$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/50zx1jfC208ZFalFlUYtBfFhle8.roa File: 50zx1jfC208ZFalFlUYtBfFhle8.roa (raw, json) Hash identifier: OFlb5JU/sKUN61hDJpVuaNMZ5jZB+qBF36hhtKUH3a8= Subject key identifier: E7:4C:F1:D6:37:C2:DB:4F:19:15:A9:45:95:46:2D:05:F1:61:95:EF Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0CA8 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/50zx1jfC208ZFalFlUYtBfFhle8.roa Signing time: Tue 24 Sep 2024 11:02:14 +0000 ROA not before: Tue 24 Sep 2024 11:02:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 39.1.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3240 (0xca8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 24 11:02:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E74CF1D637C2DB4F1915A94595462D05F16195EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e6:03:02:09:ab:e1:37:08:02:f8:b7:12:2e: 2c:a5:89:e1:cc:0a:f8:e0:8a:bd:06:83:df:b2:3e: 45:97:53:7f:47:90:f3:19:28:64:12:62:f0:1f:97: a4:08:cb:99:19:e4:6f:b5:64:4f:72:3f:d2:5e:dc: 97:dd:0c:dd:2a:cb:16:4a:18:2c:5a:61:49:a7:88: 64:02:3b:e0:3f:ed:74:52:d2:07:7f:f3:08:5a:c1: 99:f9:87:42:aa:c1:a7:fc:de:c6:e2:a3:bd:3b:ba: 34:20:5d:d5:bf:28:5a:4f:5a:b5:e3:30:6b:3c:92: 60:1a:eb:21:f5:52:98:98:c6:28:1e:93:64:88:56: 1e:ff:26:2b:71:a2:51:04:87:81:0f:65:08:ec:22: 31:d0:53:97:ec:59:e0:4b:25:4d:37:f5:5f:34:bd: 57:a9:9b:70:94:da:18:80:88:2e:f6:ae:a6:a1:05: a4:76:13:9a:ac:17:bd:8e:3e:68:2f:9d:b2:a1:cd: 53:38:09:29:e5:3a:5c:52:f7:fe:82:29:fc:27:76: b6:c7:40:1f:8a:03:c0:27:83:e9:43:42:c9:c1:85: 48:fb:d8:bf:aa:a1:8d:5a:d6:a6:9f:da:12:43:03: 02:ba:5f:8e:ee:a6:21:94:cd:c0:ad:a2:4a:60:e0: d8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4C:F1:D6:37:C2:DB:4F:19:15:A9:45:95:46:2D:05:F1:61:95:EF X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/50zx1jfC208ZFalFlUYtBfFhle8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.96.0/20 Signature Algorithm: sha256WithRSAEncryption 95:9e:57:8b:5e:d5:81:47:26:0d:c2:ca:28:12:57:93:9f:90: fe:90:7c:c0:4f:2f:d3:ba:64:19:ad:c1:9b:72:0f:06:1d:42: 16:b0:d1:97:47:ea:54:8b:95:cb:9f:aa:61:8a:ea:ba:5e:c1: 29:86:91:93:0b:3c:5d:72:1c:d0:f1:c2:f7:b6:c9:44:98:66: 85:63:98:66:27:d8:e3:7b:35:38:87:91:63:01:d8:c1:39:a6: f7:09:5c:34:c9:1a:89:36:55:30:d9:a0:90:cc:bd:30:57:8f: 4b:60:c2:d9:64:96:f8:08:85:2a:99:44:fc:dd:be:a8:8a:04: 14:c8:10:db:01:18:07:75:2b:1c:01:58:9c:f3:2d:13:99:9f: 98:8e:0b:16:16:2f:c8:00:63:e6:57:69:6f:1e:ca:d0:4f:f7: e7:a5:f8:01:1e:30:40:25:86:12:f5:17:91:34:a6:db:62:b3: 4b:95:65:60:6b:de:6f:72:59:dd:80:68:54:6c:38:42:86:fa: ac:95:d5:68:22:a9:50:6e:c6:72:35:ad:de:2a:14:c7:bd:38: ad:83:e4:b9:31:7f:66:a9:b8:6b:9c:05:97:cc:2c:da:d5:b7: 3d:ba:b2:04:a6:71:9f:95:62:64:a6:b7:71:26:a1:c9:88:86: 89:e1:3a:b7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA5MjQx MTAyMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU3NENGMUQ2MzdDMkRC NEYxOTE1QTk0NTk1NDYyRDA1RjE2MTk1RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCe5gMCCavhNwgC+LcSLiylieHMCvjgir0Gg9+yPkWXU39HkPMZ KGQSYvAfl6QIy5kZ5G+1ZE9yP9Je3JfdDN0qyxZKGCxaYUmniGQCO+A/7XRS0gd/ 8whawZn5h0Kqwaf83sbio707ujQgXdW/KFpPWrXjMGs8kmAa6yH1UpiYxigek2SI Vh7/JitxolEEh4EPZQjsIjHQU5fsWeBLJU039V80vVepm3CU2hiAiC72rqahBaR2 E5qsF72OPmgvnbKhzVM4CSnlOlxS9/6CKfwndrbHQB+KA8Ang+lDQsnBhUj72L+q oY1a1qaf2hJDAwK6X47upiGUzcCtokpg4Ni/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU50zx1jfC208ZFalFlUYtBfFhle8wHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC81MHp4MWpmQzIwOFpGYWxGbFVZ dEJmRmhsZTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEJwFg MA0GCSqGSIb3DQEBCwUAA4IBAQCVnleLXtWBRyYNwsooEleTn5D+kHzATy/TumQZ rcGbcg8GHUIWsNGXR+pUi5XLn6phiuq6XsEphpGTCzxdchzQ8cL3tslEmGaFY5hm J9jjezU4h5FjAdjBOab3CVw0yRqJNlUw2aCQzL0wV49LYMLZZJb4CIUqmUT83b6o igQUyBDbARgHdSscAVic8y0TmZ+YjgsWFi/IAGPmV2lvHsrQT/fnpfgBHjBAJYYS 9ReRNKbbYrNLlWVga95vclndgGhUbDhChvqsldVoIqlQbsZyNa3eKhTHvTitg+S5 MX9mqbhrnAWXzCza1bc9urIEpnGflWJkprdxJqHJiIaJ4Tq3 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org