$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/AldBLABcwyXBEay-cG2mDgOZmpM.roa File: AldBLABcwyXBEay-cG2mDgOZmpM.roa (raw, json) Hash identifier: TJrBRnHJ1xLOXsHrkqkh4RPjbIy9TPLCVS9uFslIV3A= Subject key identifier: 02:57:41:2C:00:5C:C3:25:C1:11:AC:BE:70:6D:A6:0E:03:99:9A:93 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10ED Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AldBLABcwyXBEay-cG2mDgOZmpM.roa Signing time: Fri 30 Aug 2024 08:00:00 +0000 ROA not before: Fri 30 Aug 2024 08:00:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 218.34.136.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4333 (0x10ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 30 08:00:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0257412C005CC325C111ACBE706DA60E03999A93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bf:b7:79:ee:de:3c:b1:8a:af:1f:0a:76:2a: 39:63:f8:86:2c:d6:22:4a:e0:6b:5a:d4:e7:ef:04: d0:e8:17:90:93:ac:ef:65:ae:7a:03:e2:4e:ca:f2: 79:7a:77:73:e5:55:3a:25:04:9f:e1:7b:fc:3e:ac: 27:d9:6e:ba:6c:dc:25:6c:5b:25:84:82:28:80:26: 6e:c5:11:b1:a4:46:73:c7:83:b3:f6:0c:64:66:d6: 15:94:30:03:d8:5c:5c:25:6f:3f:98:47:b9:9f:0e: 06:35:51:fc:44:89:f6:7b:28:02:77:a3:06:a4:ed: 48:3c:c2:dd:d1:d3:13:ca:b7:1d:05:01:b1:3b:9f: ed:69:d5:0b:9d:59:24:83:3b:a9:07:c5:d4:df:2f: 48:31:88:54:a3:65:7c:b4:6c:0a:4d:13:a1:3d:82: 17:29:a4:42:03:5a:46:40:46:12:61:46:3a:17:a8: bd:4a:88:c4:d8:7d:c3:3a:ce:78:c0:a2:c3:43:22: dd:70:91:ec:5d:82:aa:4c:37:5b:e3:69:7d:ae:02: 12:9a:9d:28:91:6b:19:a8:d7:19:f6:7e:31:7b:8d: 8d:52:6d:0d:4d:d4:45:40:c7:b9:05:49:ef:e2:1a: 09:08:6e:6d:d3:cd:2c:52:53:90:59:8e:c7:b8:8a: 5b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:57:41:2C:00:5C:C3:25:C1:11:AC:BE:70:6D:A6:0E:03:99:9A:93 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/AldBLABcwyXBEay-cG2mDgOZmpM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.34.136.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:17:b5:4a:59:a7:25:ae:5e:89:50:75:e6:0b:b0:20:c6:30: 35:8d:92:12:21:87:5c:11:8a:b5:3c:ab:12:82:22:53:65:c0: 77:a5:38:58:34:96:66:b5:ba:1b:16:6e:49:d3:83:dc:81:ad: 9b:58:83:e3:6b:c5:2e:b9:a5:42:d7:92:5b:c6:83:09:8e:75: f0:84:33:80:40:8a:35:ad:f5:fd:17:96:a9:6e:50:c1:54:74: 3a:e7:c1:85:ff:06:92:04:fc:28:5f:5a:8f:c6:a3:7f:99:c2: d6:39:9c:1c:2a:4d:0f:41:b9:ec:48:57:73:c2:12:1d:16:68: 0f:02:e9:f1:14:3c:c4:f3:5b:73:4b:68:29:9e:b5:6c:46:7c: 72:a0:2d:da:91:00:d2:d5:d8:02:d8:31:49:93:80:3f:6c:60: ef:dc:64:21:b6:d7:15:ac:cc:b0:8d:2f:af:6c:52:f8:a4:6a: 38:d4:72:4f:5c:79:e2:48:2a:5a:e8:59:a7:7a:e2:df:f4:e0: 49:e3:87:eb:39:02:e1:02:52:42:cd:40:ab:7c:17:62:c8:7d: 29:a5:61:af:5a:c0:2b:e4:08:ea:eb:49:cc:26:39:15:aa:f1: 07:dd:1f:f8:70:8b:b6:c8:68:65:09:25:c1:86:a0:bf:01:f4: 6d:6d:91:06 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEO0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MzAw ODAwMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyNTc0MTJDMDA1Q0Mz MjVDMTExQUNCRTcwNkRBNjBFMDM5OTlBOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEv7d57t48sYqvHwp2Kjlj+IYs1iJK4Gta1OfvBNDoF5CTrO9l rnoD4k7K8nl6d3PlVTolBJ/he/w+rCfZbrps3CVsWyWEgiiAJm7FEbGkRnPHg7P2 DGRm1hWUMAPYXFwlbz+YR7mfDgY1UfxEifZ7KAJ3owak7Ug8wt3R0xPKtx0FAbE7 n+1p1QudWSSDO6kHxdTfL0gxiFSjZXy0bApNE6E9ghcppEIDWkZARhJhRjoXqL1K iMTYfcM6znjAosNDIt1wkexdgqpMN1vjaX2uAhKanSiRaxmo1xn2fjF7jY1SbQ1N 1EVAx7kFSe/iGgkIbm3TzSxSU5BZjse4ilsLAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUAldBLABcwyXBEay+cG2mDgOZmpMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0FsZEJMQUJjd3lYQkVheS1jRzJtRGdP Wm1wTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHaIogwDQYJ KoZIhvcNAQELBQADggEBAD4XtUpZpyWuXolQdeYLsCDGMDWNkhIhh1wRirU8qxKC IlNlwHelOFg0lma1uhsWbknTg9yBrZtYg+NrxS65pULXklvGgwmOdfCEM4BAijWt 9f0XlqluUMFUdDrnwYX/BpIE/ChfWo/Go3+ZwtY5nBwqTQ9BuexIV3PCEh0WaA8C 6fEUPMTzW3NLaCmetWxGfHKgLdqRANLV2ALYMUmTgD9sYO/cZCG21xWszLCNL69s UvikajjUck9ceeJIKlroWad64t/04Enjh+s5AuECUkLNQKt8F2LIfSmlYa9awCvk COrrScwmORWq8QfdH/hwi7bIaGUJJcGGoL8B9G1tkQY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org