$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/lfty54JL7N9v24jPvjOoBaLzVeQ.roa File: lfty54JL7N9v24jPvjOoBaLzVeQ.roa (raw, json) Hash identifier: x3E0LD4X0PpNNivzC28iGCaMMF8DtWtF+YzjcIfURmw= Subject key identifier: 95:FB:72:E7:82:4B:EC:DF:6F:DB:88:CF:BE:33:A8:05:A2:F3:55:E4 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1064 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/lfty54JL7N9v24jPvjOoBaLzVeQ.roa Signing time: Mon 26 Aug 2024 05:16:22 +0000 ROA not before: Mon 26 Aug 2024 05:16:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 222.156.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4196 (0x1064) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=95FB72E7824BECDF6FDB88CFBE33A805A2F355E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:af:a5:0c:5b:13:9b:fc:7e:f7:1e:f3:c2:41: 36:2d:b4:0d:f5:cc:74:89:21:39:36:ea:1d:9b:4c: 3e:50:6d:32:a1:ed:df:03:4d:b7:2d:0d:f8:de:e7: de:2b:6b:54:08:a3:af:64:d8:ba:08:58:ba:dd:d8: d0:3e:07:c9:3a:30:8a:f3:35:bc:21:fe:a8:50:02: a1:c1:e6:1a:69:61:30:4f:db:d9:c5:5c:7c:77:f2: 30:fe:95:11:90:fb:7d:54:b3:05:dc:d7:7d:b5:b1: e8:49:c7:da:19:ae:e9:5d:3e:c3:85:8e:5d:fd:a6: 2d:73:41:79:dd:06:82:8d:ae:d4:67:e2:f7:ba:ab: 5f:79:21:96:17:05:28:47:34:45:c3:56:34:8c:83: 8d:40:9a:cb:87:1c:bd:42:6d:b4:e1:53:59:4a:ea: b3:d7:19:13:b7:b2:83:30:ca:12:0b:67:6c:7e:0f: 02:5c:69:81:20:d9:a1:39:29:94:98:0e:04:35:f0: 2b:2e:7e:d8:3e:7e:2d:45:32:07:31:45:9e:b0:7b: b9:1f:53:d1:72:b5:b3:5b:f8:7b:96:ed:d0:d3:0b: 25:08:b6:55:a6:bf:82:ad:9b:1e:5c:f6:33:b9:47: 82:ca:c7:64:27:48:ea:2d:ef:d2:71:19:02:02:dc: cc:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:FB:72:E7:82:4B:EC:DF:6F:DB:88:CF:BE:33:A8:05:A2:F3:55:E4 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/lfty54JL7N9v24jPvjOoBaLzVeQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.156.254.0/24 Signature Algorithm: sha256WithRSAEncryption 58:69:b9:13:6d:68:7d:57:fb:ba:68:3b:2d:d5:7d:f7:0d:11: 1f:6c:2c:af:6b:87:e8:c3:ab:b5:e7:bf:91:53:45:cd:81:f6: 0f:38:d2:2c:7d:b8:03:4c:a7:5f:63:ba:53:8a:9b:42:b3:33: 66:cd:7c:d6:dc:27:4c:7e:eb:96:01:9b:5e:5f:c9:76:3f:01: 4a:77:42:bb:0d:33:e9:61:b3:4d:92:82:85:84:11:d7:fc:da: 33:16:1f:4f:a2:07:ee:91:b1:21:ee:9b:ae:18:9e:29:97:96: 57:4e:5c:ba:99:a4:c2:f0:e6:e8:7f:da:94:78:37:cf:46:35: 89:65:c3:2e:80:55:80:e7:76:c2:4f:a4:77:ee:f2:09:e9:3a: 8e:5f:7a:ba:a8:69:30:4d:72:ff:5c:fb:1b:2b:e0:aa:92:21: b7:c3:90:9d:63:1e:60:28:3d:d9:95:95:b0:8e:d3:ca:38:63: 78:48:32:29:01:94:35:fa:30:56:99:3d:2d:33:46:fd:1b:d6: be:ee:ac:7e:4d:17:af:ce:da:89:a9:8c:62:f9:9b:d7:65:b0: d1:68:9c:3a:7d:51:7d:88:b1:6e:04:21:a3:f1:db:b3:a7:16: b0:04:f1:c0:46:79:43:91:d9:cb:69:be:5e:33:6b:de:83:3e: b0:33:fe:72 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEGQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1RkI3MkU3ODI0QkVD REY2RkRCODhDRkJFMzNBODA1QTJGMzU1RTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJr6UMWxOb/H73HvPCQTYttA31zHSJITk26h2bTD5QbTKh7d8D TbctDfje594ra1QIo69k2LoIWLrd2NA+B8k6MIrzNbwh/qhQAqHB5hppYTBP29nF XHx38jD+lRGQ+31UswXc1321sehJx9oZruldPsOFjl39pi1zQXndBoKNrtRn4ve6 q195IZYXBShHNEXDVjSMg41AmsuHHL1CbbThU1lK6rPXGRO3soMwyhILZ2x+DwJc aYEg2aE5KZSYDgQ18Csuftg+fi1FMgcxRZ6we7kfU9FytbNb+HuW7dDTCyUItlWm v4Ktmx5c9jO5R4LKx2QnSOot79JxGQIC3MwZAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUlfty54JL7N9v24jPvjOoBaLzVeQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2xmdHk1NEpMN045djI0alB2ak9vQmFM elZlUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADenP4wDQYJ KoZIhvcNAQELBQADggEBAFhpuRNtaH1X+7poOy3VffcNER9sLK9rh+jDq7Xnv5FT Rc2B9g840ix9uANMp19julOKm0KzM2bNfNbcJ0x+65YBm15fyXY/AUp3QrsNM+lh s02SgoWEEdf82jMWH0+iB+6RsSHum64YnimXlldOXLqZpMLw5uh/2pR4N89GNYll wy6AVYDndsJPpHfu8gnpOo5ferqoaTBNcv9c+xsr4KqSIbfDkJ1jHmAoPdmVlbCO 08o4Y3hIMikBlDX6MFaZPS0zRv0b1r7urH5NF6/O2ompjGL5m9dlsNFonDp9UX2I sW4EIaPx27OnFrAE8cBGeUOR2ctpvl4za96DPrAz/nI= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:38 2024 by rpki-client on console-fra.rpki-client.org