$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gwi2tnr013P41BOr85FreLGdVwo.roa File: Gwi2tnr013P41BOr85FreLGdVwo.roa (raw, json) Hash identifier: EFOstaOVcTMqZkPBDWSlxKG/VgsnL7MehAG/Qd9ZlXc= Subject key identifier: 1B:08:B6:B6:7A:F4:D7:73:F8:D4:13:AB:F3:91:6B:78:B1:9D:57:0A Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E27 Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gwi2tnr013P41BOr85FreLGdVwo.roa Signing time: Mon 26 Aug 2024 05:25:05 +0000 ROA not before: Mon 26 Aug 2024 05:25:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 223.27.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3623 (0xe27) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:25:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1B08B6B67AF4D773F8D413ABF3916B78B19D570A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1e:45:cc:81:f1:75:28:60:43:94:0d:22:2c: 7c:4d:d8:cb:07:f3:ba:c9:1a:16:1c:f3:2d:20:8f: 7a:88:bb:c8:b3:b2:e4:21:fa:62:ff:7e:63:62:7d: 0b:df:05:79:eb:ec:ee:1c:56:74:0f:d9:bf:9e:c0: 35:7b:51:7c:14:94:d2:ab:70:1c:92:e3:08:0a:1e: ec:20:a5:e2:78:75:d6:0d:b0:45:f3:aa:64:4e:86: fa:ac:ee:33:87:ba:86:09:1b:61:13:00:e7:aa:1e: b8:6c:d5:51:11:93:fd:a2:c8:47:e6:0b:51:eb:91: 38:3c:08:72:71:5e:9a:6d:9d:82:7d:60:0c:c4:b7: 6d:96:fb:d0:55:d1:49:6e:f8:8b:2d:f8:e6:ec:52: 00:99:38:0b:a2:b6:49:67:64:dc:64:f1:f6:81:e8: e1:6c:e5:b2:45:4b:75:50:fd:77:c9:5c:be:98:63: fc:3d:8e:57:cb:07:a1:5b:4e:c5:11:96:01:98:56: 81:11:f7:fc:1a:da:a9:e1:2f:08:95:f2:96:f1:3d: c5:5f:a2:0c:dd:d4:55:3c:f2:96:83:86:1d:dd:d7: e5:ae:ed:8b:80:b1:c3:b2:eb:59:6a:65:d7:29:51: 4c:79:fa:1f:1c:27:37:93:1a:71:1e:e7:39:9c:63: 80:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:08:B6:B6:7A:F4:D7:73:F8:D4:13:AB:F3:91:6B:78:B1:9D:57:0A X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/Gwi2tnr013P41BOr85FreLGdVwo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.48.0/20 Signature Algorithm: sha256WithRSAEncryption 6f:1e:68:b2:22:04:c1:bc:c1:62:f3:b3:e7:cb:82:6f:0d:2e: e2:c0:79:0a:61:7f:a7:29:1f:5c:43:89:30:7f:eb:3f:c5:b7: a7:22:9c:82:c8:03:c2:04:73:23:ba:d8:49:fb:f3:4b:88:2e: 2f:11:7f:ff:be:f6:04:8b:6a:41:66:95:9f:8f:a4:98:4f:25: e1:ee:be:73:ba:90:c8:99:6c:61:a7:39:a1:ba:ed:d2:fa:26: 7a:d0:0b:4c:10:2a:99:13:a0:0f:bb:54:a6:0f:45:bc:6b:04: e8:5b:1f:90:b3:93:18:d1:79:50:2f:f6:e5:84:14:f1:af:08: 46:2e:f8:c3:bf:98:12:2d:90:a3:32:f9:6b:2d:27:55:9b:86: 7b:14:88:07:c2:55:b6:b5:01:f0:9e:e9:85:1b:c8:36:48:36: 0d:51:86:85:8a:a5:25:7e:4b:e0:68:ce:72:e9:86:e2:b8:10: dc:12:ea:ab:a1:61:f0:b2:ea:b5:a5:7d:95:da:0e:92:5f:5d: 22:97:3e:aa:2e:c7:7b:45:ce:6d:ec:46:3a:ca:e7:76:c4:96: c5:d5:6a:04:00:6b:81:12:34:e2:57:57:98:bf:9a:c0:35:83: 3e:c1:4d:86:22:a9:ee:14:9d:fb:db:57:2e:c0:4a:69:25:f0: 8c:65:cf:12 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDicwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI1MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCMDhCNkI2N0FGNEQ3 NzNGOEQ0MTNBQkYzOTE2Qjc4QjE5RDU3MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4HkXMgfF1KGBDlA0iLHxN2MsH87rJGhYc8y0gj3qIu8izsuQh +mL/fmNifQvfBXnr7O4cVnQP2b+ewDV7UXwUlNKrcByS4wgKHuwgpeJ4ddYNsEXz qmROhvqs7jOHuoYJG2ETAOeqHrhs1VERk/2iyEfmC1HrkTg8CHJxXpptnYJ9YAzE t22W+9BV0Ulu+Ist+ObsUgCZOAuitklnZNxk8faB6OFs5bJFS3VQ/XfJXL6YY/w9 jlfLB6FbTsURlgGYVoER9/wa2qnhLwiV8pbxPcVfogzd1FU88paDhh3d1+Wu7YuA scOy61lqZdcpUUx5+h8cJzeTGnEe5zmcY4CBAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUGwi2tnr013P41BOr85FreLGdVwowHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vR3dpMnRucjAxM1A0MUJPcjg1RnJl TEdkVndvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBN8bMDAN BgkqhkiG9w0BAQsFAAOCAQEAbx5osiIEwbzBYvOz58uCbw0u4sB5CmF/pykfXEOJ MH/rP8W3pyKcgsgDwgRzI7rYSfvzS4guLxF//772BItqQWaVn4+kmE8l4e6+c7qQ yJlsYac5obrt0vometALTBAqmROgD7tUpg9FvGsE6FsfkLOTGNF5UC/25YQU8a8I Ri74w7+YEi2QozL5ay0nVZuGexSIB8JVtrUB8J7phRvINkg2DVGGhYqlJX5L4GjO cumG4rgQ3BLqq6Fh8LLqtaV9ldoOkl9dIpc+qi7He0XObexGOsrndsSWxdVqBABr gRI04ldXmL+awDWDPsFNhiKp7hSd+9tXLsBKaSXwjGXPEg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:13 2024 by rpki-client on console-ams.rpki-client.org