$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa File: D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa (raw, json) Hash identifier: QZijnRhlHzR7lrhEBwsh57oBnXMuoQ0si6XJZ01GntE= Subject key identifier: 0F:51:3C:17:0D:7F:CD:6B:76:D8:0E:02:09:DC:0B:B2:4E:E1:FC:2A Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DE6 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa Signing time: Mon 26 Aug 2024 05:27:17 +0000 ROA not before: Mon 26 Aug 2024 05:27:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 140.113.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3558 (0xde6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0F513C170D7FCD6B76D80E0209DC0BB24EE1FC2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:00:59:c1:76:bf:7a:3e:54:d9:c9:8e:04:61: e7:c8:31:61:d3:1d:0f:e7:97:66:bd:43:fa:0b:16: 41:08:21:c3:17:cd:f6:02:26:21:e3:1d:c4:34:f4: 20:53:cb:90:88:6a:39:a7:5f:58:38:ed:05:ca:62: 03:23:8b:59:31:70:ec:fe:6e:1e:8d:0d:e2:90:5f: 91:51:25:71:62:e4:f5:d5:d9:c7:e6:fa:a0:07:2a: c8:19:38:5b:df:5e:c9:bc:56:4c:36:55:db:e2:1e: 25:ac:3f:f5:b9:d7:62:bb:70:96:d9:78:6d:51:d9: 5a:37:d7:13:f0:1c:27:72:22:0d:85:04:6c:a0:37: eb:66:2b:60:33:d2:e4:e5:49:13:3c:35:18:a6:14: 23:d0:9d:3d:03:ae:c3:98:a3:55:67:5e:1f:ba:74: 35:28:30:4c:e6:f2:9b:7f:1c:f9:d5:c1:8c:e0:a0: cb:60:8b:f0:59:03:8e:53:66:70:a6:29:46:04:5f: 44:67:66:4f:4b:ac:e1:41:c8:e0:79:c8:b3:64:88: 19:bc:b0:02:14:73:ee:d0:6b:6f:bc:80:8f:c3:d7: 28:f3:58:18:13:0f:47:48:60:39:65:ff:48:ef:a2: ab:72:31:90:24:fb:f3:53:3e:ec:d8:1d:87:a6:12: ed:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:51:3C:17:0D:7F:CD:6B:76:D8:0E:02:09:DC:0B:B2:4E:E1:FC:2A X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/D1E8Fw1_zWt22A4CCdwLsk7h_Co.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.113.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:28:47:70:22:4d:54:d7:73:81:57:ae:8f:24:64:5e:73:ca: ad:58:a5:e2:ce:5f:ef:fa:5b:b0:f7:35:d0:85:e5:4e:5d:7f: 97:8b:b0:9c:8b:54:b5:9c:0f:d7:24:a8:6b:ce:c6:d7:46:dd: 57:e0:fa:ef:ea:7b:1a:75:d0:c5:69:0c:02:16:6d:1a:be:b0: 7b:82:ac:eb:41:38:18:a3:7b:30:3a:bb:2a:4b:27:e2:d6:87: 1b:ba:6f:53:f8:6b:70:a3:a4:40:50:ec:10:25:54:82:16:fd: 00:bf:aa:7b:bc:72:be:17:bd:7c:56:b7:f4:1e:2d:f6:f7:34: 2e:14:30:ce:eb:68:84:71:e1:c8:af:e5:15:97:63:70:9a:c8: e3:d8:98:92:21:98:1b:93:df:20:94:60:c3:00:75:74:52:58: 2d:8d:d2:af:f0:99:ce:6b:4b:36:a7:b3:1d:f8:c3:c5:6d:16: e4:95:b8:b4:20:26:f5:3a:bf:b1:a8:f8:be:fa:16:73:7a:72: 33:fd:27:67:22:23:e4:47:a9:d3:54:d5:5e:8a:d3:cc:0a:86: ad:8d:9a:ae:35:bd:0c:e3:1b:85:28:66:e3:f2:9a:c8:b2:46: 5a:27:e3:6a:ce:ba:2b:0b:87:3e:08:b1:01:8d:59:cf:cc:1e: a3:4d:2f:a3 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGNTEzQzE3MEQ3RkNE NkI3NkQ4MEUwMjA5REMwQkIyNEVFMUZDMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAAFnBdr96PlTZyY4EYefIMWHTHQ/nl2a9Q/oLFkEIIcMXzfYC JiHjHcQ09CBTy5CIajmnX1g47QXKYgMji1kxcOz+bh6NDeKQX5FRJXFi5PXV2cfm +qAHKsgZOFvfXsm8Vkw2VdviHiWsP/W512K7cJbZeG1R2Vo31xPwHCdyIg2FBGyg N+tmK2Az0uTlSRM8NRimFCPQnT0DrsOYo1VnXh+6dDUoMEzm8pt/HPnVwYzgoMtg i/BZA45TZnCmKUYEX0RnZk9LrOFByOB5yLNkiBm8sAIUc+7Qa2+8gI/D1yjzWBgT D0dIYDll/0jvoqtyMZAk+/NTPuzYHYemEu2nAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUD1E8Fw1/zWt22A4CCdwLsk7h/CowHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9EMUU4RncxX3pXdDIyQTRDQ2R3 THNrN2hfQ28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHEw DQYJKoZIhvcNAQELBQADggEBAGgoR3AiTVTXc4FXro8kZF5zyq1YpeLOX+/6W7D3 NdCF5U5df5eLsJyLVLWcD9ckqGvOxtdG3Vfg+u/qexp10MVpDAIWbRq+sHuCrOtB OBijezA6uypLJ+LWhxu6b1P4a3CjpEBQ7BAlVIIW/QC/qnu8cr4XvXxWt/QeLfb3 NC4UMM7raIRx4civ5RWXY3CayOPYmJIhmBuT3yCUYMMAdXRSWC2N0q/wmc5rSzan sx34w8VtFuSVuLQgJvU6v7Go+L76FnN6cjP9J2ciI+RHqdNU1V6K08wKhq2Nmq41 vQzjG4UoZuPymsiyRlon42rOuisLhz4IsQGNWc/MHqNNL6M= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org