$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa File: UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa (raw, json) Hash identifier: FB4GO+H7l23K5e7v64TK9yJmytFeKcyZeJhd/rrfbc0= Subject key identifier: 50:BF:A2:1D:CF:19:27:C3:3A:CB:47:32:75:D6:14:D3:3E:08:E7:2A Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DED Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa Signing time: Mon 26 Aug 2024 05:27:21 +0000 ROA not before: Mon 26 Aug 2024 05:27:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.112.0.0/12 maxlen: 12 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 06:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3565 (0xded) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=50BFA21DCF1927C33ACB473275D614D33E08E72A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9a:cc:0b:0e:c2:fb:b5:e7:e2:7d:a7:ea:8a: 26:00:a3:ed:d2:77:b9:ed:78:fa:40:9e:0a:d4:34: b0:39:bf:c5:8d:fe:02:43:f4:55:e6:de:5a:35:15: 9c:59:a6:86:12:f9:f4:41:ce:a9:4e:76:16:ce:a4: 87:fd:6c:8e:2c:f2:13:f6:7d:44:cf:f1:fa:c0:6a: 09:e5:48:69:4f:4e:30:a5:53:80:a7:96:94:d6:79: a2:ab:d6:57:c8:43:f0:0d:86:01:ac:1a:1b:2c:d2: 07:73:bd:5f:82:4d:54:8d:fc:9f:f4:36:7a:67:e8: 54:b0:d3:18:20:65:8b:ac:ef:dc:45:7d:19:b5:de: 08:b9:f3:5c:8f:6b:fa:da:36:d8:ba:c4:5f:0f:d7: c4:7f:b6:51:93:1a:fe:aa:a6:47:9e:9d:be:b9:7a: 37:b8:52:17:a0:c3:c1:da:58:9b:05:7b:af:03:ae: 45:77:cd:b0:bc:4c:bb:6b:80:df:33:8d:e2:40:31: dd:29:cd:df:d7:c6:2f:a7:af:9e:28:42:38:ca:de: a1:e7:e3:1a:8d:09:b3:43:88:35:d3:8a:59:a0:c9: af:2f:32:b7:d3:22:17:dd:00:b0:a9:3b:69:a8:7d: ad:2d:45:ad:f5:5e:c3:70:bd:26:16:66:ce:c3:7a: 2d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:BF:A2:1D:CF:19:27:C3:3A:CB:47:32:75:D6:14:D3:3E:08:E7:2A X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/UL-iHc8ZJ8M6y0cyddYU0z4I5yo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.112.0.0/12 Signature Algorithm: sha256WithRSAEncryption 9a:a7:74:df:3e:e5:e8:90:8b:02:3d:64:bd:ff:d9:cf:33:2e: e7:18:08:ea:60:c1:1c:3d:59:a8:a9:6a:13:c4:4c:85:71:a1: bb:4d:02:4d:79:05:44:b7:d6:66:49:44:a7:0d:9c:0a:2e:e9: f5:90:0a:c5:4e:c0:79:27:71:87:7f:1c:cd:ad:16:a0:38:58: a9:43:aa:94:fa:70:5f:60:eb:07:af:1d:ed:60:55:91:17:bc: ec:89:15:a6:3b:84:bb:6a:1a:96:24:43:8b:ed:cd:5b:b9:ba: 12:b7:58:ef:22:06:5c:b8:a4:49:42:4e:90:f4:0e:3f:e3:93: 44:ef:f8:b7:f3:f7:5e:f3:a1:0f:c9:30:43:41:84:4e:55:7c: c4:a3:c0:a8:65:03:5e:43:d1:ec:b8:86:fd:10:6a:d3:84:6c: c7:ad:bc:b1:29:7e:29:b6:d7:8a:81:ec:d2:2d:06:b5:ad:bd: 35:bb:0f:be:3a:04:d9:e9:c5:53:84:6e:99:2b:8f:f7:13:d8: 4c:25:67:21:94:6a:b8:74:17:b6:08:7c:a4:00:59:10:68:96: 2d:1c:96:42:30:26:e9:c1:4b:05:0a:fc:fd:82:39:af:c9:24: 96:d9:93:f0:3a:84:8d:c2:de:0d:00:9e:62:9a:c0:5d:08:28: e6:c6:35:8a -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwQkZBMjFEQ0YxOTI3 QzMzQUNCNDczMjc1RDYxNEQzM0UwOEU3MkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEmswLDsL7tefifafqiiYAo+3Sd7ntePpAngrUNLA5v8WN/gJD 9FXm3lo1FZxZpoYS+fRBzqlOdhbOpIf9bI4s8hP2fUTP8frAagnlSGlPTjClU4Cn lpTWeaKr1lfIQ/ANhgGsGhss0gdzvV+CTVSN/J/0Nnpn6FSw0xggZYus79xFfRm1 3gi581yPa/raNti6xF8P18R/tlGTGv6qpkeenb65eje4Uhegw8HaWJsFe68DrkV3 zbC8TLtrgN8zjeJAMd0pzd/Xxi+nr54oQjjK3qHn4xqNCbNDiDXTilmgya8vMrfT IhfdALCpO2mofa0tRa31XsNwvSYWZs7Dei1tAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUUL+iHc8ZJ8M6y0cyddYU0z4I5yowHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9VTC1pSGM4Wko4TTZ5MGN5ZGRZ VTB6NEk1eW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEjHAw DQYJKoZIhvcNAQELBQADggEBAJqndN8+5eiQiwI9ZL3/2c8zLucYCOpgwRw9Waip ahPETIVxobtNAk15BUS31mZJRKcNnAou6fWQCsVOwHkncYd/HM2tFqA4WKlDqpT6 cF9g6wevHe1gVZEXvOyJFaY7hLtqGpYkQ4vtzVu5uhK3WO8iBly4pElCTpD0Dj/j k0Tv+Lfz917zoQ/JMENBhE5VfMSjwKhlA15D0ey4hv0QatOEbMetvLEpfim214qB 7NItBrWtvTW7D746BNnpxVOEbpkrj/cT2EwlZyGUarh0F7YIfKQAWRBoli0clkIw JunBSwUK/P2COa/JJJbZk/A6hI3C3g0AnmKawF0IKObGNYo= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org