$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/a_myp3uGL31PUw1wlJV5sPnRpjI.roa File: a_myp3uGL31PUw1wlJV5sPnRpjI.roa (raw, json) Hash identifier: zyXHG+/yrRGxjlc8BRmx2K7n/lRoshRowC/vbMvwfMo= Subject key identifier: 6B:F9:B2:A7:7B:86:2F:7D:4F:53:0D:70:94:95:79:B0:F9:D1:A6:32 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E64 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a_myp3uGL31PUw1wlJV5sPnRpjI.roa Signing time: Mon 26 Aug 2024 05:27:24 +0000 ROA not before: Mon 26 Aug 2024 05:27:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38844 IP address blocks: 203.68.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3684 (0xe64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6BF9B2A77B862F7D4F530D70949579B0F9D1A632 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:7a:cc:7d:ad:3e:e5:ce:48:b9:cb:68:16:0c: 20:00:cf:9c:f6:e2:86:9c:36:30:95:c0:17:d0:b6: c5:c2:a8:10:b4:2b:46:66:a6:50:ef:1d:2b:4a:ec: 87:53:80:c6:ae:df:77:ce:12:85:4d:48:47:a7:8b: 1f:36:21:58:2c:2e:2b:13:39:21:72:d5:8d:65:24: 9d:06:e6:58:51:2a:97:26:bc:71:ae:2c:54:4e:35: aa:55:fa:17:25:cc:c1:8e:4c:27:c2:5c:fb:86:23: 74:c0:41:d1:b4:b5:14:49:87:07:67:cd:39:03:ff: 64:78:08:23:a5:00:8d:07:cb:a2:13:e2:c7:59:71: 0a:0e:7d:ab:35:95:67:5b:6b:ed:b8:05:0c:c7:85: c5:69:19:d2:80:a2:7e:67:78:82:c7:0a:ab:1d:cc: cd:aa:51:94:6e:50:c6:93:82:21:13:84:d6:84:ff: ee:8f:66:33:00:11:dd:c9:04:3d:50:32:ac:2e:22: 5a:7e:81:99:af:d0:6f:93:bd:47:fe:3a:da:76:b6: 24:53:42:1a:02:d4:89:7d:b9:9a:dd:9a:74:2a:5f: ff:6b:79:77:38:9e:ab:f4:3b:bc:d5:7e:95:b5:1d: ec:dc:c6:e0:66:a3:14:3c:94:8d:b9:0c:54:01:23: 36:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F9:B2:A7:7B:86:2F:7D:4F:53:0D:70:94:95:79:B0:F9:D1:A6:32 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/a_myp3uGL31PUw1wlJV5sPnRpjI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.68.168.0/24 Signature Algorithm: sha256WithRSAEncryption 14:be:78:45:52:4b:c6:90:40:cd:92:2b:c7:b9:76:1f:e7:91: a6:3b:fb:03:12:d6:73:e9:0d:a8:95:f7:0f:7b:fa:3e:c1:10: c9:41:8a:a0:9c:30:08:93:95:e9:c3:fa:74:92:6a:a1:e2:1a: 64:bf:78:82:b9:c1:22:de:09:e1:82:47:1b:b0:73:18:9c:8e: ec:8d:42:a2:67:1d:c1:72:65:e0:d9:a5:8f:41:21:bf:11:7d: 64:09:a8:79:83:2f:4d:98:75:64:9d:89:2e:2a:9a:ce:8f:c4: ab:b2:c7:ac:92:ad:40:d6:6e:9e:26:d7:1f:68:ad:d0:93:2f: ff:69:30:80:de:28:9b:17:7c:20:c1:d9:0d:47:5a:d3:c1:79: 4b:42:96:e7:7d:10:f0:a2:eb:49:8d:85:0f:22:1c:b5:b1:2a: 8a:d3:8e:59:f4:44:88:54:8c:9b:93:66:61:8c:7d:4f:2f:ea: 62:0b:c6:43:e5:29:fd:14:ef:e1:87:f1:e9:4b:06:a3:2e:fc: f1:ad:9c:70:5d:5e:49:bc:59:dd:8d:46:9f:f3:f9:a6:07:22: e5:ca:ef:a8:12:24:9d:6c:e7:67:94:33:40:ba:72:69:6b:09: 99:bd:91:c2:54:04:17:4e:97:ca:51:d0:2a:32:e2:1f:1e:df: 2e:db:09:a3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCRjlCMkE3N0I4NjJG N0Q0RjUzMEQ3MDk0OTU3OUIwRjlEMUE2MzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCUesx9rT7lzki5y2gWDCAAz5z24oacNjCVwBfQtsXCqBC0K0Zm plDvHStK7IdTgMau33fOEoVNSEenix82IVgsLisTOSFy1Y1lJJ0G5lhRKpcmvHGu LFRONapV+hclzMGOTCfCXPuGI3TAQdG0tRRJhwdnzTkD/2R4CCOlAI0Hy6IT4sdZ cQoOfas1lWdba+24BQzHhcVpGdKAon5neILHCqsdzM2qUZRuUMaTgiEThNaE/+6P ZjMAEd3JBD1QMqwuIlp+gZmv0G+TvUf+Otp2tiRTQhoC1Il9uZrdmnQqX/9reXc4 nqv0O7zVfpW1HezcxuBmoxQ8lI25DFQBIzalAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUa/myp3uGL31PUw1wlJV5sPnRpjIwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9hX215cDN1R0wzMVBVdzF3bEpW NXNQblJwakkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0So MA0GCSqGSIb3DQEBCwUAA4IBAQAUvnhFUkvGkEDNkivHuXYf55GmO/sDEtZz6Q2o lfcPe/o+wRDJQYqgnDAIk5Xpw/p0kmqh4hpkv3iCucEi3gnhgkcbsHMYnI7sjUKi Zx3BcmXg2aWPQSG/EX1kCah5gy9NmHVknYkuKprOj8Srsseskq1A1m6eJtcfaK3Q ky//aTCA3iibF3wgwdkNR1rTwXlLQpbnfRDwoutJjYUPIhy1sSqK045Z9ESIVIyb k2ZhjH1PL+piC8ZD5Sn9FO/hh/HpSwajLvzxrZxwXV5JvFndjUaf8/mmByLlyu+o EiSdbOdnlDNAunJpawmZvZHCVAQXTpfKUdAqMuIfHt8u2wmj -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org