$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/jyr_n-M2eH8b7LuNQkKGYjumagk.roa File: jyr_n-M2eH8b7LuNQkKGYjumagk.roa (raw, json) Hash identifier: Vq0EdlRXHqVgmaeJEpiCccFCaKiCYmprHKGWwg7VzEU= Subject key identifier: 8F:2A:FF:9F:E3:36:78:7F:1B:EC:BB:8D:42:42:86:62:3B:A6:6A:09 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DDE Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jyr_n-M2eH8b7LuNQkKGYjumagk.roa Signing time: Mon 26 Aug 2024 05:27:14 +0000 ROA not before: Mon 26 Aug 2024 05:27:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9916 IP address blocks: 140.129.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 01:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3550 (0xdde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F2AFF9FE336787F1BECBB8D424286623BA66A09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:87:a6:cd:45:7f:c3:a2:68:3a:90:79:c1:71: 7b:fd:bf:ed:3d:d8:68:94:0e:43:3a:3a:2c:01:19: 58:41:54:24:bf:84:96:48:cb:f1:5c:2e:68:ca:ba: b6:49:75:df:2d:c1:c0:76:7a:30:c3:5f:8c:d9:89: d5:a9:36:5f:1f:f3:87:97:a8:57:7b:f6:df:ef:3f: 28:cb:9b:2e:c0:3a:cd:04:86:9c:ff:f0:b1:91:40: 30:bb:51:e0:57:88:94:01:b0:fb:56:d4:ee:76:d4: 6f:86:23:66:7f:7c:c1:47:2e:b8:9f:96:bd:67:10: d5:8b:b9:99:8f:17:a0:31:c5:46:0d:e0:2a:bc:cb: c5:d7:30:48:88:56:b2:cf:ff:cb:45:ae:d8:21:49: 5b:e4:30:be:bd:cf:9c:d5:e8:9c:87:e8:bf:92:5a: d2:d6:70:2f:a5:7d:53:6e:aa:c0:ea:65:55:d6:3e: 7a:57:c6:c9:ff:8a:02:ee:23:bf:33:a4:d3:e4:2c: c5:84:e4:61:e5:99:fc:e6:bf:92:bb:6b:a7:f9:44: 62:29:a8:37:84:28:e9:94:20:b9:2d:2a:91:14:5a: 43:d1:f8:37:f9:46:07:88:13:81:06:be:f4:95:4c: 03:6c:8a:6a:99:68:b1:23:95:b3:ab:6b:41:7d:c5: 0d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:2A:FF:9F:E3:36:78:7F:1B:EC:BB:8D:42:42:86:62:3B:A6:6A:09 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/jyr_n-M2eH8b7LuNQkKGYjumagk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.129.56.0/21 Signature Algorithm: sha256WithRSAEncryption 80:5c:0f:1c:b8:91:75:ad:6a:db:0f:dc:93:28:16:a3:2a:9f: 32:7c:a1:64:4c:3a:09:bd:4c:67:82:8c:9e:a9:d3:8c:52:7e: 8a:6e:1c:1a:85:2f:f5:ab:e0:62:26:f4:6d:36:ec:29:d1:0f: d6:e7:6a:58:a4:df:3d:4d:3f:23:cd:13:5f:78:ed:94:2c:3d: 0a:6a:e4:8f:a6:b1:18:11:3e:53:02:4d:a1:e1:7c:6c:19:aa: 69:c9:69:74:8c:60:94:d1:2b:1a:70:8f:f3:c3:07:8d:cd:0e: 4a:4f:e0:ef:a3:e0:fa:ac:3c:59:51:84:21:17:d7:5a:38:1f: 81:ab:5c:bd:e5:42:99:52:c7:9b:b0:12:55:22:a1:54:c0:a8: 72:49:15:8c:7d:57:db:1b:13:4e:f5:45:75:1d:16:5b:0d:3f: 95:46:b9:4f:f8:97:4b:b6:b7:9b:0c:48:85:42:bc:3d:c0:d7: b6:f4:fb:51:93:b5:50:4c:3c:7c:da:ce:c9:18:2d:bb:13:2a: e7:8c:b8:99:ff:78:02:b4:60:54:ae:82:cc:f7:85:73:3a:53: a3:a8:d5:5b:b9:de:29:9d:2f:ed:89:cb:d4:77:81:b7:20:dc: ec:86:28:50:5a:e8:88:19:33:eb:56:10:8a:66:dc:e1:b5:fd: 9c:37:59:89 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDd4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGMkFGRjlGRTMzNjc4 N0YxQkVDQkI4RDQyNDI4NjYyM0JBNjZBMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxh6bNRX/Domg6kHnBcXv9v+092GiUDkM6OiwBGVhBVCS/hJZI y/FcLmjKurZJdd8twcB2ejDDX4zZidWpNl8f84eXqFd79t/vPyjLmy7AOs0Ehpz/ 8LGRQDC7UeBXiJQBsPtW1O521G+GI2Z/fMFHLriflr1nENWLuZmPF6AxxUYN4Cq8 y8XXMEiIVrLP/8tFrtghSVvkML69z5zV6JyH6L+SWtLWcC+lfVNuqsDqZVXWPnpX xsn/igLuI78zpNPkLMWE5GHlmfzmv5K7a6f5RGIpqDeEKOmUILktKpEUWkPR+Df5 RgeIE4EGvvSVTANsimqZaLEjlbOra0F9xQ0nAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUjyr/n+M2eH8b7LuNQkKGYjumagkwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9qeXJfbi1NMmVIOGI3THVOUWtL R1lqdW1hZ2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDjIE4 MA0GCSqGSIb3DQEBCwUAA4IBAQCAXA8cuJF1rWrbD9yTKBajKp8yfKFkTDoJvUxn goyeqdOMUn6KbhwahS/1q+BiJvRtNuwp0Q/W52pYpN89TT8jzRNfeO2ULD0KauSP prEYET5TAk2h4XxsGappyWl0jGCU0SsacI/zwweNzQ5KT+Dvo+D6rDxZUYQhF9da OB+Bq1y95UKZUsebsBJVIqFUwKhySRWMfVfbGxNO9UV1HRZbDT+VRrlP+JdLtreb DEiFQrw9wNe29PtRk7VQTDx82s7JGC27EyrnjLiZ/3gCtGBUroLM94VzOlOjqNVb ud4pnS/ticvUd4G3INzshihQWuiIGTPrVhCKZtzhtf2cN1mJ -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org