$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/c7R_-gQMM0Tymiy8lVGNJyv-Qsk.roa File: c7R_-gQMM0Tymiy8lVGNJyv-Qsk.roa (raw, json) Hash identifier: 6ohnzdazGPB4lpG1+d6iNWB0N7FcUt1ROPCsUiy6hxY= Subject key identifier: 73:B4:7F:FA:04:0C:33:44:F2:9A:2C:BC:95:51:8D:27:2B:FE:42:C9 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DF2 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/c7R_-gQMM0Tymiy8lVGNJyv-Qsk.roa Signing time: Mon 26 Aug 2024 05:27:24 +0000 ROA not before: Mon 26 Aug 2024 05:27:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 192.83.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3570 (0xdf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=73B47FFA040C3344F29A2CBC95518D272BFE42C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:26:f4:ab:98:d7:f0:6b:c6:9c:23:3a:02:29: 70:01:62:99:63:d3:10:5d:7b:36:38:fd:87:67:a1: cf:68:f5:fe:36:09:40:7c:c5:1b:49:09:a0:25:05: 87:b1:21:f5:32:07:5f:91:fa:84:92:83:f1:5a:c3: 5f:7b:30:08:3a:d8:4b:f3:71:76:74:d4:77:69:b7: ac:5c:f5:56:33:1f:51:98:22:d5:9f:08:e3:10:c5: e8:71:73:0e:eb:7a:d9:45:8f:26:bc:07:f6:03:43: 74:6f:b4:21:fe:61:f7:ac:6e:76:e2:02:3f:b2:7b: 1d:ec:19:f8:22:95:6f:2f:74:ce:03:47:29:65:e6: 9a:a2:8d:bd:bd:42:08:6c:22:e6:68:0b:da:8f:eb: bb:a4:50:b6:95:d4:87:38:f0:8c:84:59:d3:b8:42: b9:d8:5c:ca:0c:4f:d1:74:6f:a0:68:da:4c:a7:2f: 89:4c:7b:02:3b:15:06:fe:2c:a7:96:06:d5:c8:c4: 3f:0b:3d:a6:b6:28:9a:2e:f1:41:f1:f0:e8:fe:f2: b6:5f:7a:0d:eb:eb:47:bd:ec:06:bd:99:3c:8a:66: df:7c:b9:6e:e1:11:3a:ae:a2:d6:5d:c7:7b:26:b7: 08:59:50:73:e7:43:39:2c:22:6d:8a:4e:f1:6d:9c: 8c:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:B4:7F:FA:04:0C:33:44:F2:9A:2C:BC:95:51:8D:27:2B:FE:42:C9 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/c7R_-gQMM0Tymiy8lVGNJyv-Qsk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.83.179.0/24 Signature Algorithm: sha256WithRSAEncryption 56:c9:e9:49:a4:92:48:78:22:70:bf:0f:e1:31:47:8d:aa:a0: f8:a8:26:fe:cf:12:7e:29:eb:ac:df:f6:7a:7f:09:6f:7d:49: 10:c0:64:da:66:13:c6:5e:c0:d9:fd:7e:39:5e:ac:bc:fa:f8: 8e:94:99:63:e9:37:73:f6:59:56:73:aa:50:18:5f:e5:dc:e6: 8b:63:30:0d:b2:aa:11:1f:34:65:8c:de:9b:fd:5d:fa:a0:e8: 3f:1a:cb:41:e7:99:61:2c:31:7a:30:d0:0e:a5:7a:c6:4f:13: 32:30:dc:27:08:24:24:48:11:bc:53:db:33:7d:0e:7e:66:92: 3f:e0:dd:68:a1:28:63:19:a5:15:32:bb:f2:87:5d:8c:aa:63: 39:cf:1f:83:13:bd:14:3a:62:cc:8f:06:99:2d:fa:30:30:87: 74:ef:52:f1:9c:94:00:22:9f:42:97:03:7a:4f:47:2b:bd:88: 5b:66:d6:8c:9b:3f:ca:91:0c:17:0a:6a:20:57:f9:d5:0f:4e: de:55:e8:22:c1:08:17:3e:4c:f0:0f:1a:37:b7:da:6f:8b:95: 9a:da:f2:9f:73:84:6a:fa:52:fc:81:5e:43:c5:5f:d0:2d:54: 76:db:1e:03:57:9f:65:32:fe:d6:6a:8f:65:61:09:78:8b:e3: 6c:f3:54:7b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDfIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczQjQ3RkZBMDQwQzMz NDRGMjlBMkNCQzk1NTE4RDI3MkJGRTQyQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaJvSrmNfwa8acIzoCKXABYplj0xBdezY4/Ydnoc9o9f42CUB8 xRtJCaAlBYexIfUyB1+R+oSSg/Faw197MAg62EvzcXZ01Hdpt6xc9VYzH1GYItWf COMQxehxcw7retlFjya8B/YDQ3RvtCH+YfesbnbiAj+yex3sGfgilW8vdM4DRyll 5pqijb29QghsIuZoC9qP67ukULaV1Ic48IyEWdO4QrnYXMoMT9F0b6Bo2kynL4lM ewI7FQb+LKeWBtXIxD8LPaa2KJou8UHx8Oj+8rZfeg3r60e97Aa9mTyKZt98uW7h ETquotZdx3smtwhZUHPnQzksIm2KTvFtnIzNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUc7R/+gQMM0Tymiy8lVGNJyv+QskwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9jN1JfLWdRTU0wVHltaXk4bFZH Tkp5di1Rc2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwFOz MA0GCSqGSIb3DQEBCwUAA4IBAQBWyelJpJJIeCJwvw/hMUeNqqD4qCb+zxJ+Keus 3/Z6fwlvfUkQwGTaZhPGXsDZ/X45Xqy8+viOlJlj6Tdz9llWc6pQGF/l3OaLYzAN sqoRHzRljN6b/V36oOg/GstB55lhLDF6MNAOpXrGTxMyMNwnCCQkSBG8U9szfQ5+ ZpI/4N1ooShjGaUVMrvyh12MqmM5zx+DE70UOmLMjwaZLfowMId071LxnJQAIp9C lwN6T0crvYhbZtaMmz/KkQwXCmogV/nVD07eVegiwQgXPkzwDxo3t9pvi5Wa2vKf c4Rq+lL8gV5DxV/QLVR22x4DV59lMv7Wao9lYQl4i+Ns81R7 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org