$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/eovW1dOgZ5CtaxWDfjWyjQbaavY.roa File: eovW1dOgZ5CtaxWDfjWyjQbaavY.roa (raw, json) Hash identifier: fECZaHd222yIv/V7EK0LuvzQzd9i3HoPCOqG4aempEc= Subject key identifier: 7A:8B:D6:D5:D3:A0:67:90:AD:6B:15:83:7E:35:B2:8D:06:DA:6A:F6 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FCD Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eovW1dOgZ5CtaxWDfjWyjQbaavY.roa Signing time: Mon 26 Aug 2024 05:15:46 +0000 ROA not before: Mon 26 Aug 2024 05:15:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131601 IP address blocks: 210.58.112.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4045 (0xfcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7A8BD6D5D3A06790AD6B15837E35B28D06DA6AF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fc:8e:d5:36:a3:3b:e3:5a:3b:6f:be:38:b8: b8:31:11:02:a0:1c:89:86:e9:25:fe:e0:46:3c:ea: ab:27:68:3f:59:fe:53:20:e8:eb:be:27:e9:6d:de: b5:b2:54:44:05:6c:15:76:af:ed:0b:bc:e7:65:e2: fb:cf:b0:7e:90:12:e7:e5:fb:61:c8:49:81:79:6e: 40:48:38:43:b4:ba:8f:74:d9:6a:6b:82:b4:d3:36: f9:76:f9:44:11:4f:90:c0:3a:df:b7:2f:5c:f2:8e: 03:a4:d0:4b:1a:f2:6a:fd:02:43:7b:3e:fb:a0:fd: 3a:3b:af:7e:35:24:c6:14:20:df:7d:49:bb:82:1e: 46:c3:d8:47:21:45:d4:3f:ff:ef:90:fe:d9:8d:27: a6:e0:74:f3:22:37:87:dc:26:09:54:30:b5:f4:b0: 89:5e:1b:0a:c0:fd:4d:cd:96:db:1b:d9:d2:b1:8a: 69:b4:c3:af:d5:cd:66:e6:07:63:34:db:48:37:d2: ae:29:3f:2e:f4:85:e0:16:f4:f0:08:3d:6d:68:05: 98:67:20:b2:ce:00:7f:69:7e:52:89:a5:9d:a0:dd: b6:b4:de:06:0c:20:81:24:2d:3f:f6:d0:96:f3:aa: 8a:1f:c7:88:ef:53:d5:aa:dc:61:a1:84:ec:81:a8: e3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:8B:D6:D5:D3:A0:67:90:AD:6B:15:83:7E:35:B2:8D:06:DA:6A:F6 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/eovW1dOgZ5CtaxWDfjWyjQbaavY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.112.0/21 Signature Algorithm: sha256WithRSAEncryption a8:9e:cc:e2:00:89:98:ee:6a:f5:30:f6:06:0c:cd:1f:a8:68: f2:a1:64:2e:ed:7a:79:01:07:74:45:9d:90:9b:ab:1a:f2:0a: 1c:18:d3:65:a3:ef:ec:17:23:9d:d7:cc:f6:00:79:3b:3c:94: 02:89:b7:91:25:24:3e:41:8c:6d:63:49:c8:c4:27:b4:1d:48: d3:d3:76:1c:33:e0:f1:03:c5:34:64:85:c0:46:5d:76:e7:71: c2:55:f0:3f:b4:6d:38:52:00:5c:95:90:30:7e:df:b5:b0:b5: 72:ad:91:06:7e:ce:20:06:6c:dc:59:5f:3e:1f:42:76:ed:de: 14:b2:90:a4:ec:7a:23:d4:a6:18:98:33:7d:98:bf:10:fd:ab: cf:02:52:a3:f9:24:17:c3:ef:48:fb:c6:81:a5:7c:9a:56:d7: a4:22:64:90:60:9b:ef:15:4a:12:c5:29:70:e3:f3:60:28:30: 32:20:9c:f1:22:08:5e:73:b1:04:b5:e7:5a:3f:02:b5:e6:87: 15:68:f2:29:ed:b9:0b:72:f8:ac:06:83:eb:fe:bb:ea:45:09: 7e:6c:83:e7:97:bb:5d:4a:58:5f:b4:1c:2b:d0:dc:17:af:91: 29:72:c1:4c:ce:91:3e:93:54:a3:ad:d5:0c:b1:0f:ed:ff:4b: ee:c6:00:2b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD80wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdBOEJENkQ1RDNBMDY3 OTBBRDZCMTU4MzdFMzVCMjhEMDZEQTZBRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4/I7VNqM741o7b744uLgxEQKgHImG6SX+4EY86qsnaD9Z/lMg 6Ou+J+lt3rWyVEQFbBV2r+0LvOdl4vvPsH6QEufl+2HISYF5bkBIOEO0uo902Wpr grTTNvl2+UQRT5DAOt+3L1zyjgOk0Esa8mr9AkN7Pvug/To7r341JMYUIN99SbuC HkbD2EchRdQ//++Q/tmNJ6bgdPMiN4fcJglUMLX0sIleGwrA/U3Nltsb2dKximm0 w6/VzWbmB2M020g30q4pPy70heAW9PAIPW1oBZhnILLOAH9pflKJpZ2g3ba03gYM IIEkLT/20Jbzqoofx4jvU9Wq3GGhhOyBqONFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUeovW1dOgZ5CtaxWDfjWyjQbaavYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2VvdlcxZE9nWjVDdGF4V0Rmald5alFi YWF2WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSOnAwDQYJ KoZIhvcNAQELBQADggEBAKiezOIAiZjuavUw9gYMzR+oaPKhZC7tenkBB3RFnZCb qxryChwY02Wj7+wXI53XzPYAeTs8lAKJt5ElJD5BjG1jScjEJ7QdSNPTdhwz4PED xTRkhcBGXXbnccJV8D+0bThSAFyVkDB+37WwtXKtkQZ+ziAGbNxZXz4fQnbt3hSy kKTseiPUphiYM32YvxD9q88CUqP5JBfD70j7xoGlfJpW16QiZJBgm+8VShLFKXDj 82AoMDIgnPEiCF5zsQS151o/ArXmhxVo8intuQty+KwGg+v+u+pFCX5sg+eXu11K WF+0HCvQ3BevkSlywUzOkT6TVKOt1QyxD+3/S+7GACs= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:38 2024 by rpki-client on console-fra.rpki-client.org