$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/uksCHO7B8KlHaIjqGK4byZ_4j4U.roa File: uksCHO7B8KlHaIjqGK4byZ_4j4U.roa (raw, json) Hash identifier: TJBGdKElEQPrE3Ci7kdjHxOEK4prHhrmDAXs4AwjJuk= Subject key identifier: BA:4B:02:1C:EE:C1:F0:A9:47:68:88:EA:18:AE:1B:C9:9F:F8:8F:85 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E66 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uksCHO7B8KlHaIjqGK4byZ_4j4U.roa Signing time: Mon 26 Aug 2024 05:27:25 +0000 ROA not before: Mon 26 Aug 2024 05:27:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 163.24.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3686 (0xe66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BA4B021CEEC1F0A9476888EA18AE1BC99FF88F85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9b:fc:5d:47:05:4b:d1:ef:3c:d4:e2:e1:0f: 42:20:a8:3d:92:30:06:45:db:ad:ec:01:6c:82:18: f0:17:6d:66:8d:ba:a9:80:2b:29:0a:32:f1:0b:bd: 34:37:8f:cf:e6:4d:7d:9d:57:bf:e5:b0:b9:d5:f7: 60:ae:13:5b:69:06:6b:04:17:30:c6:e5:52:c5:55: 4a:05:9b:17:d5:7d:84:20:9e:50:ad:52:b7:d8:15: 4b:61:d5:f3:56:77:67:b3:45:60:fa:fa:62:a5:80: da:c1:ed:40:f5:92:43:78:0a:7b:e3:41:01:6d:1a: 03:1c:78:1f:67:ec:9f:fe:42:29:5b:c4:8c:62:ab: 24:9e:3d:3a:0d:88:b5:98:f0:9a:03:20:7a:03:ec: 03:12:e6:09:13:09:0f:34:1b:da:10:49:68:e5:81: f6:61:89:be:c2:42:70:bf:d1:32:95:4c:95:49:c3: 2e:4b:6e:c9:d4:62:c1:f3:45:f2:16:85:40:ca:d3: 5e:af:03:db:72:42:36:62:47:4a:03:d9:6c:81:cd: ea:67:76:7f:93:b6:9c:a2:4d:14:57:3c:5a:9c:ed: b0:f2:6c:3c:1d:10:88:1a:20:57:20:b0:b5:b2:18: 27:29:3e:7b:e7:71:a3:12:f7:13:73:11:9c:39:23: 87:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:4B:02:1C:EE:C1:F0:A9:47:68:88:EA:18:AE:1B:C9:9F:F8:8F:85 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/uksCHO7B8KlHaIjqGK4byZ_4j4U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.24.0.0/14 Signature Algorithm: sha256WithRSAEncryption 99:ab:37:44:30:f3:f0:b7:85:e7:b3:22:6a:e0:77:21:3c:5f: d7:38:24:56:ac:b3:48:ee:22:6a:c1:15:51:e9:1c:84:e8:d2: 41:5a:b6:3b:da:c0:09:24:68:90:97:f4:f5:16:fe:b2:45:48: 82:17:18:e3:0b:55:41:a5:80:46:b1:82:c2:7c:af:9c:4a:e9: 16:fd:57:30:d3:19:a0:c2:17:ed:c6:07:49:64:42:4b:6f:f8: cd:d4:20:12:70:05:ed:b1:d3:78:50:7b:cc:46:70:a5:68:5d: 26:59:0e:a0:2d:52:a9:a2:37:21:38:8e:94:8f:6f:da:ef:1b: 64:0f:a3:55:ad:a9:b2:43:6c:fb:ef:7c:e0:86:5e:2b:a6:60: 22:f9:f0:68:29:7b:aa:d8:99:be:6c:a5:cc:10:d0:72:8e:a1: 3e:10:b1:e2:77:d3:cb:9e:b9:89:65:4a:e2:b2:43:73:d1:0c: d5:f8:36:f6:2a:0e:ad:af:8c:f3:f3:68:f6:5f:d8:c9:cc:5d: d3:10:4d:5c:10:31:dc:b0:2b:da:65:4b:36:01:aa:97:8a:ad: 80:93:a4:ad:e1:5d:5e:9e:6e:3a:39:fd:fa:69:ca:0f:27:79: ba:bc:c1:e5:28:01:20:81:0f:43:87:d1:fb:55:30:df:25:57: 26:79:82:b7 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDmYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJBNEIwMjFDRUVDMUYw QTk0NzY4ODhFQTE4QUUxQkM5OUZGODhGODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0m/xdRwVL0e881OLhD0IgqD2SMAZF263sAWyCGPAXbWaNuqmA KykKMvELvTQ3j8/mTX2dV7/lsLnV92CuE1tpBmsEFzDG5VLFVUoFmxfVfYQgnlCt UrfYFUth1fNWd2ezRWD6+mKlgNrB7UD1kkN4CnvjQQFtGgMceB9n7J/+QilbxIxi qySePToNiLWY8JoDIHoD7AMS5gkTCQ80G9oQSWjlgfZhib7CQnC/0TKVTJVJwy5L bsnUYsHzRfIWhUDK016vA9tyQjZiR0oD2WyBzepndn+TtpyiTRRXPFqc7bDybDwd EIgaIFcgsLWyGCcpPnvncaMS9xNzEZw5I4dfAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUuksCHO7B8KlHaIjqGK4byZ/4j4UwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC91a3NDSE83QjhLbEhhSWpxR0s0 YnlaXzRqNFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCoxgw DQYJKoZIhvcNAQELBQADggEBAJmrN0Qw8/C3heezImrgdyE8X9c4JFass0juImrB FVHpHITo0kFatjvawAkkaJCX9PUW/rJFSIIXGOMLVUGlgEaxgsJ8r5xK6Rb9VzDT GaDCF+3GB0lkQktv+M3UIBJwBe2x03hQe8xGcKVoXSZZDqAtUqmiNyE4jpSPb9rv G2QPo1WtqbJDbPvvfOCGXiumYCL58Ggpe6rYmb5spcwQ0HKOoT4QseJ308ueuYll SuKyQ3PRDNX4NvYqDq2vjPPzaPZf2MnMXdMQTVwQMdywK9plSzYBqpeKrYCTpK3h XV6ebjo5/fppyg8nebq8weUoASCBD0OH0ftVMN8lVyZ5grc= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org