$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/g904P5eN9CNbeKQjGSpNz3pFGAk.roa File: g904P5eN9CNbeKQjGSpNz3pFGAk.roa (raw, json) Hash identifier: TqRRpU3s4oQBrlu//kiH673lLH1VZq7c8OHcZHPf7ak= Subject key identifier: 83:DD:38:3F:97:8D:F4:23:5B:78:A4:23:19:2A:4D:CF:7A:45:18:09 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10E9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/g904P5eN9CNbeKQjGSpNz3pFGAk.roa Signing time: Fri 30 Aug 2024 07:58:40 +0000 ROA not before: Fri 30 Aug 2024 07:58:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 218.34.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4329 (0x10e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 30 07:58:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=83DD383F978DF4235B78A423192A4DCF7A451809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3f:4d:08:61:8e:6e:a7:59:ec:b7:be:d8:90: 91:f7:a7:e6:40:8c:83:4f:88:45:04:83:37:08:3a: 42:98:5f:22:80:29:fa:e5:64:37:1f:03:0d:5b:95: 0d:f6:18:f5:e1:68:f8:0c:6c:3f:8d:af:92:75:c2: 9b:bc:0b:ba:bd:d1:da:3c:a1:a2:76:2e:44:a6:f9: ff:54:6c:11:70:ab:45:87:c9:df:f3:bf:60:74:dd: 5a:6f:bd:88:57:69:fd:c6:1d:18:99:da:24:e8:27: cc:7e:d4:19:a0:a4:79:ce:77:9f:ff:36:8e:05:19: 01:56:89:e8:f2:5d:fb:bb:6d:38:a2:6a:d7:3f:12: 1f:59:b0:a8:f2:4f:62:66:14:84:dc:e6:90:8d:09: 75:e4:19:02:de:27:89:20:a5:b8:11:17:e0:49:3d: ed:b5:b0:53:f6:97:97:b2:4a:41:33:ed:fc:60:a2: cd:55:a1:56:a5:0e:2b:82:66:f1:ed:8a:45:24:0d: 4b:96:93:87:f6:90:6a:c1:87:0e:a0:5d:bc:e6:7b: e3:54:ad:2c:ee:8f:fc:90:19:da:a4:71:cc:c6:94: 41:62:82:9b:3a:9b:9a:9e:80:b9:d6:f3:91:dc:40: d8:43:eb:92:39:9a:48:60:19:1b:b1:54:16:e6:fb: 21:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DD:38:3F:97:8D:F4:23:5B:78:A4:23:19:2A:4D:CF:7A:45:18:09 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/g904P5eN9CNbeKQjGSpNz3pFGAk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.34.112.0/20 Signature Algorithm: sha256WithRSAEncryption 13:2a:0b:30:fb:17:64:ba:cd:ad:2f:52:b4:09:16:7e:78:eb: 62:d8:67:8c:19:48:9e:9c:a9:b3:0a:ae:f4:c4:95:b2:39:52: 7e:7d:29:94:04:24:1f:df:0a:0f:fb:6e:24:f8:b0:1c:65:8c: 85:bc:79:b7:e6:f9:a3:e0:91:87:67:43:bd:cc:03:0a:ae:ea: 80:dd:34:01:48:a0:3d:61:be:a3:77:e1:5b:56:b1:74:25:e6: 52:3c:b2:10:be:f6:f1:b6:38:77:7e:2e:2f:e6:30:7b:1a:07: 89:3e:12:be:6e:2b:09:56:2c:37:c6:66:11:be:7b:ad:ac:a5: d4:b0:2d:40:36:1a:e4:00:c4:34:a3:97:4a:a8:a1:70:7e:60: 4d:b9:6e:37:12:89:bd:f1:65:49:33:ce:2b:c3:ee:ec:b4:6f: f7:cf:7d:b3:68:03:ec:07:e2:79:c6:69:e1:f7:d0:22:81:0e: ce:42:e4:96:72:38:3e:01:48:e7:a5:1e:95:b1:55:58:a8:dc: cb:b4:98:93:8b:b6:cf:47:32:c9:61:47:16:a0:23:77:84:ec: 6f:ca:b9:8e:2c:2e:4d:e9:f5:91:89:32:4a:2a:ff:71:a5:06: a0:ae:c7:4a:53:0b:50:26:17:b7:1e:1a:d5:db:ff:fb:e2:dc: 45:cc:34:01 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MzAw NzU4NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgzREQzODNGOTc4REY0 MjM1Qjc4QTQyMzE5MkE0RENGN0E0NTE4MDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5P00IYY5up1nst77YkJH3p+ZAjINPiEUEgzcIOkKYXyKAKfrl ZDcfAw1blQ32GPXhaPgMbD+Nr5J1wpu8C7q90do8oaJ2LkSm+f9UbBFwq0WHyd/z v2B03VpvvYhXaf3GHRiZ2iToJ8x+1BmgpHnOd5//No4FGQFWiejyXfu7bTiiatc/ Eh9ZsKjyT2JmFITc5pCNCXXkGQLeJ4kgpbgRF+BJPe21sFP2l5eySkEz7fxgos1V oValDiuCZvHtikUkDUuWk4f2kGrBhw6gXbzme+NUrSzuj/yQGdqkcczGlEFigps6 m5qegLnW85HcQNhD65I5mkhgGRuxVBbm+yEfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUg904P5eN9CNbeKQjGSpNz3pFGAkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2c5MDRQNWVOOUNOYmVLUWpHU3BOejNw RkdBay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATaInAwDQYJ KoZIhvcNAQELBQADggEBABMqCzD7F2S6za0vUrQJFn5462LYZ4wZSJ6cqbMKrvTE lbI5Un59KZQEJB/fCg/7biT4sBxljIW8ebfm+aPgkYdnQ73MAwqu6oDdNAFIoD1h vqN34VtWsXQl5lI8shC+9vG2OHd+Li/mMHsaB4k+Er5uKwlWLDfGZhG+e62spdSw LUA2GuQAxDSjl0qooXB+YE25bjcSib3xZUkzzivD7uy0b/fPfbNoA+wH4nnGaeH3 0CKBDs5C5JZyOD4BSOelHpWxVVio3Mu0mJOLts9HMslhRxagI3eE7G/KuY4sLk3p 9ZGJMkoq/3GlBqCux0pTC1AmF7ceGtXb//vi3EXMNAE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org