$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/-L1NfcVyIo4fF6KC0OJowZlKcUY.roa File: -L1NfcVyIo4fF6KC0OJowZlKcUY.roa (raw, json) Hash identifier: MIzGQM3GPFfTv74S7Ss6xJ5UhEKjkdzQMsxd3MalCeI= Subject key identifier: F8:BD:4D:7D:C5:72:22:8E:1F:17:A2:82:D0:E2:68:C1:99:4A:71:46 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DE4 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-L1NfcVyIo4fF6KC0OJowZlKcUY.roa Signing time: Mon 26 Aug 2024 05:27:17 +0000 ROA not before: Mon 26 Aug 2024 05:27:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17713 IP address blocks: 140.117.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3556 (0xde4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F8BD4D7DC572228E1F17A282D0E268C1994A7146 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:48:58:f4:0b:c8:43:7a:3f:6e:f8:73:d0:4f: 52:b8:29:05:78:bc:94:9d:03:02:aa:18:a3:43:41: 11:1d:07:d5:b6:dd:ac:d5:ad:27:30:e5:57:b0:6e: b9:5d:16:42:7b:59:c1:5e:40:86:8c:52:01:43:3d: 4f:c4:ff:b9:41:2d:86:d8:01:67:52:39:4f:c3:da: 11:9d:49:3f:93:f3:39:50:e4:00:c3:58:c5:dc:23: 4c:89:63:a5:27:d4:3e:4a:dd:28:38:ed:2a:e4:60: 90:ed:36:a7:63:26:0f:55:65:a7:27:e7:62:cb:36: 16:0c:e5:2e:df:99:21:86:1e:fa:38:a3:a7:18:51: c6:35:25:90:6c:ce:9c:13:4d:8b:ce:ab:c1:18:ea: cc:cb:d9:dc:d3:df:63:23:6e:be:af:31:72:69:ff: 61:f5:67:39:6c:cb:4a:ac:81:98:eb:94:7f:f1:c5: 38:8d:2d:88:3a:41:e6:8c:0a:78:2c:dd:74:c2:bc: 3a:92:35:34:af:e5:d9:6f:d5:62:92:45:c4:5a:e3: a4:71:b1:f7:a9:08:c1:ae:ba:0a:12:c7:d5:67:0c: 51:66:2a:9a:29:8c:3c:74:3a:aa:0b:88:9c:bc:17: c2:57:38:8a:5c:47:6f:e5:99:11:e8:ba:61:4f:e1: 0d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:BD:4D:7D:C5:72:22:8E:1F:17:A2:82:D0:E2:68:C1:99:4A:71:46 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/-L1NfcVyIo4fF6KC0OJowZlKcUY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.117.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2c:69:50:b2:50:7d:90:1f:cb:0d:ab:c9:a1:c5:af:5d:26:8d: 40:fa:3e:dc:89:22:15:e2:a7:99:e5:6c:9d:25:7d:3b:9f:99: ca:02:ca:8d:05:71:25:25:fd:d5:ae:25:76:28:d3:40:7b:27: 2f:d2:ef:86:23:bb:78:6c:b2:5e:af:6f:ca:27:15:6d:21:ce: d5:37:0f:de:ba:48:69:11:6e:a3:36:00:a0:fe:d4:f2:fd:09: b5:10:72:01:bb:85:db:ad:52:78:4f:fb:51:f1:cf:1f:e4:2e: 2c:fb:23:66:ef:e9:10:22:06:2d:22:ab:16:54:d6:53:1b:92: f9:0b:32:dd:5f:60:89:33:15:94:53:06:20:b5:f0:dd:b2:e4: af:96:78:8c:dd:74:ba:8b:81:0c:14:bf:2a:91:90:53:5a:ab: bd:c6:2a:33:de:50:de:22:de:ec:91:12:d4:7f:30:c5:7c:df: d6:db:96:4c:84:88:98:4e:04:7d:13:93:ec:c6:79:1a:0c:3f: 4b:fe:ed:d2:0c:75:f7:9d:55:01:cb:ad:4b:3c:4a:c9:23:27: e1:6a:c0:0f:0b:f2:3a:5e:c8:f0:9f:5c:7d:b9:6a:e0:d6:c0: 43:2e:e8:74:53:42:fa:34:14:3d:c9:be:4f:1a:3f:86:9c:9e: 14:9b:95:e9 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4QkQ0RDdEQzU3MjIy OEUxRjE3QTI4MkQwRTI2OEMxOTk0QTcxNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOSFj0C8hDej9u+HPQT1K4KQV4vJSdAwKqGKNDQREdB9W23azV rScw5VewbrldFkJ7WcFeQIaMUgFDPU/E/7lBLYbYAWdSOU/D2hGdST+T8zlQ5ADD WMXcI0yJY6Un1D5K3Sg47SrkYJDtNqdjJg9VZacn52LLNhYM5S7fmSGGHvo4o6cY UcY1JZBszpwTTYvOq8EY6szL2dzT32Mjbr6vMXJp/2H1Zzlsy0qsgZjrlH/xxTiN LYg6QeaMCngs3XTCvDqSNTSv5dlv1WKSRcRa46RxsfepCMGuugoSx9VnDFFmKpop jDx0OqoLiJy8F8JXOIpcR2/lmRHoumFP4Q0vAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU+L1NfcVyIo4fF6KC0OJowZlKcUYwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8tTDFOZmNWeUlvNGZGNktDME9K b3dabEtjVVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHUw DQYJKoZIhvcNAQELBQADggEBACxpULJQfZAfyw2ryaHFr10mjUD6PtyJIhXip5nl bJ0lfTufmcoCyo0FcSUl/dWuJXYo00B7Jy/S74Yju3hssl6vb8onFW0hztU3D966 SGkRbqM2AKD+1PL9CbUQcgG7hdutUnhP+1Hxzx/kLiz7I2bv6RAiBi0iqxZU1lMb kvkLMt1fYIkzFZRTBiC18N2y5K+WeIzddLqLgQwUvyqRkFNaq73GKjPeUN4i3uyR EtR/MMV839bblkyEiJhOBH0Tk+zGeRoMP0v+7dIMdfedVQHLrUs8SskjJ+FqwA8L 8jpeyPCfXH25auDWwEMu6HRTQvo0FD3Jvk8aP4acnhSblek= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org