$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/2KLIZ1wZfk9QrwaFLQLeKROeS-s.roa File: 2KLIZ1wZfk9QrwaFLQLeKROeS-s.roa (raw, json) Hash identifier: 2Ihnqo/a9bt8Yauxcsj6gJba35MbZg9mt0+RH7P0wJ4= Subject key identifier: D8:A2:C8:67:5C:19:7E:4F:50:AF:06:85:2D:02:DE:29:13:9E:4B:EB Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DE8 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/2KLIZ1wZfk9QrwaFLQLeKROeS-s.roa Signing time: Mon 26 Aug 2024 05:27:18 +0000 ROA not before: Mon 26 Aug 2024 05:27:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7539 IP address blocks: 140.110.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 06:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3560 (0xde8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D8A2C8675C197E4F50AF06852D02DE29139E4BEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:86:ac:4d:37:95:ea:11:75:f2:79:7e:01:36: ad:1f:af:f6:7e:21:02:c0:db:74:d9:e3:c3:00:e4: 2b:1f:00:26:bc:57:cc:c7:53:d1:d8:57:8b:4d:a1: 7f:e4:ff:ab:33:6a:dc:4a:22:7a:58:22:06:4a:8c: 86:fe:bb:f6:90:97:7f:1b:cc:e5:09:1c:b9:47:f3: bc:e3:9d:8d:45:29:30:0b:82:36:b7:08:0f:1b:c4: 1d:f9:00:ad:0d:a3:f9:bd:88:71:7a:c7:c5:e7:ed: e6:92:d5:8a:7c:17:1f:05:23:0f:6e:52:95:e7:61: 66:90:87:94:4b:1d:79:a2:fc:2c:50:91:43:02:cd: 8e:34:7f:df:38:ee:b6:3a:78:b2:3a:03:a4:e4:0c: e7:cb:c8:bb:35:58:55:be:04:bf:a0:a1:26:06:f6: 3c:65:af:e6:b1:0c:20:4c:a7:9d:07:38:3e:48:c7: 91:c5:b2:85:93:f1:6a:fa:02:13:08:1a:95:30:9f: 52:85:88:f5:30:7a:f9:45:f9:f6:49:f2:47:4c:25: a3:a5:b9:d9:50:c1:f4:95:45:0e:fa:b9:c3:60:ef: 1d:54:2c:a1:b9:b6:8e:8f:73:b4:e5:0c:59:2e:5a: cc:2a:d0:8d:82:85:47:46:18:31:d7:2d:af:ee:31: 0d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:A2:C8:67:5C:19:7E:4F:50:AF:06:85:2D:02:DE:29:13:9E:4B:EB X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/2KLIZ1wZfk9QrwaFLQLeKROeS-s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.110.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6b:19:4d:52:0e:b7:82:97:93:95:74:16:77:f0:99:7c:dd:31: 89:df:31:0c:db:39:27:34:b2:68:aa:1b:aa:bc:be:af:1a:21: 65:3b:98:90:57:e6:28:4b:97:e0:94:1f:19:b3:80:07:75:3d: 2b:90:94:23:be:77:4e:30:1c:8e:9f:a1:50:80:77:0b:1f:7b: 90:21:0f:fc:48:53:fa:c4:a5:04:ad:17:fe:42:5f:a7:9a:39: 67:e9:34:1e:41:1b:c0:5d:07:f1:63:13:e2:8a:fc:f6:e0:2e: 12:7f:d6:49:52:89:87:38:1d:40:03:fd:7c:f3:c5:8f:bc:ae: 00:d6:ca:5c:40:36:81:5a:2c:f5:dd:eb:bf:91:75:c3:82:d5: 3c:a7:c3:b6:52:28:f0:de:6d:7e:06:2a:8c:0f:41:d6:8e:d9: 80:c1:f8:19:ec:e6:af:f5:95:cc:e1:a0:62:dc:05:ba:5c:a9: 42:c7:0e:9b:64:23:6f:1d:6d:98:e5:36:31:bc:42:92:2e:5f: 1c:19:f9:07:f4:ec:4c:a0:5b:7d:52:d1:a3:f9:e2:df:f4:ea: 29:3a:a2:54:c4:7d:b7:28:4b:95:77:7a:35:fe:0c:0d:2c:e6: 52:e3:14:1e:6b:f3:35:41:49:c2:16:02:c1:82:c4:60:23:14: 5e:fd:88:96 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4QTJDODY3NUMxOTdF NEY1MEFGMDY4NTJEMDJERTI5MTM5RTRCRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGhqxNN5XqEXXyeX4BNq0fr/Z+IQLA23TZ48MA5CsfACa8V8zH U9HYV4tNoX/k/6szatxKInpYIgZKjIb+u/aQl38bzOUJHLlH87zjnY1FKTALgja3 CA8bxB35AK0No/m9iHF6x8Xn7eaS1Yp8Fx8FIw9uUpXnYWaQh5RLHXmi/CxQkUMC zY40f9847rY6eLI6A6TkDOfLyLs1WFW+BL+goSYG9jxlr+axDCBMp50HOD5Ix5HF soWT8Wr6AhMIGpUwn1KFiPUwevlF+fZJ8kdMJaOludlQwfSVRQ76ucNg7x1ULKG5 to6Pc7TlDFkuWswq0I2ChUdGGDHXLa/uMQ2zAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU2KLIZ1wZfk9QrwaFLQLeKROeS+swHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8yS0xJWjF3WmZrOVFyd2FGTFFM ZUtST2VTLXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjG4w DQYJKoZIhvcNAQELBQADggEBAGsZTVIOt4KXk5V0FnfwmXzdMYnfMQzbOSc0smiq G6q8vq8aIWU7mJBX5ihLl+CUHxmzgAd1PSuQlCO+d04wHI6foVCAdwsfe5AhD/xI U/rEpQStF/5CX6eaOWfpNB5BG8BdB/FjE+KK/PbgLhJ/1klSiYc4HUAD/XzzxY+8 rgDWylxANoFaLPXd67+RdcOC1Tynw7ZSKPDebX4GKowPQdaO2YDB+Bns5q/1lczh oGLcBbpcqULHDptkI28dbZjlNjG8QpIuXxwZ+Qf07EygW31S0aP54t/06ik6olTE fbcoS5V3ejX+DA0s5lLjFB5r8zVBScIWAsGCxGAjFF79iJY= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org