$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XIrYe_LvhgWkptf8JuGPBN5VQ3k.roa File: XIrYe_LvhgWkptf8JuGPBN5VQ3k.roa (raw, json) Hash identifier: 2MzMkfglqaKo3uilj+PcpHpUU85mON3ZgLk5hMFr+kU= Subject key identifier: 5C:8A:D8:7B:F2:EF:86:05:A4:A6:D7:FC:26:E1:8F:04:DE:55:43:79 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DF8 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XIrYe_LvhgWkptf8JuGPBN5VQ3k.roa Signing time: Mon 26 Aug 2024 05:27:27 +0000 ROA not before: Mon 26 Aug 2024 05:27:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38844 IP address blocks: 140.122.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3576 (0xdf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5C8AD87BF2EF8605A4A6D7FC26E18F04DE554379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:0d:c9:6e:ca:02:fe:8f:73:f0:80:9a:c4:27: a3:f8:9f:63:86:84:34:ce:41:62:a5:0e:53:c9:b3: 73:3b:9d:c0:35:68:97:7e:a1:09:d8:67:5d:65:ef: 3d:f3:f0:2d:3e:ee:1f:b3:8e:e5:80:0b:5b:d0:bd: 0b:b2:94:ea:7d:64:65:53:65:62:19:2e:74:83:eb: b4:a8:ae:05:1c:24:74:5f:c6:06:5f:9c:d3:9a:f2: f2:52:41:35:3a:2b:91:27:86:d8:91:dd:75:13:90: f0:e2:f0:5b:d4:b4:bc:95:8a:60:c9:35:42:54:b1: 7f:aa:1f:f2:dd:5a:2b:0a:20:63:6f:29:01:fa:bd: f3:64:27:b4:85:b8:cc:df:61:54:1f:46:28:b1:22: 30:32:d5:3d:78:b8:1e:07:a2:c3:da:4c:20:94:76: d8:25:58:db:79:bd:cc:55:c0:d2:d2:6d:6b:17:5a: 1b:7a:4f:a2:bc:5d:8e:85:87:b0:9d:cb:56:9d:75: 5e:98:25:81:70:3f:84:23:d4:8c:43:06:c6:73:65: 0d:1e:17:1c:e3:24:92:82:2f:78:ce:3c:c3:15:34: e4:26:78:4f:74:39:f4:82:7a:f0:7a:30:20:22:b9: 4d:60:41:7b:fc:4a:46:7c:1f:cf:6f:88:8b:ed:d9: 7c:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:8A:D8:7B:F2:EF:86:05:A4:A6:D7:FC:26:E1:8F:04:DE:55:43:79 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XIrYe_LvhgWkptf8JuGPBN5VQ3k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.122.0.0/17 Signature Algorithm: sha256WithRSAEncryption 3c:50:70:e5:20:ac:ea:97:2b:ae:62:cc:1e:ca:34:59:30:82: 4b:3d:19:b2:1a:87:15:5b:6e:62:92:1f:c0:01:05:62:ca:d7: 19:37:38:02:82:c8:60:d5:15:2a:96:a4:d7:b2:e0:17:29:31: 78:0d:22:3c:bd:4e:36:a3:80:15:d6:9c:c0:28:4a:bb:e6:67: 2f:4e:79:ef:ce:0b:00:e5:61:ed:19:80:9d:ca:c4:ce:7d:a7: 15:de:7a:51:55:42:84:4e:49:56:4c:23:2f:e1:92:d3:75:a2: 7b:eb:0e:52:41:9a:f6:92:31:a7:4f:b3:91:18:d3:81:8f:b7: f4:c6:30:2b:d4:59:f4:03:58:da:ff:64:70:ac:c7:61:ee:a1: 11:95:55:bd:67:38:c6:b9:e9:70:d6:be:b7:5a:02:ab:20:55: 64:7f:06:37:a5:10:2d:18:60:44:fd:1b:e1:13:9f:6e:1a:7a: b3:de:60:87:0d:1e:33:9f:dc:4d:43:2b:b4:70:21:2d:49:2f: 5a:cb:2c:90:49:43:9e:07:2b:0c:2e:7d:f3:1d:7e:7b:f2:2e: fd:31:67:f1:d1:83:24:16:c1:9a:a1:0e:8c:27:a2:8b:bb:65: 5b:25:80:85:fe:a5:19:2f:22:2e:b7:c5:d3:54:c2:26:3e:59: 45:24:b3:4f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDOEFEODdCRjJFRjg2 MDVBNEE2RDdGQzI2RTE4RjA0REU1NTQzNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyDcluygL+j3PwgJrEJ6P4n2OGhDTOQWKlDlPJs3M7ncA1aJd+ oQnYZ11l7z3z8C0+7h+zjuWAC1vQvQuylOp9ZGVTZWIZLnSD67SorgUcJHRfxgZf nNOa8vJSQTU6K5EnhtiR3XUTkPDi8FvUtLyVimDJNUJUsX+qH/LdWisKIGNvKQH6 vfNkJ7SFuMzfYVQfRiixIjAy1T14uB4HosPaTCCUdtglWNt5vcxVwNLSbWsXWht6 T6K8XY6Fh7Cdy1addV6YJYFwP4Qj1IxDBsZzZQ0eFxzjJJKCL3jOPMMVNOQmeE90 OfSCevB6MCAiuU1gQXv8SkZ8H89viIvt2Xx3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUXIrYe/LvhgWkptf8JuGPBN5VQ3kwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9YSXJZZV9MdmhnV2twdGY4SnVH UEJONVZRM2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHjHoA MA0GCSqGSIb3DQEBCwUAA4IBAQA8UHDlIKzqlyuuYsweyjRZMIJLPRmyGocVW25i kh/AAQViytcZNzgCgshg1RUqlqTXsuAXKTF4DSI8vU42o4AV1pzAKEq75mcvTnnv zgsA5WHtGYCdysTOfacV3npRVUKETklWTCMv4ZLTdaJ76w5SQZr2kjGnT7ORGNOB j7f0xjAr1Fn0A1ja/2RwrMdh7qERlVW9ZzjGuelw1r63WgKrIFVkfwY3pRAtGGBE /RvhE59uGnqz3mCHDR4zn9xNQyu0cCEtSS9ayyyQSUOeBysMLn3zHX578i79MWfx 0YMkFsGaoQ6MJ6KLu2VbJYCF/qUZLyIut8XTVMImPllFJLNP -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:34 2024 by rpki-client on console-fra.rpki-client.org