$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/G1uzYtUteR0R9mJ42WmYo7MhfGI.roa File: G1uzYtUteR0R9mJ42WmYo7MhfGI.roa (raw, json) Hash identifier: Ug366dCfHcyVTBK5DzybLtSuxGAshGhgtU7q1PM7/WM= Subject key identifier: 1B:5B:B3:62:D5:2D:79:1D:11:F6:62:78:D9:69:98:A3:B3:21:7C:62 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E56 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/G1uzYtUteR0R9mJ42WmYo7MhfGI.roa Signing time: Mon 26 Aug 2024 05:27:15 +0000 ROA not before: Mon 26 Aug 2024 05:27:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 120.126.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3670 (0xe56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1B5BB362D52D791D11F66278D96998A3B3217C62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:34:c9:13:85:f2:11:ae:2d:3f:f8:7e:2b:d9: 1d:16:56:ef:72:9e:76:74:7c:40:df:80:23:f5:92: e5:14:b8:27:3a:8a:e2:47:69:b6:f2:2d:95:8c:ba: e1:5c:e7:5e:e9:88:8f:0f:36:ee:8d:14:80:d4:bd: f1:2e:b8:e0:ba:81:8c:5e:93:8b:b6:3f:e8:82:3d: 7d:81:3f:f4:0a:89:37:c3:64:a6:82:fd:03:55:3e: 53:97:87:41:d3:a2:d0:31:ff:ab:51:1b:d6:12:c0: 1f:24:18:16:9f:2d:df:55:4e:24:e0:e9:0e:de:d5: ee:33:69:17:60:a2:53:fc:8a:39:d9:1a:81:75:b1: fa:eb:03:4f:60:6a:b7:b2:07:c4:e6:6f:16:c6:b9: b1:6c:c0:d9:3a:0a:35:a2:cf:63:91:ca:77:56:98: 0b:14:8e:7d:86:8b:52:35:3a:be:82:1b:64:99:dd: 1e:59:d4:1e:f2:f7:10:d1:a7:cd:95:ed:12:59:18: f3:c8:bb:11:18:99:2a:35:57:d6:d0:76:c9:77:f3: b5:b1:62:22:23:c8:d4:ec:cd:72:06:0a:ef:59:db: f9:db:36:90:b1:ed:11:81:77:13:df:a2:39:18:0a: 2d:3c:6a:a8:f6:64:a4:f6:4c:6d:8a:f8:b8:ec:f8: 79:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:5B:B3:62:D5:2D:79:1D:11:F6:62:78:D9:69:98:A3:B3:21:7C:62 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/G1uzYtUteR0R9mJ42WmYo7MhfGI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.126.64.0/19 Signature Algorithm: sha256WithRSAEncryption b1:82:76:37:14:72:4f:a3:62:ae:6c:f3:01:81:88:1f:bc:3a: a3:ec:86:66:0c:7a:04:17:73:3d:92:d7:ee:cd:8b:6a:24:33: f2:d0:71:d9:53:77:59:72:4a:91:4d:69:22:6d:0c:c6:f7:43: 78:f5:57:1a:23:48:52:7b:c6:5e:af:ef:41:ff:9a:7b:37:9d: d6:d2:2d:6a:0c:5f:c1:0e:02:fc:9b:b0:20:e4:7d:59:40:bf: 4d:1d:cb:1c:ad:b8:2e:c9:af:5a:e6:ca:c7:87:3c:71:ff:08: 77:9f:8f:13:f4:a8:37:a2:09:64:55:8b:44:90:82:84:e7:ce: 3a:e0:16:ee:74:7c:28:70:37:a9:e4:bd:45:f2:21:05:0d:5c: e1:a7:dd:dd:1c:b1:71:6b:9a:9e:48:02:a0:3a:c0:31:eb:4a: 94:e8:2d:05:36:6c:2a:f0:47:3a:7a:c2:30:0d:31:ad:65:b1: bb:4f:c4:41:53:00:b5:dc:89:9c:ca:72:5f:15:a1:bc:3f:01: 79:cd:4c:19:56:63:48:9f:2b:65:11:f9:e2:6d:c6:a5:af:13: 9d:85:41:27:ff:da:25:34:39:c0:5c:5b:e7:ec:cd:78:fa:b4: 38:da:67:e9:1e:da:0b:71:dd:96:88:64:69:f6:bd:4f:34:07: 9f:f1:7a:8e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDlYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCNUJCMzYyRDUyRDc5 MUQxMUY2NjI3OEQ5Njk5OEEzQjMyMTdDNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYNMkThfIRri0/+H4r2R0WVu9ynnZ0fEDfgCP1kuUUuCc6iuJH abbyLZWMuuFc517piI8PNu6NFIDUvfEuuOC6gYxek4u2P+iCPX2BP/QKiTfDZKaC /QNVPlOXh0HTotAx/6tRG9YSwB8kGBafLd9VTiTg6Q7e1e4zaRdgolP8ijnZGoF1 sfrrA09gareyB8TmbxbGubFswNk6CjWiz2ORyndWmAsUjn2Gi1I1Or6CG2SZ3R5Z 1B7y9xDRp82V7RJZGPPIuxEYmSo1V9bQdsl387WxYiIjyNTszXIGCu9Z2/nbNpCx 7RGBdxPfojkYCi08aqj2ZKT2TG2K+Ljs+HnVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUG1uzYtUteR0R9mJ42WmYo7MhfGIwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HMXV6WXRVdGVSMFI5bUo0Mldt WW83TWhmR0kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFeH5A MA0GCSqGSIb3DQEBCwUAA4IBAQCxgnY3FHJPo2KubPMBgYgfvDqj7IZmDHoEF3M9 ktfuzYtqJDPy0HHZU3dZckqRTWkibQzG90N49VcaI0hSe8Zer+9B/5p7N53W0i1q DF/BDgL8m7Ag5H1ZQL9NHcscrbguya9a5srHhzxx/wh3n48T9Kg3oglkVYtEkIKE 58464BbudHwocDep5L1F8iEFDVzhp93dHLFxa5qeSAKgOsAx60qU6C0FNmwq8Ec6 esIwDTGtZbG7T8RBUwC13ImcynJfFaG8PwF5zUwZVmNInytlEfnibcalrxOdhUEn /9olNDnAXFvn7M14+rQ42mfpHtoLcd2WiGRp9r1PNAef8XqO -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org