$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/18uduxJ0U5tddhgaOumnTBD1SzA.roa File: 18uduxJ0U5tddhgaOumnTBD1SzA.roa (raw, json) Hash identifier: KxzkssAnKkZuKj70Q3EiJPq2rCaoJVuRRwjAJXgRuFg= Subject key identifier: D7:CB:9D:BB:12:74:53:9B:5D:76:18:1A:3A:E9:A7:4C:10:F5:4B:30 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CD4 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/18uduxJ0U5tddhgaOumnTBD1SzA.roa Signing time: Mon 26 Aug 2024 05:27:35 +0000 ROA not before: Mon 26 Aug 2024 05:27:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 61.57.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3284 (0xcd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7CB9DBB1274539B5D76181A3AE9A74C10F54B30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5a:9f:58:3a:04:d8:ab:17:46:de:be:c8:39: ca:42:5a:68:3e:e9:06:ef:d3:86:72:0c:2a:39:2c: 4f:41:41:4a:f6:f7:e3:de:91:8d:28:fc:c9:9c:a9: 73:97:9d:c3:3b:f9:f3:9b:96:f7:29:85:74:54:af: e3:07:19:25:7e:c6:d5:88:87:02:9b:9a:33:c3:fe: 7a:cc:96:58:09:e0:b1:29:32:e8:60:7f:35:f3:ef: 49:30:00:1a:4e:a3:4d:da:f3:e8:38:08:a2:ba:df: d8:cb:bd:a0:fb:5b:54:7b:5e:fc:33:19:fc:f4:fc: 8c:f7:68:29:96:27:6b:8a:10:3b:49:f3:76:69:e3: e2:d3:cd:0e:c6:e9:82:97:ff:ed:ba:fa:7f:18:dd: 75:2a:1f:6c:3d:72:cd:4b:0e:4d:8c:a5:db:7d:10: 82:de:6d:f2:57:35:ba:02:3d:0d:24:ed:31:dd:02: 24:eb:c3:22:28:d4:42:7d:55:8b:2b:7f:bb:5d:82: 9f:62:9e:53:fe:3c:6f:f9:44:94:bf:f6:b4:9b:3e: 59:ef:f8:16:70:9c:fb:61:87:4e:89:23:a7:c3:d7: 14:71:c5:87:a3:c5:04:19:12:2f:03:7d:d9:3e:59: 42:94:9e:c9:ee:e9:43:de:70:03:0a:b5:3c:23:41: 7e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:CB:9D:BB:12:74:53:9B:5D:76:18:1A:3A:E9:A7:4C:10:F5:4B:30 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/18uduxJ0U5tddhgaOumnTBD1SzA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.64.0/18 Signature Algorithm: sha256WithRSAEncryption c1:c2:08:00:bc:d5:cb:a1:ff:bc:b6:2a:2f:4b:c6:b3:5f:ce: 40:6b:93:0c:3c:72:f7:e4:0b:12:75:29:e0:8a:e1:db:57:43: ee:2f:d1:b4:c8:65:e8:10:78:c9:00:f7:a4:ef:c8:e2:d3:29: 45:34:43:aa:f4:a4:66:60:86:14:bc:13:cb:a8:60:57:78:ba: 2b:4e:14:ff:89:74:ff:0c:0b:47:94:28:e2:98:b6:34:2d:51: 04:57:0e:d7:83:08:4d:d9:f8:60:7e:a9:03:76:e3:a6:1d:6c: 71:2d:e3:e1:54:1b:f5:05:85:c0:20:f3:6e:9d:f9:2b:28:58: 51:9d:2a:d5:cb:8c:93:0a:b9:92:51:d3:98:c8:10:d5:01:42: ff:0d:77:02:41:87:db:24:44:15:17:e2:59:11:cf:f6:5c:2c: 0e:b5:43:ab:de:9d:c7:7d:db:64:2a:17:17:d1:bc:4a:9e:00: 15:fc:a9:6e:03:5f:dc:e7:3c:3f:97:0d:08:08:2c:ed:f9:95: 07:ee:7b:bf:6a:39:52:ba:68:1f:ff:f8:a5:4c:51:4c:1d:24: 06:ff:77:20:21:e0:49:ba:dd:87:02:6c:21:6c:f1:0a:3a:7a: bd:94:37:0b:b1:ab:09:50:47:c1:ad:ba:7d:5a:60:c1:55:61: 1e:e8:0d:a3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3Q0I5REJCMTI3NDUz OUI1RDc2MTgxQTNBRTlBNzRDMTBGNTRCMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVWp9YOgTYqxdG3r7IOcpCWmg+6Qbv04ZyDCo5LE9BQUr29+Pe kY0o/MmcqXOXncM7+fOblvcphXRUr+MHGSV+xtWIhwKbmjPD/nrMllgJ4LEpMuhg fzXz70kwABpOo03a8+g4CKK639jLvaD7W1R7XvwzGfz0/Iz3aCmWJ2uKEDtJ83Zp 4+LTzQ7G6YKX/+26+n8Y3XUqH2w9cs1LDk2Mpdt9EILebfJXNboCPQ0k7THdAiTr wyIo1EJ9VYsrf7tdgp9inlP+PG/5RJS/9rSbPlnv+BZwnPthh06JI6fD1xRxxYej xQQZEi8Dfdk+WUKUnsnu6UPecAMKtTwjQX5JAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU18uduxJ0U5tddhgaOumnTBD1SzAwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS8xOHVkdXhKMFU1dGRkaGdhT3Vt blRCRDFTekEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGPTlA MA0GCSqGSIb3DQEBCwUAA4IBAQDBwggAvNXLof+8tiovS8azX85Aa5MMPHL35AsS dSngiuHbV0PuL9G0yGXoEHjJAPek78ji0ylFNEOq9KRmYIYUvBPLqGBXeLorThT/ iXT/DAtHlCjimLY0LVEEVw7XgwhN2fhgfqkDduOmHWxxLePhVBv1BYXAIPNunfkr KFhRnSrVy4yTCrmSUdOYyBDVAUL/DXcCQYfbJEQVF+JZEc/2XCwOtUOr3p3Hfdtk KhcX0bxKngAV/KluA1/c5zw/lw0ICCzt+ZUH7nu/ajlSumgf//ilTFFMHSQG/3cg IeBJut2HAmwhbPEKOnq9lDcLsasJUEfBrbp9WmDBVWEe6A2j -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org