$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ITRINET/C9hgRTIFEESJfajlYRueZdDoOJg.roa File: C9hgRTIFEESJfajlYRueZdDoOJg.roa (raw, json) Hash identifier: y7imn0wbQ4OeG6ApnCmWSeuhyGUM76q1swbSBqU0sNc= Subject key identifier: 0B:D8:60:45:32:05:10:44:89:7D:A8:E5:61:1B:9E:65:D0:E8:38:98 Certificate issuer: /CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Certificate serial: 0C18 Authority key identifier: 2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/C9hgRTIFEESJfajlYRueZdDoOJg.roa Signing time: Mon 26 Aug 2024 05:19:13 +0000 ROA not before: Mon 26 Aug 2024 05:19:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18422 IP address blocks: 61.61.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3096 (0xc18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F9BECFFE7DA09CA053A2F9681412B19FB004A74 Validity Not Before: Aug 26 05:19:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0BD8604532051044897DA8E5611B9E65D0E83898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:54:fc:71:ad:25:ef:a8:be:7f:3b:d4:7b:7d: 39:e5:86:b4:ff:78:78:94:a6:36:51:8c:a7:70:c0: 77:b0:5b:10:1b:c8:4c:6f:b6:25:e2:fd:7d:c3:be: dd:24:6b:2e:38:5b:39:31:75:ab:c1:44:e0:07:c9: e7:20:01:d6:57:8c:1a:88:67:1a:e8:c6:83:a0:0e: 43:08:f2:32:8e:15:be:bf:2a:c3:5f:67:d7:a5:f4: ce:89:43:fb:74:e8:8d:42:5c:ad:02:71:de:36:5e: be:91:51:55:54:93:91:f4:37:a5:59:3b:c7:79:e4: e6:61:d9:07:09:b2:f2:01:f1:88:ed:82:d6:ae:2c: 14:74:e5:1e:a2:5a:bd:7a:ae:a3:03:0f:b0:e5:0c: 0a:3e:13:5f:d9:18:fc:4d:f5:b1:2a:c7:1c:09:ac: f7:75:6a:be:d6:fa:32:64:ff:9d:60:4e:47:49:db: 17:3d:01:75:3f:5e:c7:27:c6:c8:3d:5d:a5:fa:e0: 02:70:4e:30:e8:0c:2c:d7:c3:e6:99:6b:70:b0:48: b7:13:38:27:88:55:fd:98:da:ed:30:6e:d1:e5:88: 36:42:f2:7f:6f:d7:cb:3a:aa:f7:c7:9d:6c:65:31: 93:2e:41:b6:97:be:42:05:1d:4e:68:d8:90:72:0a: 11:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D8:60:45:32:05:10:44:89:7D:A8:E5:61:1B:9E:65:D0:E8:38:98 X509v3 Authority Key Identifier: keyid:2F:9B:EC:FF:E7:DA:09:CA:05:3A:2F:96:81:41:2B:19:FB:00:4A:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/L5vs_-faCcoFOi-WgUErGfsASnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/L5vs_-faCcoFOi-WgUErGfsASnQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ITRINET/C9hgRTIFEESJfajlYRueZdDoOJg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.240.0/20 Signature Algorithm: sha256WithRSAEncryption 00:4f:eb:58:b2:7b:65:7c:e2:9b:7b:fb:11:30:53:f0:22:79: 8b:a9:2c:8b:7b:0d:c4:31:94:68:b4:d8:4a:aa:d0:58:26:94: 6e:49:8a:2b:04:d9:b3:8c:fe:02:95:9a:df:4f:81:83:2c:95: 8b:03:62:54:15:a7:a7:e2:70:96:0b:bd:a9:0a:0d:92:bb:2e: d9:5a:a2:49:1f:f1:74:4b:ae:9d:a6:b1:8b:41:36:57:0f:54: f5:5b:11:37:65:17:b8:56:aa:2d:a2:f0:50:65:fb:b4:08:f2: 3e:62:29:39:17:53:5f:3c:6d:70:64:83:7a:5c:19:d6:d9:7f: 98:1c:b0:51:62:20:b7:8f:dc:0c:f3:2b:d8:44:72:26:eb:40: b2:c3:a2:40:65:f6:33:4e:14:b0:b8:43:75:d2:02:77:2a:9e: 39:00:67:96:39:ff:7f:ba:53:03:6c:7c:d3:c9:d5:c0:15:26: 66:cc:da:67:c7:1e:94:fe:41:11:ad:07:f0:e2:f1:b3:dc:b9: 13:8d:f1:94:1f:46:f8:ad:48:73:f4:66:8a:3e:93:d3:44:19: 40:97:ae:91:ce:38:e6:7f:6a:6b:65:c3:9d:91:8d:1f:2c:71: c2:c9:23:e4:9c:29:64:79:de:d2:6f:c4:ba:41:82:70:51:30: 15:8f:13:61 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDBgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkY5 QkVDRkZFN0RBMDlDQTA1M0EyRjk2ODE0MTJCMTlGQjAwNEE3NDAeFw0yNDA4MjYw NTE5MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBCRDg2MDQ1MzIwNTEw NDQ4OTdEQThFNTYxMUI5RTY1RDBFODM4OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSVPxxrSXvqL5/O9R7fTnlhrT/eHiUpjZRjKdwwHewWxAbyExv tiXi/X3Dvt0kay44WzkxdavBROAHyecgAdZXjBqIZxroxoOgDkMI8jKOFb6/KsNf Z9el9M6JQ/t06I1CXK0Ccd42Xr6RUVVUk5H0N6VZO8d55OZh2QcJsvIB8Yjtgtau LBR05R6iWr16rqMDD7DlDAo+E1/ZGPxN9bEqxxwJrPd1ar7W+jJk/51gTkdJ2xc9 AXU/Xscnxsg9XaX64AJwTjDoDCzXw+aZa3CwSLcTOCeIVf2Y2u0wbtHliDZC8n9v 18s6qvfHnWxlMZMuQbaXvkIFHU5o2JByChGZAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUC9hgRTIFEESJfajlYRueZdDoOJgwHwYDVR0jBBgwFoAUL5vs/+faCcoFOi+W gUErGfsASnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVRSSU5F VC9MNXZzXy1mYUNjb0ZPaS1XZ1VFckdmc0FTblEuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0w1dnNfLWZhQ2NvRk9pLVdnVUVyR2ZzQVNuUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lUUklORVQvQzloZ1JUSUZFRVNKZmFq bFlSdWVaZERvT0pnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BD098DANBgkqhkiG9w0BAQsFAAOCAQEAAE/rWLJ7ZXzim3v7ETBT8CJ5i6ksi3sN xDGUaLTYSqrQWCaUbkmKKwTZs4z+ApWa30+BgyyViwNiVBWnp+Jwlgu9qQoNkrsu 2VqiSR/xdEuunaaxi0E2Vw9U9VsRN2UXuFaqLaLwUGX7tAjyPmIpORdTXzxtcGSD elwZ1tl/mBywUWIgt4/cDPMr2ERyJutAssOiQGX2M04UsLhDddICdyqeOQBnljn/ f7pTA2x808nVwBUmZszaZ8celP5BEa0H8OLxs9y5E43xlB9G+K1Ic/Rmij6T00QZ QJeukc445n9qa2XDnZGNHyxxwskj5JwpZHne0m/EukGCcFEwFY8TYQ== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:08 2024 by rpki-client on console-ams.rpki-client.org