$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/yheAmdWWekdqGWEDjQN1Ze1T6HU.roa File: yheAmdWWekdqGWEDjQN1Ze1T6HU.roa (raw, json) Hash identifier: 2CyJ0LdVamgGw/mk+KrROmbRm480h1wc30J+qRkaSQ0= Subject key identifier: CA:17:80:99:D5:96:7A:47:6A:19:61:03:8D:03:75:65:ED:53:E8:75 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E68 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yheAmdWWekdqGWEDjQN1Ze1T6HU.roa Signing time: Mon 26 Aug 2024 05:27:25 +0000 ROA not before: Mon 26 Aug 2024 05:27:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 210.240.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3688 (0xe68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CA178099D5967A476A1961038D037565ED53E875 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ea:59:26:c6:20:6e:78:9c:98:6b:17:ee:49: 82:a4:58:d6:ae:2d:36:fa:7c:c7:b3:bd:fd:87:a2: 6d:2a:70:84:b1:1b:f0:a1:97:1d:8f:4a:76:0f:57: 8d:15:0d:49:70:ab:3b:e9:98:99:3e:27:b9:ba:a9: 22:50:41:9c:b8:de:22:dc:88:73:d8:c8:79:60:b1: ca:f3:c5:5e:eb:fc:b5:a9:3d:75:fa:0b:66:fd:7e: 0c:73:0e:82:f7:13:c9:77:ce:6d:60:ac:14:c1:b9: 5a:c1:4d:6c:85:03:51:0d:73:bd:09:84:ef:57:6d: 38:36:f6:e2:9c:5b:82:96:b6:51:83:45:cb:ec:10: a1:77:64:bf:72:76:a5:3c:ae:20:14:0e:5e:ca:53: e7:1e:c2:fd:5d:b3:6b:48:11:b4:0d:62:79:25:a6: 69:f8:44:80:ca:4d:75:d9:53:b7:f6:af:ff:ef:37: 50:47:91:4c:40:37:e4:4d:69:46:63:42:eb:b9:96: fb:4e:67:d4:6f:1f:46:60:7f:b4:a2:d1:04:d1:04: fa:d0:d6:c7:b9:74:b0:f9:e9:e1:15:74:5e:79:e3: dc:31:95:ba:df:a6:04:f1:2b:79:f1:80:99:bb:21: e0:dc:2c:6b:21:02:6c:82:40:5e:6e:42:c2:98:68: 7a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:17:80:99:D5:96:7A:47:6A:19:61:03:8D:03:75:65:ED:53:E8:75 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yheAmdWWekdqGWEDjQN1Ze1T6HU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.240.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:f1:fc:cd:a3:c2:34:2a:fc:9f:25:59:e3:ac:98:11:e3:05: 3e:e8:0e:f1:d7:a4:2a:cc:e2:4b:45:20:b6:b1:46:1e:5f:09: 7f:49:ca:47:d9:28:68:82:e2:fa:67:10:28:c0:eb:c8:0f:26: 71:69:a2:10:86:7c:79:70:bb:e1:3f:bb:0d:79:49:0e:61:e3: 27:34:d9:e5:3f:8b:7a:f4:51:87:d9:04:df:ff:ce:bf:28:90: f0:0a:84:1c:31:f6:df:5f:4c:79:2f:fd:15:48:65:cb:2f:d2: 48:b5:09:63:e0:d2:4f:59:77:07:e8:85:77:ab:f1:f8:17:1e: 1a:83:96:85:b8:56:d3:a3:1c:30:6d:9b:3f:a1:54:1a:af:f5: e6:08:7c:b0:28:02:e7:e5:15:dc:cb:f7:f0:e5:59:6d:f0:8e: 2a:a8:c8:38:82:3f:ac:3d:d7:17:9d:51:c9:41:2e:fd:1e:8d: 77:5b:e6:fd:ae:e8:79:91:f3:65:42:15:6a:60:ac:13:17:d0: 13:ce:30:a8:0a:77:d8:77:77:d5:3f:5e:4c:f8:6b:1b:eb:41: 1f:bf:72:42:ad:aa:ea:2e:66:3f:0f:cb:b9:aa:62:92:ed:08: 3c:1f:fe:21:9d:83:36:d9:6b:9c:f8:a9:cb:07:81:6a:2b:ae: 14:3b:35:da -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDmgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBMTc4MDk5RDU5NjdB NDc2QTE5NjEwMzhEMDM3NTY1RUQ1M0U4NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC6lkmxiBueJyYaxfuSYKkWNauLTb6fMezvf2Hom0qcISxG/Ch lx2PSnYPV40VDUlwqzvpmJk+J7m6qSJQQZy43iLciHPYyHlgscrzxV7r/LWpPXX6 C2b9fgxzDoL3E8l3zm1grBTBuVrBTWyFA1ENc70JhO9XbTg29uKcW4KWtlGDRcvs EKF3ZL9ydqU8riAUDl7KU+cewv1ds2tIEbQNYnklpmn4RIDKTXXZU7f2r//vN1BH kUxAN+RNaUZjQuu5lvtOZ9RvH0Zgf7Si0QTRBPrQ1se5dLD56eEVdF5549wxlbrf pgTxK3nxgJm7IeDcLGshAmyCQF5uQsKYaHo1AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUyheAmdWWekdqGWEDjQN1Ze1T6HUwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC95aGVBbWRXV2VrZHFHV0VEalFO MVplMVQ2SFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0vAw DQYJKoZIhvcNAQELBQADggEBAFXx/M2jwjQq/J8lWeOsmBHjBT7oDvHXpCrM4ktF ILaxRh5fCX9JykfZKGiC4vpnECjA68gPJnFpohCGfHlwu+E/uw15SQ5h4yc02eU/ i3r0UYfZBN//zr8okPAKhBwx9t9fTHkv/RVIZcsv0ki1CWPg0k9ZdwfohXer8fgX HhqDloW4VtOjHDBtmz+hVBqv9eYIfLAoAuflFdzL9/DlWW3wjiqoyDiCP6w91xed UclBLv0ejXdb5v2u6HmR82VCFWpgrBMX0BPOMKgKd9h3d9U/Xkz4axvrQR+/ckKt quouZj8Py7mqYpLtCDwf/iGdgzbZa5z4qcsHgWorrhQ7Ndo= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:14 2024 by rpki-client on console-fra.rpki-client.org