$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/REKEBmGCIkc6TAWmwspnJlCikk4.roa File: REKEBmGCIkc6TAWmwspnJlCikk4.roa (raw, json) Hash identifier: qUVLW1j9Olm7UsWW5TbVN4ASjYuGkT5hef0/GWCYjFk= Subject key identifier: 44:42:84:06:61:82:22:47:3A:4C:05:A6:C2:CA:67:26:50:A2:92:4E Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DE7 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/REKEBmGCIkc6TAWmwspnJlCikk4.roa Signing time: Mon 26 Aug 2024 05:27:18 +0000 ROA not before: Mon 26 Aug 2024 05:27:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 192.83.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3559 (0xde7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=44428406618222473A4C05A6C2CA672650A2924E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:82:f9:c5:9b:b8:f9:02:fc:06:00:f3:69:7f: e8:83:49:8e:79:33:7e:ff:75:46:e5:38:17:4d:00: 97:1e:e3:50:27:b9:1a:c7:f3:ca:ee:9b:c9:3a:ef: 11:a4:cf:01:3c:74:20:cc:7a:66:68:84:f2:9d:48: 50:57:eb:fa:c4:84:90:2c:b4:1a:41:a5:fb:84:7f: cf:18:e5:5b:18:b8:56:c2:5b:c2:e9:eb:0b:aa:e0: 5e:c0:c7:7e:e8:4e:be:b6:a9:be:c1:a4:02:64:b0: c4:00:17:5f:37:c6:a5:df:9d:56:0f:bd:81:30:da: 76:f4:c3:76:df:ba:87:f5:01:76:0a:e1:d7:8e:78: 8b:c0:8d:fc:6e:eb:23:a5:cb:00:59:d3:90:ca:d9: 07:9b:2b:81:88:6d:f5:da:dd:e7:4b:92:9e:e9:4d: 4a:1f:3c:26:f1:8d:95:d7:25:63:d3:ea:50:20:6c: 53:53:e5:60:c3:0a:fd:84:4e:01:89:a7:ef:5a:10: a0:fa:dc:c3:5a:df:10:7b:61:75:78:8e:71:19:a3: 13:85:b4:2c:9f:3d:ce:f0:7c:27:5e:20:25:a5:f4: 21:7c:bb:5f:b6:f4:12:44:43:6f:f1:7b:29:ca:90: cb:3b:5e:e7:6e:2d:04:a0:a8:69:de:9a:e3:87:b9: 5c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:42:84:06:61:82:22:47:3A:4C:05:A6:C2:CA:67:26:50:A2:92:4E X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/REKEBmGCIkc6TAWmwspnJlCikk4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.192.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:72:0a:f6:39:69:28:ee:98:3e:e1:c4:43:28:70:1e:1f:53: 9b:88:7a:33:d7:ae:07:dd:6f:2a:72:b3:03:20:18:9f:c5:44: 56:e9:f3:0c:42:85:45:36:18:11:77:34:df:68:21:83:ff:28: b1:76:9d:4f:0b:f4:04:70:b2:37:4a:ab:5d:c3:e3:1d:ec:f0: f3:a5:80:4d:b3:73:90:bb:cd:cd:77:9a:9d:de:df:1a:ee:43: a9:2f:6e:30:3f:96:7d:f0:0a:1d:04:b0:b7:64:53:3a:f5:f4: 91:0a:99:d9:65:e4:9b:58:c3:9a:a1:02:da:ee:08:d7:62:ea: 88:fb:95:9a:e2:42:47:ae:a9:88:f5:a4:2c:45:5c:86:96:ca: c9:60:43:71:69:69:bb:0e:a5:16:5c:bb:89:99:0d:66:e3:bd: e1:d6:94:ba:fb:d1:b3:59:6f:65:c5:11:d2:ab:99:65:c3:4a: 28:44:c2:1f:84:ef:de:8e:44:09:76:51:f3:fa:b1:e7:cc:0c: a5:9a:c7:73:c9:2e:80:04:96:68:be:9e:5e:6a:be:57:ba:f7: d4:2c:21:37:dd:38:13:a8:34:c5:92:2b:6a:78:b7:5d:18:08: 4d:f6:59:98:8d:3f:38:eb:e0:cf:34:e8:6f:6e:0c:8e:cc:a5: 28:a4:3e:8d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0NDI4NDA2NjE4MjIy NDczQTRDMDVBNkMyQ0E2NzI2NTBBMjkyNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDgvnFm7j5AvwGAPNpf+iDSY55M37/dUblOBdNAJce41AnuRrH 88rum8k67xGkzwE8dCDMemZohPKdSFBX6/rEhJAstBpBpfuEf88Y5VsYuFbCW8Lp 6wuq4F7Ax37oTr62qb7BpAJksMQAF183xqXfnVYPvYEw2nb0w3bfuof1AXYK4deO eIvAjfxu6yOlywBZ05DK2QebK4GIbfXa3edLkp7pTUofPCbxjZXXJWPT6lAgbFNT 5WDDCv2ETgGJp+9aEKD63MNa3xB7YXV4jnEZoxOFtCyfPc7wfCdeICWl9CF8u1+2 9BJEQ2/xeynKkMs7XuduLQSgqGnemuOHuVx1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUREKEBmGCIkc6TAWmwspnJlCikk4wHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9SRUtFQm1HQ0lrYzZUQVdtd3Nw bkpsQ2lrazQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCwFPA MA0GCSqGSIb3DQEBCwUAA4IBAQALcgr2OWko7pg+4cRDKHAeH1ObiHoz164H3W8q crMDIBifxURW6fMMQoVFNhgRdzTfaCGD/yixdp1PC/QEcLI3Sqtdw+Md7PDzpYBN s3OQu83Nd5qd3t8a7kOpL24wP5Z98AodBLC3ZFM69fSRCpnZZeSbWMOaoQLa7gjX YuqI+5Wa4kJHrqmI9aQsRVyGlsrJYENxaWm7DqUWXLuJmQ1m473h1pS6+9GzWW9l xRHSq5llw0ooRMIfhO/ejkQJdlHz+rHnzAylmsdzyS6ABJZovp5ear5XuvfULCE3 3TgTqDTFkitqeLddGAhN9lmYjT846+DPNOhvbgyOzKUopD6N -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org