$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dVMburxZ8JJsDObQgF2_cTWq59A.roa File: dVMburxZ8JJsDObQgF2_cTWq59A.roa (raw, json) Hash identifier: sGLs2r9dgiCKOpH44uciHFYjkcn2hDVi5DY1vuXcC9g= Subject key identifier: 75:53:1B:BA:BC:59:F0:92:6C:0C:E6:D0:80:5D:BF:71:35:AA:E7:D0 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FDA Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dVMburxZ8JJsDObQgF2_cTWq59A.roa Signing time: Mon 26 Aug 2024 05:15:49 +0000 ROA not before: Mon 26 Aug 2024 05:15:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 210.58.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4058 (0xfda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=75531BBABC59F0926C0CE6D0805DBF7135AAE7D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:03:75:bf:3e:71:ca:c2:53:e9:ce:e2:af:b4: 87:8e:b3:5d:c7:c0:6f:59:09:a1:cf:42:95:66:c8: 0d:f9:a2:d4:ae:b9:ef:32:2f:8b:38:90:ea:05:a4: 03:e4:1c:95:a8:af:73:10:4f:1f:87:7e:de:1d:6a: ae:99:f9:5e:f1:e1:cf:84:54:e9:d6:cd:76:00:42: 43:e5:d6:7d:cd:b2:93:19:d2:d2:9b:e2:91:a5:56: 9f:f7:0f:36:03:9b:8e:0f:6f:de:18:4c:38:bd:d8: 04:7d:b7:41:4d:56:d4:1c:27:e7:0b:44:cf:a2:c3: bf:59:ea:1a:8d:cc:a2:a2:a0:ce:de:90:51:42:32: 91:fb:b4:2c:bb:84:7e:59:f2:b0:2b:ef:dd:1e:3f: d2:f7:fe:86:8c:2a:96:50:95:87:ca:85:8c:cf:2c: d5:b8:20:83:7f:87:b6:b7:6d:7c:8a:9b:1d:c2:6e: df:0d:f7:da:5f:d8:a7:97:b7:33:da:87:88:3e:b7: 15:e8:67:71:1a:f4:8c:7d:83:55:01:e9:69:b7:a5: f3:33:8e:f7:a0:64:bf:cc:a2:76:61:dd:8b:29:12: 85:62:06:73:3a:85:3a:45:fe:99:f4:dc:f6:4a:41: 3f:4b:af:4d:58:e4:0f:ad:4e:7f:0b:82:1a:86:19: 30:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:53:1B:BA:BC:59:F0:92:6C:0C:E6:D0:80:5D:BF:71:35:AA:E7:D0 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dVMburxZ8JJsDObQgF2_cTWq59A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.92.0/24 Signature Algorithm: sha256WithRSAEncryption 09:5a:5e:41:97:b7:ca:af:7b:b0:61:33:02:fd:3e:8c:f6:0f: 57:56:6d:ea:d1:9a:48:a9:e4:58:a8:7e:dd:2f:f9:3f:c2:ee: 2b:ea:bf:08:f4:a4:fa:c9:a8:db:8b:90:08:cf:f4:32:e6:f3: 8e:67:e3:76:be:5c:9a:29:7e:e4:a9:32:24:f8:f0:a5:26:13: 63:e4:74:9e:1c:78:95:12:1e:49:8e:2e:df:09:fb:74:e6:95: c5:28:65:fd:39:a6:4e:da:85:d0:28:f3:6b:11:3d:85:ad:2c: 1d:17:32:39:8b:e4:b0:5a:4b:71:42:d1:9f:04:a3:6c:82:88: 70:3d:6c:c6:3e:47:48:54:65:f9:47:c3:0a:26:f9:fa:87:92: a2:68:d8:c3:a7:d7:87:23:49:61:4b:b6:1b:05:d1:1f:d6:9d: c5:2b:47:ad:24:0c:ff:9e:15:48:ff:78:46:bd:9f:06:38:48: 96:8e:e0:df:7b:1d:79:9a:8a:47:e1:37:e9:8b:bc:27:c7:da: 9e:81:a7:39:48:ba:f9:6b:54:fb:e4:70:10:9d:87:05:36:df: 9f:be:b2:b2:e6:9f:dc:80:d4:17:5c:74:59:2f:7b:65:85:a5: 9f:c4:04:f1:36:c0:89:80:c4:c9:20:47:4e:a9:08:42:58:f1: b2:a6:5b:86 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD9owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc1NTMxQkJBQkM1OUYw OTI2QzBDRTZEMDgwNURCRjcxMzVBQUU3RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpA3W/PnHKwlPpzuKvtIeOs13HwG9ZCaHPQpVmyA35otSuue8y L4s4kOoFpAPkHJWor3MQTx+Hft4daq6Z+V7x4c+EVOnWzXYAQkPl1n3NspMZ0tKb 4pGlVp/3DzYDm44Pb94YTDi92AR9t0FNVtQcJ+cLRM+iw79Z6hqNzKKioM7ekFFC MpH7tCy7hH5Z8rAr790eP9L3/oaMKpZQlYfKhYzPLNW4IIN/h7a3bXyKmx3Cbt8N 99pf2KeXtzPah4g+txXoZ3Ea9Ix9g1UB6Wm3pfMzjvegZL/MonZh3YspEoViBnM6 hTpF/pn03PZKQT9Lr01Y5A+tTn8LghqGGTCtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUdVMburxZ8JJsDObQgF2/cTWq59AwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2RWTWJ1cnhaOEpKc0RPYlFnRjJfY1RX cTU5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSOlwwDQYJ KoZIhvcNAQELBQADggEBAAlaXkGXt8qve7BhMwL9Poz2D1dWberRmkip5Fioft0v +T/C7ivqvwj0pPrJqNuLkAjP9DLm845n43a+XJopfuSpMiT48KUmE2PkdJ4ceJUS HkmOLt8J+3TmlcUoZf05pk7ahdAo82sRPYWtLB0XMjmL5LBaS3FC0Z8Eo2yCiHA9 bMY+R0hUZflHwwom+fqHkqJo2MOn14cjSWFLthsF0R/WncUrR60kDP+eFUj/eEa9 nwY4SJaO4N97HXmaikfhN+mLvCfH2p6BpzlIuvlrVPvkcBCdhwU235++srLmn9yA 1BdcdFkve2WFpZ/EBPE2wImAxMkgR06pCEJY8bKmW4Y= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:08 2024 by rpki-client on console-fra.rpki-client.org