$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/RN-Fq5fmVb0C0HtgePF7e-_Y7qY.roa File: RN-Fq5fmVb0C0HtgePF7e-_Y7qY.roa (raw, json) Hash identifier: uhZo6Q+s0neaT9hdm6vxTP0aAUY+lNbs7b+kn9aWAwA= Subject key identifier: 44:DF:85:AB:97:E6:55:BD:02:D0:7B:60:78:F1:7B:7B:EF:D8:EE:A6 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0C4B Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/RN-Fq5fmVb0C0HtgePF7e-_Y7qY.roa Signing time: Mon 26 Aug 2024 05:23:50 +0000 ROA not before: Mon 26 Aug 2024 05:23:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17420 IP address blocks: 210.67.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3147 (0xc4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 26 05:23:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=44DF85AB97E655BD02D07B6078F17B7BEFD8EEA6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7a:02:f8:d7:95:6b:e1:bd:f3:a7:3e:38:15: 7a:17:d8:bf:41:1c:05:e1:b1:29:7b:ae:c5:05:2f: 0e:fa:c4:30:e4:f9:e0:68:ef:ff:e1:df:e9:52:17: 41:55:72:a7:44:6e:64:ae:c1:d0:f6:56:74:e5:ba: 95:a8:e4:d5:f3:9b:b4:7b:da:6c:50:b9:37:ab:0c: d5:3b:a5:8a:57:26:82:59:98:36:d0:5a:22:f0:e2: 89:71:93:d0:a7:b8:80:77:d9:f8:6e:bd:91:4b:d5: fa:e0:0d:ae:c7:67:d3:06:9d:67:f8:7c:52:2a:3b: b3:ad:f2:43:7c:67:b7:a5:99:65:8b:36:ab:da:2f: 10:69:a1:ed:66:40:20:05:63:8c:17:1f:4f:60:93: 5e:c9:ce:3e:95:f3:45:c5:9d:73:5e:86:d4:ce:49: 50:7a:4a:d1:b0:6b:52:71:71:5a:d4:9b:ce:c7:95: ce:ba:75:27:9f:fe:17:80:88:14:43:f1:dc:18:26: d2:93:38:f7:48:0e:ed:2d:0d:f8:f4:48:29:4f:e9: 27:26:4a:be:ba:b6:0e:55:57:26:4f:3a:c2:5b:38: b2:71:0c:9a:69:3e:22:a8:7d:92:70:00:25:55:7f: b3:08:3a:e7:05:d3:3b:7a:75:57:2d:07:d0:12:eb: 34:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:DF:85:AB:97:E6:55:BD:02:D0:7B:60:78:F1:7B:7B:EF:D8:EE:A6 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/RN-Fq5fmVb0C0HtgePF7e-_Y7qY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.64.0/19 Signature Algorithm: sha256WithRSAEncryption 25:0a:de:81:12:db:20:30:1b:93:bd:b6:08:60:2f:76:15:03: 85:7b:d1:b2:0e:f6:db:33:cc:6a:a5:70:9b:da:ac:9a:5a:01: 9b:a7:d4:2c:6a:ca:fc:44:c7:52:67:31:e2:55:c2:cd:10:43: d8:2d:5b:f3:82:99:24:98:ff:c8:0d:c9:97:b6:07:a0:bb:29: d3:04:f0:d4:5c:82:15:f7:87:41:fd:6d:bf:27:33:5a:0e:d3: ef:dc:56:35:71:b7:b2:d9:58:56:e4:9e:42:d4:75:9d:b9:ef: 50:38:26:ff:a6:75:9c:0d:c0:95:56:09:53:59:ef:90:48:3f: 3c:ee:02:12:f0:c1:5b:7f:37:7b:e0:c7:c7:81:42:3d:14:50: 1a:00:11:b9:ca:f7:f5:13:1e:d0:57:98:6a:43:72:29:6c:cc: e6:40:c8:de:ec:b8:a0:e1:01:1b:66:55:f6:ae:6e:09:ce:4b: 1e:19:1f:ee:6c:31:f5:29:34:de:fc:f1:28:cb:1e:cc:de:2d: 00:3d:0b:d1:e9:20:35:13:e5:c6:1c:61:41:a5:7f:85:46:44: 54:f5:24:42:df:9f:42:98:ce:fd:f2:1e:a1:19:9a:e7:94:e2: 95:ed:9a:e6:a1:97:f5:ae:e9:70:6f:86:5f:5b:46:03:13:1c: a0:07:46:9f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNDA4MjYw NTIzNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0REY4NUFCOTdFNjU1 QkQwMkQwN0I2MDc4RjE3QjdCRUZEOEVFQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNegL415Vr4b3zpz44FXoX2L9BHAXhsSl7rsUFLw76xDDk+eBo 7//h3+lSF0FVcqdEbmSuwdD2VnTlupWo5NXzm7R72mxQuTerDNU7pYpXJoJZmDbQ WiLw4olxk9CnuIB32fhuvZFL1frgDa7HZ9MGnWf4fFIqO7Ot8kN8Z7elmWWLNqva LxBpoe1mQCAFY4wXH09gk17Jzj6V80XFnXNehtTOSVB6StGwa1JxcVrUm87Hlc66 dSef/heAiBRD8dwYJtKTOPdIDu0tDfj0SClP6ScmSr66tg5VVyZPOsJbOLJxDJpp PiKofZJwACVVf7MIOucF0zt6dVctB9AS6zS1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURN+Fq5fmVb0C0HtgePF7e+/Y7qYwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9STi1GcTVmbVZiMEMwSHRnZVBG N2UtX1k3cVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF0kNA MA0GCSqGSIb3DQEBCwUAA4IBAQAlCt6BEtsgMBuTvbYIYC92FQOFe9GyDvbbM8xq pXCb2qyaWgGbp9Qsasr8RMdSZzHiVcLNEEPYLVvzgpkkmP/IDcmXtgeguynTBPDU XIIV94dB/W2/JzNaDtPv3FY1cbey2VhW5J5C1HWdue9QOCb/pnWcDcCVVglTWe+Q SD887gIS8MFbfzd74MfHgUI9FFAaABG5yvf1Ex7QV5hqQ3IpbMzmQMje7Lig4QEb ZlX2rm4JzkseGR/ubDH1KTTe/PEoyx7M3i0APQvR6SA1E+XGHGFBpX+FRkRU9SRC 359CmM798h6hGZrnlOKV7ZrmoZf1rulwb4ZfW0YDExygB0af -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org