$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/X_ohQUnXXg08LaBm5BNYT4G5pqg.roa File: X_ohQUnXXg08LaBm5BNYT4G5pqg.roa (raw, json) Hash identifier: aKJ6/81tx1YbOcfuIYLYeP44pCCaJyCNAK5IOG4c+8k= Subject key identifier: 5F:FA:21:41:49:D7:5E:0D:3C:2D:A0:66:E4:13:58:4F:81:B9:A6:A8 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E62 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X_ohQUnXXg08LaBm5BNYT4G5pqg.roa Signing time: Mon 26 Aug 2024 05:27:23 +0000 ROA not before: Mon 26 Aug 2024 05:27:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 120.96.0.0/11 maxlen: 11 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3682 (0xe62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5FFA214149D75E0D3C2DA066E413584F81B9A6A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:37:97:a3:b8:30:8a:00:ce:6a:e0:2c:28:53: e9:a8:21:08:84:f8:dc:c4:04:47:53:2b:a3:e6:6a: 74:a2:cf:1f:99:eb:4d:a4:46:b8:34:37:ca:b8:cd: d7:04:6a:72:25:b0:1c:0a:05:9b:3e:a3:d1:86:8e: 21:39:fa:84:a2:74:f5:63:98:a5:d7:1d:64:7f:7a: 21:12:16:cb:14:af:63:6f:b9:d4:4e:2d:31:f6:54: 2e:bf:60:df:a8:56:b9:90:d7:7b:cf:7e:f5:59:82: 1e:42:22:ba:b4:bc:76:94:5c:f5:95:98:78:0a:95: de:c6:5c:d2:65:f0:20:32:c2:af:51:72:3f:d0:ef: 4c:a0:dc:a3:0c:10:fb:4a:ea:f8:7a:5b:6e:ea:b1: 94:00:e6:92:2b:6b:90:c2:9d:44:1d:52:26:0d:5f: a3:b3:91:74:a5:e7:13:cc:92:77:c6:4e:66:63:d2: 04:c0:ea:ab:12:aa:9c:58:ba:80:92:5d:1c:8c:fd: 39:39:6f:0a:4a:45:dc:c4:c1:73:fc:cb:77:db:6e: 3e:f7:b7:76:e0:53:a9:2d:74:43:3f:ee:d5:6e:48: b0:b2:35:86:49:1c:95:12:ef:b3:ed:c9:66:85:57: 47:ad:a4:a8:e6:bd:2f:96:05:c6:9e:c9:18:12:1a: 2b:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:FA:21:41:49:D7:5E:0D:3C:2D:A0:66:E4:13:58:4F:81:B9:A6:A8 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/X_ohQUnXXg08LaBm5BNYT4G5pqg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.96.0.0/11 Signature Algorithm: sha256WithRSAEncryption 33:96:80:87:4e:5c:63:99:ae:80:a7:2d:aa:f3:e0:92:e5:d1: 62:51:9f:0f:e6:4f:7b:02:45:c0:d7:14:5c:b1:8d:ca:17:79: 4a:d5:35:1a:4e:e5:11:db:ba:98:b9:9e:84:69:66:37:13:fe: 3f:dc:15:a5:34:8a:1c:28:63:91:3b:f4:79:6b:c3:27:59:d3: 3d:3e:1d:c3:02:8d:d6:5c:6f:f5:63:06:eb:67:30:43:fc:ea: d1:0c:0b:51:85:b6:6a:56:e4:85:fe:7a:11:46:27:9e:4c:76: ee:fe:04:e5:7d:60:54:ed:63:18:d6:69:60:6b:61:1d:20:e7: 49:f1:9d:d1:6e:0a:de:06:57:39:82:f3:45:12:d6:ce:d6:a2: aa:c0:48:bd:e6:5e:fe:b7:cf:87:95:75:08:85:18:35:b1:e4: a0:0e:77:a1:fc:4f:97:5a:8e:e1:8e:4a:b8:9b:4d:c3:4b:9c: 4b:21:f7:fb:12:50:da:53:0f:a7:18:b4:ab:0b:d9:ee:ce:5f: 67:66:8a:18:a7:0d:22:e8:eb:0a:42:c9:a3:24:f3:78:56:b5: c5:87:68:b6:a3:4b:4a:1f:f9:96:5c:13:e4:07:83:2d:7a:10: 7b:2e:01:74:3e:e7:c0:96:10:31:78:08:51:e0:30:9a:ff:34: ee:a4:dc:db -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGRkEyMTQxNDlENzVF MEQzQzJEQTA2NkU0MTM1ODRGODFCOUE2QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLN5ejuDCKAM5q4CwoU+moIQiE+NzEBEdTK6PmanSizx+Z602k Rrg0N8q4zdcEanIlsBwKBZs+o9GGjiE5+oSidPVjmKXXHWR/eiESFssUr2NvudRO LTH2VC6/YN+oVrmQ13vPfvVZgh5CIrq0vHaUXPWVmHgKld7GXNJl8CAywq9Rcj/Q 70yg3KMMEPtK6vh6W27qsZQA5pIra5DCnUQdUiYNX6OzkXSl5xPMknfGTmZj0gTA 6qsSqpxYuoCSXRyM/Tk5bwpKRdzEwXP8y3fbbj73t3bgU6ktdEM/7tVuSLCyNYZJ HJUS77PtyWaFV0etpKjmvS+WBcaeyRgSGiu9AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUX/ohQUnXXg08LaBm5BNYT4G5pqgwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9YX29oUVVuWFhnMDhMYUJtNUJO WVQ0RzVwcWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMFeGAw DQYJKoZIhvcNAQELBQADggEBADOWgIdOXGOZroCnLarz4JLl0WJRnw/mT3sCRcDX FFyxjcoXeUrVNRpO5RHbupi5noRpZjcT/j/cFaU0ihwoY5E79HlrwydZ0z0+HcMC jdZcb/VjButnMEP86tEMC1GFtmpW5IX+ehFGJ55Mdu7+BOV9YFTtYxjWaWBrYR0g 50nxndFuCt4GVzmC80US1s7WoqrASL3mXv63z4eVdQiFGDWx5KAOd6H8T5dajuGO SribTcNLnEsh9/sSUNpTD6cYtKsL2e7OX2dmihinDSLo6wpCyaMk83hWtcWHaLaj S0of+ZZcE+QHgy16EHsuAXQ+58CWEDF4CFHgMJr/NO6k3Ns= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:34 2024 by rpki-client on console-fra.rpki-client.org