$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/0nTqZdMSt9ORo4r2TZMoYEehKr4.roa File: 0nTqZdMSt9ORo4r2TZMoYEehKr4.roa (raw, json) Hash identifier: 3uBrD60FdXzmuB6S57dy/UHW4K+2Zx6770sTJYkK0+E= Subject key identifier: D2:74:EA:65:D3:12:B7:D3:91:A3:8A:F6:4D:93:28:60:47:A1:2A:BE Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E48 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/0nTqZdMSt9ORo4r2TZMoYEehKr4.roa Signing time: Mon 26 Aug 2024 05:27:11 +0000 ROA not before: Mon 26 Aug 2024 05:27:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38844 IP address blocks: 210.60.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3656 (0xe48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D274EA65D312B7D391A38AF64D93286047A12ABE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8b:41:e1:36:41:7a:4a:21:68:4a:f6:21:82: d1:85:62:b0:b6:32:f4:a8:8d:1e:ed:f5:d4:b4:0c: 20:3a:c1:fc:32:ea:dd:b8:0f:64:f4:5c:18:79:2d: 51:77:e1:b6:cf:fb:70:3c:30:16:c7:d0:bd:92:e8: 46:2d:70:d9:23:5b:14:c6:ff:4b:82:c0:7f:13:c4: 98:ae:98:30:8a:81:b0:d9:91:8e:19:f8:de:1d:ae: 9c:37:75:eb:11:de:65:ae:e0:d0:53:da:60:36:46: 27:f6:5a:70:91:cd:1b:b4:9b:e3:fa:47:8b:ba:03: b4:14:39:3d:c9:17:c2:58:4a:1a:d6:eb:02:ea:7b: ae:46:03:b0:88:f9:2c:38:1a:0b:67:38:f9:84:3f: 72:d1:aa:a2:28:26:e7:b9:c2:ba:7d:2b:38:90:e3: 26:f7:c8:7c:3c:70:c2:e7:81:a0:97:e9:29:2e:0f: fd:6e:e7:40:37:af:9c:e3:f0:08:f5:9f:91:87:77: 15:df:39:53:16:a6:64:97:60:8c:d9:c3:4c:8d:86: 0c:72:8b:71:69:f9:91:31:8c:eb:ab:dd:4a:f9:93: b6:76:51:7c:d2:8a:6d:f4:52:db:69:89:0b:36:8a: 72:e6:64:cf:00:20:bf:20:c9:37:bc:fa:6a:31:5a: cf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:74:EA:65:D3:12:B7:D3:91:A3:8A:F6:4D:93:28:60:47:A1:2A:BE X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/0nTqZdMSt9ORo4r2TZMoYEehKr4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.60.150.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:d2:4e:74:bf:6a:4e:a1:04:c8:e9:f9:f1:21:67:da:c6:90: 21:9a:cb:e5:ec:e0:6a:05:e0:c4:6f:8a:a6:75:9c:9f:28:8b: 0a:e9:87:74:4a:eb:eb:d0:d3:b7:40:2d:3b:ab:cb:2e:be:3b: f3:77:bb:f7:6f:4b:ef:d9:9d:c5:88:0d:e9:ae:de:db:13:c1: 68:b2:79:70:3f:cb:e5:0a:5c:de:39:f5:91:c2:bc:40:6a:27: e7:2e:cb:6e:a9:bb:6e:8d:65:06:5a:df:3e:ca:cb:61:5a:5c: 60:32:11:7b:c6:43:ba:d4:a7:d9:e0:23:8b:49:0f:e0:fc:a7: 75:6c:f5:97:75:11:9e:93:a0:1d:00:df:de:2b:b6:aa:bc:34: 5e:0b:c1:3e:f6:70:6a:78:90:5a:94:5d:6d:36:89:95:6d:1c: 87:ba:f5:7a:ff:2a:1c:6a:cb:29:a1:c7:07:40:21:75:42:ca: 4e:42:2b:fd:2b:4f:85:85:68:d1:7b:c7:fc:2c:ac:92:83:aa: 84:47:d1:4c:0f:37:68:b9:52:33:91:a2:20:75:bb:58:d7:40: 3a:06:5e:1a:8e:d5:7f:fd:f4:2f:58:c2:d6:90:1f:05:da:c2: 7d:3f:16:3f:f9:a0:13:30:c0:5e:da:7a:11:69:64:a9:47:5f: f2:1b:d4:74 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDkgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyNzRFQTY1RDMxMkI3 RDM5MUEzOEFGNjREOTMyODYwNDdBMTJBQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCti0HhNkF6SiFoSvYhgtGFYrC2MvSojR7t9dS0DCA6wfwy6t24 D2T0XBh5LVF34bbP+3A8MBbH0L2S6EYtcNkjWxTG/0uCwH8TxJiumDCKgbDZkY4Z +N4drpw3desR3mWu4NBT2mA2Rif2WnCRzRu0m+P6R4u6A7QUOT3JF8JYShrW6wLq e65GA7CI+Sw4GgtnOPmEP3LRqqIoJue5wrp9KziQ4yb3yHw8cMLngaCX6SkuD/1u 50A3r5zj8Aj1n5GHdxXfOVMWpmSXYIzZw0yNhgxyi3Fp+ZExjOur3Ur5k7Z2UXzS im30UttpiQs2inLmZM8AIL8gyTe8+moxWs91AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU0nTqZdMSt9ORo4r2TZMoYEehKr4wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8wblRxWmRNU3Q5T1JvNHIyVFpN b1lFZWhLcjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0jyW MA0GCSqGSIb3DQEBCwUAA4IBAQBf0k50v2pOoQTI6fnxIWfaxpAhmsvl7OBqBeDE b4qmdZyfKIsK6Yd0Suvr0NO3QC07q8suvjvzd7v3b0vv2Z3FiA3prt7bE8Fosnlw P8vlClzeOfWRwrxAaifnLstuqbtujWUGWt8+ysthWlxgMhF7xkO61KfZ4COLSQ/g /Kd1bPWXdRGek6AdAN/eK7aqvDReC8E+9nBqeJBalF1tNomVbRyHuvV6/yocassp occHQCF1QspOQiv9K0+FhWjRe8f8LKySg6qER9FMDzdouVIzkaIgdbtY10A6Bl4a jtV//fQvWMLWkB8F2sJ9PxY/+aATMMBe2noRaWSpR1/yG9R0 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org