$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/D7xW3vXIHzu4uDb9WkrDyjtgGeE.roa File: D7xW3vXIHzu4uDb9WkrDyjtgGeE.roa (raw, json) Hash identifier: FM/eZVg+q7tbW7XJLkdjGx/x3Xs0OZyVr1OAp8ayVH8= Subject key identifier: 0F:BC:56:DE:F5:C8:1F:3B:B8:B8:36:FD:5A:4A:C3:CA:3B:60:19:E1 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FEA Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/D7xW3vXIHzu4uDb9WkrDyjtgGeE.roa Signing time: Mon 26 Aug 2024 05:15:52 +0000 ROA not before: Mon 26 Aug 2024 05:15:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 124.218.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4074 (0xfea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0FBC56DEF5C81F3BB8B836FD5A4AC3CA3B6019E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f1:d8:df:74:13:e3:bc:59:be:05:1a:44:e8: 1f:48:b9:34:0f:92:fa:c6:cc:cf:b6:9e:61:cc:fa: 4f:0a:30:eb:f9:58:b5:33:f1:2c:2f:02:b7:a2:29: ac:fb:f4:fb:44:7d:60:cc:ed:87:f9:23:8f:f0:46: 8f:92:5d:f6:c6:32:3e:1f:f9:0e:40:f1:94:db:d5: ef:08:a1:b4:04:60:06:61:3f:2f:a4:6d:4f:b6:44: 53:7d:88:43:7f:15:34:3a:12:c0:13:ec:ea:96:50: 36:cb:98:13:62:33:87:f5:c3:9f:b7:5b:07:ca:70: cd:16:be:b4:b7:ee:31:3c:07:16:61:f1:95:b7:01: fe:67:55:94:4a:e7:ec:2e:39:d0:53:cc:61:de:d7: e1:48:9b:73:16:8a:da:41:4f:31:93:e8:69:7c:38: 9a:90:6b:b6:d5:c0:f3:28:66:5b:f7:e6:df:8a:31: 65:15:19:e8:e7:36:5b:a7:49:42:26:b7:91:4c:8a: ad:23:1d:ab:c8:f5:b3:1a:ac:50:50:4e:c5:f8:7e: 2e:e0:1d:f9:13:9d:ee:49:c8:f4:17:06:31:28:bc: 72:64:88:c1:c9:94:15:e4:f5:00:7d:41:f3:f6:56: 96:73:e6:28:42:0d:cc:7c:87:9e:bc:c9:73:79:d1: e0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:BC:56:DE:F5:C8:1F:3B:B8:B8:36:FD:5A:4A:C3:CA:3B:60:19:E1 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/D7xW3vXIHzu4uDb9WkrDyjtgGeE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:51:30:a4:df:db:7f:7d:4d:fc:81:5c:0c:9b:45:ba:97:ad: b8:8f:c3:64:c0:21:2f:15:d0:28:48:8f:08:de:bf:f9:1c:c7: d6:ea:1b:0e:a0:59:b4:58:72:94:4c:97:3a:3e:8b:79:ce:4b: af:84:6f:cf:b6:a4:8e:fd:0c:92:d9:85:fa:21:fd:95:64:7c: a6:af:c7:28:be:25:3a:27:14:67:06:64:56:07:57:8a:a8:e0: 65:35:be:33:a7:ba:64:08:32:1c:59:5a:dd:71:73:e4:be:8f: 0a:2c:8a:6e:a9:76:cc:6d:7a:4e:66:6e:e4:32:bf:0e:15:30: ed:b6:1f:63:df:b9:d3:bc:77:c8:a0:7d:0a:57:19:00:99:a8: e4:0a:1c:ea:1a:ae:02:f1:73:f6:c2:72:7e:66:06:7b:63:8e: c6:f6:0c:42:87:b8:6f:88:0f:85:54:9e:c3:81:25:cc:cb:56: 10:4b:03:e3:44:24:68:5d:3a:34:01:cb:be:2a:1d:18:c9:da: 62:70:dc:80:11:ac:97:d0:7a:25:70:f5:0b:57:28:d6:e8:20: f6:4e:3e:cb:e0:b5:5c:85:26:cc:f0:45:d4:eb:9d:3b:e4:16: fe:59:bb:1f:38:b7:31:a2:31:a4:ff:58:6e:81:9a:ef:92:1f: 78:f3:47:79 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICD+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGQkM1NkRFRjVDODFG M0JCOEI4MzZGRDVBNEFDM0NBM0I2MDE5RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC58djfdBPjvFm+BRpE6B9IuTQPkvrGzM+2nmHM+k8KMOv5WLUz 8SwvAreiKaz79PtEfWDM7Yf5I4/wRo+SXfbGMj4f+Q5A8ZTb1e8IobQEYAZhPy+k bU+2RFN9iEN/FTQ6EsAT7OqWUDbLmBNiM4f1w5+3WwfKcM0WvrS37jE8BxZh8ZW3 Af5nVZRK5+wuOdBTzGHe1+FIm3MWitpBTzGT6Gl8OJqQa7bVwPMoZlv35t+KMWUV GejnNlunSUImt5FMiq0jHavI9bMarFBQTsX4fi7gHfkTne5JyPQXBjEovHJkiMHJ lBXk9QB9QfP2VpZz5ihCDcx8h568yXN50eBlAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUD7xW3vXIHzu4uDb9WkrDyjtgGeEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0Q3eFczdlhJSHp1NHVEYjlXa3JEeWp0 Z0dlRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwB82jANBgkq hkiG9w0BAQsFAAOCAQEAkFEwpN/bf31N/IFcDJtFupetuI/DZMAhLxXQKEiPCN6/ +RzH1uobDqBZtFhylEyXOj6Lec5Lr4Rvz7akjv0MktmF+iH9lWR8pq/HKL4lOicU ZwZkVgdXiqjgZTW+M6e6ZAgyHFla3XFz5L6PCiyKbql2zG16TmZu5DK/DhUw7bYf Y9+507x3yKB9ClcZAJmo5Aoc6hquAvFz9sJyfmYGe2OOxvYMQoe4b4gPhVSew4El zMtWEEsD40QkaF06NAHLviodGMnaYnDcgBGsl9B6JXD1C1co1ugg9k4+y+C1XIUm zPBF1OudO+QW/lm7Hzi3MaIxpP9YboGa75IfePNHeQ== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:07 2024 by rpki-client on console-fra.rpki-client.org