$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/EtnU3yGMY5XWDlckos2X_xVHD_c.roa File: EtnU3yGMY5XWDlckos2X_xVHD_c.roa (raw, json) Hash identifier: WVrhlGT89BhmI/mNUZVAdIsvPv+Z+wy8lvYbkFiHXIQ= Subject key identifier: 12:D9:D4:DF:21:8C:63:95:D6:0E:57:24:A2:CD:97:FF:15:47:0F:F7 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DEB Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EtnU3yGMY5XWDlckos2X_xVHD_c.roa Signing time: Mon 26 Aug 2024 05:27:19 +0000 ROA not before: Mon 26 Aug 2024 05:27:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 140.109.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 01:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3563 (0xdeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=12D9D4DF218C6395D60E5724A2CD97FF15470FF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e0:4a:60:03:29:99:ae:9b:4f:47:cd:1f:05: 5b:db:b7:23:ac:7e:49:13:e0:78:54:40:08:b6:3a: 5d:55:78:1c:44:70:61:67:ec:9a:e9:93:bd:c9:90: 7e:8a:fb:41:85:bd:50:05:6a:28:10:df:d4:91:67: 0d:02:cd:e4:95:c7:59:b1:e5:66:f9:0a:b9:01:99: b9:07:87:0b:aa:05:8f:7c:17:d5:f6:ea:73:95:b7: 2f:00:62:1b:89:06:e3:85:c8:bc:5d:a2:79:40:f5: 31:8b:74:13:9f:37:b0:0d:ec:d3:d8:78:5a:3f:12: 6d:8b:ef:b6:3c:fe:f7:97:8d:cc:1c:07:05:88:28: 07:13:fc:43:a4:bd:aa:9b:c5:f5:84:86:08:4e:bf: 5d:07:32:21:f4:82:d9:8d:e5:c8:91:45:cd:3e:ec: 9b:8b:ab:19:2d:59:91:65:29:7b:e9:c8:66:f0:a8: 67:a0:19:1d:19:4b:ef:22:2b:1a:96:20:3d:a1:b0: 49:6c:b8:f1:fe:4c:c3:20:ff:9c:50:c3:81:47:06: b1:ae:9c:22:32:9c:dc:59:a0:76:3a:9c:43:bb:1a: 76:23:6e:30:12:b1:d7:e9:81:54:96:de:ef:6d:47: 34:88:6b:c3:ba:38:5a:4e:4f:df:38:f4:25:a1:35: 26:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:D9:D4:DF:21:8C:63:95:D6:0E:57:24:A2:CD:97:FF:15:47:0F:F7 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/EtnU3yGMY5XWDlckos2X_xVHD_c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 71:65:73:fd:37:76:0b:c7:d5:7c:64:7d:15:4e:97:5a:c4:29: ab:df:db:7d:eb:02:92:27:3b:31:fd:72:02:58:ef:6a:c3:65: b6:25:b0:85:49:ef:64:45:48:0e:35:ec:8b:de:65:3b:b6:4f: 07:72:f7:39:ab:27:4b:fa:1c:c6:1c:04:19:b9:2a:7a:26:1a: 6a:50:65:27:c4:d2:b0:aa:90:dd:cd:2a:21:f6:87:b5:5f:45: de:e4:10:05:4b:da:1f:ce:83:74:36:41:ae:ff:bc:e9:3c:fc: 53:d3:40:ea:66:cc:e7:3e:5d:73:ec:2d:60:49:1b:bf:7b:86: be:a0:e6:9f:f9:eb:5a:87:4d:0c:dd:d7:37:17:d4:d2:a1:27: 77:dd:ec:11:56:04:e8:14:dc:b9:1a:7e:05:ba:30:30:f4:0d: b7:b2:15:6c:5b:69:7b:b8:04:bf:2d:00:c7:de:7a:42:27:c9: d5:2d:37:be:54:4f:4f:bb:68:9e:07:4b:4a:b8:cd:bd:ee:89: 24:db:06:de:9f:2b:56:4b:f8:1b:f3:2a:46:08:28:8f:91:42: 60:78:e4:f9:13:9a:e9:01:73:1d:8e:56:37:99:50:f6:de:31: 95:ff:ae:52:8e:6a:6a:0c:59:ba:1b:43:c0:29:37:d1:fe:67: a1:1e:cc:f4 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDeswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEyRDlENERGMjE4QzYz OTVENjBFNTcyNEEyQ0Q5N0ZGMTU0NzBGRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC94EpgAymZrptPR80fBVvbtyOsfkkT4HhUQAi2Ol1VeBxEcGFn 7Jrpk73JkH6K+0GFvVAFaigQ39SRZw0CzeSVx1mx5Wb5CrkBmbkHhwuqBY98F9X2 6nOVty8AYhuJBuOFyLxdonlA9TGLdBOfN7AN7NPYeFo/Em2L77Y8/veXjcwcBwWI KAcT/EOkvaqbxfWEhghOv10HMiH0gtmN5ciRRc0+7JuLqxktWZFlKXvpyGbwqGeg GR0ZS+8iKxqWID2hsElsuPH+TMMg/5xQw4FHBrGunCIynNxZoHY6nEO7GnYjbjAS sdfpgVSW3u9tRzSIa8O6OFpOT9849CWhNSYPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUEtnU3yGMY5XWDlckos2X/xVHD/cwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9FdG5VM3lHTVk1WFdEbGNrb3My WF94VkhEX2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjG0w DQYJKoZIhvcNAQELBQADggEBAHFlc/03dgvH1XxkfRVOl1rEKavf233rApInOzH9 cgJY72rDZbYlsIVJ72RFSA417IveZTu2Twdy9zmrJ0v6HMYcBBm5KnomGmpQZSfE 0rCqkN3NKiH2h7VfRd7kEAVL2h/Og3Q2Qa7/vOk8/FPTQOpmzOc+XXPsLWBJG797 hr6g5p/561qHTQzd1zcX1NKhJ3fd7BFWBOgU3LkafgW6MDD0DbeyFWxbaXu4BL8t AMfeekInydUtN75UT0+7aJ4HS0q4zb3uiSTbBt6fK1ZL+BvzKkYIKI+RQmB45PkT mukBcx2OVjeZUPbeMZX/rlKOamoMWbobQ8ApN9H+Z6EezPQ= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org