$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/iQeZOUaTLYUlVIBrexzxePtX6ug.roa File: iQeZOUaTLYUlVIBrexzxePtX6ug.roa (raw, json) Hash identifier: ocfre2afNGZFieA2cslPpF0VClABqLSWva6CRcsZeaE= Subject key identifier: 89:07:99:39:46:93:2D:85:25:54:80:6B:7B:1C:F1:78:FB:57:EA:E8 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FD3 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iQeZOUaTLYUlVIBrexzxePtX6ug.roa Signing time: Mon 26 Aug 2024 05:15:47 +0000 ROA not before: Mon 26 Aug 2024 05:15:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 22787 IP address blocks: 210.58.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4051 (0xfd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8907993946932D852554806B7B1CF178FB57EAE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:0c:11:cc:2d:01:dc:a5:bf:f8:19:3e:dc:7e: d4:04:dd:81:22:1c:9a:db:b1:01:0b:21:d1:4d:8a: c5:6c:6a:e5:1c:2b:49:86:a7:ec:2c:5c:7c:c0:cc: 6c:6f:f9:fe:8a:39:09:f6:24:99:ab:5c:35:4b:58: c0:63:72:23:6a:38:43:95:d4:22:e8:0b:d9:c9:be: 8e:51:cf:b5:24:bb:8e:bf:2f:59:cd:27:46:11:57: 29:40:23:23:92:4c:b0:ee:68:ab:d7:5f:96:6a:ee: db:0e:28:e2:73:68:60:f4:0d:04:bb:05:21:06:e3: f3:02:91:73:1b:6b:e0:32:89:d4:89:0c:8b:43:58: 8c:b6:b0:eb:78:73:b0:12:ae:b3:46:b0:f5:02:f5: 2f:c5:d8:5f:e7:f1:e0:97:ec:78:b5:2b:44:fd:10: e7:78:ec:38:08:7e:78:ce:cb:c2:25:ee:8d:fa:a0: 38:a8:e1:a2:19:71:e8:e3:21:e2:ea:e0:c2:f2:0f: e5:6f:42:82:0a:07:61:5f:6f:42:80:59:d2:c3:23: 43:fe:10:af:29:9e:82:70:60:00:33:aa:ce:91:bb: c4:40:59:c8:81:89:4d:1b:02:58:13:cd:e6:b7:6e: 00:31:b3:ae:31:c9:f3:48:20:3f:bc:bc:dc:ea:22: b2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:07:99:39:46:93:2D:85:25:54:80:6B:7B:1C:F1:78:FB:57:EA:E8 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/iQeZOUaTLYUlVIBrexzxePtX6ug.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.90.0/24 Signature Algorithm: sha256WithRSAEncryption 14:89:98:12:4e:95:03:b3:18:c2:b5:16:a7:4b:90:a3:49:40: 18:73:2c:13:f8:9e:1d:e2:bb:cb:f5:4e:e8:8a:7b:cd:5e:51: 36:fa:93:30:62:cd:78:02:d5:74:5b:18:5b:ed:8c:d6:14:69: f7:bf:48:e3:3c:15:8b:db:12:94:0c:fe:05:aa:a2:60:49:79: 4f:42:69:31:5f:fa:5a:bd:cd:16:27:13:4b:08:d0:3f:b7:9a: b4:87:53:65:33:cf:e6:d2:12:1e:df:72:f8:b9:a6:19:cd:71: 1d:82:00:9c:74:de:e8:25:c0:d7:e1:85:88:71:9c:da:93:7d: 7e:20:67:e1:7d:41:b0:c9:1c:2f:82:00:41:d2:45:ff:1e:40: b3:fb:64:1b:2d:64:76:50:e9:3e:80:2f:72:8d:3a:53:84:d9: 6d:9e:b0:40:51:cb:52:4a:77:a6:3e:94:98:bd:4f:f9:20:2e: 13:d7:07:30:87:9c:5b:48:54:e8:15:39:19:67:91:9c:73:e8: e9:98:68:6c:47:2a:ff:38:07:56:ee:cc:db:84:20:24:44:0b: be:3c:db:97:ab:e2:0c:30:61:a4:6a:c5:7b:d4:09:f4:93:a6: ba:41:b3:a7:6a:b6:08:6e:f2:22:fa:d6:ce:6c:3f:9f:33:f7: 13:36:77:13 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5MDc5OTM5NDY5MzJE ODUyNTU0ODA2QjdCMUNGMTc4RkI1N0VBRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeDBHMLQHcpb/4GT7cftQE3YEiHJrbsQELIdFNisVsauUcK0mG p+wsXHzAzGxv+f6KOQn2JJmrXDVLWMBjciNqOEOV1CLoC9nJvo5Rz7Uku46/L1nN J0YRVylAIyOSTLDuaKvXX5Zq7tsOKOJzaGD0DQS7BSEG4/MCkXMba+AyidSJDItD WIy2sOt4c7ASrrNGsPUC9S/F2F/n8eCX7Hi1K0T9EOd47DgIfnjOy8Il7o36oDio 4aIZcejjIeLq4MLyD+VvQoIKB2Ffb0KAWdLDI0P+EK8pnoJwYAAzqs6Ru8RAWciB iU0bAlgTzea3bgAxs64xyfNIID+8vNzqIrKhAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUiQeZOUaTLYUlVIBrexzxePtX6ugwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2lRZVpPVWFUTFlVbFZJQnJleHp4ZVB0 WDZ1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSOlowDQYJ KoZIhvcNAQELBQADggEBABSJmBJOlQOzGMK1FqdLkKNJQBhzLBP4nh3iu8v1TuiK e81eUTb6kzBizXgC1XRbGFvtjNYUafe/SOM8FYvbEpQM/gWqomBJeU9CaTFf+lq9 zRYnE0sI0D+3mrSHU2Uzz+bSEh7fcvi5phnNcR2CAJx03uglwNfhhYhxnNqTfX4g Z+F9QbDJHC+CAEHSRf8eQLP7ZBstZHZQ6T6AL3KNOlOE2W2esEBRy1JKd6Y+lJi9 T/kgLhPXBzCHnFtIVOgVORlnkZxz6OmYaGxHKv84B1buzNuEICREC74825er4gww YaRqxXvUCfSTprpBs6dqtghu8iL61s5sP58z9xM2dxM= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:27 2024 by rpki-client on console-fra.rpki-client.org