$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fIAf19DdMKC0EKwqRDYQ4o3MdqI.roa File: fIAf19DdMKC0EKwqRDYQ4o3MdqI.roa (raw, json) Hash identifier: OdyFFzUTKATuSug9Ng6y0WfHvshxD+v+/RtfnyhZ5ns= Subject key identifier: 7C:80:1F:D7:D0:DD:30:A0:B4:10:AC:2A:44:36:10:E2:8D:CC:76:A2 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10A5 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fIAf19DdMKC0EKwqRDYQ4o3MdqI.roa Signing time: Mon 26 Aug 2024 05:16:38 +0000 ROA not before: Mon 26 Aug 2024 05:16:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 222.250.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4261 (0x10a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7C801FD7D0DD30A0B410AC2A443610E28DCC76A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7b:27:3a:05:2e:09:20:64:67:9b:fe:90:f0: fd:cb:85:28:f2:39:e9:a2:16:43:0e:74:50:70:d8: e0:05:fa:24:e7:7f:9d:d1:71:46:f2:58:e6:2d:20: 93:4c:f2:72:70:10:52:7e:23:e8:ca:46:42:13:93: 17:cd:4d:fe:51:da:7b:ba:4b:3d:b6:d2:17:b6:83: 80:54:c7:a7:d2:68:db:08:e4:fb:8a:f7:d3:32:a9: 48:2d:33:94:65:e0:bf:c0:ea:a0:cc:ac:09:8b:21: bc:36:4b:64:58:55:0d:22:b5:a6:0e:c3:ff:96:58: 9d:67:a4:0d:81:87:d2:29:bb:2f:cf:99:70:bd:d0: 58:4f:51:15:a7:2d:b4:cc:3c:0a:0e:81:b3:11:d3: f7:4d:96:23:f2:12:46:ba:f8:97:66:ed:f5:ad:20: 99:90:ba:44:dc:ae:98:4b:cb:4b:f3:4c:20:26:7d: de:f1:64:c6:9c:57:bb:13:8d:74:e7:d5:45:77:39: a7:e5:fb:1a:82:40:22:a8:81:87:32:73:d5:8b:c6: a5:26:bb:7b:de:ec:28:93:fd:3c:94:c9:18:9f:e9: d5:31:63:f6:3e:0e:d8:1f:e8:57:b4:52:9a:ed:2a: fd:1b:f0:e0:80:d6:fe:12:fe:c5:ab:37:a0:77:71: 8f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:80:1F:D7:D0:DD:30:A0:B4:10:AC:2A:44:36:10:E2:8D:CC:76:A2 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fIAf19DdMKC0EKwqRDYQ4o3MdqI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.250.128.0/18 Signature Algorithm: sha256WithRSAEncryption c2:27:ed:60:8e:43:6d:c9:3c:02:e1:dc:e3:c0:e4:d6:5f:4a: b9:3c:6d:59:26:b4:46:ad:4b:35:28:21:b5:2d:6a:23:dc:5a: 0b:fd:1a:08:00:2a:cb:75:0e:fa:09:a8:b1:8f:d0:dc:78:f8: 23:e3:be:4d:b4:af:2b:e7:c6:1a:94:63:54:52:83:6e:d9:a8: ba:83:5e:4f:23:b6:e0:49:7d:8b:26:56:50:1f:01:16:68:e4: c1:8b:24:13:c9:b9:51:3c:0a:82:8f:1d:71:a0:f9:7c:37:2f: a5:4d:38:c9:63:d3:dc:09:01:fc:0c:d6:18:f4:71:83:93:9c: 5c:62:1b:63:8a:70:17:60:a3:17:d5:a1:8a:fd:ea:d7:56:dd: a6:45:8a:09:fc:a7:95:99:ac:e9:8e:12:6f:73:ab:f5:9b:f3: c9:a5:17:53:09:c1:02:23:fa:22:6b:5b:29:00:40:72:8c:35: 2b:b7:8a:3e:6a:ce:87:a7:bb:ec:7d:a5:20:be:0d:71:14:2e: da:5f:37:88:40:a4:b6:2e:c7:cb:aa:09:f6:6d:e8:03:59:4d: ae:34:a2:02:04:f5:55:56:a2:5e:8a:a8:66:69:8a:cb:4e:13: 04:18:fe:b7:83:a8:11:85:82:9a:ed:45:76:e4:e1:d2:28:df: c4:e8:ed:25 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEKUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdDODAxRkQ3RDBERDMw QTBCNDEwQUMyQTQ0MzYxMEUyOERDQzc2QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYeyc6BS4JIGRnm/6Q8P3LhSjyOemiFkMOdFBw2OAF+iTnf53R cUbyWOYtIJNM8nJwEFJ+I+jKRkITkxfNTf5R2nu6Sz220he2g4BUx6fSaNsI5PuK 99MyqUgtM5Rl4L/A6qDMrAmLIbw2S2RYVQ0itaYOw/+WWJ1npA2Bh9Ipuy/PmXC9 0FhPURWnLbTMPAoOgbMR0/dNliPyEka6+Jdm7fWtIJmQukTcrphLy0vzTCAmfd7x ZMacV7sTjXTn1UV3Oafl+xqCQCKogYcyc9WLxqUmu3ve7CiT/TyUyRif6dUxY/Y+ Dtgf6Fe0UprtKv0b8OCA1v4S/sWrN6B3cY/dAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUfIAf19DdMKC0EKwqRDYQ4o3MdqIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2ZJQWYxOURkTUtDMEVLd3FSRFlRNG8z TWRxSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbe+oAwDQYJ KoZIhvcNAQELBQADggEBAMIn7WCOQ23JPALh3OPA5NZfSrk8bVkmtEatSzUoIbUt aiPcWgv9GggAKst1DvoJqLGP0Nx4+CPjvk20ryvnxhqUY1RSg27ZqLqDXk8jtuBJ fYsmVlAfARZo5MGLJBPJuVE8CoKPHXGg+Xw3L6VNOMlj09wJAfwM1hj0cYOTnFxi G2OKcBdgoxfVoYr96tdW3aZFign8p5WZrOmOEm9zq/Wb88mlF1MJwQIj+iJrWykA QHKMNSu3ij5qzoenu+x9pSC+DXEULtpfN4hApLYux8uqCfZt6ANZTa40ogIE9VVW ol6KqGZpistOEwQY/reDqBGFgprtRXbk4dIo38To7SU= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:38 2024 by rpki-client on console-fra.rpki-client.org