$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/vEkli89SSx7dCOzkW8gqXwrlh6E.roa File: vEkli89SSx7dCOzkW8gqXwrlh6E.roa (raw, json) Hash identifier: dnF0xexaqwyILNOIOQzcsyS7tTEAHlPX3tVFkhfhmIU= Subject key identifier: BC:49:25:8B:CF:52:4B:1E:DD:08:EC:E4:5B:C8:2A:5F:0A:E5:87:A1 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DE3 Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vEkli89SSx7dCOzkW8gqXwrlh6E.roa Signing time: Mon 26 Aug 2024 05:27:17 +0000 ROA not before: Mon 26 Aug 2024 05:27:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18420 IP address blocks: 140.115.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3555 (0xde3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BC49258BCF524B1EDD08ECE45BC82A5F0AE587A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0c:58:89:42:dc:6a:4e:fa:7d:15:b3:b5:17: 32:49:78:a7:eb:56:56:d4:76:0d:d9:33:c1:d1:47: 7c:1e:50:bd:ae:dc:62:77:89:3c:4f:87:7f:e7:e2: 77:61:92:6f:fa:00:6b:9e:1d:4d:df:e0:9c:a8:53: b3:55:f6:8f:f2:5d:27:f2:83:1d:9e:bc:c0:dc:d6: 75:b3:b8:3e:02:84:1e:bd:8b:4d:53:05:98:5c:60: 8d:f4:71:d2:f1:7c:aa:e1:a3:ed:5c:5a:22:ca:d2: d3:c5:9c:42:0b:56:b2:37:45:5f:85:63:9d:24:55: 18:51:ac:93:14:7f:4c:0f:43:82:cd:cd:3b:30:c7: 9e:90:a4:79:ba:65:30:22:d0:1c:19:cb:a3:eb:46: 01:f2:23:72:3e:f7:35:d6:28:46:88:7b:ce:54:d6: 93:b5:da:d6:2c:6c:80:fe:6d:33:bf:f6:96:3b:50: 78:60:6f:48:04:c7:8f:83:90:ed:a7:23:dc:71:0e: 71:99:2e:e5:74:9c:3e:50:bf:7e:5a:dc:ce:7c:3f: e7:8b:58:ed:21:05:65:69:39:95:b0:4a:3a:09:55: 37:85:f3:44:00:2f:b6:a4:74:01:39:c7:9e:03:2f: c0:bb:2f:54:6a:fd:0b:b6:4b:d9:3c:5f:ed:e0:63: b1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:49:25:8B:CF:52:4B:1E:DD:08:EC:E4:5B:C8:2A:5F:0A:E5:87:A1 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/vEkli89SSx7dCOzkW8gqXwrlh6E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:63:ab:b1:d5:87:33:63:d0:3c:57:e1:83:7d:42:9f:52:ab: 49:9a:f8:e9:78:9f:37:3d:90:7a:c9:63:b1:cc:bb:b1:d4:96: 6e:70:46:e2:31:e0:02:0b:9d:42:26:28:59:14:da:f1:62:f9: bb:e8:ef:c4:ef:7b:0a:59:bd:85:d7:02:76:dd:0e:45:56:0e: 7c:89:d1:8e:7f:88:f9:de:cb:c1:37:80:69:9d:ef:0f:67:60: 6e:8a:71:de:47:46:98:bc:47:e2:05:97:b8:bb:bb:9d:54:95: f5:89:a1:1a:61:34:de:c6:6d:64:cb:45:6c:10:e1:49:43:0c: 4c:2b:d5:97:28:01:7c:f2:54:1f:01:70:1d:c7:39:d5:91:66: 7d:a6:ed:77:b7:de:ca:c0:3e:18:43:6d:0b:b0:f6:31:c1:d1: 57:77:f0:e9:b1:35:22:62:36:4b:5c:69:ab:e4:5e:7a:83:6a: 1c:9d:f7:c6:ce:11:37:a6:5d:64:bf:ff:55:9f:6a:51:cb:d8: b1:f1:ba:21:07:d5:5a:5a:04:15:0e:05:b2:d6:cc:88:73:a2: fc:01:a9:63:0e:0b:55:d6:85:03:61:86:d6:9a:bf:f6:e7:c2: 57:a9:2f:02:a5:8b:64:b1:c5:8d:b1:db:12:15:8b:6a:bc:b4: ef:1a:c8:1d -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDNDkyNThCQ0Y1MjRC MUVERDA4RUNFNDVCQzgyQTVGMEFFNTg3QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTDFiJQtxqTvp9FbO1FzJJeKfrVlbUdg3ZM8HRR3weUL2u3GJ3 iTxPh3/n4ndhkm/6AGueHU3f4JyoU7NV9o/yXSfygx2evMDc1nWzuD4ChB69i01T BZhcYI30cdLxfKrho+1cWiLK0tPFnEILVrI3RV+FY50kVRhRrJMUf0wPQ4LNzTsw x56QpHm6ZTAi0BwZy6PrRgHyI3I+9zXWKEaIe85U1pO12tYsbID+bTO/9pY7UHhg b0gEx4+DkO2nI9xxDnGZLuV0nD5Qv35a3M58P+eLWO0hBWVpOZWwSjoJVTeF80QA L7akdAE5x54DL8C7L1Rq/Qu2S9k8X+3gY7HJAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUvEkli89SSx7dCOzkW8gqXwrlh6EwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC92RWtsaTg5U1N4N2RDT3prVzhn cVh3cmxoNkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjHMw DQYJKoZIhvcNAQELBQADggEBACljq7HVhzNj0DxX4YN9Qp9Sq0ma+Ol4nzc9kHrJ Y7HMu7HUlm5wRuIx4AILnUImKFkU2vFi+bvo78TvewpZvYXXAnbdDkVWDnyJ0Y5/ iPney8E3gGmd7w9nYG6Kcd5HRpi8R+IFl7i7u51UlfWJoRphNN7GbWTLRWwQ4UlD DEwr1ZcoAXzyVB8BcB3HOdWRZn2m7Xe33srAPhhDbQuw9jHB0Vd38OmxNSJiNktc aavkXnqDahyd98bOETemXWS//1WfalHL2LHxuiEH1VpaBBUOBbLWzIhzovwBqWMO C1XWhQNhhtaav/bnwlepLwKli2SxxY2x2xIVi2q8tO8ayB0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org