$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/KyrUXFsGo1SFox67T508z-NSOi4.roa File: KyrUXFsGo1SFox67T508z-NSOi4.roa (raw, json) Hash identifier: El577ej/HIqlXmuIKj2/tMw2PmiRRW4/C9ISQDUsRdw= Subject key identifier: 2B:2A:D4:5C:5B:06:A3:54:85:A3:1E:BB:4F:9D:3C:CF:E3:52:3A:2E Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DEF Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KyrUXFsGo1SFox67T508z-NSOi4.roa Signing time: Mon 26 Aug 2024 05:27:21 +0000 ROA not before: Mon 26 Aug 2024 05:27:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.110.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 01:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3567 (0xdef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2B2AD45C5B06A35485A31EBB4F9D3CCFE3523A2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:0a:cb:31:1a:97:e1:be:56:e5:f0:a3:7f:95: 69:2a:eb:ea:ff:14:5e:33:25:25:53:ce:fd:be:7a: 34:56:78:73:1b:43:8d:38:92:8f:5a:4e:53:12:7c: 0b:a7:6b:32:a1:5d:e8:63:d4:3b:5d:01:9b:d7:ff: 6e:62:cd:4f:24:d9:72:13:82:b7:2a:32:8d:62:70: 7a:af:9e:fa:9f:2d:6f:70:46:b8:70:cc:9f:f2:35: 97:8f:5b:1a:a5:b9:51:f0:ae:de:2a:ad:49:b9:68: d2:57:c1:ae:c1:6c:4e:1b:b7:6c:2b:c0:f7:d6:18: 66:f1:8a:f2:1e:e6:80:96:74:ed:55:83:70:2e:92: 5c:72:66:58:0a:d9:2d:51:2f:06:44:24:8f:29:fd: 0a:04:05:9b:e4:0b:c6:17:92:fa:c3:a7:0e:cd:90: ee:e3:90:72:07:ca:62:d9:65:42:0d:9d:2d:e4:3f: 48:59:f8:10:52:5d:3e:00:d8:1e:ca:7e:28:b7:9a: d0:b0:cd:cc:7f:47:68:2e:7c:49:3e:d9:92:8e:5f: 75:d9:2f:a3:65:e3:fd:b2:29:89:47:50:e7:50:9d: db:cf:9a:a0:c7:bc:b7:2c:39:55:78:ea:f0:43:87: d8:55:4e:13:4f:3d:24:b0:e2:4d:ba:e4:fa:fc:a1: be:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:2A:D4:5C:5B:06:A3:54:85:A3:1E:BB:4F:9D:3C:CF:E3:52:3A:2E X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/KyrUXFsGo1SFox67T508z-NSOi4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.110.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0b:23:34:cd:68:d9:59:3d:7d:38:f7:84:ca:81:77:20:3c:c1: 18:03:4a:28:4b:26:41:35:c8:d2:73:75:7b:02:69:37:a0:90: 2b:ff:f1:c7:80:28:51:f8:37:5b:52:1f:6a:bb:6d:0f:2f:34: 6f:ca:c3:bc:66:d7:23:92:3a:f2:05:44:19:c0:d1:35:3f:21: fd:f1:ed:fa:4e:c0:d8:91:42:40:7d:58:e2:09:5b:b9:b4:aa: 63:60:4f:d6:18:79:d8:e2:57:4d:ac:53:7e:a1:f5:64:ca:d8: 4f:82:4b:88:f5:c9:fb:9f:d2:8b:5a:1f:e3:fc:47:1f:58:86: 9d:7b:18:5f:c8:61:38:79:3e:01:74:ef:80:07:f5:1b:88:71: c0:89:63:1e:36:fa:91:46:0c:53:3d:75:b6:9d:3f:1b:ab:40: fe:5b:55:96:dc:d3:79:21:e4:65:9d:23:36:4e:12:7a:54:9d: 95:ad:40:5b:c4:35:2d:cd:a8:48:34:80:2d:d1:3a:d2:86:4b: 24:05:ba:7b:bd:5e:1c:40:e0:5c:78:bd:5f:52:75:f1:07:bb: 15:65:20:49:d4:47:f4:aa:3a:95:17:37:f7:a4:95:25:a8:e3: b6:63:e7:1c:2e:46:a7:e6:41:5c:a4:0c:51:d7:8d:32:cb:f9: 90:97:72:b7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDe8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCMkFENDVDNUIwNkEz NTQ4NUEzMUVCQjRGOUQzQ0NGRTM1MjNBMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8CssxGpfhvlbl8KN/lWkq6+r/FF4zJSVTzv2+ejRWeHMbQ404 ko9aTlMSfAunazKhXehj1DtdAZvX/25izU8k2XITgrcqMo1icHqvnvqfLW9wRrhw zJ/yNZePWxqluVHwrt4qrUm5aNJXwa7BbE4bt2wrwPfWGGbxivIe5oCWdO1Vg3Au klxyZlgK2S1RLwZEJI8p/QoEBZvkC8YXkvrDpw7NkO7jkHIHymLZZUINnS3kP0hZ +BBSXT4A2B7Kfii3mtCwzcx/R2gufEk+2ZKOX3XZL6Nl4/2yKYlHUOdQndvPmqDH vLcsOVV46vBDh9hVThNPPSSw4k265Pr8ob5XAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUKyrUXFsGo1SFox67T508z+NSOi4wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9LeXJVWEZzR28xU0ZveDY3VDUw OHotTlNPaTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBjG4w DQYJKoZIhvcNAQELBQADggEBAAsjNM1o2Vk9fTj3hMqBdyA8wRgDSihLJkE1yNJz dXsCaTegkCv/8ceAKFH4N1tSH2q7bQ8vNG/Kw7xm1yOSOvIFRBnA0TU/If3x7fpO wNiRQkB9WOIJW7m0qmNgT9YYedjiV02sU36h9WTK2E+CS4j1yfuf0otaH+P8Rx9Y hp17GF/IYTh5PgF074AH9RuIccCJYx42+pFGDFM9dbadPxurQP5bVZbc03kh5GWd IzZOEnpUnZWtQFvENS3NqEg0gC3ROtKGSyQFunu9XhxA4Fx4vV9SdfEHuxVlIEnU R/SqOpUXN/eklSWo47Zj5xwuRqfmQVykDFHXjTLL+ZCXcrc= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org