$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/dmlcw3CjhK8pzlpMJHcDnFG5rug.roa File: dmlcw3CjhK8pzlpMJHcDnFG5rug.roa (raw, json) Hash identifier: 3fSpiY1rj33HVrn+ocGtdzmoRLmnwWtorQyH5MAnBRg= Subject key identifier: 76:69:5C:C3:70:A3:84:AF:29:CE:5A:4C:24:77:03:9C:51:B9:AE:E8 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E45 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dmlcw3CjhK8pzlpMJHcDnFG5rug.roa Signing time: Mon 26 Aug 2024 05:27:10 +0000 ROA not before: Mon 26 Aug 2024 05:27:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18185 IP address blocks: 120.117.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3653 (0xe45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=76695CC370A384AF29CE5A4C2477039C51B9AEE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c9:0c:57:f3:d2:60:85:76:9c:f7:11:6d:17: 7c:f2:05:0e:57:f7:c5:a3:6d:69:75:bf:21:1c:b1: 6c:ae:db:b2:f2:b9:c6:17:04:1d:2a:a1:c0:13:7d: c8:51:49:5b:31:58:4f:f3:fe:83:be:a2:ab:5b:71: 6b:b2:c0:89:24:a1:cd:fe:9d:d2:ee:a8:e3:6d:48: b1:0d:b0:20:cb:23:a5:0e:26:2a:99:f5:8f:97:36: 5f:28:41:27:f0:65:28:1d:cf:a3:a9:96:50:03:70: c8:a1:c0:e5:cf:e0:8a:f1:5e:7d:e0:26:26:f7:f9: de:0a:91:19:8e:79:32:7f:50:ef:59:f5:fa:b4:fc: c4:92:f0:9f:8a:be:bc:9d:da:ee:ff:e5:f5:bb:f6: c0:e1:ec:9e:c4:6c:29:8c:f9:24:a3:04:36:6f:ac: 4c:6d:e8:2f:92:54:7e:11:46:27:b8:dc:25:91:0f: 1c:fc:a1:4c:5f:d4:73:5e:9d:af:1e:e2:22:b5:62: 0e:9c:65:f0:f6:3a:62:75:99:90:e6:82:e4:d6:71: 63:06:de:b3:a8:11:15:63:4b:31:ac:04:f8:b2:be: af:9e:fd:95:ff:79:57:36:d0:a5:b7:b7:ca:10:59: fa:7a:2d:d1:89:e8:d2:c3:51:b5:3d:84:92:84:ef: d3:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:69:5C:C3:70:A3:84:AF:29:CE:5A:4C:24:77:03:9C:51:B9:AE:E8 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/dmlcw3CjhK8pzlpMJHcDnFG5rug.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 120.117.4.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:43:18:52:18:18:06:be:58:4d:99:72:89:9d:f3:3f:73:b3: 72:c4:b4:8f:f8:a1:b7:f7:71:f0:91:cc:d5:61:e9:76:0d:b1: 42:7c:ad:8b:5e:56:cb:c5:d2:14:68:1a:ec:ea:f2:43:4e:35: 30:d7:43:b1:68:3f:bb:1d:ad:d6:ad:73:9c:0a:6f:95:12:3a: 0d:21:d0:c4:77:5c:61:cd:78:bb:fc:2d:f1:81:8a:c2:50:e6: 1a:aa:d7:05:1f:df:38:5c:27:55:25:e7:2e:78:eb:28:16:55: 89:cb:00:e8:51:bb:f9:e9:09:d3:56:ed:16:45:25:96:99:e6: 00:be:38:91:59:98:12:87:a6:e6:d3:a7:96:11:70:d3:f1:75: 35:4c:3d:d5:ea:f9:c0:a2:7f:68:2e:07:47:72:dd:5a:f8:89: 6d:be:12:4c:2b:3a:90:05:79:04:d5:ac:84:57:f1:0f:60:b8: e9:6a:d9:51:8d:c7:96:a8:c8:63:62:68:6b:4c:73:ea:3d:8e: 38:5c:22:18:ed:db:7b:d2:3a:cd:97:d3:07:4a:7f:de:e4:de: 0d:02:ec:bc:5a:2d:a1:e6:fe:26:f6:85:4c:ee:a8:94:67:3c: ad:7c:3f:51:a8:1d:69:bc:bd:aa:e3:d4:a5:75:d9:04:c6:e0: de:cb:3e:5f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDkUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2Njk1Q0MzNzBBMzg0 QUYyOUNFNUE0QzI0NzcwMzlDNTFCOUFFRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmyQxX89JghXac9xFtF3zyBQ5X98WjbWl1vyEcsWyu27LyucYX BB0qocATfchRSVsxWE/z/oO+oqtbcWuywIkkoc3+ndLuqONtSLENsCDLI6UOJiqZ 9Y+XNl8oQSfwZSgdz6OpllADcMihwOXP4IrxXn3gJib3+d4KkRmOeTJ/UO9Z9fq0 /MSS8J+Kvryd2u7/5fW79sDh7J7EbCmM+SSjBDZvrExt6C+SVH4RRie43CWRDxz8 oUxf1HNena8e4iK1Yg6cZfD2OmJ1mZDmguTWcWMG3rOoERVjSzGsBPiyvq+e/ZX/ eVc20KW3t8oQWfp6LdGJ6NLDUbU9hJKE79O5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUdmlcw3CjhK8pzlpMJHcDnFG5rugwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9kbWxjdzNDamhLOHB6bHBNSkhj RG5GRzVydWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAeHUE MA0GCSqGSIb3DQEBCwUAA4IBAQALQxhSGBgGvlhNmXKJnfM/c7NyxLSP+KG393Hw kczVYel2DbFCfK2LXlbLxdIUaBrs6vJDTjUw10OxaD+7Ha3WrXOcCm+VEjoNIdDE d1xhzXi7/C3xgYrCUOYaqtcFH984XCdVJecueOsoFlWJywDoUbv56QnTVu0WRSWW meYAvjiRWZgSh6bm06eWEXDT8XU1TD3V6vnAon9oLgdHct1a+IltvhJMKzqQBXkE 1ayEV/EPYLjpatlRjceWqMhjYmhrTHPqPY44XCIY7dt70jrNl9MHSn/e5N4NAuy8 Wi2h5v4m9oVM7qiUZzytfD9RqB1pvL2q49SlddkExuDeyz5f -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org