$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/InmB19rWztf22t_0mc98zmqS-ZI.roa File: InmB19rWztf22t_0mc98zmqS-ZI.roa (raw, json) Hash identifier: lLkCxyvRY79LxpvR8d5qlZlaNLUl+ogS3SzVvrZYDS4= Subject key identifier: 22:79:81:D7:DA:D6:CE:D7:F6:DA:DF:F4:99:CF:7C:CE:6A:92:F9:92 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 107B Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/InmB19rWztf22t_0mc98zmqS-ZI.roa Signing time: Mon 26 Aug 2024 05:16:28 +0000 ROA not before: Mon 26 Aug 2024 05:16:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 210.200.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4219 (0x107b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=227981D7DAD6CED7F6DADFF499CF7CCE6A92F992 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:b0:02:43:0d:67:b9:ef:28:29:47:13:c8:21: 79:44:3e:54:c3:99:65:8c:33:80:3c:10:b7:cd:8d: 3f:d5:6b:a9:d3:32:81:34:76:fd:38:a0:43:30:7e: 39:b0:89:fe:46:3f:cf:d5:0c:d8:18:12:c2:b6:ad: f6:27:61:9e:92:4d:30:e7:cd:25:d6:9d:36:8d:14: cc:1b:b8:57:b9:55:0d:dc:fe:7b:49:bc:fc:42:d6: 99:7f:8d:e1:b4:6e:0d:a5:48:7f:0a:5e:54:78:ff: cd:24:a1:dd:e6:c2:f3:89:46:d5:13:8d:d9:2b:3b: d3:05:34:27:e2:63:74:2e:24:51:5b:8b:04:45:93: c4:68:52:6c:83:26:80:a9:a7:41:18:ec:12:9e:ac: 56:f7:7c:fb:bd:c2:9a:79:37:ab:2a:d4:f0:c1:39: 28:e6:c5:a9:9b:5b:68:c3:24:68:bc:c3:5d:b0:a0: 68:28:35:42:70:8e:2f:60:fd:33:72:f2:2a:ef:3f: 39:24:c6:db:0b:02:51:a3:66:75:46:53:52:c8:dd: e0:78:6a:f6:db:b3:d9:e5:b5:75:a4:d6:56:9b:c8: 57:b4:31:94:1b:3d:de:a0:77:d8:1b:ed:7a:68:4f: 2f:85:a2:a8:a7:b4:02:0f:3d:f3:a5:65:70:f6:b6: aa:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:79:81:D7:DA:D6:CE:D7:F6:DA:DF:F4:99:CF:7C:CE:6A:92:F9:92 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/InmB19rWztf22t_0mc98zmqS-ZI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8b:d9:aa:63:34:78:42:3d:47:66:47:ee:98:50:92:49:d3:d1: 9c:76:8c:71:18:88:e3:42:40:ff:54:cd:43:e6:87:27:90:34: 47:12:95:6c:83:90:0b:4f:11:46:d9:e4:d5:e3:32:5a:1b:07: 30:f8:61:ba:a7:fe:5f:f5:49:69:59:43:2e:04:3d:2a:c0:27: 75:cf:ba:81:71:ed:96:34:86:34:a3:d3:d0:bc:13:3f:be:5f: be:96:16:10:4a:fe:b8:5d:e9:8b:6c:9c:46:dd:16:6f:1c:a9: 72:9d:44:94:eb:7b:45:0f:1e:89:f0:b6:86:b6:09:b9:07:07: 41:86:ff:07:b8:fb:c0:2f:ef:f2:92:c3:64:74:72:f7:9e:ca: bd:b9:46:69:82:20:3b:97:0d:4a:84:64:4a:0f:6d:91:a5:7a: 3f:75:6f:d8:ae:f1:d4:a4:ed:4f:b6:22:e9:82:ee:01:15:3d: 24:87:a2:ee:bb:65:38:2b:fb:97:4c:7e:3e:15:80:d5:61:a3: 3a:63:91:04:52:3e:00:d5:30:4a:13:ae:81:a1:f1:62:52:f4: 2e:4d:18:9c:bd:25:82:04:5e:8f:c5:5a:25:0d:ea:4b:69:83: b5:87:01:39:16:30:92:11:04:9f:80:85:4d:0e:67:53:85:fb: 9a:5d:51:d5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIyNzk4MUQ3REFENkNF RDdGNkRBREZGNDk5Q0Y3Q0NFNkE5MkY5OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnsAJDDWe57ygpRxPIIXlEPlTDmWWMM4A8ELfNjT/Va6nTMoE0 dv04oEMwfjmwif5GP8/VDNgYEsK2rfYnYZ6STTDnzSXWnTaNFMwbuFe5VQ3c/ntJ vPxC1pl/jeG0bg2lSH8KXlR4/80kod3mwvOJRtUTjdkrO9MFNCfiY3QuJFFbiwRF k8RoUmyDJoCpp0EY7BKerFb3fPu9wpp5N6sq1PDBOSjmxambW2jDJGi8w12woGgo NUJwji9g/TNy8irvPzkkxtsLAlGjZnVGU1LI3eB4avbbs9nltXWk1labyFe0MZQb Pd6gd9gb7XpoTy+FoqintAIPPfOlZXD2tqpxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUInmB19rWztf22t/0mc98zmqS+ZIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0lubUIxOXJXenRmMjJ0XzBtYzk4em1x Uy1aSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyMAwDQYJ KoZIhvcNAQELBQADggEBAIvZqmM0eEI9R2ZH7phQkknT0Zx2jHEYiONCQP9UzUPm hyeQNEcSlWyDkAtPEUbZ5NXjMlobBzD4Ybqn/l/1SWlZQy4EPSrAJ3XPuoFx7ZY0 hjSj09C8Ez++X76WFhBK/rhd6YtsnEbdFm8cqXKdRJTre0UPHonwtoa2CbkHB0GG /we4+8Av7/KSw2R0cveeyr25RmmCIDuXDUqEZEoPbZGlej91b9iu8dSk7U+2IumC 7gEVPSSHou67ZTgr+5dMfj4VgNVhozpjkQRSPgDVMEoTroGh8WJS9C5NGJy9JYIE Xo/FWiUN6ktpg7WHATkWMJIRBJ+AhU0OZ1OF+5pdUdU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org