$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/lCTSyqDDzXHoCfC7JBrXgRVYda4.roa File: lCTSyqDDzXHoCfC7JBrXgRVYda4.roa (raw, json) Hash identifier: XfoZm9xWlFSwMKhxXY5gvtzoJbbOHJFwTvyX1GETK6s= Subject key identifier: 94:24:D2:CA:A0:C3:CD:71:E8:09:F0:BB:24:1A:D7:81:15:58:75:AE Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E4A Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lCTSyqDDzXHoCfC7JBrXgRVYda4.roa Signing time: Mon 26 Aug 2024 05:27:11 +0000 ROA not before: Mon 26 Aug 2024 05:27:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 210.70.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3658 (0xe4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9424D2CAA0C3CD71E809F0BB241AD781155875AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b4:7e:38:1f:b7:3e:ad:f4:27:41:e6:41:6c: ae:0e:4d:7b:e0:c7:2e:26:b0:28:48:73:2e:db:56: 45:02:6e:54:2b:62:3c:f1:84:9d:1c:06:61:8a:10: 7b:19:d4:a7:21:17:66:61:e5:56:2e:7f:1e:20:b7: cb:b7:48:14:cd:99:ea:8e:f5:52:ce:bb:5d:9e:ca: 3a:3e:eb:f0:2b:33:01:83:47:ce:65:20:e6:77:e1: b6:16:da:f5:af:46:1d:c1:30:f4:3e:fd:f2:e6:62: 8c:bd:ab:32:68:e0:f7:37:a9:92:61:04:38:c7:a4: f3:f8:79:d4:18:1e:13:a7:0e:ce:aa:47:43:cb:76: 08:92:c9:21:b0:2c:31:85:4c:8c:de:de:93:4d:15: 66:17:06:f4:6d:d9:3d:5e:5f:ef:e1:42:b3:1d:38: 12:c4:ae:1c:51:e4:aa:82:d0:ed:78:c9:ae:ac:14: 2e:be:84:2d:28:80:13:70:81:2b:2f:27:3a:92:4e: 51:2f:1c:89:fd:e4:15:9c:97:a4:cd:87:c1:fc:78: 03:8b:97:54:e8:8f:40:76:a3:58:ce:42:38:1e:47: 1e:67:d5:7c:cc:13:84:8e:05:44:32:a1:39:c3:a7: d6:ca:36:4e:d9:7c:01:75:cc:e5:96:69:58:2e:08: c8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:24:D2:CA:A0:C3:CD:71:E8:09:F0:BB:24:1A:D7:81:15:58:75:AE X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/lCTSyqDDzXHoCfC7JBrXgRVYda4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 60:52:bd:c9:6f:1e:6e:01:f6:6c:16:c1:1c:80:74:6d:cf:d1: f6:68:6b:80:7d:2f:35:a4:69:06:52:84:fe:59:8f:11:59:58: dc:85:97:f0:50:87:6d:99:91:fd:51:25:bc:cb:c5:44:b3:11: 57:20:1e:20:7e:ad:4a:0a:1f:f3:eb:38:9f:b8:a8:16:30:95: d7:8e:e7:70:a5:b4:09:c2:ad:4d:7e:ae:14:97:52:ef:cc:0b: 30:2a:be:f2:f9:3a:7f:36:30:69:c0:a4:46:df:47:0f:7b:69: ef:5f:72:a2:88:ad:68:15:44:4c:42:2d:d9:3f:d3:e9:04:1e: 07:22:74:10:5a:65:1b:5f:9b:7d:70:2e:a9:7e:16:42:c2:07: 10:f0:f1:4e:c5:b1:4a:4a:5b:75:6c:27:79:19:54:a7:1a:4c: a2:c1:3b:2b:19:43:37:55:48:c1:38:bf:f0:83:67:40:83:80: fd:ca:6c:f8:02:7e:67:dd:88:e4:a9:6d:d5:a2:62:92:83:8b: 7c:3e:81:52:9a:dc:4e:e1:5c:10:c0:7b:c9:8c:0a:48:8b:b5: 86:01:7e:d1:13:50:45:34:55:34:64:4d:45:6c:cc:fc:6e:84: 40:e1:cc:a1:ed:8e:ff:ef:8a:b4:7d:a6:95:2a:3e:1c:e6:9d: d1:b9:22:33 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDkowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0MjREMkNBQTBDM0NE NzFFODA5RjBCQjI0MUFENzgxMTU1ODc1QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4tH44H7c+rfQnQeZBbK4OTXvgxy4msChIcy7bVkUCblQrYjzx hJ0cBmGKEHsZ1KchF2Zh5VYufx4gt8u3SBTNmeqO9VLOu12eyjo+6/ArMwGDR85l IOZ34bYW2vWvRh3BMPQ+/fLmYoy9qzJo4Pc3qZJhBDjHpPP4edQYHhOnDs6qR0PL dgiSySGwLDGFTIze3pNNFWYXBvRt2T1eX+/hQrMdOBLErhxR5KqC0O14ya6sFC6+ hC0ogBNwgSsvJzqSTlEvHIn95BWcl6TNh8H8eAOLl1Toj0B2o1jOQjgeRx5n1XzM E4SOBUQyoTnDp9bKNk7ZfAF1zOWWaVguCMjtAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUlCTSyqDDzXHoCfC7JBrXgRVYda4wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9sQ1RTeXFERHpYSG9DZkM3SkJy WGdSVllkYTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0kYw DQYJKoZIhvcNAQELBQADggEBAGBSvclvHm4B9mwWwRyAdG3P0fZoa4B9LzWkaQZS hP5ZjxFZWNyFl/BQh22Zkf1RJbzLxUSzEVcgHiB+rUoKH/PrOJ+4qBYwldeO53Cl tAnCrU1+rhSXUu/MCzAqvvL5On82MGnApEbfRw97ae9fcqKIrWgVRExCLdk/0+kE HgcidBBaZRtfm31wLql+FkLCBxDw8U7FsUpKW3VsJ3kZVKcaTKLBOysZQzdVSME4 v/CDZ0CDgP3KbPgCfmfdiOSpbdWiYpKDi3w+gVKa3E7hXBDAe8mMCkiLtYYBftET UEU0VTRkTUVszPxuhEDhzKHtjv/virR9ppUqPhzmndG5IjM= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org