$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/7yVJjJKBChnDiq_BefncZVu3NJc.roa File: 7yVJjJKBChnDiq_BefncZVu3NJc.roa (raw, json) Hash identifier: f7yZm8FmCAazsmVZgrdGOnKn1I9vP25Sz7rXgqR68hw= Subject key identifier: EF:25:49:8C:92:81:0A:19:C3:8A:AF:C1:79:F9:DC:65:5B:B7:34:97 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E6D Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7yVJjJKBChnDiq_BefncZVu3NJc.roa Signing time: Mon 26 Aug 2024 05:27:28 +0000 ROA not before: Mon 26 Aug 2024 05:27:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131150 IP address blocks: 163.32.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3693 (0xe6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EF25498C92810A19C38AAFC179F9DC655BB73497 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:71:dd:0a:db:c5:a8:a6:98:f7:41:d3:84:57: ed:d9:3c:6b:36:9a:b8:b3:3f:c0:b8:55:b6:8d:46: 4e:4c:d2:8f:9e:bb:ba:f2:ad:47:62:9c:e5:7b:3a: cb:a5:0e:74:f7:4f:19:12:e4:d4:f6:26:6f:97:1b: e4:6b:40:4e:fc:52:d9:c0:c5:7d:36:57:12:ef:9c: 53:73:f5:37:1b:92:47:e8:cd:0f:30:6f:08:97:cd: f3:a4:fb:c6:f2:63:ab:f6:46:a7:2d:3e:3f:81:fe: f7:18:5f:94:05:73:22:5f:c2:99:d6:99:b8:c5:b2: 23:30:51:ac:04:be:dc:3a:0a:73:94:30:09:12:e2: eb:35:40:b4:95:50:da:31:be:c1:fb:75:57:3d:b7: 3d:ce:b8:2d:91:31:b8:f1:13:63:aa:5b:69:93:2c: 56:37:0d:1b:a7:45:ae:e7:33:08:e9:4b:ac:e4:3c: 8b:c7:00:8e:11:04:b4:54:3a:9e:34:3d:94:e7:d4: fc:75:fd:bd:2b:92:db:2c:e9:1d:0c:9d:7f:9b:b2: b4:86:e9:22:05:e9:bb:c1:3a:3e:de:f5:5c:77:15: 41:e6:35:e7:80:a8:59:0d:36:bd:cf:ed:00:4e:05: fa:b3:d9:66:df:29:59:7b:13:16:96:fc:42:9f:04: 42:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:25:49:8C:92:81:0A:19:C3:8A:AF:C1:79:F9:DC:65:5B:B7:34:97 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/7yVJjJKBChnDiq_BefncZVu3NJc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.32.240.0/22 Signature Algorithm: sha256WithRSAEncryption 61:eb:2c:c4:6f:cd:45:8f:c0:96:9c:90:74:22:75:6c:52:df: 03:bd:5d:9f:28:e2:ca:5e:7a:49:68:72:eb:2a:08:5a:75:7d: d5:13:37:3f:53:6d:8f:db:df:34:c2:8d:89:0f:47:ad:62:1d: 9c:af:58:89:a7:ef:33:4f:2d:32:2f:90:7c:e3:2a:32:6a:94: 24:19:88:e3:75:65:ed:3c:14:6b:77:02:e8:50:67:7a:ce:28: df:5d:62:87:14:4d:7a:39:73:52:80:c4:ad:a1:06:16:04:aa: 17:b0:19:7d:15:06:f1:20:61:bc:56:0d:50:07:c8:96:7b:20: 24:23:d1:6f:d7:d7:47:06:c7:40:bf:c6:3d:3a:cf:db:b2:b2: 8b:5f:c7:97:a3:b4:d2:2b:0b:83:cb:e8:95:98:85:39:55:b7: 20:27:19:43:f3:10:11:09:62:c9:eb:e3:d7:6f:a4:fc:48:72: 32:02:2a:fe:72:81:6a:1a:2a:6e:85:1e:4e:fc:41:20:c6:66: d3:28:bc:71:6b:0b:47:31:c5:d0:f9:ab:85:d4:f4:fc:db:ce: d9:7a:bf:42:f5:1d:9c:61:ab:3a:60:2f:2d:61:7a:cb:b4:ef: 25:b1:9c:8e:85:f9:0c:3d:45:28:ac:3f:ed:a2:4c:1a:58:b7: 08:94:bf:63 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDm0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGMjU0OThDOTI4MTBB MTlDMzhBQUZDMTc5RjlEQzY1NUJCNzM0OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfcd0K28Woppj3QdOEV+3ZPGs2mrizP8C4VbaNRk5M0o+eu7ry rUdinOV7OsulDnT3TxkS5NT2Jm+XG+RrQE78UtnAxX02VxLvnFNz9TcbkkfozQ8w bwiXzfOk+8byY6v2RqctPj+B/vcYX5QFcyJfwpnWmbjFsiMwUawEvtw6CnOUMAkS 4us1QLSVUNoxvsH7dVc9tz3OuC2RMbjxE2OqW2mTLFY3DRunRa7nMwjpS6zkPIvH AI4RBLRUOp40PZTn1Px1/b0rktss6R0MnX+bsrSG6SIF6bvBOj7e9Vx3FUHmNeeA qFkNNr3P7QBOBfqz2WbfKVl7ExaW/EKfBEJTAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7yVJjJKBChnDiq/BefncZVu3NJcwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC83eVZKakpLQkNobkRpcV9CZWZu Y1pWdTNOSmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCoyDw MA0GCSqGSIb3DQEBCwUAA4IBAQBh6yzEb81Fj8CWnJB0InVsUt8DvV2fKOLKXnpJ aHLrKghadX3VEzc/U22P2980wo2JD0etYh2cr1iJp+8zTy0yL5B84yoyapQkGYjj dWXtPBRrdwLoUGd6zijfXWKHFE16OXNSgMStoQYWBKoXsBl9FQbxIGG8Vg1QB8iW eyAkI9Fv19dHBsdAv8Y9Os/bsrKLX8eXo7TSKwuDy+iVmIU5VbcgJxlD8xARCWLJ 6+PXb6T8SHIyAir+coFqGipuhR5O/EEgxmbTKLxxawtHMcXQ+auF1PT8287Zer9C 9R2cYas6YC8tYXrLtO8lsZyOhfkMPUUorD/tokwaWLcIlL9j -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org