$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/l2tDURp2k15M1LJfv_8eq8uWJVw.roa File: l2tDURp2k15M1LJfv_8eq8uWJVw.roa (raw, json) Hash identifier: uaLr2OmcfxObPqNkpNJ74OAsCXTYYMLtlC+GNE6LAEo= Subject key identifier: 97:6B:43:51:1A:76:93:5E:4C:D4:B2:5F:BF:FF:1E:AB:CB:96:25:5C Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E5F Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/l2tDURp2k15M1LJfv_8eq8uWJVw.roa Signing time: Mon 26 Aug 2024 05:27:20 +0000 ROA not before: Mon 26 Aug 2024 05:27:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 210.243.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3679 (0xe5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=976B43511A76935E4CD4B25FBFFF1EABCB96255C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:78:29:15:6d:2a:eb:e8:79:11:24:45:0c:79: a3:f3:00:b2:f3:73:88:ba:0a:e9:71:48:47:f5:43: e0:b8:05:b7:e8:e5:20:19:74:06:e7:e4:98:2f:34: e9:27:f4:e8:68:e4:43:89:1d:be:70:3c:63:79:a7: bd:a0:a9:e6:02:ba:05:1c:63:77:52:fb:67:7f:51: 91:ed:d8:f9:73:98:8b:f2:0b:8b:8e:56:77:ee:a2: 9e:b3:b4:ca:11:0e:c9:47:2a:30:58:e3:d7:f2:4d: 54:28:69:fd:82:b3:1a:78:8c:ba:b5:bb:1d:fb:b5: 96:52:84:2c:b4:05:40:11:f7:9f:11:cf:35:d2:5f: 9f:1f:53:2d:2b:95:9f:4b:59:3f:38:5b:8e:4c:d7: ae:46:e4:3c:b7:a5:ea:07:2b:9e:4c:16:8f:be:91: 16:e9:5a:a8:88:25:0c:c8:31:d7:80:02:41:e9:31: a5:88:38:c9:b6:9e:6f:19:05:07:23:b8:b3:46:fb: 6a:37:f6:23:0a:6c:85:a0:42:89:a9:92:6d:08:6d: 46:3a:f9:9d:7c:af:6e:0f:dc:65:0d:ae:f4:9a:b8: 28:96:65:81:47:b1:77:f9:e3:a2:00:eb:80:75:af: 70:53:d0:15:94:09:b1:57:e6:ec:17:cd:ed:46:0a: 9d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:6B:43:51:1A:76:93:5E:4C:D4:B2:5F:BF:FF:1E:AB:CB:96:25:5C X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/l2tDURp2k15M1LJfv_8eq8uWJVw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.243.0.0/18 Signature Algorithm: sha256WithRSAEncryption 83:48:05:8b:49:90:3c:b4:2f:3a:f8:f9:8c:49:31:3a:f0:dd: 73:96:b7:e6:6a:c1:25:e1:30:1b:b1:2c:ed:b8:bb:bd:72:e4: 2e:96:21:60:2b:c6:ba:07:b3:98:6c:c6:4a:2f:42:99:74:b3: 33:d1:41:7b:97:9c:ac:d7:24:ee:f2:b4:51:c2:5c:5c:07:29: 65:5c:e7:09:9c:b6:fd:f4:50:e5:c7:3e:16:26:cf:f1:0f:98: ab:dd:c4:86:eb:21:44:36:40:c5:79:12:11:a3:87:6a:cb:1b: 1e:e8:d7:71:af:f0:75:c4:36:06:53:ce:c0:b5:de:57:ee:40: b3:da:b5:ce:d4:f4:53:30:be:48:0f:c3:47:51:84:34:cf:f3: 0e:44:9e:15:5f:4f:12:dd:d0:9a:15:2a:fb:83:c5:dd:07:67: 63:77:97:65:b8:33:3a:bc:d7:23:57:37:95:93:d2:95:61:41: 26:df:44:a6:90:b6:69:eb:4e:8a:c8:b1:db:70:b5:d6:e7:31: e3:7e:6b:b5:50:5f:a6:df:e2:ae:91:a2:0d:83:cc:f4:e3:99: 48:d7:fb:e2:d5:44:7c:29:ec:ad:9b:c3:09:f5:7e:63:03:29: 56:77:55:f0:54:50:ae:3f:b5:40:e8:94:4e:6f:05:cf:07:9e: 25:dd:c7:1a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDl8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk3NkI0MzUxMUE3Njkz NUU0Q0Q0QjI1RkJGRkYxRUFCQ0I5NjI1NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkeCkVbSrr6HkRJEUMeaPzALLzc4i6CulxSEf1Q+C4Bbfo5SAZ dAbn5JgvNOkn9Oho5EOJHb5wPGN5p72gqeYCugUcY3dS+2d/UZHt2PlzmIvyC4uO Vnfuop6ztMoRDslHKjBY49fyTVQoaf2Csxp4jLq1ux37tZZShCy0BUAR958RzzXS X58fUy0rlZ9LWT84W45M165G5Dy3peoHK55MFo++kRbpWqiIJQzIMdeAAkHpMaWI OMm2nm8ZBQcjuLNG+2o39iMKbIWgQompkm0IbUY6+Z18r24P3GUNrvSauCiWZYFH sXf546IA64B1r3BT0BWUCbFX5uwXze1GCp3vAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUl2tDURp2k15M1LJfv/8eq8uWJVwwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9sMnREVVJwMmsxNU0xTEpmdl84 ZXE4dVdKVncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG0vMA MA0GCSqGSIb3DQEBCwUAA4IBAQCDSAWLSZA8tC86+PmMSTE68N1zlrfmasEl4TAb sSztuLu9cuQuliFgK8a6B7OYbMZKL0KZdLMz0UF7l5ys1yTu8rRRwlxcByllXOcJ nLb99FDlxz4WJs/xD5ir3cSG6yFENkDFeRIRo4dqyxse6Ndxr/B1xDYGU87Atd5X 7kCz2rXO1PRTML5ID8NHUYQ0z/MORJ4VX08S3dCaFSr7g8XdB2djd5dluDM6vNcj VzeVk9KVYUEm30SmkLZp606KyLHbcLXW5zHjfmu1UF+m3+KukaINg8z045lI1/vi 1UR8Keytm8MJ9X5jAylWd1XwVFCuP7VA6JRObwXPB54l3cca -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org