$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/GJX7v74uEvz-q-VGm68dhspIFss.roa File: GJX7v74uEvz-q-VGm68dhspIFss.roa (raw, json) Hash identifier: yHH77w5YqYa6DNM0ryr54VvbO8uDkP54L+i0QooWppY= Subject key identifier: 18:95:FB:BF:BE:2E:12:FC:FE:AB:E5:46:9B:AF:1D:86:CA:48:16:CB Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10D1 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GJX7v74uEvz-q-VGm68dhspIFss.roa Signing time: Mon 26 Aug 2024 05:16:49 +0000 ROA not before: Mon 26 Aug 2024 05:16:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 60.244.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4305 (0x10d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1895FBBFBE2E12FCFEABE5469BAF1D86CA4816CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:53:c3:52:9b:3e:3e:ff:77:f9:a1:3b:3d:a2: cf:d6:14:2b:4a:fa:67:92:0c:bc:b7:85:02:5e:ce: 32:9f:24:f6:55:29:ec:7e:e3:e0:38:d0:30:17:09: 90:eb:33:4a:5b:c1:55:20:49:78:68:01:cb:ad:c5: 7f:32:cc:61:d3:b8:79:a9:64:ac:48:be:88:d2:1d: 49:b0:1d:37:56:1e:02:1d:4b:ea:e0:e7:83:81:b4: 52:64:d0:13:c3:cb:9f:a2:cc:f3:25:fb:ee:89:a4: 3d:a4:8b:a4:f7:c1:9b:a0:02:e4:af:8a:4e:10:2e: 36:30:f6:2f:51:4e:bf:29:4c:6e:2f:2b:b3:77:19: a9:f8:42:e4:6c:b0:6d:f1:e2:9e:69:5a:af:d3:90: 84:04:ff:25:1e:9a:b3:c5:4c:c6:5f:a8:30:f7:a9: 6f:1b:7b:e6:8c:f0:e4:45:77:70:80:f2:5f:27:d3: 7f:2c:de:17:bc:c4:c7:b1:88:e8:f1:32:2a:a0:6b: d1:c7:81:0e:8b:e5:11:a0:94:31:a4:d4:a5:d4:66: 31:2c:fb:d3:42:1d:a6:48:a1:6b:4b:3a:c1:b4:20: 52:6a:03:c0:ac:3c:04:7e:5b:73:7b:3a:a2:9a:f3: 4c:30:d6:10:2b:dc:c7:cb:5e:79:a7:6f:cf:4c:87: 39:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:95:FB:BF:BE:2E:12:FC:FE:AB:E5:46:9B:AF:1D:86:CA:48:16:CB X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/GJX7v74uEvz-q-VGm68dhspIFss.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.128.0/17 Signature Algorithm: sha256WithRSAEncryption 74:43:3b:cb:f1:31:28:f7:c1:8f:1d:59:25:52:a0:e6:ab:cc: 0b:e7:17:e8:b8:93:c8:f8:b7:1e:86:22:fc:29:c2:b6:a1:e4: 4f:c3:e5:39:63:86:8b:88:af:e4:de:f6:90:42:b1:38:09:98: 14:39:c3:a7:76:c5:2b:8b:0c:83:d0:0a:f9:45:45:53:ba:79: 30:ab:39:1c:e0:1f:6f:12:38:83:71:2f:23:fa:55:d0:ae:4b: 0d:f6:33:0c:79:0a:ec:b5:ce:1e:88:4e:57:d7:ea:fd:b1:62: 38:47:52:1f:3d:df:f0:0e:d2:84:74:b5:fb:ee:1b:0c:48:b5: db:b3:b1:66:1e:9c:98:24:48:36:b5:5f:4f:05:98:f8:34:71: 6d:e8:7c:8c:c6:91:f1:1e:f9:12:55:e8:47:ce:ea:0d:52:f9: a3:b0:f4:78:aa:b1:23:5e:33:94:8f:54:47:bc:98:b2:f3:e2: 65:fb:4b:ad:db:0f:30:b1:97:bb:ae:d9:a7:e8:9e:c0:56:07: eb:e3:32:97:c0:d4:4d:99:f6:f6:74:01:71:6a:a7:3c:5f:d7: e3:52:f9:0d:87:c2:eb:9c:a0:17:76:99:5e:ef:27:88:0d:6e: d3:8f:37:04:71:c8:17:08:f4:c4:bc:a9:c1:61:a9:b3:dd:28: 56:00:86:55 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICENEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4OTVGQkJGQkUyRTEy RkNGRUFCRTU0NjlCQUYxRDg2Q0E0ODE2Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVU8NSmz4+/3f5oTs9os/WFCtK+meSDLy3hQJezjKfJPZVKex+ 4+A40DAXCZDrM0pbwVUgSXhoAcutxX8yzGHTuHmpZKxIvojSHUmwHTdWHgIdS+rg 54OBtFJk0BPDy5+izPMl++6JpD2ki6T3wZugAuSvik4QLjYw9i9RTr8pTG4vK7N3 Gan4QuRssG3x4p5pWq/TkIQE/yUemrPFTMZfqDD3qW8be+aM8ORFd3CA8l8n038s 3he8xMexiOjxMiqga9HHgQ6L5RGglDGk1KXUZjEs+9NCHaZIoWtLOsG0IFJqA8Cs PAR+W3N7OqKa80ww1hAr3MfLXnmnb89MhzknAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUGJX7v74uEvz+q+VGm68dhspIFsswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0dKWDd2NzR1RXZ6LXEtVkdtNjhkaHNw SUZzcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc89IAwDQYJ KoZIhvcNAQELBQADggEBAHRDO8vxMSj3wY8dWSVSoOarzAvnF+i4k8j4tx6GIvwp wrah5E/D5TljhouIr+Te9pBCsTgJmBQ5w6d2xSuLDIPQCvlFRVO6eTCrORzgH28S OINxLyP6VdCuSw32Mwx5Cuy1zh6ITlfX6v2xYjhHUh893/AO0oR0tfvuGwxItduz sWYenJgkSDa1X08FmPg0cW3ofIzGkfEe+RJV6EfO6g1S+aOw9HiqsSNeM5SPVEe8 mLLz4mX7S63bDzCxl7uu2afonsBWB+vjMpfA1E2Z9vZ0AXFqpzxf1+NS+Q2Hwuuc oBd2mV7vJ4gNbtOPNwRxyBcI9MS8qcFhqbPdKFYAhlU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org