$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/G37-JvinTxV10cKUSw6CQ8MBr8U.roa File: G37-JvinTxV10cKUSw6CQ8MBr8U.roa (raw, json) Hash identifier: iAsVAIXy8Fs73qoNXEuhc+Dn9m2eDmCYaDrcAatnqW4= Subject key identifier: 1B:7E:FE:26:F8:A7:4F:15:75:D1:C2:94:4B:0E:82:43:C3:01:AF:C5 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1007 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/G37-JvinTxV10cKUSw6CQ8MBr8U.roa Signing time: Mon 26 Aug 2024 05:15:59 +0000 ROA not before: Mon 26 Aug 2024 05:15:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 222.156.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4103 (0x1007) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1B7EFE26F8A74F1575D1C2944B0E8243C301AFC5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:1a:06:2b:1d:1f:b3:4f:f8:a3:dd:9a:e9: 9a:4b:43:34:1f:33:06:dc:58:22:5a:f7:40:ba:f5: 06:ee:fe:9a:05:fa:9b:f0:5e:05:a6:b3:7c:ac:ed: 2e:e5:d5:f0:5a:9e:27:61:5a:03:ab:3d:e0:82:68: c3:fa:55:a4:a8:68:29:cf:b1:81:37:1f:e8:75:bf: 34:f4:10:32:86:95:cc:50:66:d3:1a:78:07:96:ff: e5:61:c7:02:50:1b:c3:51:7f:c6:94:05:40:ab:0a: ce:78:83:2a:ca:97:ec:33:5f:4e:f3:29:66:cf:3c: 1e:3d:12:24:8e:75:ec:3c:42:7e:9c:24:eb:1c:c4: 3b:66:37:59:d6:98:79:42:01:ea:94:7e:91:31:ba: dd:3b:fc:cf:a3:2d:6d:34:b6:32:6c:5c:17:39:1d: 32:35:b6:59:9f:86:1c:ce:48:bc:5f:8c:12:b9:ca: 03:76:06:50:21:3a:e9:fc:0f:68:de:52:42:a3:8b: 4f:ec:2e:da:a8:45:1d:c4:c5:2e:5c:bc:ac:8d:2a: 62:f5:f2:5f:43:b0:f1:e6:fc:f7:b2:32:23:cd:09: 5a:86:e2:47:1a:b0:19:71:af:6d:36:91:95:fa:ee: 0e:57:79:e9:d6:8f:2d:51:2f:04:04:1d:74:9d:78: 93:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:7E:FE:26:F8:A7:4F:15:75:D1:C2:94:4B:0E:82:43:C3:01:AF:C5 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/G37-JvinTxV10cKUSw6CQ8MBr8U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.156.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:c5:03:4a:56:c7:87:99:f3:80:62:f1:8b:be:89:16:72:cf: ab:ee:4f:9d:8c:6e:e3:c7:c1:fb:91:ff:c1:30:e1:fc:39:45: 05:fe:71:36:a4:39:5f:64:41:5c:ff:66:09:0c:ee:de:3e:b2: 46:7a:96:8a:e9:8b:1f:5f:ed:1b:cf:a0:50:cc:6a:db:e3:7c: 58:e0:db:9b:78:c5:d3:bf:70:e8:38:fb:ff:84:02:01:8b:d9: 4c:ab:4d:a1:34:76:ee:f9:5e:f5:d5:da:72:fa:8a:f4:64:50: 8a:f4:90:66:32:d3:31:b5:0b:b0:bc:d1:40:9f:86:d3:89:6d: e5:bc:10:e9:b0:f6:f2:31:09:ff:3a:c6:b0:fe:82:63:57:03: c1:11:01:19:e2:81:2a:df:1a:a3:e6:15:70:2e:8f:22:3b:ed: cd:29:35:ee:aa:e7:b6:19:15:4c:c5:35:d3:68:81:5e:9e:20: a5:1b:e0:c9:08:aa:cc:ba:44:63:c8:62:53:06:4e:21:3c:3d: 65:0a:01:54:20:75:6d:5d:14:88:78:4c:35:03:8d:25:15:c4: 44:ea:53:1f:7e:9c:10:95:09:12:97:96:25:ee:9b:7a:32:cd: 1d:c9:61:77:c5:6b:72:5a:af:65:c5:8d:54:0f:e3:24:67:c9: 9b:1f:93:34 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEAcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCN0VGRTI2RjhBNzRG MTU3NUQxQzI5NDRCMEU4MjQzQzMwMUFGQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrBxoGKx0fs0/4o92a6ZpLQzQfMwbcWCJa90C69Qbu/poF+pvw XgWms3ys7S7l1fBanidhWgOrPeCCaMP6VaSoaCnPsYE3H+h1vzT0EDKGlcxQZtMa eAeW/+VhxwJQG8NRf8aUBUCrCs54gyrKl+wzX07zKWbPPB49EiSOdew8Qn6cJOsc xDtmN1nWmHlCAeqUfpExut07/M+jLW00tjJsXBc5HTI1tlmfhhzOSLxfjBK5ygN2 BlAhOun8D2jeUkKji0/sLtqoRR3ExS5cvKyNKmL18l9DsPHm/PeyMiPNCVqG4kca sBlxr202kZX67g5XeenWjy1RLwQEHXSdeJOVAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUG37+JvinTxV10cKUSw6CQ8MBr8UwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0czNy1KdmluVHhWMTBjS1VTdzZDUThN QnI4VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDenDANBgkq hkiG9w0BAQsFAAOCAQEAysUDSlbHh5nzgGLxi76JFnLPq+5PnYxu48fB+5H/wTDh /DlFBf5xNqQ5X2RBXP9mCQzu3j6yRnqWiumLH1/tG8+gUMxq2+N8WODbm3jF079w 6Dj7/4QCAYvZTKtNoTR27vle9dXacvqK9GRQivSQZjLTMbULsLzRQJ+G04lt5bwQ 6bD28jEJ/zrGsP6CY1cDwREBGeKBKt8ao+YVcC6PIjvtzSk17qrnthkVTMU102iB Xp4gpRvgyQiqzLpEY8hiUwZOITw9ZQoBVCB1bV0UiHhMNQONJRXEROpTH36cEJUJ EpeWJe6bejLNHclhd8VrclqvZcWNVA/jJGfJmx+TNA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:07 2024 by rpki-client on console-fra.rpki-client.org