$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/g1iAOYsee5Ccn15GJhywGPq0wjY.roa File: g1iAOYsee5Ccn15GJhywGPq0wjY.roa (raw, json) Hash identifier: qpfC1UCB/ZaqHmNXYqshoWIjOSU3zwZ31708zJ9aCWo= Subject key identifier: 83:58:80:39:8B:1E:7B:90:9C:9F:5E:46:26:1C:B0:18:FA:B4:C2:36 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DD9 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/g1iAOYsee5Ccn15GJhywGPq0wjY.roa Signing time: Mon 26 Aug 2024 05:27:12 +0000 ROA not before: Mon 26 Aug 2024 05:27:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 140.129.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 06:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3545 (0xdd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=835880398B1E7B909C9F5E46261CB018FAB4C236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:5e:44:ba:86:d1:1d:55:13:1e:66:8e:6d:99: b1:38:81:70:cd:e4:67:b0:b1:24:69:c4:35:da:5e: 40:d8:32:1a:cb:e5:16:41:f4:a5:8f:80:43:dd:fa: 1d:04:d4:a4:3d:38:39:04:b1:67:30:bf:b5:e2:16: ea:d1:78:7f:89:50:43:7f:05:35:11:08:23:4c:7b: 76:17:ce:a5:e7:fb:99:06:e1:19:d0:ae:b7:46:c3: 33:a4:40:66:69:d7:c9:d7:2e:dc:da:2b:e8:72:b5: fb:81:4b:bf:1e:cf:35:a2:c7:30:bb:e7:a7:39:b5: d1:b4:20:05:bc:68:8e:05:40:be:01:60:5c:14:ef: 56:e9:83:2f:33:14:0a:6e:c7:d8:ff:31:10:dc:94: 41:23:25:f2:e3:bc:0f:6b:6f:4d:c5:14:4d:68:e7: b1:e3:14:91:91:5c:f3:21:50:3b:44:28:c0:ec:77: 95:5e:7c:76:41:6f:06:c9:de:ad:f0:53:6a:76:23: eb:a9:44:0c:3a:77:4f:30:4c:7b:20:f4:8d:a3:71: 45:62:18:4f:fc:2f:c6:9e:9a:a3:5d:7f:0a:85:21: 98:9d:02:84:81:7b:b7:45:f7:ed:d5:6b:2d:ef:5e: 3d:29:9c:bc:5d:27:93:4b:12:bf:29:78:94:f8:d7: 5f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:58:80:39:8B:1E:7B:90:9C:9F:5E:46:26:1C:B0:18:FA:B4:C2:36 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/g1iAOYsee5Ccn15GJhywGPq0wjY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.129.52.0/22 Signature Algorithm: sha256WithRSAEncryption 81:79:dc:38:e9:65:5c:aa:63:50:24:7f:cb:10:6b:d0:dd:58: d4:6f:cd:41:1b:a7:69:8f:39:ff:bb:2a:82:83:53:91:b0:49: cb:23:95:fd:35:3b:64:01:f0:6c:fa:61:66:7b:94:a7:83:7f: 9f:05:46:c5:49:06:af:56:1f:e1:48:fe:77:f2:ee:a2:d5:eb: f5:ce:e0:12:b8:01:9f:cb:24:22:02:1c:d6:c1:31:36:5b:98: 91:4f:03:f4:31:1e:83:e2:07:4e:34:12:1d:e1:c5:08:38:fc: 9f:9f:8d:23:4c:fd:40:3f:90:7d:b1:f6:85:4f:66:ff:e7:77: 76:eb:44:f8:bc:26:24:25:8c:f3:e1:f5:86:e4:63:65:2d:42: 51:53:22:c9:31:c1:a6:62:0b:32:89:8c:74:af:dd:67:07:24: 7c:65:a1:b8:92:34:af:d2:76:7e:6a:9b:cf:af:9d:01:49:83: 32:54:84:b2:11:4b:3e:8e:21:93:fd:c0:2c:01:6c:ee:f7:c4: ec:29:f6:b9:83:0d:d2:47:98:1b:b6:fe:e6:5b:61:d1:a5:bc: 8f:de:eb:dd:8a:ad:e2:6a:17:54:5f:c1:02:a2:9f:ea:f0:a0: 00:b1:d3:d6:2b:3e:b9:ae:a1:99:17:13:40:3d:39:23:a3:c8: 09:05:63:b8 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDdkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgzNTg4MDM5OEIxRTdC OTA5QzlGNUU0NjI2MUNCMDE4RkFCNEMyMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3XkS6htEdVRMeZo5tmbE4gXDN5GewsSRpxDXaXkDYMhrL5RZB 9KWPgEPd+h0E1KQ9ODkEsWcwv7XiFurReH+JUEN/BTURCCNMe3YXzqXn+5kG4RnQ rrdGwzOkQGZp18nXLtzaK+hytfuBS78ezzWixzC756c5tdG0IAW8aI4FQL4BYFwU 71bpgy8zFApux9j/MRDclEEjJfLjvA9rb03FFE1o57HjFJGRXPMhUDtEKMDsd5Ve fHZBbwbJ3q3wU2p2I+upRAw6d08wTHsg9I2jcUViGE/8L8aemqNdfwqFIZidAoSB e7dF9+3Vay3vXj0pnLxdJ5NLEr8peJT4119fAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUg1iAOYsee5Ccn15GJhywGPq0wjYwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9nMWlBT1lzZWU1Q2NuMTVHSmh5 d0dQcTB3alkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCjIE0 MA0GCSqGSIb3DQEBCwUAA4IBAQCBedw46WVcqmNQJH/LEGvQ3VjUb81BG6dpjzn/ uyqCg1ORsEnLI5X9NTtkAfBs+mFme5Sng3+fBUbFSQavVh/hSP538u6i1ev1zuAS uAGfyyQiAhzWwTE2W5iRTwP0MR6D4gdONBId4cUIOPyfn40jTP1AP5B9sfaFT2b/ 53d260T4vCYkJYzz4fWG5GNlLUJRUyLJMcGmYgsyiYx0r91nByR8ZaG4kjSv0nZ+ apvPr50BSYMyVISyEUs+jiGT/cAsAWzu98TsKfa5gw3SR5gbtv7mW2HRpbyP3uvd iq3iahdUX8ECop/q8KAAsdPWKz65rqGZFxNAPTkjo8gJBWO4 -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org