$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/sZNOPETIVELHAs191NaZO46c358.roa File: sZNOPETIVELHAs191NaZO46c358.roa (raw, json) Hash identifier: dP8cFsHO5lee1D5DYvA6cqHTbeyRj9KUZmKC/givA9Y= Subject key identifier: B1:93:4E:3C:44:C8:54:42:C7:02:CD:7D:D4:D6:99:3B:8E:9C:DF:9F Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Certificate serial: 0E0E Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/sZNOPETIVELHAs191NaZO46c358.roa Signing time: Mon 26 Aug 2024 05:24:59 +0000 ROA not before: Mon 26 Aug 2024 05:24:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38843 IP address blocks: 223.27.37.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3598 (0xe0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3 Validity Not Before: Aug 26 05:24:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B1934E3C44C85442C702CD7DD4D6993B8E9CDF9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4d:61:20:7f:63:be:4c:ed:f6:c0:9c:ce:92: 17:01:67:3b:fa:a8:69:af:61:a2:09:4d:fc:44:e9: bd:69:16:df:f9:55:bc:0a:e8:a3:92:d9:98:38:bc: 7b:5b:32:a0:d4:f8:a6:b1:5d:70:8f:51:e0:2e:59: e1:88:59:f5:71:62:8b:ec:e2:bf:b9:8f:d1:14:e3: bf:95:e3:11:7b:26:cb:c9:90:0a:7b:f0:64:4f:c8: 72:61:5a:13:d1:8b:b6:7f:8f:4a:b9:89:61:5f:37: 30:d3:83:3a:9f:d3:3e:d4:9a:17:1b:14:7c:c0:a7: 01:34:bc:b3:1d:a0:3e:a0:cb:6d:51:bf:7c:1a:8e: 3d:77:41:40:09:64:b8:44:fc:f5:f3:d9:4e:8c:60: 58:60:31:b1:d1:22:66:c0:37:07:ed:d5:6d:b9:32: 61:50:df:a9:89:0c:81:a2:a0:95:e8:7b:ff:ec:7b: 2b:0d:59:06:26:eb:86:0f:46:41:ed:40:81:05:ae: 22:9b:b8:ff:03:ec:99:ae:c8:e2:bd:d6:12:26:eb: de:2e:d1:59:a7:84:65:a0:0a:10:34:c5:7a:10:a0: d0:79:ea:01:97:d2:22:6b:ae:20:04:f8:05:db:6b: 5a:a5:c3:a7:6e:78:e7:1a:87:08:bd:cd:68:48:c4: ec:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:93:4E:3C:44:C8:54:42:C7:02:CD:7D:D4:D6:99:3B:8E:9C:DF:9F X509v3 Authority Key Identifier: keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/sZNOPETIVELHAs191NaZO46c358.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.27.37.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:5c:df:a3:c0:06:16:28:0f:d7:1c:2c:9a:13:05:c1:fd:11: 90:78:d7:2c:22:d5:89:94:a0:aa:cd:7c:58:0c:3e:09:f8:be: d8:a9:dc:72:a8:1e:59:ad:fd:cd:41:22:0e:25:4a:f2:d1:a8: 86:67:2b:a0:68:10:b3:b3:9b:7d:ca:90:a0:88:59:ed:72:62: 25:81:db:31:c1:9d:af:b9:46:a2:98:e9:3c:e5:f7:69:d0:af: ad:e8:4d:10:bb:18:52:0b:86:07:70:6b:9f:9a:e6:9b:12:be: 14:fd:e1:07:dc:64:87:38:d3:68:08:9f:10:16:71:3d:d1:02: 58:00:a6:6b:2a:f1:48:60:e1:52:26:f1:95:27:5f:59:d2:dd: 38:08:51:49:d0:26:c1:18:56:25:7f:c9:7b:92:67:f9:77:b4: 92:6e:d3:41:c9:97:e0:4e:11:1a:b4:9f:53:ff:93:43:4a:01: 66:a3:94:5e:c7:54:d4:78:b2:30:4b:10:ae:9f:70:71:c2:87: e9:80:62:3c:1f:7f:ac:1d:bb:ea:e6:44:4b:cc:06:ea:fd:c3: 5c:bb:cf:12:e9:ca:1b:7b:0a:68:5f:73:ee:42:d5:0b:c8:69: 92:d2:8d:c1:9a:36:35:ee:fb:50:15:82:45:03:fe:58:46:f7: c7:86:4f:41 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDg4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yNDA4MjYw NTI0NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxOTM0RTNDNDRDODU0 NDJDNzAyQ0Q3REQ0RDY5OTNCOEU5Q0RGOUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnTWEgf2O+TO32wJzOkhcBZzv6qGmvYaIJTfxE6b1pFt/5VbwK 6KOS2Zg4vHtbMqDU+KaxXXCPUeAuWeGIWfVxYovs4r+5j9EU47+V4xF7JsvJkAp7 8GRPyHJhWhPRi7Z/j0q5iWFfNzDTgzqf0z7UmhcbFHzApwE0vLMdoD6gy21Rv3wa jj13QUAJZLhE/PXz2U6MYFhgMbHRImbANwft1W25MmFQ36mJDIGioJXoe//seysN WQYm64YPRkHtQIEFriKbuP8D7JmuyOK91hIm694u0VmnhGWgChA0xXoQoNB56gGX 0iJrriAE+AXba1qlw6dueOcahwi9zWhIxOxRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUsZNOPETIVELHAs191NaZO46c358wHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80 sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vc1pOT1BFVElWRUxIQXMxOTFOYVpP NDZjMzU4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAN8bJTAN BgkqhkiG9w0BAQsFAAOCAQEAXVzfo8AGFigP1xwsmhMFwf0RkHjXLCLViZSgqs18 WAw+Cfi+2KnccqgeWa39zUEiDiVK8tGohmcroGgQs7ObfcqQoIhZ7XJiJYHbMcGd r7lGopjpPOX3adCvrehNELsYUguGB3Brn5rmmxK+FP3hB9xkhzjTaAifEBZxPdEC WACmayrxSGDhUibxlSdfWdLdOAhRSdAmwRhWJX/Je5Jn+Xe0km7TQcmX4E4RGrSf U/+TQ0oBZqOUXsdU1HiyMEsQrp9wccKH6YBiPB9/rB276uZES8wG6v3DXLvPEunK G3sKaF9z7kLVC8hpktKNwZo2Ne77UBWCRQP+WEb3x4ZPQQ== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:13 2024 by rpki-client on console-ams.rpki-client.org