$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RfD6G8iJXl4wCBeztSsI0xG83rw.roa File: RfD6G8iJXl4wCBeztSsI0xG83rw.roa (raw, json) Hash identifier: EhFYqMjqgtMtWH32U2PU7ugBrQ3QDUf04tqQ5iOrnms= Subject key identifier: 45:F0:FA:1B:C8:89:5E:5E:30:08:17:B3:B5:2B:08:D3:11:BC:DE:BC Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CC6 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RfD6G8iJXl4wCBeztSsI0xG83rw.roa Signing time: Mon 26 Aug 2024 05:27:32 +0000 ROA not before: Mon 26 Aug 2024 05:27:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 116.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=45F0FA1BC8895E5E300817B3B52B08D311BCDEBC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:b0:12:9f:a7:8d:c2:5a:26:44:40:89:23:6f: 6e:f8:f1:05:eb:c5:eb:13:9a:8b:28:c7:8a:f4:01: 30:93:9e:f0:87:2e:01:44:37:b1:c3:cc:69:bd:bf: 6d:dd:09:53:c6:d9:93:a0:a4:ef:86:b5:23:a9:27: 8c:42:98:ab:c8:8b:88:3f:0a:19:5d:63:f7:94:f5: d2:3e:7b:35:f7:95:83:4c:f8:0d:45:b2:6b:33:91: 25:af:d6:c0:32:6a:ad:fb:83:e0:05:7d:c4:27:f9: 32:e3:95:b5:da:83:25:c5:dc:a8:73:f4:d2:77:63: 6f:89:9f:9e:b0:e8:b1:0b:37:6f:87:f0:d7:5a:14: 3a:e6:bd:93:70:8e:5f:da:0b:e0:43:a2:3f:56:ec: 47:6c:49:6b:0f:7d:d9:f9:c1:00:81:d5:ff:f5:a5: e5:44:3f:15:79:d5:66:11:c6:6d:d8:ab:22:c9:ab: dc:49:92:65:da:e9:fc:7b:ef:73:2e:19:80:a7:db: 6b:03:b4:88:8d:9f:32:29:d3:80:87:5c:5e:ab:b1: 28:85:3e:28:ea:e2:e4:91:18:88:40:23:84:fc:ce: 51:9f:a5:31:c6:b2:59:d5:83:d4:5d:e8:4c:1c:81: 49:a4:29:ef:1f:ad:69:fd:8a:5e:8c:70:1a:84:00: 42:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F0:FA:1B:C8:89:5E:5E:30:08:17:B3:B5:2B:08:D3:11:BC:DE:BC X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/RfD6G8iJXl4wCBeztSsI0xG83rw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3d:20:96:6d:e8:4b:fc:9c:fc:91:b3:dd:07:97:5a:ee:6e:16: a3:73:f4:16:52:49:ac:13:e5:a2:aa:00:e1:8f:02:93:c2:e9: b5:2a:ac:08:65:8a:a2:ea:75:75:2f:7b:97:ab:bb:46:57:c7: 43:da:8b:79:b2:7c:a0:05:2d:f4:e7:17:48:eb:9e:a5:ba:92: 0f:f3:35:ef:00:f4:a5:7d:36:6c:3c:64:16:b4:80:ff:29:47: b8:00:ed:7d:24:2e:65:26:e0:96:63:eb:67:09:79:d4:7b:ce: c2:f1:d6:bd:f4:bb:d5:3e:06:c4:a2:2b:a1:fb:42:cc:25:b2: 31:ed:7d:5a:94:3b:24:cc:a4:2f:d6:b8:e6:5a:c5:68:a6:67: 19:fc:ea:af:27:e4:a4:e4:2f:2f:9f:da:d5:9e:6c:3b:95:3d: 79:11:e8:dc:39:b8:5d:47:19:9b:e7:a7:ab:cc:c9:a8:15:0f: f6:b5:05:3a:e7:84:75:5d:f6:b1:8c:14:e3:2b:86:08:c9:28: fd:0e:e9:fe:65:ec:82:68:e7:88:10:a8:86:80:2e:9f:72:93: 49:51:7c:61:e2:79:2b:e2:56:9e:8b:95:b7:eb:85:22:21:c2: 76:85:56:da:7d:03:f5:b7:7c:f6:cc:9e:39:bf:c4:58:1d:b4: 75:18:77:35 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1RjBGQTFCQzg4OTVF NUUzMDA4MTdCM0I1MkIwOEQzMTFCQ0RFQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhsBKfp43CWiZEQIkjb2748QXrxesTmosox4r0ATCTnvCHLgFE N7HDzGm9v23dCVPG2ZOgpO+GtSOpJ4xCmKvIi4g/ChldY/eU9dI+ezX3lYNM+A1F smszkSWv1sAyaq37g+AFfcQn+TLjlbXagyXF3Khz9NJ3Y2+Jn56w6LELN2+H8Nda FDrmvZNwjl/aC+BDoj9W7EdsSWsPfdn5wQCB1f/1peVEPxV51WYRxm3YqyLJq9xJ kmXa6fx773MuGYCn22sDtIiNnzIp04CHXF6rsSiFPijq4uSRGIhAI4T8zlGfpTHG slnVg9Rd6EwcgUmkKe8frWn9il6McBqEAEKpAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQURfD6G8iJXl4wCBeztSsI0xG83rwwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9SZkQ2RzhpSlhsNHdDQmV6dFNz STB4Rzgzcncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAdPEw DQYJKoZIhvcNAQELBQADggEBAD0glm3oS/yc/JGz3QeXWu5uFqNz9BZSSawT5aKq AOGPApPC6bUqrAhliqLqdXUve5eru0ZXx0Pai3myfKAFLfTnF0jrnqW6kg/zNe8A 9KV9Nmw8ZBa0gP8pR7gA7X0kLmUm4JZj62cJedR7zsLx1r30u9U+BsSiK6H7Qswl sjHtfVqUOyTMpC/WuOZaxWimZxn86q8n5KTkLy+f2tWebDuVPXkR6Nw5uF1HGZvn p6vMyagVD/a1BTrnhHVd9rGMFOMrhgjJKP0O6f5l7IJo54gQqIaALp9yk0lRfGHi eSviVp6LlbfrhSIhwnaFVtp9A/W3fPbMnjm/xFgdtHUYdzU= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org