$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/je8hVqTYb4NKDJMcCHAN4vg5lWY.roa File: je8hVqTYb4NKDJMcCHAN4vg5lWY.roa (raw, json) Hash identifier: ibkZCMzPqBk4MxETbFVSatc3S8HyiYQKEppLvZHERC0= Subject key identifier: 8D:EF:21:56:A4:D8:6F:83:4A:0C:93:1C:08:70:0D:E2:F8:39:95:66 Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0C2F Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/je8hVqTYb4NKDJMcCHAN4vg5lWY.roa Signing time: Mon 26 Aug 2024 05:12:58 +0000 ROA not before: Mon 26 Aug 2024 05:12:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10135 IP address blocks: 49.128.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3119 (0xc2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Aug 26 05:12:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8DEF2156A4D86F834A0C931C08700DE2F8399566 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:08:52:92:41:32:ac:66:b5:00:73:93:f9:64: b5:e8:0f:7c:b6:51:ee:c2:c5:a2:17:b6:4d:0c:69: b7:eb:eb:ed:15:16:2d:22:e7:30:8d:c1:3f:ba:cd: 47:f2:0f:b7:a5:f3:b4:0d:28:bd:ab:c0:cb:92:29: 54:27:6a:cd:65:46:57:3d:87:eb:e7:c7:0e:5f:8e: 73:a0:51:95:d1:87:d3:36:9e:da:ad:99:4d:10:ec: b4:5e:da:f6:37:ac:ac:3a:4b:03:28:ae:18:04:27: f5:a6:d1:dd:bd:c5:ff:b2:45:b6:9f:b2:b6:7b:27: 06:22:99:f7:79:36:0e:48:af:b1:54:1e:cd:2a:c9: b3:17:cf:d6:c2:85:01:1c:c9:8d:46:84:de:f0:a2: 7b:d7:34:8e:11:55:f7:b3:2d:d6:c8:7a:54:a2:ef: e8:62:8f:3c:53:99:9a:69:6e:ba:d5:ea:36:f4:d1: 33:36:d6:c4:4e:d1:81:d4:5b:73:2a:3e:fa:67:2d: dc:6f:bc:b4:2a:c7:c4:0d:45:0a:8a:6d:2c:5b:1b: 25:f6:a7:30:17:ed:ce:1f:27:9d:5a:6b:a5:99:54: 88:86:ff:99:04:c4:51:2d:bd:d7:44:fc:30:91:fc: e0:f4:81:22:63:d7:17:eb:72:2f:56:9a:aa:e1:6a: 43:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:EF:21:56:A4:D8:6F:83:4A:0C:93:1C:08:70:0D:E2:F8:39:95:66 X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/je8hVqTYb4NKDJMcCHAN4vg5lWY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.128.112.0/20 Signature Algorithm: sha256WithRSAEncryption 58:91:b9:4e:bd:55:e7:05:07:68:99:4f:14:4e:c9:fb:4b:a9: 33:82:05:b5:ad:b3:2a:02:c0:2e:52:c7:78:25:5a:31:58:da: dd:9e:75:95:a2:b9:5c:7f:f4:a1:58:ef:2d:d3:54:5f:4a:a7: 2c:8d:b9:92:b0:05:25:30:f6:03:14:9f:fd:c7:a3:24:2c:3c: f5:ea:d5:68:cc:3b:1b:77:d2:ab:f6:52:ff:72:3a:e7:57:e0: 83:5e:bf:a9:4e:97:6c:bf:06:14:34:7f:62:42:77:0c:b9:df: e6:24:5b:28:6f:26:2c:50:38:2b:bc:9a:eb:26:82:ea:a4:dc: 14:e6:d3:31:96:6d:29:bd:59:99:f8:db:91:52:64:18:99:64: cd:b3:8a:e8:7c:ce:9c:1c:c5:a9:b8:d6:4a:6a:b3:6e:a3:40: 74:55:5f:69:74:2b:de:e5:ba:c6:bf:fb:a5:5e:c3:57:74:74: 9c:26:ca:9e:c1:d9:47:dc:45:a0:47:39:bb:84:9a:99:cc:ac: 45:77:91:a4:17:2b:8a:30:f9:ea:6c:1e:8e:27:b2:d6:26:9e: 11:c2:cb:2e:46:61:78:e1:a9:82:63:35:0a:e4:fb:e3:e7:c8: ff:56:ec:54:a4:39:d1:d0:25:34:54:4f:a5:bf:4a:5e:69:bb: 57:af:2f:4b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDC8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNDA4MjYw NTEyNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhERUYyMTU2QTREODZG ODM0QTBDOTMxQzA4NzAwREUyRjgzOTk1NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuCFKSQTKsZrUAc5P5ZLXoD3y2Ue7CxaIXtk0Mabfr6+0VFi0i 5zCNwT+6zUfyD7el87QNKL2rwMuSKVQnas1lRlc9h+vnxw5fjnOgUZXRh9M2ntqt mU0Q7LRe2vY3rKw6SwMorhgEJ/Wm0d29xf+yRbafsrZ7JwYimfd5Ng5Ir7FUHs0q ybMXz9bChQEcyY1GhN7wonvXNI4RVfezLdbIelSi7+hijzxTmZppbrrV6jb00TM2 1sRO0YHUW3MqPvpnLdxvvLQqx8QNRQqKbSxbGyX2pzAX7c4fJ51aa6WZVIiG/5kE xFEtvddE/DCR/OD0gSJj1xfrci9WmqrhakO5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUje8hVqTYb4NKDJMcCHAN4vg5lWYwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvamU4aFZxVFliNE5LREpN Y0NIQU40dmc1bFdZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BDGAcDANBgkqhkiG9w0BAQsFAAOCAQEAWJG5Tr1V5wUHaJlPFE7J+0upM4IFta2z KgLALlLHeCVaMVja3Z51laK5XH/0oVjvLdNUX0qnLI25krAFJTD2AxSf/cejJCw8 9erVaMw7G3fSq/ZS/3I651fgg16/qU6XbL8GFDR/YkJ3DLnf5iRbKG8mLFA4K7ya 6yaC6qTcFObTMZZtKb1ZmfjbkVJkGJlkzbOK6HzOnBzFqbjWSmqzbqNAdFVfaXQr 3uW6xr/7pV7DV3R0nCbKnsHZR9xFoEc5u4SamcysRXeRpBcrijD56mwejiey1iae EcLLLkZheOGpgmM1CuT74+fI/1bsVKQ50dAlNFRPpb9KXmm7V68vSw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org