$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa File: GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa (raw, json) Hash identifier: 01edkud658+O6PFB2KWoqnefim4TTX+bxLBrFCt9BDY= Subject key identifier: 18:B6:68:5E:54:22:10:9F:21:D3:61:8F:FE:96:20:D9:A3:2F:6F:92 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DDF Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa Signing time: Mon 26 Aug 2024 05:27:15 +0000 ROA not before: Mon 26 Aug 2024 05:27:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18047 IP address blocks: 140.114.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3551 (0xddf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=18B6685E5422109F21D3618FFE9620D9A32F6F92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c3:1a:00:2c:76:ee:c0:75:bc:e2:02:73:5a: 43:61:de:11:82:d2:d6:70:59:9b:87:1d:f8:e4:9c: 3d:a6:f1:dd:8f:88:ea:06:ad:21:06:f5:c0:08:23: 59:ec:cb:15:5b:ab:61:77:aa:85:74:8a:4f:7a:e6: 41:d4:05:28:52:d1:64:cc:58:5b:f4:17:f7:e8:97: 04:fd:b2:8e:68:ef:5d:12:a6:85:0f:74:d9:57:15: b5:ea:9a:18:67:a0:fd:ab:12:1c:eb:22:cc:de:45: c0:d7:80:46:73:70:81:5d:83:6b:82:65:eb:50:44: be:1f:9e:ff:da:29:c8:ca:22:dc:65:f0:6a:28:32: 05:1c:35:5b:4d:8b:23:6d:25:d7:cf:ec:04:0a:83: c5:57:89:20:24:2d:ab:2f:21:00:d1:50:31:f4:aa: 79:da:6b:47:f6:91:d3:c0:95:a3:d7:b1:95:f4:b4: 2f:00:66:1b:d8:b3:90:14:69:db:b7:55:7a:91:e9: e7:98:91:ec:8c:51:47:0d:07:e6:d6:7d:7c:5b:70: 8d:e1:46:5a:54:7e:14:50:5f:81:05:9a:11:ad:51: ad:70:3e:d2:9b:cc:25:d7:a4:cd:1a:b5:dc:48:c9: 88:78:d7:84:33:db:be:cd:cd:da:20:e4:1b:9e:9c: 7f:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:B6:68:5E:54:22:10:9F:21:D3:61:8F:FE:96:20:D9:A3:2F:6F:92 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/GLZoXlQiEJ8h02GP_pYg2aMvb5I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.114.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6f:c4:01:c0:61:f3:63:a0:4b:ce:e1:8d:21:64:88:01:8f:f7: 52:ff:73:c5:f3:1c:d5:7c:7f:f9:92:9a:50:83:3f:89:ea:4c: 61:e2:38:e3:89:67:e0:34:cb:da:3f:16:44:2c:ee:94:3f:cd: d6:ca:b8:17:ec:50:1a:8e:72:2d:28:00:79:bd:70:50:59:cb: 28:f4:f1:de:78:3f:fd:fd:2d:84:2a:68:d6:31:08:3b:c2:9c: 66:64:21:25:62:d2:ef:10:33:91:c8:1a:f0:ca:c3:0a:8c:2a: 51:c8:12:83:74:95:70:96:33:2c:98:a6:b0:89:77:38:eb:f5: 6e:6e:14:24:ca:a3:03:56:79:4b:dc:ee:08:e7:d8:cd:88:14: 03:b1:aa:45:30:4c:a8:3c:a4:e2:33:5c:8b:8e:52:46:9d:98: 2e:d2:55:9f:1f:47:40:07:d6:6a:87:c1:af:2f:24:15:58:83: 34:31:09:34:02:3b:ae:38:a3:2d:d5:9b:c2:b7:db:d2:6a:81: 68:3a:00:64:13:4e:02:7c:11:09:49:b3:84:d7:db:b6:05:a7: d5:d4:4c:28:7c:85:dc:e1:fd:91:93:1a:7f:e0:cc:11:0a:4e: 17:0d:15:8d:b7:20:50:4e:04:89:9a:1a:e0:ca:95:bd:4f:c7: 9f:cb:b4:6f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDd8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4QjY2ODVFNTQyMjEw OUYyMUQzNjE4RkZFOTYyMEQ5QTMyRjZGOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPwxoALHbuwHW84gJzWkNh3hGC0tZwWZuHHfjknD2m8d2PiOoG rSEG9cAII1nsyxVbq2F3qoV0ik965kHUBShS0WTMWFv0F/folwT9so5o710SpoUP dNlXFbXqmhhnoP2rEhzrIszeRcDXgEZzcIFdg2uCZetQRL4fnv/aKcjKItxl8Goo MgUcNVtNiyNtJdfP7AQKg8VXiSAkLasvIQDRUDH0qnnaa0f2kdPAlaPXsZX0tC8A ZhvYs5AUadu3VXqR6eeYkeyMUUcNB+bWfXxbcI3hRlpUfhRQX4EFmhGtUa1wPtKb zCXXpM0atdxIyYh414Qz277Nzdog5BuenH+jAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUGLZoXlQiEJ8h02GP/pYg2aMvb5IwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9HTFpvWGxRaUVKOGgwMkdQX3BZ ZzJhTXZiNUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHIw DQYJKoZIhvcNAQELBQADggEBAG/EAcBh82OgS87hjSFkiAGP91L/c8XzHNV8f/mS mlCDP4nqTGHiOOOJZ+A0y9o/FkQs7pQ/zdbKuBfsUBqOci0oAHm9cFBZyyj08d54 P/39LYQqaNYxCDvCnGZkISVi0u8QM5HIGvDKwwqMKlHIEoN0lXCWMyyYprCJdzjr 9W5uFCTKowNWeUvc7gjn2M2IFAOxqkUwTKg8pOIzXIuOUkadmC7SVZ8fR0AH1mqH wa8vJBVYgzQxCTQCO644oy3Vm8K329JqgWg6AGQTTgJ8EQlJs4TX27YFp9XUTCh8 hdzh/ZGTGn/gzBEKThcNFY23IFBOBImaGuDKlb1Px5/LtG8= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:34 2024 by rpki-client on console-fra.rpki-client.org