$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/vrEmSG_7JIISkEpLkBybUzLvN2E.roa File: vrEmSG_7JIISkEpLkBybUzLvN2E.roa (raw, json) Hash identifier: JRxfLitPMiXsMxK9k17fA18VqmntN4ef0xusxCdQB1w= Subject key identifier: BE:B1:26:48:6F:FB:24:82:12:90:4A:4B:90:1C:9B:53:32:EF:37:61 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 101F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vrEmSG_7JIISkEpLkBybUzLvN2E.roa Signing time: Mon 26 Aug 2024 05:16:05 +0000 ROA not before: Mon 26 Aug 2024 05:16:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9674 IP address blocks: 211.77.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4127 (0x101f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BEB126486FFB248212904A4B901C9B5332EF3761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:a7:dc:8d:c8:e9:5d:48:3f:14:c1:e4:2b:db: f3:bf:f2:6c:78:ab:9b:a8:c3:ee:56:a3:fe:c0:67: 34:ea:cd:15:dc:fa:6b:07:d6:0e:11:9d:69:40:84: b0:81:33:00:e2:8e:c5:89:6a:83:6f:c4:b0:93:2b: 94:18:70:19:7f:d4:be:cf:48:dc:f8:37:40:ce:ad: ab:65:8c:79:86:65:d0:3a:3f:6b:7f:1e:fb:58:3c: bd:28:12:79:fa:b6:65:ab:3c:59:75:af:1a:e3:5e: 2f:f9:97:dc:d7:74:71:a4:da:6d:33:e9:0f:a8:a0: a3:49:82:b1:84:8b:c5:ab:7c:08:e0:03:ad:52:06: 8b:44:18:7a:4a:57:18:43:ad:01:48:a6:7f:b0:f5: 13:af:b5:aa:d0:99:2f:05:54:0a:dd:be:50:b1:cf: 95:12:61:90:cf:eb:a4:9a:fb:39:02:be:2a:98:ef: 08:e2:a6:3e:e7:fb:29:5d:29:37:8c:f5:71:37:39: 5e:20:f4:ce:ae:12:28:6a:8e:1a:42:c8:eb:62:8c: 83:d4:1d:37:7b:e4:37:7a:a2:30:bc:71:0e:71:68: 34:e5:12:a4:95:01:11:9b:38:87:75:8c:a6:5a:76: 2a:45:00:2a:c2:e5:c8:ee:3b:bc:59:76:0e:cd:89: 9f:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:B1:26:48:6F:FB:24:82:12:90:4A:4B:90:1C:9B:53:32:EF:37:61 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vrEmSG_7JIISkEpLkBybUzLvN2E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption b6:ba:fc:2c:4e:95:c0:ef:70:ed:dd:67:ca:35:fd:96:b3:c8: 15:4c:be:35:8c:96:b3:11:db:db:67:7b:30:32:a1:17:93:ca: 8d:b8:c6:d6:1f:e3:f8:f3:ad:c2:d1:fa:49:ec:9f:ba:49:c2: 38:7b:43:64:1d:c4:53:02:d5:ef:0a:9e:94:42:d7:10:34:21: fd:08:31:80:c3:cc:61:4a:3f:b5:9b:ee:f0:5d:de:4f:f4:c5: 85:12:ec:ba:73:f7:e2:9b:70:81:5c:a3:72:78:4b:88:7a:9c: c9:00:4e:1b:81:f3:55:6a:76:f5:00:78:61:c8:d7:e8:41:ec: 9c:be:4c:d0:f1:53:ec:30:8b:51:f7:8e:24:4d:2a:e3:c3:b3: 2a:f8:0d:eb:55:9e:ed:65:1c:e9:df:09:83:cc:01:4b:28:89: dc:35:51:3b:a3:fa:66:17:39:2d:42:58:7f:3d:b5:18:3b:cc: 48:d1:8d:8a:f5:b8:39:f2:58:06:4d:64:d1:47:3b:64:cd:7f: 05:7a:f9:2e:d1:60:e4:43:d2:89:3f:78:5f:1a:10:47:2f:54: a8:73:3a:27:5d:44:eb:23:da:e7:3a:24:ce:6f:e0:f2:8a:2e: d5:3b:20:71:ad:fa:21:cf:86:64:e0:ec:92:51:b5:1e:bc:36: 78:af:c0:d7 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEB8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFQjEyNjQ4NkZGQjI0 ODIxMjkwNEE0QjkwMUM5QjUzMzJFRjM3NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYp9yNyOldSD8UweQr2/O/8mx4q5uow+5Wo/7AZzTqzRXc+msH 1g4RnWlAhLCBMwDijsWJaoNvxLCTK5QYcBl/1L7PSNz4N0DOratljHmGZdA6P2t/ HvtYPL0oEnn6tmWrPFl1rxrjXi/5l9zXdHGk2m0z6Q+ooKNJgrGEi8WrfAjgA61S BotEGHpKVxhDrQFIpn+w9ROvtarQmS8FVArdvlCxz5USYZDP66Sa+zkCviqY7wji pj7n+yldKTeM9XE3OV4g9M6uEihqjhpCyOtijIPUHTd75Dd6ojC8cQ5xaDTlEqSV ARGbOId1jKZadipFACrC5cjuO7xZdg7NiZ8FAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUvrEmSG/7JIISkEpLkBybUzLvN2EwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3ZyRW1TR183SklJU2tFcExrQnliVXpM dk4yRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfTTYAwDQYJ KoZIhvcNAQELBQADggEBALa6/CxOlcDvcO3dZ8o1/ZazyBVMvjWMlrMR29tnezAy oReTyo24xtYf4/jzrcLR+knsn7pJwjh7Q2QdxFMC1e8KnpRC1xA0If0IMYDDzGFK P7Wb7vBd3k/0xYUS7Lpz9+KbcIFco3J4S4h6nMkAThuB81VqdvUAeGHI1+hB7Jy+ TNDxU+wwi1H3jiRNKuPDsyr4DetVnu1lHOnfCYPMAUsoidw1UTuj+mYXOS1CWH89 tRg7zEjRjYr1uDnyWAZNZNFHO2TNfwV6+S7RYORD0ok/eF8aEEcvVKhzOiddROsj 2uc6JM5v4PKKLtU7IHGt+iHPhmTg7JJRtR68NnivwNc= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:08 2024 by rpki-client on console-fra.rpki-client.org