$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/gH56vKHO_yffKgsPFSdFTVuOCCg.roa File: gH56vKHO_yffKgsPFSdFTVuOCCg.roa (raw, json) Hash identifier: cDRz1UOtrUIahkHjdyPnKRWSEBLK7aFRMdCVOtCKxJA= Subject key identifier: 80:7E:7A:BC:A1:CE:FF:27:DF:2A:0B:0F:15:27:45:4D:5B:8E:08:28 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DDC Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gH56vKHO_yffKgsPFSdFTVuOCCg.roa Signing time: Mon 26 Aug 2024 05:27:13 +0000 ROA not before: Mon 26 Aug 2024 05:27:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38845 IP address blocks: 140.136.0.0/16 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 01:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3548 (0xddc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=807E7ABCA1CEFF27DF2A0B0F1527454D5B8E0828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ee:19:0e:b2:f7:2c:76:3d:73:86:50:bd:75: 5b:6f:27:52:b3:32:78:89:59:ff:b2:58:0f:d6:8e: 59:ff:a6:73:e9:cc:59:ff:f9:be:1f:b9:38:61:bc: aa:48:9c:c2:64:7e:2b:dc:b8:7b:90:1b:ce:6a:7a: 26:9f:a3:14:e8:c0:9c:ba:b4:2d:3e:e2:8c:9c:0d: 71:23:39:5d:45:83:6b:8b:24:ee:0c:e8:05:83:48: 53:6a:ee:c8:48:3c:69:1c:01:04:c8:ec:af:bb:23: f3:f8:5a:50:32:5c:be:0a:1b:0e:69:a0:97:07:b4: b9:c9:a8:97:a7:6b:2d:dc:ef:22:7c:12:6c:f8:21: 81:c1:a1:ff:d2:04:22:49:e0:cc:bc:a9:e9:35:bc: 1e:1c:80:c1:50:e4:50:82:fc:a5:94:57:00:65:46: 25:fb:f5:f2:20:40:0b:8e:8a:bc:25:83:50:cd:0b: ac:9e:0a:f7:a8:34:58:89:98:aa:57:99:25:02:0a: 78:bb:85:bf:f2:1c:68:35:d2:d0:6f:55:60:be:c6: 4d:ca:09:e0:46:cb:b5:aa:31:2b:f9:8a:e6:3f:e6: 15:56:ca:c1:e6:b8:b7:f1:b9:ac:29:b1:cf:06:49: 8d:81:9a:a4:c4:52:8d:6b:3c:7c:56:58:61:28:76: e6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7E:7A:BC:A1:CE:FF:27:DF:2A:0B:0F:15:27:45:4D:5B:8E:08:28 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/gH56vKHO_yffKgsPFSdFTVuOCCg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.136.0.0/16 Signature Algorithm: sha256WithRSAEncryption 80:67:ee:90:23:82:8c:cb:ef:01:e4:9a:dd:60:a2:c6:c1:65: c5:90:a3:87:de:e9:8f:21:33:24:f8:75:6f:74:af:86:a5:8b: d2:61:15:7c:82:64:ec:46:a4:53:47:da:92:93:88:2f:4b:c3: 9d:5a:b0:26:74:5f:bd:2c:5e:5e:a5:7d:02:20:ea:44:26:09: da:a3:3b:67:8e:c9:92:dc:6e:7a:71:4d:33:da:68:b9:bb:e2: d1:d7:2a:d5:90:27:32:d0:8b:52:f1:2f:5d:6d:0c:da:a8:08: ee:b7:02:39:83:29:c1:29:84:98:12:c0:bc:12:67:fd:7d:86: 1e:32:f9:70:bb:a6:a4:7a:e4:f5:9a:fb:72:84:cd:2e:f3:71: 19:d0:b9:22:64:de:c7:7e:76:70:07:b2:ba:20:5e:ef:00:c9: 51:c1:fc:c8:1c:29:b0:63:ed:b8:c3:2c:dc:9f:df:e3:d5:d4: c4:f3:73:76:84:d0:61:7f:0d:d9:ae:20:9f:ef:10:8b:f0:b6: 6c:1b:83:1d:30:ef:1a:e8:fd:74:03:94:ed:76:18:d3:02:67: b3:a6:a8:66:9b:27:1a:f5:48:aa:bc:fa:ad:1a:f5:1e:34:86: ed:5c:fb:2a:79:c6:ff:3a:89:c5:89:2d:d4:7b:a3:4d:4b:be: aa:75:7e:dc -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDdwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwN0U3QUJDQTFDRUZG MjdERjJBMEIwRjE1Mjc0NTRENUI4RTA4MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDe7hkOsvcsdj1zhlC9dVtvJ1KzMniJWf+yWA/Wjln/pnPpzFn/ +b4fuThhvKpInMJkfivcuHuQG85qeiafoxTowJy6tC0+4oycDXEjOV1Fg2uLJO4M 6AWDSFNq7shIPGkcAQTI7K+7I/P4WlAyXL4KGw5poJcHtLnJqJenay3c7yJ8Emz4 IYHBof/SBCJJ4My8qek1vB4cgMFQ5FCC/KWUVwBlRiX79fIgQAuOirwlg1DNC6ye CveoNFiJmKpXmSUCCni7hb/yHGg10tBvVWC+xk3KCeBGy7WqMSv5iuY/5hVWysHm uLfxuawpsc8GSY2BmqTEUo1rPHxWWGEodubdAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUgH56vKHO/yffKgsPFSdFTVuOCCgwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9nSDU2dktIT195ZmZLZ3NQRlNk RlRWdU9DQ2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIgw DQYJKoZIhvcNAQELBQADggEBAIBn7pAjgozL7wHkmt1gosbBZcWQo4fe6Y8hMyT4 dW90r4ali9JhFXyCZOxGpFNH2pKTiC9Lw51asCZ0X70sXl6lfQIg6kQmCdqjO2eO yZLcbnpxTTPaaLm74tHXKtWQJzLQi1LxL11tDNqoCO63AjmDKcEphJgSwLwSZ/19 hh4y+XC7pqR65PWa+3KEzS7zcRnQuSJk3sd+dnAHsrogXu8AyVHB/MgcKbBj7bjD LNyf3+PV1MTzc3aE0GF/DdmuIJ/vEIvwtmwbgx0w7xro/XQDlO12GNMCZ7OmqGab Jxr1SKq8+q0a9R40hu1c+yp5xv86icWJLdR7o01Lvqp1ftw= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org