$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/FmkhhT671vqBIhzvKwAZp0c_dJU.roa File: FmkhhT671vqBIhzvKwAZp0c_dJU.roa (raw, json) Hash identifier: Tm5ufB52xB2qKaa5CCrtNnu7+uIxhfvUDCTRvB22UVQ= Subject key identifier: 16:69:21:85:3E:BB:D6:FA:81:22:1C:EF:2B:00:19:A7:47:3F:74:95 Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Certificate serial: 0C15 Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/FmkhhT671vqBIhzvKwAZp0c_dJU.roa Signing time: Mon 26 Aug 2024 05:17:17 +0000 ROA not before: Mon 26 Aug 2024 05:17:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38837 IP address blocks: 211.78.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3093 (0xc15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Validity Not Before: Aug 26 05:17:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=166921853EBBD6FA81221CEF2B0019A7473F7495 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:10:88:c0:70:c2:05:1f:48:73:06:2d:b0:b8: 3c:97:fb:a9:5a:08:55:8a:58:95:dc:6c:08:a2:90: 7a:e8:32:ec:f3:01:1e:1c:9e:75:d9:f7:8f:ac:11: fa:98:32:cb:a9:56:fe:02:71:cb:9f:40:cb:b0:d6: c2:96:86:dd:79:41:41:de:76:47:4a:b7:0b:a6:f2: c4:ed:ba:0c:67:e8:2f:7e:7d:a4:a2:d8:a5:6d:9a: 9f:75:6a:7d:c4:0c:9b:af:24:19:94:8d:5c:8e:5c: a1:dd:e9:d0:d1:36:d0:8a:06:e1:5c:1c:f5:04:a4: a6:a9:14:58:cc:10:aa:0f:55:20:27:2b:79:cc:9f: 04:88:1a:da:99:d9:69:a9:6c:88:c8:a7:4a:3e:d4: b1:43:00:2f:90:de:8d:48:df:97:1f:14:7c:c0:f5: d1:d2:01:9f:c1:e7:b7:45:02:26:80:78:2c:02:e3: 9a:18:b6:87:ca:c0:f4:ff:4d:60:e1:8a:7a:4f:5a: a8:3b:79:c8:60:45:a4:c1:cb:3c:20:e0:38:cd:78: a5:1a:27:90:96:04:99:99:e6:8b:5b:a3:36:f5:a5: 7c:bf:c0:90:ac:90:63:fa:2b:74:de:9b:82:a8:68: 5e:00:09:d1:dc:48:be:7c:db:56:de:6b:5c:0c:f0: ec:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:69:21:85:3E:BB:D6:FA:81:22:1C:EF:2B:00:19:A7:47:3F:74:95 X509v3 Authority Key Identifier: keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/FmkhhT671vqBIhzvKwAZp0c_dJU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.64.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:66:64:27:6d:de:e7:fa:09:71:d3:ba:95:43:ad:11:5b:56: 8f:49:c4:80:25:bd:15:19:e0:00:82:a4:36:4f:21:92:68:47: 29:30:61:03:c2:9d:5a:83:da:d0:2e:ea:c8:99:87:c0:9f:6f: 3e:c6:95:4e:f8:c2:cd:ca:0a:ae:80:1c:a8:9f:90:82:ca:29: 91:56:6c:35:1d:3c:fa:d1:85:5a:c8:fa:08:06:45:2e:c6:0b: 8a:29:0f:92:f2:42:ee:27:06:03:15:38:d3:ec:0f:f4:09:59: 7e:c0:17:63:f6:75:a4:c6:45:d0:62:db:7e:4e:4a:90:a4:0f: 8f:d6:68:4f:6e:98:78:d8:73:1f:2f:f0:25:02:61:ee:29:3c: 37:3e:bb:07:39:d3:f3:9d:af:dc:cb:32:74:83:42:88:aa:2b: 0e:0a:8c:5d:0d:4b:60:71:d2:5e:b2:d5:78:56:68:e6:88:82: b5:2f:ba:e4:85:f9:c7:ac:2d:5a:b1:24:a6:b4:9a:6f:df:a7: f4:0d:a0:78:3b:fe:99:4e:9d:a2:5a:91:75:2f:46:b8:54:3d: 39:92:bb:80:06:e5:55:09:34:76:8b:11:11:97:a4:81:91:d6: 00:8c:f3:d3:a8:f5:26:d4:29:df:ea:8f:c0:85:14:32:0a:12: 42:c0:03:17 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDBUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM0 N0RGNzQ4RUMwRkYxNjkxMjI4M0NFQzEwRUMxMEVEMzJEMjQ0RjAeFw0yNDA4MjYw NTE3MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2NjkyMTg1M0VCQkQ2 RkE4MTIyMUNFRjJCMDAxOUE3NDczRjc0OTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1EIjAcMIFH0hzBi2wuDyX+6laCFWKWJXcbAiikHroMuzzAR4c nnXZ94+sEfqYMsupVv4CccufQMuw1sKWht15QUHedkdKtwum8sTtugxn6C9+faSi 2KVtmp91an3EDJuvJBmUjVyOXKHd6dDRNtCKBuFcHPUEpKapFFjMEKoPVSAnK3nM nwSIGtqZ2WmpbIjIp0o+1LFDAC+Q3o1I35cfFHzA9dHSAZ/B57dFAiaAeCwC45oY tofKwPT/TWDhinpPWqg7echgRaTByzwg4DjNeKUaJ5CWBJmZ5otbozb1pXy/wJCs kGP6K3Tem4KoaF4ACdHcSL5821bea1wM8OzrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUFmkhhT671vqBIhzvKwAZp0c/dJUwHwYDVR0jBBgwFoAUTEffdI7A/xaRIoPO wQ7BDtMtJE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NORVQv VEVmZmRJN0FfeGFSSW9QT3dRN0JEdE10SkU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9URWZmZEk3QV94YVJJb1BPd1E3QkR0TXRKRTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HU05FVC9GbWtoaFQ2NzF2cUJJaHp2S3dB WnAwY19kSlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE005A MA0GCSqGSIb3DQEBCwUAA4IBAQBbZmQnbd7n+glx07qVQ60RW1aPScSAJb0VGeAA gqQ2TyGSaEcpMGEDwp1ag9rQLurImYfAn28+xpVO+MLNygqugByon5CCyimRVmw1 HTz60YVayPoIBkUuxguKKQ+S8kLuJwYDFTjT7A/0CVl+wBdj9nWkxkXQYtt+TkqQ pA+P1mhPbph42HMfL/AlAmHuKTw3PrsHOdPzna/cyzJ0g0KIqisOCoxdDUtgcdJe stV4VmjmiIK1L7rkhfnHrC1asSSmtJpv36f0DaB4O/6ZTp2iWpF1L0a4VD05kruA BuVVCTR2ixERl6SBkdYAjPPTqPUm1Cnf6o/AhRQyChJCwAMX -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org