$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/3pB46AyoU9widoiib8d-hfC3izA.roa File: 3pB46AyoU9widoiib8d-hfC3izA.roa (raw, json) Hash identifier: WCart77RMx1YGZAYxiMSdg4iUTyDHkN46CSI3lgmlg8= Subject key identifier: DE:90:78:E8:0C:A8:53:DC:22:76:88:A2:6F:C7:7E:85:F0:B7:8B:30 Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0C9D Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/3pB46AyoU9widoiib8d-hfC3izA.roa Signing time: Mon 26 Aug 2024 05:26:54 +0000 ROA not before: Mon 26 Aug 2024 05:26:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131584 IP address blocks: 111.235.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3229 (0xc9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 26 05:26:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DE9078E80CA853DC227688A26FC77E85F0B78B30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b5:56:ba:fa:92:74:d4:21:c2:a4:d6:2d:98: 53:65:e6:df:17:4d:15:d2:9a:49:2d:c9:3a:a5:cf: 6a:ff:a3:9f:39:df:40:81:b5:66:94:76:cb:6f:44: 99:90:c8:d2:24:79:45:e2:d4:a9:70:b6:ae:a3:9e: 18:1b:f1:f8:d4:96:ac:0d:20:4e:35:7b:c5:f2:2e: 7b:5b:c8:3b:1e:a3:83:46:10:97:1e:40:0f:57:39: bb:5f:03:37:55:4b:b9:3c:1f:38:5f:24:02:ee:dd: cf:1f:2d:b4:40:a5:6a:d7:7b:26:de:cb:30:92:3a: 15:fc:d5:b4:7f:37:ad:55:0e:6a:2e:27:2f:5e:4b: 2c:c7:8e:8c:6b:26:21:e9:32:2a:6b:9b:8f:f2:11: ce:31:1d:4f:6d:4a:78:e6:c4:0d:96:4d:f8:97:29: 35:3a:a6:06:82:3e:8e:56:08:18:74:9a:4b:da:c7: e2:3a:86:a0:30:e2:f5:c4:05:53:9a:7a:3f:63:ae: a8:54:cd:86:da:0e:87:c2:ad:7d:2d:ba:0b:20:e9: c4:03:1e:af:9f:ea:25:b6:71:94:47:a6:96:f1:3a: 43:bf:6f:8d:ec:e7:35:80:12:47:f4:9b:4a:d2:33: c3:f1:fb:6d:56:00:c1:48:26:9c:6a:f0:83:ca:56: d7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:90:78:E8:0C:A8:53:DC:22:76:88:A2:6F:C7:7E:85:F0:B7:8B:30 X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/3pB46AyoU9widoiib8d-hfC3izA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 111.235.192.0/18 Signature Algorithm: sha256WithRSAEncryption 8d:25:59:7d:da:b6:c8:16:1b:42:53:c2:8b:75:82:d0:a9:99: a9:1c:9e:99:cb:4a:e1:19:50:aa:b8:89:41:fb:c8:89:29:42: 5d:86:81:56:a9:65:09:c0:ad:a1:19:17:1e:7c:67:f0:3d:b7: 57:4b:1b:0d:93:24:33:f6:bb:18:6a:3a:6f:17:90:a7:cd:fd: c6:44:c8:a5:39:2a:bd:05:4f:e4:8e:82:c3:e1:15:18:43:eb: f1:8c:0a:60:8d:32:94:d1:e7:7d:fb:c9:e3:75:ba:1b:60:f8: 9a:e9:c0:a4:3a:b1:12:12:4c:6e:26:23:ac:eb:c8:e1:7c:3f: 9f:93:f3:23:f6:ee:2d:36:98:31:9a:e9:26:f3:98:80:fb:c7: 97:2f:68:d8:69:34:f9:2c:8e:35:23:5a:37:35:59:60:91:a9: 2c:ce:19:a7:d5:5a:18:a2:fe:a2:2e:dd:8d:a7:91:e8:fd:2c: 9c:77:35:91:23:f2:9d:cb:9f:0c:8c:c1:c6:e9:9e:30:93:02: 5e:c0:40:71:61:f5:57:dc:75:3c:3d:31:84:fd:1d:3d:55:5d: 7e:e4:5d:ca:a4:d6:30:d8:8b:bf:bf:ad:ea:22:fe:b1:c4:86: 10:81:d0:00:b2:87:04:88:0f:f0:8a:7b:3d:d6:f7:1d:6b:11: d3:10:b0:c5 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDJ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNDA4MjYw NTI2NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERFOTA3OEU4MENBODUz REMyMjc2ODhBMjZGQzc3RTg1RjBCNzhCMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWtVa6+pJ01CHCpNYtmFNl5t8XTRXSmkktyTqlz2r/o58530CB tWaUdstvRJmQyNIkeUXi1Klwtq6jnhgb8fjUlqwNIE41e8XyLntbyDseo4NGEJce QA9XObtfAzdVS7k8HzhfJALu3c8fLbRApWrXeybeyzCSOhX81bR/N61VDmouJy9e SyzHjoxrJiHpMiprm4/yEc4xHU9tSnjmxA2WTfiXKTU6pgaCPo5WCBh0mkvax+I6 hqAw4vXEBVOaej9jrqhUzYbaDofCrX0tugsg6cQDHq+f6iW2cZRHppbxOkO/b43s 5zWAEkf0m0rSM8Px+21WAMFIJpxq8IPKVtctAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQU3pB46AyoU9widoiib8d+hfC3izAwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2LzNwQjQ2QXlvVTl3 aWRvaWliOGQtaGZDM2l6QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZv68AwDQYJKoZIhvcNAQELBQADggEBAI0lWX3atsgWG0JTwot1gtCpmakc npnLSuEZUKq4iUH7yIkpQl2GgVapZQnAraEZFx58Z/A9t1dLGw2TJDP2uxhqOm8X kKfN/cZEyKU5Kr0FT+SOgsPhFRhD6/GMCmCNMpTR5337yeN1uhtg+JrpwKQ6sRIS TG4mI6zryOF8P5+T8yP27i02mDGa6SbzmID7x5cvaNhpNPksjjUjWjc1WWCRqSzO GafVWhii/qIu3Y2nkej9LJx3NZEj8p3LnwyMwcbpnjCTAl7AQHFh9VfcdTw9MYT9 HT1VXX7kXcqk1jDYi7+/reoi/rHEhhCB0ACyhwSID/CKez3W9x1rEdMQsMU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org