$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Rcmw_EqifKuhNsCxGxFmQX2JE10.roa File: Rcmw_EqifKuhNsCxGxFmQX2JE10.roa (raw, json) Hash identifier: pAbEqM/9H4dqsjzC38gg395umLnfZ7rXFaKPY5ovwSA= Subject key identifier: 45:C9:B0:FC:4A:A2:7C:AB:A1:36:C0:B1:1B:11:66:41:7D:89:13:5D Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 27 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Rcmw_EqifKuhNsCxGxFmQX2JE10.roa Signing time: Mon 03 Jun 2024 17:12:00 +0000 ROA not before: Mon 03 Jun 2024 17:12:00 +0000 ROA not after: Sat 26 Apr 2025 10:00:55 +0000 asID: 399624 IP address blocks: 157.66.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39 (0x27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: Jun 3 17:12:00 2024 GMT Not After : Apr 26 10:00:55 2025 GMT Subject: CN=45C9B0FC4AA27CABA136C0B11B1166417D89135D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:1e:40:c5:6c:f9:ba:1e:97:a2:3a:2f:1c: cf:96:13:42:b4:41:5d:01:b3:dd:a6:7e:d8:bf:e6: 51:fd:34:d2:10:c7:2e:70:70:57:d3:a6:b4:16:52: 9f:7b:1b:b9:eb:16:91:68:1e:01:f7:23:90:b0:70: b1:64:57:49:82:20:c2:38:f9:21:62:d1:70:db:08: 8e:00:66:16:f0:33:25:f6:c1:f1:67:ec:42:5b:e4: 60:32:49:eb:9e:7d:b5:f1:2f:c0:5d:56:6f:2e:37: 5d:96:02:04:ec:db:48:ae:78:00:cc:e6:0c:59:70: 1c:b8:47:3a:be:dd:ae:ce:23:41:33:87:44:d2:42: 92:6c:45:38:a3:61:8d:21:89:a2:75:3b:3f:d2:98: 69:5b:43:d5:26:dd:6d:7a:30:43:e7:d1:3b:16:74: dd:c3:a1:81:52:43:92:65:07:fb:c7:78:b9:74:dd: 3e:0c:87:c3:79:d8:67:2a:2f:03:8b:0c:73:1a:a3: 59:d4:87:2d:a2:e0:fa:25:c8:2a:f3:7d:cb:44:9a: 58:09:c7:9b:26:77:43:5b:fa:f7:89:36:e4:60:ef: f8:6c:26:82:12:8a:13:d1:8e:3c:bb:7d:29:67:c8: 95:a3:2f:88:19:6b:f7:02:80:fa:71:87:7a:de:72: 9b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C9:B0:FC:4A:A2:7C:AB:A1:36:C0:B1:1B:11:66:41:7D:89:13:5D X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/Rcmw_EqifKuhNsCxGxFmQX2JE10.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.66.167.0/24 Signature Algorithm: sha256WithRSAEncryption d0:e2:b8:7d:f1:15:44:f3:e0:1d:ae:3f:d4:9e:16:a1:20:3e: b3:ab:23:d1:db:5e:3b:bb:d0:12:17:3c:eb:73:85:8d:88:68: a5:40:37:17:b1:5e:c3:6c:65:44:14:a5:2e:04:05:75:7d:8b: ef:88:5b:b4:ca:68:2a:37:78:93:52:f4:a6:20:9b:79:60:b0: 33:45:0a:38:89:db:3e:5e:5f:b3:83:ba:9e:b4:b6:e1:de:ee: 3a:c7:0a:13:02:5f:95:88:ad:82:48:17:c6:65:85:e1:34:86: 61:7b:6a:b7:54:17:66:58:05:a7:86:97:26:48:40:81:91:27: 65:80:45:b8:9f:3e:1b:04:10:00:09:20:6d:7b:fb:35:53:61: ec:72:6c:63:b2:d7:ed:9f:cd:fd:ef:a9:d0:b0:d2:40:89:01: 63:13:64:0d:b8:49:a3:d2:5f:da:4b:ba:82:30:30:89:09:a6: 1a:c0:75:07:24:04:cd:18:58:67:c6:b0:c0:f5:39:35:f2:24: 9e:b3:86:b2:25:67:d8:75:2a:db:70:50:2f:f9:c3:da:91:e0: 71:46:06:a0:4a:bd:e0:a9:d5:60:d4:33:8a:55:ba:27:70:ca: bf:27:6e:12:0e:37:71:b4:1b:09:f8:ff:6e:d9:71:ee:f1:e1: 09:8b:29:9f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIBJzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOTY2 QjU1OTA5MzI0MTgwQTg4QTQ1RTFGNjgzQ0Y0RDJFRDlCQ0E1MB4XDTI0MDYwMzE3 MTIwMFoXDTI1MDQyNjEwMDA1NVowMzExMC8GA1UEAxMoNDVDOUIwRkM0QUEyN0NB QkExMzZDMEIxMUIxMTY2NDE3RDg5MTM1RDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALPbHkDFbPm6HpeiOi8cz5YTQrRBXQGz3aZ+2L/mUf000hDHLnBw V9OmtBZSn3sbuesWkWgeAfcjkLBwsWRXSYIgwjj5IWLRcNsIjgBmFvAzJfbB8Wfs QlvkYDJJ6559tfEvwF1Wby43XZYCBOzbSK54AMzmDFlwHLhHOr7drs4jQTOHRNJC kmxFOKNhjSGJonU7P9KYaVtD1SbdbXowQ+fROxZ03cOhgVJDkmUH+8d4uXTdPgyH w3nYZyovA4sMcxqjWdSHLaLg+iXIKvN9y0SaWAnHmyZ3Q1v694k25GDv+GwmghKK E9GOPLt9KWfIlaMviBlr9wKA+nGHet5ymzECAwEAAaOCAewwggHoMB0GA1UdDgQW BBRFybD8SqJ8q6E2wLEbEWZBfYkTXTAfBgNVHSMEGDAWgBTZZrVZCTJBgKiKReH2 g89NLtm8pTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8y V2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzJXYTFXUWt5UVlDb2lrWGg5b1BQVFM3WnZLVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xJUlVOL1JjbXdfRXFpZkt1aE5zQ3hHeEZt UVgySkUxMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACdQqcw DQYJKoZIhvcNAQELBQADggEBANDiuH3xFUTz4B2uP9SeFqEgPrOrI9HbXju70BIX POtzhY2IaKVANxexXsNsZUQUpS4EBXV9i++IW7TKaCo3eJNS9KYgm3lgsDNFCjiJ 2z5eX7ODup60tuHe7jrHChMCX5WIrYJIF8ZlheE0hmF7ardUF2ZYBaeGlyZIQIGR J2WARbifPhsEEAAJIG17+zVTYexybGOy1+2fzf3vqdCw0kCJAWMTZA24SaPSX9pL uoIwMIkJphrAdQckBM0YWGfGsMD1OTXyJJ6zhrIlZ9h1KttwUC/5w9qR4HFGBqBK veCp1WDUM4pVuidwyr8nbhION3G0Gwn4/27Zce7x4QmLKZ8= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org