$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/EL3ceGfLAd-gPLtJWyHMYK-o-OI.roa File: EL3ceGfLAd-gPLtJWyHMYK-o-OI.roa (raw, json) Hash identifier: XuYoOP0NzbB/c2KpxeZIHkCJs7jljxZEoZawnNaJL6w= Subject key identifier: 10:BD:DC:78:67:CB:01:DF:A0:3C:BB:49:5B:21:CC:60:AF:A8:F8:E2 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1020 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/EL3ceGfLAd-gPLtJWyHMYK-o-OI.roa Signing time: Mon 26 Aug 2024 05:16:05 +0000 ROA not before: Mon 26 Aug 2024 05:16:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 124.218.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4128 (0x1020) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10BDDC7867CB01DFA03CBB495B21CC60AFA8F8E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ff:78:1e:43:c1:c2:02:c3:6b:a5:7b:cf:91: 32:be:6a:55:59:65:08:32:f2:5c:ab:90:cd:fc:5f: ab:ff:65:1b:07:fe:a3:db:62:54:a3:61:68:4f:e4: c6:7c:12:58:ea:57:1c:68:91:88:cb:d6:b4:9a:30: 8b:d5:2a:54:4a:aa:e4:25:b6:75:e4:87:07:7d:ea: 11:00:bf:47:82:74:5f:48:b8:91:a9:73:b5:23:fc: ea:fd:b1:94:b2:5a:97:2c:5b:36:e8:e1:f3:07:92: d2:f0:92:f2:fa:02:15:98:14:09:85:d9:66:d3:0e: bb:03:26:bd:71:2b:7e:0e:1c:85:70:46:c2:ad:07: 3e:86:10:33:4f:1b:91:31:8b:3b:ff:fe:02:e5:6b: a8:4d:20:de:2e:c0:d9:1f:bf:a6:52:e3:d7:1e:2c: 18:e6:6e:92:0f:ec:e3:ea:4c:40:55:e5:fb:04:b5: ca:0e:61:e3:f1:95:ec:c7:31:53:42:4f:6c:9b:f1: 1a:05:c6:09:24:b6:c2:60:89:97:b6:9b:51:b6:6b: 03:ac:1d:5c:50:8c:66:38:82:d3:1c:b1:42:6f:22: 7e:bd:6b:74:a1:f0:fd:7b:5f:4f:0e:e2:6f:a4:c2: bf:56:ee:19:6d:4f:13:f4:82:66:d3:79:67:77:c3: 42:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:BD:DC:78:67:CB:01:DF:A0:3C:BB:49:5B:21:CC:60:AF:A8:F8:E2 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/EL3ceGfLAd-gPLtJWyHMYK-o-OI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.80.0/20 Signature Algorithm: sha256WithRSAEncryption 7b:0e:38:b6:b2:3d:cb:b4:cd:d9:35:9f:0e:ec:ec:66:1a:fa: bd:73:4d:6e:cb:7c:41:83:b4:81:12:b2:e1:76:fc:35:49:ad: 52:54:4e:b1:ec:dc:6b:ad:6b:fa:96:c6:f6:65:f9:af:65:48: cb:d1:bc:f8:80:39:6a:e1:62:c2:ce:d1:cd:a6:b6:a2:88:f2: c1:e1:d7:49:ac:43:56:76:17:02:b7:2d:67:1d:73:d8:d7:0f: d2:27:a2:23:5e:5e:a1:fd:24:d1:e3:82:49:75:61:2e:10:07: f8:bd:57:a3:67:85:b5:b1:88:cf:d0:80:12:9f:17:2a:fd:56: 32:13:ad:15:f0:dc:eb:a1:c1:c4:f5:9c:79:97:9a:38:95:01: 8a:4d:03:96:b2:b2:e9:7f:1a:ea:d5:d3:b8:cf:8e:fa:b5:55: 70:0a:ec:17:94:e4:bb:e1:f4:ee:06:c2:b6:82:d0:38:80:f5: 49:2c:97:a7:4b:95:7f:d1:b3:34:1e:2e:b5:c2:53:f5:2b:a9: 9d:d6:55:dc:d7:1c:2c:da:27:ec:c3:12:12:36:01:8b:62:7d: d9:fc:ee:ef:bb:31:95:b8:e8:c2:b1:a8:99:83:89:7b:50:b0: 03:21:31:6f:6e:cb:5e:ff:b8:76:8d:49:f3:e8:4a:f6:3e:21: 9c:19:d0:7d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICECAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwQkREQzc4NjdDQjAx REZBMDNDQkI0OTVCMjFDQzYwQUZBOEY4RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ/3geQ8HCAsNrpXvPkTK+alVZZQgy8lyrkM38X6v/ZRsH/qPb YlSjYWhP5MZ8EljqVxxokYjL1rSaMIvVKlRKquQltnXkhwd96hEAv0eCdF9IuJGp c7Uj/Or9sZSyWpcsWzbo4fMHktLwkvL6AhWYFAmF2WbTDrsDJr1xK34OHIVwRsKt Bz6GEDNPG5Exizv//gLla6hNIN4uwNkfv6ZS49ceLBjmbpIP7OPqTEBV5fsEtcoO YePxlezHMVNCT2yb8RoFxgkktsJgiZe2m1G2awOsHVxQjGY4gtMcsUJvIn69a3Sh 8P17X08O4m+kwr9W7hltTxP0gmbTeWd3w0KPAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUEL3ceGfLAd+gPLtJWyHMYK+o+OIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0VMM2NlR2ZMQWQtZ1BMdEpXeUhNWUst by1PSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR82lAwDQYJ KoZIhvcNAQELBQADggEBAHsOOLayPcu0zdk1nw7s7GYa+r1zTW7LfEGDtIESsuF2 /DVJrVJUTrHs3Guta/qWxvZl+a9lSMvRvPiAOWrhYsLO0c2mtqKI8sHh10msQ1Z2 FwK3LWcdc9jXD9InoiNeXqH9JNHjgkl1YS4QB/i9V6NnhbWxiM/QgBKfFyr9VjIT rRXw3OuhwcT1nHmXmjiVAYpNA5aysul/GurV07jPjvq1VXAK7BeU5Lvh9O4GwraC 0DiA9Uksl6dLlX/RszQeLrXCU/UrqZ3WVdzXHCzaJ+zDEhI2AYtifdn87u+7MZW4 6MKxqJmDiXtQsAMhMW9uy17/uHaNSfPoSvY+IZwZ0H0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org