$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/KHF_dDrinTyQpJ-wXQpVvxIpYiA.roa File: KHF_dDrinTyQpJ-wXQpVvxIpYiA.roa (raw, json) Hash identifier: 0WZ26V7Po/bnubEDKaBZyFbjUjp1sqUI11nxcEIUGaA= Subject key identifier: 28:71:7F:74:3A:E2:9D:3C:90:A4:9F:B0:5D:0A:55:BF:12:29:62:20 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FEB Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/KHF_dDrinTyQpJ-wXQpVvxIpYiA.roa Signing time: Mon 26 Aug 2024 05:15:52 +0000 ROA not before: Mon 26 Aug 2024 05:15:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 210.200.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4075 (0xfeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=28717F743AE29D3C90A49FB05D0A55BF12296220 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:7f:a4:e8:84:bb:5c:be:c6:05:a9:d3:6f:c2: fc:56:81:10:d0:a7:a2:b0:eb:05:09:ba:38:36:bd: 23:91:79:eb:6b:d4:64:a5:80:ce:d0:b7:29:91:48: a7:63:95:92:9d:07:8d:7c:54:56:83:6e:6a:50:9e: 6a:ba:19:c6:3d:53:f1:da:ef:ba:ab:ec:02:06:85: 5a:4c:7d:0d:c8:49:94:4d:db:e3:80:fc:51:c1:9f: d1:87:fb:61:2e:c9:0c:13:07:4b:ba:9b:f2:51:7d: e7:8d:08:91:d8:fa:d9:c7:50:da:c0:db:b3:d6:bd: f5:86:08:3b:76:4a:9c:e5:fe:4e:16:b0:ee:60:7a: ff:b2:2b:ec:ab:6c:b2:35:24:b4:a7:c3:65:c8:b9: c3:03:78:48:2a:54:1a:5e:2d:19:50:af:d3:38:43: cb:a4:fc:37:ef:c4:5e:1c:69:1e:ea:b3:c2:4c:3a: bc:b0:f6:2d:06:9e:27:16:61:a6:67:11:50:08:71: f8:1b:e0:74:65:5a:ea:c8:77:87:4d:df:4b:c5:67: 07:fe:b6:0c:db:fe:8b:b2:1e:d8:da:eb:83:45:3f: c9:42:28:c0:95:de:9f:92:43:6d:f3:5c:39:18:d0: 94:0c:db:61:d8:a3:17:20:c2:ba:48:bc:cc:a8:a3: 48:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:71:7F:74:3A:E2:9D:3C:90:A4:9F:B0:5D:0A:55:BF:12:29:62:20 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/KHF_dDrinTyQpJ-wXQpVvxIpYiA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.79.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:60:50:52:01:3f:42:42:f6:bb:d0:54:76:35:82:16:f9:9e: 2f:59:e9:b9:69:d1:0f:64:b6:8e:cd:e4:e8:a3:e3:e7:c3:b1: ab:11:6b:1c:7e:26:9b:29:c4:2c:d4:ec:4e:08:b2:4c:a8:22: 35:07:92:c9:a4:a9:09:e7:f8:69:27:1a:62:04:7e:96:22:15: 88:48:44:9b:ef:20:5f:1b:33:90:9a:9b:de:9c:ee:66:2a:db: 57:d6:43:f0:33:37:02:f0:34:d6:21:e1:b7:65:b1:99:61:67: 23:a8:14:cd:00:13:4c:88:52:f7:df:21:b8:3a:bb:e7:2e:10: 56:9e:6a:2b:e4:29:04:a6:ad:08:29:dd:e7:25:6a:e9:8f:e6: c4:ca:7a:70:8d:aa:0a:a9:41:05:fd:7c:4b:8c:38:7d:cc:8b: ab:9a:f1:63:1f:39:57:ea:e0:ea:5f:6f:52:80:69:2f:a1:b9: dc:88:2f:20:57:34:ae:cf:6a:fd:15:b4:4c:f9:23:10:f8:c7: b5:3e:49:5d:35:b0:5b:d8:61:d3:2a:cf:17:b8:18:db:cf:43: 31:73:01:47:4d:9b:dc:89:60:a7:44:3b:ab:80:b8:00:3f:cb: 71:8e:7e:e5:d4:92:ba:0c:49:80:53:ca:12:07:da:61:cf:fb: e1:ee:c9:9d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD+swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4NzE3Rjc0M0FFMjlE M0M5MEE0OUZCMDVEMEE1NUJGMTIyOTYyMjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQf6TohLtcvsYFqdNvwvxWgRDQp6Kw6wUJujg2vSOReetr1GSl gM7QtymRSKdjlZKdB418VFaDbmpQnmq6GcY9U/Ha77qr7AIGhVpMfQ3ISZRN2+OA /FHBn9GH+2EuyQwTB0u6m/JRfeeNCJHY+tnHUNrA27PWvfWGCDt2Spzl/k4WsO5g ev+yK+yrbLI1JLSnw2XIucMDeEgqVBpeLRlQr9M4Q8uk/DfvxF4caR7qs8JMOryw 9i0GnicWYaZnEVAIcfgb4HRlWurId4dN30vFZwf+tgzb/ouyHtja64NFP8lCKMCV 3p+SQ23zXDkY0JQM22HYoxcgwrpIvMyoo0i5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUKHF/dDrinTyQpJ+wXQpVvxIpYiAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0tIRl9kRHJpblR5UXBKLXdYUXBWdnhJ cFlpQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSyE8wDQYJ KoZIhvcNAQELBQADggEBAG1gUFIBP0JC9rvQVHY1ghb5ni9Z6blp0Q9kto7N5Oij 4+fDsasRaxx+JpspxCzU7E4IskyoIjUHksmkqQnn+GknGmIEfpYiFYhIRJvvIF8b M5Cam96c7mYq21fWQ/AzNwLwNNYh4bdlsZlhZyOoFM0AE0yIUvffIbg6u+cuEFae aivkKQSmrQgp3eclaumP5sTKenCNqgqpQQX9fEuMOH3Mi6ua8WMfOVfq4Opfb1KA aS+hudyILyBXNK7Pav0VtEz5IxD4x7U+SV01sFvYYdMqzxe4GNvPQzFzAUdNm9yJ YKdEO6uAuAA/y3GOfuXUkroMSYBTyhIH2mHP++HuyZ0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org