$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/2v_3dz5bnbS3UjsCl8nLh4ZWdVg.roa File: 2v_3dz5bnbS3UjsCl8nLh4ZWdVg.roa (raw, json) Hash identifier: 95cSlBmT6AdFp+G//zalhloyDSlUZYtIKyumUvUx7vk= Subject key identifier: DA:FF:F7:77:3E:5B:9D:B4:B7:52:3B:02:97:C9:CB:87:86:56:75:58 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DEC Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/2v_3dz5bnbS3UjsCl8nLh4ZWdVg.roa Signing time: Mon 26 Aug 2024 05:27:20 +0000 ROA not before: Mon 26 Aug 2024 05:27:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 192.83.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3564 (0xdec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DAFFF7773E5B9DB4B7523B0297C9CB8786567558 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9c:0f:a1:03:71:29:27:c2:09:47:b9:e7:74: 61:50:a8:5a:a8:03:6e:f9:5f:4a:d1:56:47:56:8b: 88:82:e0:2a:06:ba:cb:ce:18:7e:60:f1:2a:50:bc: 21:f8:32:94:db:e1:6d:f3:45:d3:75:63:1c:d8:f6: 28:3d:5e:61:78:48:29:5a:9f:bb:7b:db:2d:8a:58: 82:3e:d0:89:48:1d:03:61:fb:d4:f9:87:98:dd:7a: 80:be:25:46:ca:db:bc:1b:8c:e7:74:81:c0:07:38: 72:f3:d7:86:c9:1b:ba:a5:3b:5e:da:5c:ae:61:eb: 49:b6:b9:b9:09:d7:94:dd:59:52:cc:8c:e9:1c:89: 84:72:93:58:70:34:27:10:aa:a0:9f:55:84:f7:d1: cc:96:8e:97:a4:9e:dd:26:7a:15:80:4e:d1:08:26: a5:b5:d5:f2:74:62:d9:39:ab:6a:b6:3d:f9:65:0e: 45:b7:7b:fa:04:f4:c7:88:1b:59:7a:08:98:48:c5: 13:64:1c:43:f0:a8:9a:22:8e:73:0a:b2:ff:11:f0: ae:25:09:70:8a:9d:e5:a3:e6:b5:62:17:7a:48:f3: 8c:39:e9:24:fb:3e:aa:01:05:c7:d7:5f:2a:1b:a1: 12:56:04:c6:e3:ba:d8:f8:80:80:38:6b:28:eb:1e: ef:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:FF:F7:77:3E:5B:9D:B4:B7:52:3B:02:97:C9:CB:87:86:56:75:58 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/2v_3dz5bnbS3UjsCl8nLh4ZWdVg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.166.0/23 Signature Algorithm: sha256WithRSAEncryption 87:01:bc:0d:ca:d2:2e:bd:09:a9:4b:ee:05:52:a2:e5:ef:1e: 7b:56:4c:1c:6c:ab:82:c4:fc:0f:a1:89:78:4c:a0:e1:14:a5: 02:b2:40:ce:00:03:39:46:63:19:f5:dd:9e:be:ce:8d:f6:ea: 23:e8:11:47:89:8a:3e:7b:9f:4c:e6:8c:7a:55:9b:30:9b:46: 8c:51:21:65:5a:d8:15:76:77:9c:21:8b:a6:a7:59:01:49:a2: 07:12:81:a4:3d:74:cb:86:19:ff:30:b6:7d:28:ad:dc:e5:1d: f2:dc:10:10:f3:69:37:bf:78:a2:86:b7:94:43:7d:de:47:ab: 0f:95:95:12:73:27:52:ea:da:83:03:58:a2:65:b9:e0:8c:d1: dc:d0:07:3e:2b:6b:65:90:6a:cd:51:6c:87:59:4f:30:9c:aa: 83:ef:56:df:20:27:68:3a:0a:43:85:df:a0:ef:3b:b4:bf:c7: 62:5d:52:a5:dc:af:a6:07:9d:3a:3f:2c:2a:2c:93:e7:c0:ef: fa:6f:38:5d:0f:b7:ed:84:75:83:f2:74:1d:22:d7:23:e1:4d: 6c:66:42:35:7c:14:46:f9:72:28:7c:de:bd:58:b0:f1:8a:60: 04:f5:53:92:fd:5d:99:58:1f:50:05:ff:84:f0:47:fd:fa:b8: aa:8e:98:12 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERBRkZGNzc3M0U1QjlE QjRCNzUyM0IwMjk3QzlDQjg3ODY1Njc1NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBnA+hA3EpJ8IJR7nndGFQqFqoA275X0rRVkdWi4iC4CoGusvO GH5g8SpQvCH4MpTb4W3zRdN1YxzY9ig9XmF4SClan7t72y2KWII+0IlIHQNh+9T5 h5jdeoC+JUbK27wbjOd0gcAHOHLz14bJG7qlO17aXK5h60m2ubkJ15TdWVLMjOkc iYRyk1hwNCcQqqCfVYT30cyWjpeknt0mehWATtEIJqW11fJ0Ytk5q2q2PfllDkW3 e/oE9MeIG1l6CJhIxRNkHEPwqJoijnMKsv8R8K4lCXCKneWj5rViF3pI84w56ST7 PqoBBcfXXyoboRJWBMbjutj4gIA4ayjrHu9hAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU2v/3dz5bnbS3UjsCl8nLh4ZWdVgwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8ydl8zZHo1Ym5iUzNVanNDbDhu TGg0WldkVmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBwFOm MA0GCSqGSIb3DQEBCwUAA4IBAQCHAbwNytIuvQmpS+4FUqLl7x57VkwcbKuCxPwP oYl4TKDhFKUCskDOAAM5RmMZ9d2evs6N9uoj6BFHiYo+e59M5ox6VZswm0aMUSFl WtgVdnecIYump1kBSaIHEoGkPXTLhhn/MLZ9KK3c5R3y3BAQ82k3v3iihreUQ33e R6sPlZUScydS6tqDA1iiZbngjNHc0Ac+K2tlkGrNUWyHWU8wnKqD71bfICdoOgpD hd+g7zu0v8diXVKl3K+mB506PywqLJPnwO/6bzhdD7fthHWD8nQdItcj4U1sZkI1 fBRG+XIofN69WLDximAE9VOS/V2ZWB9QBf+E8Ef9+riqjpgS -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org