$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/1saJ5wOWR7UrYH2NvIrMVz6sFBE.roa File: 1saJ5wOWR7UrYH2NvIrMVz6sFBE.roa (raw, json) Hash identifier: izaR+TYTyAj9BQTAqRxC64Bm3tdBjvEL3Qx/ms6Mlek= Subject key identifier: D6:C6:89:E7:03:96:47:B5:2B:60:7D:8D:BC:8A:CC:57:3E:AC:14:11 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1008 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1saJ5wOWR7UrYH2NvIrMVz6sFBE.roa Signing time: Mon 26 Aug 2024 05:15:59 +0000 ROA not before: Mon 26 Aug 2024 05:15:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 60.244.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4104 (0x1008) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D6C689E7039647B52B607D8DBC8ACC573EAC1411 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:24:34:05:90:5a:cb:ab:ce:bd:e8:e1:16:16: 8f:c1:c1:ac:26:88:79:cc:0c:78:96:52:2f:18:70: 93:3c:36:2e:f1:4b:cb:ed:9b:8c:8b:aa:22:7e:43: 1b:db:d9:73:51:d7:90:24:e3:cd:45:be:3d:b4:5f: 15:1e:77:e1:08:b4:d7:6d:88:e4:96:d4:4f:33:b1: 50:54:dd:8a:36:f2:0b:f7:61:5e:53:d2:1d:fd:e1: 22:fb:be:7c:11:78:63:7e:ab:89:40:c0:18:27:e6: 29:27:17:0d:de:4a:62:e2:89:a6:f0:7a:a9:c2:0a: 20:28:c8:45:83:8f:12:ff:64:ca:e9:26:e5:d6:32: f1:45:1e:b8:65:80:93:5c:8d:dd:ee:6a:60:07:a9: ea:4e:81:7a:bb:c6:78:03:60:5f:99:47:24:f8:d1: f7:eb:f0:f2:69:81:d3:f3:22:80:ab:c0:92:4f:89: ca:d3:eb:fc:26:b7:84:1f:1f:06:b3:7b:57:d1:72: 12:91:2e:20:82:75:23:ee:2a:5a:15:23:b1:db:62: ce:a0:d3:a0:82:14:1d:91:97:33:ad:e4:33:35:e8: 34:51:b3:ed:39:09:f3:45:69:8e:cf:d5:38:9a:b8: 33:3e:ea:64:da:bc:4b:f4:0b:2e:a8:96:32:3f:70: 3a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C6:89:E7:03:96:47:B5:2B:60:7D:8D:BC:8A:CC:57:3E:AC:14:11 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/1saJ5wOWR7UrYH2NvIrMVz6sFBE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1a:f2:0f:90:ef:0a:66:7f:d7:2d:99:c1:5c:ae:0b:80:9f:ac: 66:28:57:a7:44:11:af:43:4f:dc:ea:f8:d2:ae:95:ec:8c:b5: e6:5c:b0:7a:d0:fd:3f:c6:79:b3:53:2b:61:fa:73:ac:8d:fa: 80:e9:40:09:3f:f6:b1:c0:44:fd:b8:6c:d3:cc:cb:97:3b:d9: 69:2f:b3:54:b4:67:76:e7:21:c3:aa:72:47:34:19:03:71:b7: 93:97:b1:74:0e:58:25:a1:2e:3b:b3:56:8a:13:e6:59:5c:4a: 94:7f:78:55:f7:7d:b6:6a:9d:68:1b:a9:8e:9e:24:54:e6:cf: 66:29:30:d7:26:a6:6f:47:fc:12:d0:7a:f1:41:a7:51:03:3d: ef:05:37:00:fe:c0:4a:59:36:7f:e3:e3:24:a0:73:54:00:6b: f3:ab:89:ad:5c:6f:cb:32:96:22:71:23:42:18:0b:ba:d0:fa: ea:35:ee:5b:25:5c:e4:da:6d:54:ba:ae:63:b9:e1:70:fe:c0: d5:d5:8b:13:d1:39:a1:e8:e3:7d:b7:80:19:eb:53:fa:73:69: bc:d6:fa:4d:82:0d:87:00:35:93:26:20:fd:5d:32:87:9f:1d: 56:bc:08:88:76:f3:ca:b7:f9:01:4f:5e:97:64:9f:17:c8:a0: 97:aa:66:95 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEAgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2QzY4OUU3MDM5NjQ3 QjUyQjYwN0Q4REJDOEFDQzU3M0VBQzE0MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIJDQFkFrLq8696OEWFo/BwawmiHnMDHiWUi8YcJM8Ni7xS8vt m4yLqiJ+Qxvb2XNR15Ak481Fvj20XxUed+EItNdtiOSW1E8zsVBU3Yo28gv3YV5T 0h394SL7vnwReGN+q4lAwBgn5iknFw3eSmLiiabweqnCCiAoyEWDjxL/ZMrpJuXW MvFFHrhlgJNcjd3uamAHqepOgXq7xngDYF+ZRyT40ffr8PJpgdPzIoCrwJJPicrT 6/wmt4QfHwaze1fRchKRLiCCdSPuKloVI7HbYs6g06CCFB2RlzOt5DM16DRRs+05 CfNFaY7P1TiauDM+6mTavEv0Cy6oljI/cDpxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU1saJ5wOWR7UrYH2NvIrMVz6sFBEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzFzYUo1d09XUjdVcllIMk52SXJNVno2 c0ZCRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc89IAwDQYJ KoZIhvcNAQELBQADggEBABryD5DvCmZ/1y2ZwVyuC4CfrGYoV6dEEa9DT9zq+NKu leyMteZcsHrQ/T/GebNTK2H6c6yN+oDpQAk/9rHARP24bNPMy5c72Wkvs1S0Z3bn IcOqckc0GQNxt5OXsXQOWCWhLjuzVooT5llcSpR/eFX3fbZqnWgbqY6eJFTmz2Yp MNcmpm9H/BLQevFBp1EDPe8FNwD+wEpZNn/j4ySgc1QAa/Oria1cb8syliJxI0IY C7rQ+uo17lslXOTabVS6rmO54XD+wNXVixPROaHo4323gBnrU/pzabzW+k2CDYcA NZMmIP1dMoefHVa8CIh288q3+QFPXpdknxfIoJeqZpU= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:37 2024 by rpki-client on console-fra.rpki-client.org