$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/mBBxuyU1rnNdXOZC2HMEdQTcTBI.roa File: mBBxuyU1rnNdXOZC2HMEdQTcTBI.roa (raw, json) Hash identifier: EMVpO0P/dG5kSS1LnhgVPk69UbKTYKL9E+xYKWk6DlQ= Subject key identifier: 98:10:71:BB:25:35:AE:73:5D:5C:E6:42:D8:73:04:75:04:DC:4C:12 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1002 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mBBxuyU1rnNdXOZC2HMEdQTcTBI.roa Signing time: Mon 26 Aug 2024 05:15:58 +0000 ROA not before: Mon 26 Aug 2024 05:15:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 60.244.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4098 (0x1002) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=981071BB2535AE735D5CE642D873047504DC4C12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e1:ba:d9:87:e7:48:d0:45:62:2d:40:48:d1: 1b:39:35:fb:94:30:ee:08:3f:4f:90:27:74:6d:3b: e3:0b:80:c2:b3:7b:93:d8:74:0a:11:61:16:d7:12: 80:ee:c4:55:f8:9b:28:33:2e:71:43:a9:8e:dd:76: 0b:56:a4:61:a2:ba:3d:c5:17:b9:8b:86:5e:3f:1b: c4:e9:a9:55:16:dd:6a:2c:9f:cc:c5:25:8d:cf:aa: 26:c7:93:00:bc:fb:92:f8:7b:b5:d5:2c:79:82:0f: 2e:e0:b5:6f:eb:d4:17:d1:9e:b9:7e:9f:94:4d:68: b5:16:41:ba:68:bf:d6:86:9a:ed:58:23:f3:e1:cb: 98:f6:5d:c3:cc:40:f8:87:99:47:71:3a:b1:ad:da: 25:38:bd:39:e9:95:66:01:a0:47:ce:13:a0:03:f2: d6:cc:18:40:29:c4:f7:cb:be:f8:5d:84:84:9d:65: db:ab:8a:8a:a9:8c:70:6a:87:5c:3f:2c:3f:56:dd: 79:a6:ee:db:30:80:71:ab:55:fa:99:24:e1:3f:e9: d6:7d:4d:de:1b:28:bc:09:69:e4:67:47:73:f2:42: 99:23:4c:36:4b:46:34:73:37:8e:41:c6:fd:08:0e: 13:39:32:7c:03:92:4d:72:fc:f7:93:0c:3a:a4:1a: 4e:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:10:71:BB:25:35:AE:73:5D:5C:E6:42:D8:73:04:75:04:DC:4C:12 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/mBBxuyU1rnNdXOZC2HMEdQTcTBI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.244.192.0/18 Signature Algorithm: sha256WithRSAEncryption b8:5d:67:e4:dd:f1:69:56:4f:7a:62:a9:0a:91:3c:97:b7:2f: b1:c2:af:65:0e:54:b6:e6:29:2d:f9:e7:6a:c8:10:8e:88:77: 4e:eb:43:5c:08:14:74:ed:1c:17:40:3f:de:f7:b7:9e:93:52: ff:e4:a5:04:a1:62:98:4b:5c:ec:9f:95:5b:82:36:6c:44:c2: 09:55:bd:12:57:e6:5b:a5:d0:d7:2d:91:7a:ef:3d:46:a5:92: b7:75:7c:11:47:d3:ea:b7:59:9f:ae:60:2b:8e:19:dd:58:28: e2:e7:12:57:3e:08:d8:c7:66:bc:b6:65:66:ed:e4:6e:d5:d6: b4:f6:aa:46:48:3a:3a:ab:22:33:f0:fc:5b:7c:75:f5:75:f9: d1:1e:4f:3e:ff:ab:24:4f:ff:24:83:62:eb:df:bb:c6:15:81: 2f:12:b9:82:52:c3:04:d3:66:ce:d6:b5:17:bf:1f:4c:2f:b6: a4:7a:9d:fc:c0:8a:6c:51:06:72:2f:28:a4:82:8a:20:28:71: f9:08:6a:23:a0:b2:95:28:36:44:e2:54:8d:fe:9a:15:38:e0: 85:b5:2f:92:99:5b:28:f6:51:34:0e:b6:ac:94:9f:e6:a3:87: 22:db:f5:d9:2b:71:0b:2a:b0:a1:93:7d:2c:4f:5d:bc:f7:e5: a0:90:e7:43 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4MTA3MUJCMjUzNUFF NzM1RDVDRTY0MkQ4NzMwNDc1MDREQzRDMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDy4brZh+dI0EViLUBI0Rs5NfuUMO4IP0+QJ3RtO+MLgMKze5PY dAoRYRbXEoDuxFX4mygzLnFDqY7ddgtWpGGiuj3FF7mLhl4/G8TpqVUW3Wosn8zF JY3PqibHkwC8+5L4e7XVLHmCDy7gtW/r1BfRnrl+n5RNaLUWQbpov9aGmu1YI/Ph y5j2XcPMQPiHmUdxOrGt2iU4vTnplWYBoEfOE6AD8tbMGEApxPfLvvhdhISdZdur ioqpjHBqh1w/LD9W3Xmm7tswgHGrVfqZJOE/6dZ9Td4bKLwJaeRnR3PyQpkjTDZL RjRzN45Bxv0IDhM5MnwDkk1y/PeTDDqkGk65AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmBBxuyU1rnNdXOZC2HMEdQTcTBIwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL21CQnh1eVUxcm5OZFhPWkMySE1FZFFU Y1RCSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY89MAwDQYJ KoZIhvcNAQELBQADggEBALhdZ+Td8WlWT3piqQqRPJe3L7HCr2UOVLbmKS3552rI EI6Id07rQ1wIFHTtHBdAP973t56TUv/kpQShYphLXOyflVuCNmxEwglVvRJX5lul 0NctkXrvPUalkrd1fBFH0+q3WZ+uYCuOGd1YKOLnElc+CNjHZry2ZWbt5G7V1rT2 qkZIOjqrIjPw/Ft8dfV1+dEeTz7/qyRP/ySDYuvfu8YVgS8SuYJSwwTTZs7WtRe/ H0wvtqR6nfzAimxRBnIvKKSCiiAocfkIaiOgspUoNkTiVI3+mhU44IW1L5KZWyj2 UTQOtqyUn+ajhyLb9dkrcQsqsKGTfSxPXbz35aCQ50M= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org