$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa File: CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa (raw, json) Hash identifier: OUv6tfFdW3/HY3fSt3nLKvsmofYHDFz18DoMP6P8rvk= Subject key identifier: 09:60:7B:51:B7:37:97:84:72:E8:BB:AE:FE:61:93:6F:2C:42:36:CF Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E43 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa Signing time: Mon 26 Aug 2024 05:27:10 +0000 ROA not before: Mon 26 Aug 2024 05:27:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 120.126.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3651 (0xe43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=09607B51B737978472E8BBAEFE61936F2C4236CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:db:02:34:b8:33:26:6c:2e:98:d8:0b:10:cb: 55:b3:7a:09:aa:08:f7:9d:ab:2c:21:06:f7:5e:7b: b0:da:b7:07:58:a7:0c:6a:fd:c4:01:79:dd:a9:53: f0:52:04:ab:dc:88:bc:6a:fc:8d:38:39:57:81:82: 66:9e:8d:bd:16:2a:8f:6b:17:8d:a0:2b:d4:14:e4: 9b:8f:af:4b:10:06:96:54:c0:6c:4d:90:d8:0b:60: 48:85:9b:01:d1:0d:e8:20:3c:64:54:85:8e:94:83: ee:a3:78:e2:1d:36:7f:f1:05:30:92:32:89:a8:91: 59:91:53:75:5b:68:c5:ba:fa:08:77:61:82:e1:a4: ad:ab:69:5d:b1:57:f8:0b:34:4f:37:f8:d2:c9:23: 50:bb:c5:dd:a8:52:c5:e2:e4:a2:cb:58:4a:53:39: 8c:43:9a:5d:8a:87:17:1e:fa:9d:a6:fa:7e:cc:98: 0c:73:dd:4a:13:74:db:bf:40:1c:6e:03:16:96:b6: c7:4a:8e:2a:3f:95:74:87:96:02:8f:20:4f:00:6d: b7:ad:45:cf:ff:ac:47:4e:04:d0:a5:73:69:89:be: d5:11:2d:a0:ed:6b:b5:16:22:c3:73:ac:dd:20:64: 7a:e5:e6:62:79:0b:ef:b0:18:c1:68:ad:67:e9:a1: ce:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:60:7B:51:B7:37:97:84:72:E8:BB:AE:FE:61:93:6F:2C:42:36:CF X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/CWB7Ubc3l4Ry6Luu_mGTbyxCNs8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.126.32.0/19 Signature Algorithm: sha256WithRSAEncryption b7:6f:dd:db:b7:78:c5:d3:29:89:1a:95:43:64:3f:59:b6:5e: ac:f0:74:c3:2a:03:30:c4:4a:43:7d:4e:31:1b:0b:f1:b6:b7: 0f:4e:ca:c7:09:33:ad:b1:90:59:6c:f5:a8:9b:99:e1:f0:ab: 5b:78:4d:5a:34:c0:f8:e0:60:f1:0f:1d:0e:aa:d5:87:c6:bb: f5:ea:6c:86:96:aa:c8:4b:61:dc:ab:15:08:bb:cd:22:06:9f: cf:0e:d6:52:35:89:ad:fc:67:db:ff:df:ed:8d:dd:e2:d9:f1: 67:f6:bf:ca:c4:39:27:e6:86:f3:b3:8b:f2:f6:ce:6d:95:95: 20:16:a9:dd:06:d1:f6:f9:9a:c1:1b:52:b5:c6:d8:1a:84:d7: e4:2e:ed:47:ac:82:12:90:c7:2f:98:f1:c7:ea:e0:b9:68:f3: d2:7f:28:f7:5d:ce:d7:6d:a0:ef:49:42:bd:24:73:8f:c9:38: bf:08:bb:10:92:65:b0:7f:54:63:d7:5e:bd:91:34:5c:72:1a: 3f:47:99:57:0d:b7:2a:d3:26:8e:2e:c4:ec:d5:a0:08:bc:73: 6f:eb:3d:fb:49:e8:d7:f2:f7:f7:d2:ea:f4:6b:a1:eb:b5:7f: 72:c2:1b:e0:de:0a:a0:18:d3:b7:42:46:0a:f1:74:ab:e8:c3: 76:2b:6a:58 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDkMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5NjA3QjUxQjczNzk3 ODQ3MkU4QkJBRUZFNjE5MzZGMkM0MjM2Q0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB2wI0uDMmbC6Y2AsQy1WzegmqCPedqywhBvdee7DatwdYpwxq /cQBed2pU/BSBKvciLxq/I04OVeBgmaejb0WKo9rF42gK9QU5JuPr0sQBpZUwGxN kNgLYEiFmwHRDeggPGRUhY6Ug+6jeOIdNn/xBTCSMomokVmRU3VbaMW6+gh3YYLh pK2raV2xV/gLNE83+NLJI1C7xd2oUsXi5KLLWEpTOYxDml2Khxce+p2m+n7MmAxz 3UoTdNu/QBxuAxaWtsdKjio/lXSHlgKPIE8AbbetRc//rEdOBNClc2mJvtURLaDt a7UWIsNzrN0gZHrl5mJ5C++wGMForWfpoc7nAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUCWB7Ubc3l4Ry6Luu/mGTbyxCNs8wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9DV0I3VWJjM2w0Unk2THV1X21H VGJ5eENOczgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFeH4g MA0GCSqGSIb3DQEBCwUAA4IBAQC3b93bt3jF0ymJGpVDZD9Ztl6s8HTDKgMwxEpD fU4xGwvxtrcPTsrHCTOtsZBZbPWom5nh8KtbeE1aNMD44GDxDx0OqtWHxrv16myG lqrIS2HcqxUIu80iBp/PDtZSNYmt/Gfb/9/tjd3i2fFn9r/KxDkn5obzs4vy9s5t lZUgFqndBtH2+ZrBG1K1xtgahNfkLu1HrIISkMcvmPHH6uC5aPPSfyj3Xc7XbaDv SUK9JHOPyTi/CLsQkmWwf1Rj1169kTRccho/R5lXDbcq0yaOLsTs1aAIvHNv6z37 SejX8vf30ur0a6HrtX9ywhvg3gqgGNO3QkYK8XSr6MN2K2pY -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org