$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/8cD602ib3SdQDQ96GauEso6lY3E.roa File: 8cD602ib3SdQDQ96GauEso6lY3E.roa (raw, json) Hash identifier: Kk0dnbCLrpqZg9ZnVGq499DYVXpq697UscyYFgWM0Ho= Subject key identifier: F1:C0:FA:D3:68:9B:DD:27:50:0D:0F:7A:19:AB:84:B2:8E:A5:63:71 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E5A Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8cD602ib3SdQDQ96GauEso6lY3E.roa Signing time: Mon 26 Aug 2024 05:27:18 +0000 ROA not before: Mon 26 Aug 2024 05:27:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 210.67.248.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3674 (0xe5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F1C0FAD3689BDD27500D0F7A19AB84B28EA56371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:44:b2:cf:be:4c:b5:7d:0a:f1:35:97:99:6f: b7:7b:be:05:df:1d:e2:6e:e9:91:41:8b:0e:43:bf: 9c:98:c0:73:ce:0a:1b:e4:4d:c2:82:2d:67:2d:7c: 3e:8e:34:19:cb:34:66:e2:c3:9d:dd:86:c0:a4:2c: 30:9a:5b:3e:e1:0f:0e:e1:5b:9e:dd:3b:14:e2:0c: fc:27:aa:2e:34:c8:4f:4f:a8:ba:5c:8b:d1:f2:57: 74:6c:f1:3f:cd:b4:c4:3a:37:8c:12:16:4a:b9:b7: 69:97:e2:8b:48:02:b3:56:93:ff:1a:2d:80:88:b6: f2:8e:15:5d:5a:a4:ab:85:19:22:22:bc:0a:6c:b5: d6:4c:bc:d4:92:73:6a:8c:e0:7c:11:8a:ab:1d:d9: 45:5e:7b:20:8f:7e:8c:90:52:c2:19:be:c4:4c:6a: 00:a7:6e:da:57:03:12:d8:fa:f1:14:1a:84:53:59: d3:8d:bc:5d:68:98:d3:f2:ad:f3:7b:5a:88:94:e1: 91:7f:66:62:70:bc:a7:56:5e:9d:49:f0:09:d4:00: 02:c9:01:29:18:e0:cf:00:6e:98:4b:45:ea:a1:05: 85:b0:f6:f9:0e:3c:30:b5:14:cb:13:f3:53:fc:11: 29:49:d5:9a:94:22:99:0f:56:8c:e0:2f:93:aa:c2: d3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:C0:FA:D3:68:9B:DD:27:50:0D:0F:7A:19:AB:84:B2:8E:A5:63:71 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/8cD602ib3SdQDQ96GauEso6lY3E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.67.248.0/21 Signature Algorithm: sha256WithRSAEncryption 40:1e:be:37:25:95:4b:e9:80:0e:60:7e:7f:51:bb:66:72:f3: fd:56:bf:ac:e6:fc:d7:4a:69:42:46:cf:c4:33:d3:8f:45:92: 86:57:d6:73:42:af:10:e3:a6:67:3a:1c:9b:bc:a3:2c:0c:e8: 1c:7f:6e:e6:c6:46:23:0f:77:f7:43:34:8d:33:98:0e:fd:e3: 76:d8:ce:c3:0e:22:59:66:b5:a3:b1:39:b2:99:17:91:cf:5e: 3b:ea:ce:9d:04:cd:bb:41:e1:28:24:d0:6b:bf:27:2e:70:e3: 6c:60:f2:b7:79:0c:7b:b2:64:49:69:de:ea:83:05:7c:d0:b5: c5:28:bf:b3:21:7c:c3:44:82:08:b4:7e:6f:9d:a5:4d:01:d9: 08:77:04:44:0b:42:8b:43:02:97:7e:73:69:6e:27:e8:28:be: 2f:16:88:84:a1:38:3b:49:1d:ed:ad:e6:f8:80:65:94:fb:46: 53:63:71:f0:fc:e6:5f:a8:f9:1c:5f:f2:f9:60:21:85:07:a6: 37:37:da:56:50:b9:c7:96:31:ad:ca:bb:6b:3d:c5:f4:db:fb: e1:d2:65:29:95:b4:1a:40:7f:98:cc:6e:54:73:97:38:95:d6: 09:3f:54:9a:68:6a:5b:b6:dd:88:d4:5b:08:ff:01:08:2b:12: 74:53:26:1a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYxQzBGQUQzNjg5QkRE Mjc1MDBEMEY3QTE5QUI4NEIyOEVBNTYzNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtRLLPvky1fQrxNZeZb7d7vgXfHeJu6ZFBiw5Dv5yYwHPOChvk TcKCLWctfD6ONBnLNGbiw53dhsCkLDCaWz7hDw7hW57dOxTiDPwnqi40yE9PqLpc i9HyV3Rs8T/NtMQ6N4wSFkq5t2mX4otIArNWk/8aLYCItvKOFV1apKuFGSIivAps tdZMvNSSc2qM4HwRiqsd2UVeeyCPfoyQUsIZvsRMagCnbtpXAxLY+vEUGoRTWdON vF1omNPyrfN7WoiU4ZF/ZmJwvKdWXp1J8AnUAALJASkY4M8AbphLReqhBYWw9vkO PDC1FMsT81P8ESlJ1ZqUIpkPVozgL5OqwtNbAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU8cD602ib3SdQDQ96GauEso6lY3EwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC84Y0Q2MDJpYjNTZFFEUTk2R2F1 RXNvNmxZM0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD0kP4 MA0GCSqGSIb3DQEBCwUAA4IBAQBAHr43JZVL6YAOYH5/UbtmcvP9Vr+s5vzXSmlC Rs/EM9OPRZKGV9ZzQq8Q46ZnOhybvKMsDOgcf27mxkYjD3f3QzSNM5gO/eN22M7D DiJZZrWjsTmymReRz1476s6dBM27QeEoJNBrvycucONsYPK3eQx7smRJad7qgwV8 0LXFKL+zIXzDRIIItH5vnaVNAdkIdwREC0KLQwKXfnNpbifoKL4vFoiEoTg7SR3t reb4gGWU+0ZTY3Hw/OZfqPkcX/L5YCGFB6Y3N9pWULnHljGtyrtrPcX02/vh0mUp lbQaQH+YzG5Uc5c4ldYJP1SaaGpbtt2I1FsI/wEIKxJ0UyYa -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org