$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/TaGLg-Usi35-26JPiCGFnN7iP-o.roa File: TaGLg-Usi35-26JPiCGFnN7iP-o.roa (raw, json) Hash identifier: rhlBiXgZ5F52iJz5GfND09FyFJXziK8tNZFtaNOmtGM= Subject key identifier: 4D:A1:8B:83:E5:2C:8B:7E:7E:DB:A2:4F:88:21:85:9C:DE:E2:3F:EA Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0C90 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/TaGLg-Usi35-26JPiCGFnN7iP-o.roa Signing time: Mon 26 Aug 2024 05:17:12 +0000 ROA not before: Mon 26 Aug 2024 05:17:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 223.200.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3216 (0xc90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 26 05:17:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4DA18B83E52C8B7E7EDBA24F8821859CDEE23FEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:90:0f:e2:2d:21:ca:a7:38:43:23:29:76:60: 75:7e:a4:df:c9:cd:93:9c:7f:b4:3d:b4:4c:5c:96: 0b:ce:3a:7a:b2:d8:58:14:6c:d9:f8:fb:e0:d8:22: 9d:27:bb:87:69:51:1f:78:ef:35:8e:99:4c:7e:0e: 6e:ed:f5:54:a7:29:2b:93:a7:f2:f3:54:1d:1a:33: 3e:ea:a7:e8:c2:b8:0f:75:3c:20:f0:38:91:c8:d4: 28:fc:1a:6b:eb:b2:93:aa:a0:fc:70:c6:a1:07:a3: fd:3a:aa:69:29:82:d8:ab:17:0f:c2:10:80:23:62: 63:10:69:4c:33:09:3e:24:2f:f4:6c:3d:67:21:11: a4:5b:f1:ff:a1:45:a5:90:9a:21:50:7d:c7:c2:56: 7b:2d:67:bd:03:9c:aa:ee:31:7e:d6:0a:d8:60:f6: 62:1d:1a:26:f5:70:51:12:ce:df:5d:04:c9:a7:24: de:27:f8:51:61:ca:e4:b5:c7:41:15:0b:b0:a5:40: f5:b8:d0:72:76:c3:cb:cf:71:44:85:c6:e0:c2:b6: e9:c3:f3:9d:f3:00:e7:7b:42:66:a9:89:ac:c1:57: 4b:10:69:db:38:21:89:dc:e4:cf:07:04:96:f7:c2: b0:db:6c:a2:99:23:0b:d7:a1:86:d8:17:fc:e8:37: 5e:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:A1:8B:83:E5:2C:8B:7E:7E:DB:A2:4F:88:21:85:9C:DE:E2:3F:EA X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/TaGLg-Usi35-26JPiCGFnN7iP-o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.200.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:c5:0f:99:71:1f:a1:f6:27:03:a3:32:4c:b4:de:8b:8e:a1: b0:a9:d8:6a:b8:cb:82:33:23:a2:28:13:ad:2d:91:b1:4f:1c: c4:94:ad:2b:f1:9e:e5:08:37:f3:dd:5f:23:0a:0a:c6:0b:f6: c5:44:77:73:ca:4c:c3:3a:74:2f:25:c1:ca:84:04:92:e9:66: 5c:9e:3b:5d:1b:9f:bb:dd:21:42:55:93:51:24:18:ae:20:64: a3:05:7f:27:5e:4e:bb:5a:7c:52:8f:11:3f:ab:3f:9e:17:f2: 39:fe:61:df:08:a5:8d:43:68:a3:13:1e:7a:21:da:ea:c8:c2: 16:b0:20:0d:a5:e7:ac:54:6e:c9:24:09:37:58:04:77:d8:08: 77:2b:63:c8:c5:4d:88:1e:c2:aa:13:6b:5f:ce:19:d5:6a:b2: 95:3b:fd:f1:4a:41:b4:1b:07:4f:6e:ff:ee:c7:58:bb:18:84: 4f:88:74:e1:3b:61:73:5e:0b:83:d8:7b:f0:2f:d2:fe:63:95: b6:99:7c:85:c5:e9:69:37:2c:97:d7:f8:c6:f3:b2:ca:41:a3: 2b:5d:b6:d3:ac:03:5a:0c:4d:5d:40:dd:7d:60:2c:33:1a:a2: 4d:af:8b:47:43:34:cb:7c:4f:59:dc:68:b0:24:70:c1:29:7d: af:97:c7:09 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICDJAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNDA4MjYw NTE3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDREQTE4QjgzRTUyQzhC N0U3RURCQTI0Rjg4MjE4NTlDREVFMjNGRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUkA/iLSHKpzhDIyl2YHV+pN/JzZOcf7Q9tExclgvOOnqy2FgU bNn4++DYIp0nu4dpUR947zWOmUx+Dm7t9VSnKSuTp/LzVB0aMz7qp+jCuA91PCDw OJHI1Cj8GmvrspOqoPxwxqEHo/06qmkpgtirFw/CEIAjYmMQaUwzCT4kL/RsPWch EaRb8f+hRaWQmiFQfcfCVnstZ70DnKruMX7WCthg9mIdGib1cFESzt9dBMmnJN4n +FFhyuS1x0EVC7ClQPW40HJ2w8vPcUSFxuDCtunD853zAOd7QmapiazBV0sQads4 IYnc5M8HBJb3wrDbbKKZIwvXoYbYF/zoN17nAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUTaGLg+Usi35+26JPiCGFnN7iP+owHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1RhR0xnLVVzaTM1LTI2SlBpQ0dGbk43 aVAtby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDfyDANBgkq hkiG9w0BAQsFAAOCAQEAasUPmXEfofYnA6MyTLTei46hsKnYarjLgjMjoigTrS2R sU8cxJStK/Ge5Qg3891fIwoKxgv2xUR3c8pMwzp0LyXByoQEkulmXJ47XRufu90h QlWTUSQYriBkowV/J15Ou1p8Uo8RP6s/nhfyOf5h3wiljUNooxMeeiHa6sjCFrAg DaXnrFRuySQJN1gEd9gIdytjyMVNiB7CqhNrX84Z1WqylTv98UpBtBsHT27/7sdY uxiET4h04Tthc14Lg9h78C/S/mOVtpl8hcXpaTcsl9f4xvOyykGjK12206wDWgxN XUDdfWAsMxqiTa+LR0M0y3xPWdxosCRwwSl9r5fHCQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org