$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/35XOfFmKnBwzR7fQJCaSXprmDO0.roa File: 35XOfFmKnBwzR7fQJCaSXprmDO0.roa (raw, json) Hash identifier: M4jXwBvpKWVAPjiosZBlkLjFLadtKabGRaSOTnZNwVI= Subject key identifier: DF:95:CE:7C:59:8A:9C:1C:33:47:B7:D0:24:26:92:5E:9A:E6:0C:ED Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E69 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/35XOfFmKnBwzR7fQJCaSXprmDO0.roa Signing time: Mon 26 Aug 2024 05:27:26 +0000 ROA not before: Mon 26 Aug 2024 05:27:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 120.107.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3689 (0xe69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DF95CE7C598A9C1C3347B7D02426925E9AE60CED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:18:e0:be:eb:4d:7a:4d:d1:99:e2:9e:5b:c1: 19:3b:db:d4:b6:37:f0:be:b5:e0:af:73:dc:c8:dd: 04:22:a0:62:f3:4c:b6:40:91:ec:9c:2f:5b:ca:3a: b6:b4:32:de:07:1b:d3:0c:4f:15:5e:2b:b1:7c:60: e9:95:8e:38:d1:a7:d7:6e:f4:c5:43:94:59:27:1c: a3:61:8b:b8:1e:5d:83:f4:14:a7:f0:55:8f:dc:23: 24:0f:05:c1:ab:f7:40:80:58:60:ce:b4:98:03:01: 0a:ac:9c:77:a8:fc:f8:82:63:9e:c5:dc:17:76:a5: d2:4b:36:fd:2d:35:c2:87:93:16:d9:15:07:f8:f9: 77:f1:2b:d3:cc:b5:2e:03:21:b9:03:de:cc:80:13: 71:92:3e:a0:1e:07:f6:18:a1:0d:64:aa:c7:e0:bd: 0f:8c:b2:8f:3b:cb:42:d4:0f:13:b1:5f:c9:57:2c: 58:9f:1d:c4:e8:53:40:ed:c3:d8:8f:23:ab:3e:7b: 30:b1:49:da:34:31:81:de:1f:af:9b:e7:9c:9b:39: 5f:22:b0:ef:63:09:e3:f6:1f:37:04:5e:9b:ec:60: 81:3f:73:5d:db:f3:ba:57:84:16:10:bf:49:ac:1f: 91:df:d7:ec:8f:de:97:b8:95:22:d6:0a:7d:1c:31: 1d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:95:CE:7C:59:8A:9C:1C:33:47:B7:D0:24:26:92:5E:9A:E6:0C:ED X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/35XOfFmKnBwzR7fQJCaSXprmDO0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.107.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:cd:43:13:3a:16:3f:8a:c6:93:75:81:a0:57:41:62:81:9a: ed:ea:48:5d:db:87:e2:ab:6b:41:21:8b:e1:ea:01:8a:a7:a1: 4d:ca:6f:09:04:1f:ca:34:72:8b:3d:9f:67:66:50:51:2c:6b: ec:7b:f3:99:6c:55:3a:08:e2:ae:36:f2:8a:83:23:71:52:57: b4:b0:ba:4a:0c:66:ae:91:ac:87:21:2f:b0:8e:f1:30:8a:f6: 6d:53:dd:2a:5e:62:cb:5f:2c:0f:a9:3d:d3:4c:a5:2a:84:8b: b8:4c:36:07:eb:57:16:98:81:e4:ca:28:9f:9d:8b:70:a6:60: 4a:7a:0a:6d:57:80:e8:4c:dd:b3:88:4f:d9:e1:a7:7e:91:80: 64:cd:cf:62:15:24:c8:19:af:1a:11:4d:f3:9a:b0:1e:ef:93: aa:d8:d8:e1:95:d5:10:17:a9:33:61:e7:d7:cf:52:0b:4d:ff: 19:b7:d7:e2:14:0d:6c:bd:18:2b:35:3f:9f:6a:ba:9a:fc:5b: 78:59:c0:96:da:09:fd:bf:cf:78:05:f1:90:0d:68:a0:fe:12: 95:93:9d:81:3e:35:d5:1e:ee:e1:04:0b:38:d9:f2:ab:78:a3: a7:3e:9d:d0:2e:75:9c:1f:ca:d3:e7:ab:75:5b:d6:6c:c9:6b: 3b:1b:ec:61 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERGOTVDRTdDNTk4QTlD MUMzMzQ3QjdEMDI0MjY5MjVFOUFFNjBDRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyGOC+6016TdGZ4p5bwRk729S2N/C+teCvc9zI3QQioGLzTLZA keycL1vKOra0Mt4HG9MMTxVeK7F8YOmVjjjRp9du9MVDlFknHKNhi7geXYP0FKfw VY/cIyQPBcGr90CAWGDOtJgDAQqsnHeo/PiCY57F3Bd2pdJLNv0tNcKHkxbZFQf4 +XfxK9PMtS4DIbkD3syAE3GSPqAeB/YYoQ1kqsfgvQ+Mso87y0LUDxOxX8lXLFif HcToU0Dtw9iPI6s+ezCxSdo0MYHeH6+b55ybOV8isO9jCeP2HzcEXpvsYIE/c13b 87pXhBYQv0msH5Hf1+yP3pe4lSLWCn0cMR3xAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU35XOfFmKnBwzR7fQJCaSXprmDO0wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC8zNVhPZkZtS25Cd3pSN2ZRSkNh U1hwcm1ETzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAeGsw DQYJKoZIhvcNAQELBQADggEBAFXNQxM6Fj+KxpN1gaBXQWKBmu3qSF3bh+Kra0Eh i+HqAYqnoU3KbwkEH8o0cos9n2dmUFEsa+x785lsVToI4q428oqDI3FSV7SwukoM Zq6RrIchL7CO8TCK9m1T3SpeYstfLA+pPdNMpSqEi7hMNgfrVxaYgeTKKJ+di3Cm YEp6Cm1XgOhM3bOIT9nhp36RgGTNz2IVJMgZrxoRTfOasB7vk6rY2OGV1RAXqTNh 59fPUgtN/xm31+IUDWy9GCs1P59qupr8W3hZwJbaCf2/z3gF8ZANaKD+EpWTnYE+ NdUe7uEECzjZ8qt4o6c+ndAudZwfytPnq3Vb1mzJazsb7GE= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:13 2024 by rpki-client on console-fra.rpki-client.org