$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rgp1YESsmJ1JRU8R7TsdguvgXOU.roa File: rgp1YESsmJ1JRU8R7TsdguvgXOU.roa (raw, json) Hash identifier: 3vzqcm+uHSMkhGUrQ+dGuzZnPYJiiS3LtHedLNtJw8U= Subject key identifier: AE:0A:75:60:44:AC:98:9D:49:45:4F:11:ED:3B:1D:82:EB:E0:5C:E5 Certificate issuer: /CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Certificate serial: 0C4E Authority key identifier: 94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rgp1YESsmJ1JRU8R7TsdguvgXOU.roa Signing time: Mon 26 Aug 2024 05:13:04 +0000 ROA not before: Mon 26 Aug 2024 05:13:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18411 IP address blocks: 61.56.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3150 (0xc4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=94C6DDFDD4BAA50400F3A119A5833CE0021BDB2E Validity Not Before: Aug 26 05:13:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE0A756044AC989D49454F11ED3B1D82EBE05CE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ba:9d:f1:ea:3b:88:c9:51:27:b0:62:6e:60: 72:c7:b2:90:69:36:bd:b6:49:da:8e:72:cc:cb:1c: 0e:fc:f3:ef:62:e9:c8:e7:1c:88:16:1f:33:3f:4e: 4c:9f:89:d8:c4:0b:7a:c0:ae:63:55:8a:f3:5c:39: a5:a5:f0:e3:74:02:0f:93:4d:ec:55:89:b9:bd:cc: 7a:6e:b7:b0:0d:f8:b6:f9:77:0c:e4:d2:8d:fd:e5: 00:30:ef:8d:80:cc:af:df:fd:ab:f9:62:e7:51:7d: f1:03:76:68:18:15:c5:0a:8c:a8:eb:23:d5:63:50: a1:68:dd:a9:d3:65:02:35:99:46:94:12:a3:c3:af: 8a:ff:ce:88:f9:56:d2:b1:2d:00:e1:a4:20:5a:7b: 7a:00:27:b2:a8:b8:13:ae:33:47:8e:f7:cf:ff:92: 9c:c7:75:ef:8a:fd:b2:5a:4d:74:5e:ad:6b:d0:b1: 05:b5:b2:53:f3:55:47:e1:04:2a:3d:68:b6:0e:d5: 2f:a4:89:58:2b:f3:e2:4c:7f:3b:ba:41:86:96:29: 47:b4:0f:2c:a5:f5:07:40:12:73:f9:73:cd:8c:0c: dc:c1:86:ac:ad:66:37:a2:de:31:69:c6:42:15:49: 73:4a:1b:a1:08:4c:91:ee:2b:c7:56:62:d9:e7:e6: d4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:0A:75:60:44:AC:98:9D:49:45:4F:11:ED:3B:1D:82:EB:E0:5C:E5 X509v3 Authority Key Identifier: keyid:94:C6:DD:FD:D4:BA:A5:04:00:F3:A1:19:A5:83:3C:E0:02:1B:DB:2E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/lMbd_dS6pQQA86EZpYM84AIb2y4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lMbd_dS6pQQA86EZpYM84AIb2y4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EDTNS/rgp1YESsmJ1JRU8R7TsdguvgXOU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.16.0/20 Signature Algorithm: sha256WithRSAEncryption 32:35:24:7a:eb:4f:70:3f:77:e4:93:99:f8:25:74:78:52:75: 9b:dc:79:a8:79:3e:43:4c:8f:85:5e:e3:e7:5f:e6:64:68:9f: 70:36:42:38:d8:71:2b:9b:3a:f4:77:9c:3d:5c:90:34:bd:e9: 61:96:27:c2:99:b4:42:47:3a:06:8b:49:a4:12:fb:11:09:df: ca:c4:05:c9:47:87:14:e9:2e:74:d6:df:d3:35:98:1f:9e:72: 88:85:38:fd:87:79:41:0a:30:1e:d8:45:4d:10:50:91:89:d0: ad:27:d6:d1:9e:03:6d:62:af:88:be:39:5b:63:f6:f2:53:b5: 76:9f:cd:26:9e:e6:6c:b6:15:99:d5:3d:20:18:a7:fe:42:29: 2e:02:54:3e:bb:04:5b:1e:c7:92:88:4b:ce:1e:ee:b5:68:fa: f2:7f:4f:62:76:70:5b:4a:ac:6e:41:c7:06:7e:2c:3a:fb:74: 97:a9:4e:02:01:69:49:4a:23:b0:0b:df:62:9c:7a:7c:1c:fb: a4:3b:bd:4a:06:6a:83:f6:98:2e:64:68:e1:55:8a:0e:46:fc: 05:76:40:6e:94:36:0d:8a:d9:3d:30:b5:90:25:55:6e:f6:33: 7c:9f:43:3a:bb:fc:0a:44:c8:9d:56:03:f9:d0:82:38:73:19: 86:52:c8:53 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDE4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTRD NkRERkRENEJBQTUwNDAwRjNBMTE5QTU4MzNDRTAwMjFCREIyRTAeFw0yNDA4MjYw NTEzMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFMEE3NTYwNDRBQzk4 OUQ0OTQ1NEYxMUVEM0IxRDgyRUJFMDVDRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcup3x6juIyVEnsGJuYHLHspBpNr22SdqOcszLHA788+9i6cjn HIgWHzM/TkyfidjEC3rArmNVivNcOaWl8ON0Ag+TTexVibm9zHput7AN+Lb5dwzk 0o395QAw742AzK/f/av5YudRffEDdmgYFcUKjKjrI9VjUKFo3anTZQI1mUaUEqPD r4r/zoj5VtKxLQDhpCBae3oAJ7KouBOuM0eO98//kpzHde+K/bJaTXRerWvQsQW1 slPzVUfhBCo9aLYO1S+kiVgr8+JMfzu6QYaWKUe0Dyyl9QdAEnP5c82MDNzBhqyt Zjei3jFpxkIVSXNKG6EITJHuK8dWYtnn5tTzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUrgp1YESsmJ1JRU8R7TsdguvgXOUwHwYDVR0jBBgwFoAUlMbd/dS6pQQA86EZ pYM84AIb2y4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRURUTlMv bE1iZF9kUzZwUVFBODZFWnBZTTg0QUliMnk0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sTWJkX2RTNnBRUUE4NkVacFlNODRBSWIyeTQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FRFROUy9yZ3AxWUVTc21KMUpSVThSN1Rz ZGd1dmdYT1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTgQ MA0GCSqGSIb3DQEBCwUAA4IBAQAyNSR6609wP3fkk5n4JXR4UnWb3HmoeT5DTI+F XuPnX+ZkaJ9wNkI42HErmzr0d5w9XJA0velhlifCmbRCRzoGi0mkEvsRCd/KxAXJ R4cU6S501t/TNZgfnnKIhTj9h3lBCjAe2EVNEFCRidCtJ9bRngNtYq+IvjlbY/by U7V2n80mnuZsthWZ1T0gGKf+QikuAlQ+uwRbHseSiEvOHu61aPryf09idnBbSqxu QccGfiw6+3SXqU4CAWlJSiOwC99inHp8HPukO71KBmqD9pguZGjhVYoORvwFdkBu lDYNitk9MLWQJVVu9jN8n0M6u/wKRMidVgP50II4cxmGUshT -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org