm: sha256WithRSAEncryption b3:2f:ef:21:09:0a:f3:dc:93:0d:f5:48:ee:eb:cf:2e:c9:b4: 17:30:56:58:e4:b1:eb:be:19:f0:4d:04:96:7b:58:6a:1c:7a: f0:6e:97:e9:99:41:d7:41:5e:9c:d0:31:01:04:57:d1:b6:0a: 1c:5e:6d:b0:7c:16:de:23:1a:d7:07:28:5d:9f:f7:87:f6:51: 55:e6:b2:10:d4:85:4a:35:13:28:5e:b3:ac:76:d0:ef:ac:2b: 72:30:e9:f6:fb:2a:2c:03:30:39:17:ba:db:b6:eb:77:5e:86: 26:23:14:2b:45:4d:41:68:2b:00:aa:a4:6f:d8:ba:a5:1a:7d: 4d:55:ec:22:d5:28:2c:1b:af:d3:83:45:b1:c9:5a:1b:ea:65: ca:3c:81:25:3c:12:58:99:22:47:a4:b9:04:4e:82:01:c8:6d: 54:4b:88:1e:6d:6e:34:59:c2:7b:39:fe:59:b4:2c:86:97:72: e5:79:71:f5:e3:c6:3c:a6:70:07:6c:79:12:7c:dc:58:af:76: 1f:e3:fd:55:fd:7a:58:ad:20:b8:59:df:ea:c7:5a:97:f6:7b: 22:a9:01:2f:9a:13:24:82:b0:81:f8:3b:ee:3d:07:f5:67:40: a1:19:af:90:48:09:dd:f2:c5:6a:36:cb:ee:68:08:c8:60:5b: b3:93:f4:4d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDDMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNDA4MjYw NTEyNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwQkZBRDdDMDgwQjk3 OUE3RDA1MkI2N0UxQTRDNzhDREM5MTlERjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWRvxAdne3+0Ht1Hme8VrKG817bk7o0XTwarR4fw9pUpK7YLSX 47G5hbua89V3y5R3zGRLz9t3vbw5MkEGwRBQmkvoCUb03yvqIzgjC4hcQ6yje1RQ eHi/7XgSS6KHL3wx4hsUoz5kH0ABa8oANXGP4W/pBiqKNiEx9Cpoy/xtjIVV2vXT mCihcZQl8YiIdQ0nnEcXpGs+05rXutgN/ujXLnk1frFmJXLFuUAGil7ceHSidvB7 66oWQTAcZ+fMyVGZp9kXTXqdWIF6u1EHXgm1kYYACtz+OIAmTMNDuYKWG2DfPWKN R2bJXw71weMJB7YGXijcT1nVyUn4gT64kGRnAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUgL+tfAgLl5p9BStn4aTHjNyRnfMwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvZ0wtdGZBZ0xsNXA5QlN0 bjRhVEhqTnlSbmZNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BHNVkDANBgkqhkiG9w0BAQsFAAOCAQEAsy/vIQkK89yTDfVI7uvPLsm0FzBWWOSx 674Z8E0ElntYahx68G6X6ZlB10FenNAxAQRX0bYKHF5tsHwW3iMa1wcoXZ/3h/ZR VeayENSFSjUTKF6zrHbQ76wrcjDp9vsqLAMwORe627brd16GJiMUK0VNQWgrAKqk b9i6pRp9TVXsItUoLBuv04NFsclaG+plyjyBJTwSWJkiR6S5BE6CAchtVEuIHm1u NFnCezn+WbQshpdy5Xlx9ePGPKZwB2x5EnzcWK92H+P9Vf16WK0guFnf6sdal/Z7 IqkBL5oTJIKwgfg77j0H9WdAoRmvkEgJ3fLFajbL7mgIyGBbs5P0TQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org