$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/xUTDjtwF673990Z0RkNZFntri-U.roa File: xUTDjtwF673990Z0RkNZFntri-U.roa (raw, json) Hash identifier: Ci014Skh2rap2Uj0ByQdeVgV3ZIhjD59mK3GJNpd3f0= Subject key identifier: C5:44:C3:8E:DC:05:EB:BD:FD:F7:46:74:46:43:59:16:7B:6B:8B:E5 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DDB Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xUTDjtwF673990Z0RkNZFntri-U.roa Signing time: Mon 26 Aug 2024 05:27:13 +0000 ROA not before: Mon 26 Aug 2024 05:27:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 192.192.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3547 (0xddb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C544C38EDC05EBBDFDF74674464359167B6B8BE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ad:56:f6:ec:e5:bf:67:a1:73:6f:b3:dd:86: 6d:9d:95:23:f9:3b:09:58:7c:45:49:5b:52:65:d7: cc:36:a9:72:1b:d6:30:00:10:53:7c:92:fc:03:1a: 1f:17:d5:9e:16:d4:17:07:ff:a3:e8:75:ce:82:4d: 07:de:1e:43:2e:f2:aa:88:55:b4:1a:5f:77:15:a5: 55:e9:3d:34:8a:fb:e8:54:03:e1:c6:15:51:d8:32: 32:36:55:4a:81:15:04:dc:51:f2:8b:37:c9:b0:49: 58:d3:6b:a6:48:4a:75:05:4e:4e:36:0d:62:fd:45: 17:55:ed:9f:c7:a7:6c:0e:97:5e:29:d7:ab:8e:05: 17:59:21:fc:12:53:9d:ed:2d:e8:32:59:a2:e7:73: f2:0b:a5:03:b5:21:59:20:c2:bf:e2:3b:11:63:c2: d9:ad:a0:5c:ce:f4:56:d3:ee:44:3d:40:22:be:c3: e7:69:ed:b4:a8:94:94:a4:48:e5:d5:eb:97:61:5f: 8c:a8:4f:94:47:39:63:9e:54:66:d0:47:21:ca:fd: 4a:ff:c3:fc:52:dd:cc:1f:c2:9c:de:b0:97:e2:fb: b9:58:37:a0:12:5f:b9:bb:a8:34:79:7b:a8:85:bf: 95:98:9c:b5:ab:0a:3e:1a:21:3f:54:12:b0:fb:be: c5:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:44:C3:8E:DC:05:EB:BD:FD:F7:46:74:46:43:59:16:7B:6B:8B:E5 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/xUTDjtwF673990Z0RkNZFntri-U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 45:10:75:fd:8a:7d:6d:1f:2b:2f:dd:e5:8d:7d:96:19:28:6b: be:19:cb:d8:83:49:d0:7d:bd:06:4c:a8:37:59:98:4e:0a:32: 96:f8:6c:9e:86:b0:30:97:ce:10:34:44:ea:45:93:8c:0e:e9: e7:5c:ca:e5:4a:d2:b9:4f:15:75:00:db:a1:65:19:58:ac:01: 39:00:4e:6c:99:1d:a7:7c:54:9c:50:4c:4b:a4:be:df:fe:be: ed:74:5c:47:1a:9b:0d:e3:0d:1c:16:a1:7d:f4:17:2d:98:e6: ea:d1:46:e4:c6:57:c9:6a:71:e4:3c:f8:d7:43:a6:eb:0b:21: fa:76:7d:63:f1:c2:9a:ee:92:d2:c0:b6:dd:7b:f1:fc:71:c6: 7a:8a:89:31:ce:b1:b5:fa:12:2d:01:14:da:a0:a3:d0:9f:8c: c3:b9:4a:f5:f0:12:48:03:14:e9:89:c3:e1:85:48:53:96:73: 00:a3:66:bd:ed:df:c6:8a:15:4f:06:0a:12:ba:b4:c7:f3:91: 6b:02:53:f4:ba:54:1f:7b:18:a8:b8:60:06:2d:91:57:6f:9e: ec:72:9b:12:e3:d0:4a:71:cc:81:af:f4:a9:96:2f:29:d7:21: e2:32:37:2a:12:cb:8a:53:74:78:5a:56:80:61:d9:3f:76:42: b1:91:1d:d3 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1NDRDMzhFREMwNUVC QkRGREY3NDY3NDQ2NDM1OTE2N0I2QjhCRTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDrVb27OW/Z6Fzb7Pdhm2dlSP5OwlYfEVJW1Jl18w2qXIb1jAA EFN8kvwDGh8X1Z4W1BcH/6Podc6CTQfeHkMu8qqIVbQaX3cVpVXpPTSK++hUA+HG FVHYMjI2VUqBFQTcUfKLN8mwSVjTa6ZISnUFTk42DWL9RRdV7Z/Hp2wOl14p16uO BRdZIfwSU53tLegyWaLnc/ILpQO1IVkgwr/iOxFjwtmtoFzO9FbT7kQ9QCK+w+dp 7bSolJSkSOXV65dhX4yoT5RHOWOeVGbQRyHK/Ur/w/xS3cwfwpzesJfi+7lYN6AS X7m7qDR5e6iFv5WYnLWrCj4aIT9UErD7vsU7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUxUTDjtwF673990Z0RkNZFntri+UwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC94VVREanR3RjY3Mzk5MFowUmtO WkZudHJpLVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAwMAw DQYJKoZIhvcNAQELBQADggEBAEUQdf2KfW0fKy/d5Y19lhkoa74Zy9iDSdB9vQZM qDdZmE4KMpb4bJ6GsDCXzhA0ROpFk4wO6edcyuVK0rlPFXUA26FlGVisATkATmyZ Had8VJxQTEukvt/+vu10XEcamw3jDRwWoX30Fy2Y5urRRuTGV8lqceQ8+NdDpusL Ifp2fWPxwpruktLAtt178fxxxnqKiTHOsbX6Ei0BFNqgo9CfjMO5SvXwEkgDFOmJ w+GFSFOWcwCjZr3t38aKFU8GChK6tMfzkWsCU/S6VB97GKi4YAYtkVdvnuxymxLj 0EpxzIGv9KmWLynXIeIyNyoSy4pTdHhaVoBh2T92QrGRHdM= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:14 2024 by rpki-client on console-fra.rpki-client.org