$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/P1OMzwAkV5LP56rcX04voZxSl-U.roa File: P1OMzwAkV5LP56rcX04voZxSl-U.roa (raw, json) Hash identifier: D+u443XBESRAptWzg+6amQ9LyQyTxCkUctJT1OI1ILo= Subject key identifier: 3F:53:8C:CF:00:24:57:92:CF:E7:AA:DC:5F:4E:2F:A1:9C:52:97:E5 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E63 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/P1OMzwAkV5LP56rcX04voZxSl-U.roa Signing time: Mon 26 Aug 2024 05:27:24 +0000 ROA not before: Mon 26 Aug 2024 05:27:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 210.59.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3683 (0xe63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3F538CCF00245792CFE7AADC5F4E2FA19C5297E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a4:b5:f6:ea:97:34:5e:eb:3d:e8:bc:e2:c7: af:41:e8:ed:ee:79:f6:2c:f1:f0:90:d5:7a:b7:88: 23:6b:14:4f:09:aa:91:35:55:f9:ad:3d:99:7c:c4: 95:32:51:0c:fd:19:62:c4:9d:91:8d:6e:fd:91:29: 8e:eb:ab:ff:25:62:68:8e:be:d5:65:ed:02:3a:4b: 43:26:38:d7:8d:fd:7f:d6:f1:41:99:93:35:1e:64: 02:37:42:b0:b6:36:71:6c:54:fe:56:3c:6e:c8:20: d0:70:67:dd:46:7f:e9:8a:fb:a5:6b:57:8d:06:e6: 4b:43:0c:cf:ce:a5:69:dd:a0:59:67:ac:45:7a:9f: 77:e0:34:3d:06:8b:45:3b:d7:4a:49:0a:11:a1:ab: fa:50:90:eb:7e:32:02:40:59:b6:a3:05:82:18:a8: ff:83:54:ac:c4:25:40:92:e0:5d:91:d3:6d:4d:c1: 0c:f3:b4:a8:98:07:b9:92:38:5b:72:7d:87:fe:18: cd:fb:78:81:9f:53:a0:8b:67:b6:69:3e:f6:bd:26: b2:43:fe:31:de:da:ae:cd:74:be:90:a1:c6:81:ec: 03:57:4a:86:d4:a3:54:51:be:b0:8a:72:42:e8:aa: 91:c8:36:9a:90:bf:58:64:28:4e:e6:7b:ec:07:25: b3:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:53:8C:CF:00:24:57:92:CF:E7:AA:DC:5F:4E:2F:A1:9C:52:97:E5 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/P1OMzwAkV5LP56rcX04voZxSl-U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.59.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8d:aa:7b:75:74:d9:76:7d:1b:f3:d8:73:64:f1:06:d3:4d:37: fb:e5:57:38:bb:9b:3e:1e:13:8e:f8:7c:fe:f2:5b:03:e6:f0: 36:d1:8c:b8:71:bc:eb:cc:8f:56:63:5e:a2:f2:75:bf:3a:66: fe:10:75:f0:94:ba:be:f6:59:97:8b:a0:84:4b:3e:d3:ee:09: 72:f9:8b:7f:98:4f:59:f6:91:2b:2d:1e:58:7c:76:96:f8:2b: 48:62:57:b5:c4:36:7e:d8:56:c8:c8:b5:0c:bf:5a:af:40:de: 61:41:1c:66:cd:83:e9:d7:ae:dc:a2:c9:51:8e:a2:f8:31:b3: 30:d9:3f:52:36:92:e3:3f:a4:88:a3:0d:ed:62:fa:18:94:01: 92:17:a6:36:ce:dc:35:24:66:dc:7c:fd:39:25:87:ca:98:17: 29:25:e6:6e:c5:db:40:52:5f:82:68:4c:5e:63:2f:7c:51:8e: 48:bb:6e:ba:11:27:0c:89:29:b8:2f:7a:d5:bc:fb:00:b8:9a: 8a:13:d8:0e:8f:2b:8c:f5:1c:fa:35:2b:96:73:d3:f5:d2:5e: dc:c0:23:4c:36:2e:55:e8:97:7f:20:a5:07:c7:8f:1e:67:3c: 00:50:93:01:fc:23:2b:bc:07:d0:76:5c:de:d8:7a:33:7d:47: 39:60:50:4d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGNTM4Q0NGMDAyNDU3 OTJDRkU3QUFEQzVGNEUyRkExOUM1Mjk3RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhpLX26pc0Xus96Lzix69B6O3uefYs8fCQ1Xq3iCNrFE8JqpE1 VfmtPZl8xJUyUQz9GWLEnZGNbv2RKY7rq/8lYmiOvtVl7QI6S0MmONeN/X/W8UGZ kzUeZAI3QrC2NnFsVP5WPG7IINBwZ91Gf+mK+6VrV40G5ktDDM/OpWndoFlnrEV6 n3fgND0Gi0U710pJChGhq/pQkOt+MgJAWbajBYIYqP+DVKzEJUCS4F2R021NwQzz tKiYB7mSOFtyfYf+GM37eIGfU6CLZ7ZpPva9JrJD/jHe2q7NdL6QocaB7ANXSobU o1RRvrCKckLoqpHINpqQv1hkKE7me+wHJbOjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUP1OMzwAkV5LP56rcX04voZxSl+UwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9QMU9NendBa1Y1TFA1NnJjWDA0 dm9aeFNsLVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQH0jsA MA0GCSqGSIb3DQEBCwUAA4IBAQCNqnt1dNl2fRvz2HNk8QbTTTf75Vc4u5s+HhOO +Hz+8lsD5vA20Yy4cbzrzI9WY16i8nW/Omb+EHXwlLq+9lmXi6CESz7T7gly+Yt/ mE9Z9pErLR5YfHaW+CtIYle1xDZ+2FbIyLUMv1qvQN5hQRxmzYPp167coslRjqL4 MbMw2T9SNpLjP6SIow3tYvoYlAGSF6Y2ztw1JGbcfP05JYfKmBcpJeZuxdtAUl+C aExeYy98UY5Iu266EScMiSm4L3rVvPsAuJqKE9gOjyuM9Rz6NSuWc9P10l7cwCNM Ni5V6Jd/IKUHx48eZzwAUJMB/CMrvAfQdlze2HozfUc5YFBN -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org