$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xDh7BS_Xuepq5crpmWMCL42y0g.roa File: 7xDh7BS_Xuepq5crpmWMCL42y0g.roa (raw, json) Hash identifier: JHGISD5FjMJ42lIQXZbitlWWKusTcnL7ZVpTb4BA3Rw= Subject key identifier: EF:10:E1:EC:14:BF:5E:E7:A9:AB:97:2B:A6:65:8C:08:BE:36:CB:48 Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0CD2 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xDh7BS_Xuepq5crpmWMCL42y0g.roa Signing time: Fri 01 Sep 2023 09:39:48 +0000 ROA not before: Fri 01 Sep 2023 09:39:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38843 IP address blocks: 223.27.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3282 (0xcd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Sep 1 09:39:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EF10E1EC14BF5EE7A9AB972BA6658C08BE36CB48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:15:5b:49:4d:51:87:06:09:fc:97:06:34:5b: 92:7b:42:34:69:26:a8:1f:95:4b:50:1d:4f:df:f4: 4e:a9:f8:e0:fe:a6:0e:34:66:86:79:d5:2a:e9:7d: 25:47:78:21:cc:99:df:7e:7f:8b:88:02:8d:8b:31: 20:e3:4d:b7:1f:95:be:b7:66:a4:7b:a5:ea:06:6d: 96:26:ee:2b:c3:24:08:4f:ca:61:ce:35:ab:b3:89: 2a:26:5c:51:7a:20:cc:6e:e8:f5:da:c9:da:9c:4f: ec:ad:22:b6:18:e6:25:92:28:07:41:1a:3e:a5:99: 0a:fb:7c:c1:e1:c0:0d:1c:40:f8:cc:98:2c:8e:af: 99:04:7d:9d:2e:06:ab:a4:aa:6c:23:8d:ec:3e:e7: 9f:cf:b1:45:3d:66:3b:42:71:38:f9:81:6a:ba:ea: c4:86:2b:10:7a:71:1c:91:6f:12:22:a9:aa:49:29: 0f:d3:0c:29:3f:37:51:a3:c9:30:9f:df:a0:2a:7e: cb:1c:6a:62:83:74:19:c8:72:51:84:49:80:27:d5: 73:32:bb:d7:73:ee:20:30:f0:f5:aa:c5:03:89:c8: 5b:91:44:61:26:f8:03:51:f4:00:db:36:1d:a0:af: ec:36:8a:b7:ad:e3:b8:ef:84:4c:81:1b:7f:f3:8b: a4:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:10:E1:EC:14:BF:5E:E7:A9:AB:97:2B:A6:65:8C:08:BE:36:CB:48 X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/7xDh7BS_Xuepq5crpmWMCL42y0g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.48.0/20 Signature Algorithm: sha256WithRSAEncryption 4b:96:31:40:b9:11:a1:dc:b7:99:d0:b6:6d:e7:2c:1c:e2:58: 6f:db:e9:8c:a1:e7:f2:91:d2:e2:c5:1b:0f:0f:00:c2:53:64: 5c:88:03:28:c6:40:5f:97:83:21:34:dc:3f:ee:07:65:21:a2: 6e:74:d8:6e:72:d5:1b:eb:b1:ae:b5:e0:f7:68:89:1a:92:2a: d8:31:11:1f:f6:f2:3b:b9:33:1f:61:d5:2b:d2:2c:c8:b8:c7: 30:e9:2d:ca:2e:9f:78:33:aa:fc:85:e0:05:be:b0:8f:9c:f3: 75:c8:9c:42:ac:c5:09:6c:fb:8a:1e:76:49:45:4c:0d:f4:39: f5:f8:8f:ba:7d:93:eb:3c:9e:b0:bb:5b:f7:9d:cf:cd:2b:70: 55:ab:8d:9b:55:12:d4:c6:a3:94:fb:01:c4:8f:f9:de:b7:15: cc:1a:4f:a5:1f:0c:84:59:eb:76:77:dd:92:07:dd:78:63:56: e8:3f:6b:d9:09:08:d3:bb:ee:53:bd:d8:ab:d1:b2:2e:a1:7e: 94:52:73:0c:f0:a1:05:55:bb:b3:61:23:56:ea:6f:81:4f:20: de:8e:c6:de:0d:77:dc:28:59:23:e7:82:86:30:99:19:dc:44: 33:b1:89:47:79:21:67:47:e5:ea:72:78:6e:82:00:b8:3d:44: d1:bf:84:b5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDNIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMzA5MDEw OTM5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVGMTBFMUVDMTRCRjVF RTdBOUFCOTcyQkE2NjU4QzA4QkUzNkNCNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgFVtJTVGHBgn8lwY0W5J7QjRpJqgflUtQHU/f9E6p+OD+pg40 ZoZ51SrpfSVHeCHMmd9+f4uIAo2LMSDjTbcflb63ZqR7peoGbZYm7ivDJAhPymHO NauziSomXFF6IMxu6PXaydqcT+ytIrYY5iWSKAdBGj6lmQr7fMHhwA0cQPjMmCyO r5kEfZ0uBqukqmwjjew+55/PsUU9ZjtCcTj5gWq66sSGKxB6cRyRbxIiqapJKQ/T DCk/N1GjyTCf36AqfsscamKDdBnIclGESYAn1XMyu9dz7iAw8PWqxQOJyFuRRGEm +ANR9ADbNh2gr+w2iret47jvhEyBG3/zi6SVAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU7xDh7BS/Xuepq5crpmWMCL42y0gwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vN3hEaDdCU19YdWVwcTVjcnBtV01D TDQyeTBnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBN8bMDAN BgkqhkiG9w0BAQsFAAOCAQEAS5YxQLkRody3mdC2becsHOJYb9vpjKHn8pHS4sUb Dw8AwlNkXIgDKMZAX5eDITTcP+4HZSGibnTYbnLVG+uxrrXg92iJGpIq2DERH/by O7kzH2HVK9IsyLjHMOktyi6feDOq/IXgBb6wj5zzdcicQqzFCWz7ih52SUVMDfQ5 9fiPun2T6zyesLtb953PzStwVauNm1US1MajlPsBxI/53rcVzBpPpR8MhFnrdnfd kgfdeGNW6D9r2QkI07vuU73Yq9GyLqF+lFJzDPChBVW7s2EjVupvgU8g3o7G3g13 3ChZI+eChjCZGdxEM7GJR3khZ0fl6nJ4boIAuD1E0b+EtQ== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:42 2024 by rpki-client on console-fra.rpki-client.org