$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_QGT4snSWdHPps-175mtgNLl3LQ.roa File: _QGT4snSWdHPps-175mtgNLl3LQ.roa (raw, json) Hash identifier: EapBBGLqd9sx1hrheF9O6O8qsd4d/s/7srAOpPuk+GY= Subject key identifier: FD:01:93:E2:C9:D2:59:D1:CF:A6:CF:B5:EF:99:AD:80:D2:E5:DC:B4 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CCE Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_QGT4snSWdHPps-175mtgNLl3LQ.roa Signing time: Mon 26 Aug 2024 05:27:34 +0000 ROA not before: Mon 26 Aug 2024 05:27:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 61.58.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3278 (0xcce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FD0193E2C9D259D1CFA6CFB5EF99AD80D2E5DCB4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:be:6d:44:14:0d:4a:eb:3a:bf:f1:4f:66:c9: 35:bc:4a:0d:a8:ab:1d:e0:31:99:e9:c9:f1:d6:21: 30:02:31:39:b3:cf:b5:1f:64:d3:44:11:27:83:85: 78:cd:70:1e:04:04:95:ae:6a:fc:16:a7:f2:eb:f9: c3:5a:e8:79:78:22:38:51:74:4a:b2:a4:ec:d3:e3: c5:7f:35:6d:fc:13:3b:e3:48:1a:89:33:64:e5:f7: 5a:ad:4b:d0:50:fa:4b:09:10:23:ae:32:a4:5a:24: 06:c2:da:c3:d5:1a:d6:80:b9:f9:a6:71:4e:0e:1a: 9d:99:08:25:2b:df:18:bd:22:85:90:0c:63:7d:d3: 3c:73:d8:05:b5:d1:8e:14:cb:f4:69:ad:fe:5e:04: 15:ec:5c:7f:d7:1e:d4:70:20:7c:87:2e:b5:c7:89: c9:49:1a:0d:53:7d:52:9c:6a:a4:5d:1a:58:17:1a: 77:b4:fd:cb:11:06:01:43:b5:37:fa:a6:81:50:69: 3c:a0:aa:53:a4:1f:9f:13:7d:34:a3:e6:c7:ed:03: 82:20:5f:b5:8a:14:0e:75:08:07:00:b8:20:fa:aa: 4e:b4:a2:7a:20:11:57:fc:3c:c8:e6:36:68:07:1e: dd:14:ff:86:e6:b5:25:11:6c:09:99:0a:f0:ea:4c: 35:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:01:93:E2:C9:D2:59:D1:CF:A6:CF:B5:EF:99:AD:80:D2:E5:DC:B4 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/_QGT4snSWdHPps-175mtgNLl3LQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.64.0/21 Signature Algorithm: sha256WithRSAEncryption 70:bc:7b:b3:51:ca:0a:f5:51:90:83:d2:4a:fc:5b:76:c5:f6: be:36:3f:1d:63:78:a8:58:67:12:10:43:db:e1:56:34:a4:29: d7:02:e2:c6:99:29:05:73:57:cc:e2:15:32:16:e9:d7:8d:7b: 7d:e3:ba:3f:bd:ed:e7:b8:3b:0a:63:74:7e:89:d1:b5:50:09: 1a:91:36:62:b0:ad:81:96:ad:5f:e6:db:2e:a3:79:e6:2a:61: 8f:69:a2:e2:ee:44:48:ad:e8:45:1d:23:48:b0:f3:bd:cc:f3: d3:97:9e:cc:5c:fe:9e:03:85:df:d0:8e:a4:c8:f4:bb:e9:13: d3:f8:d5:7d:25:39:ca:45:b2:ac:9f:7c:41:71:8b:d2:7e:18: c2:ca:e1:96:2d:63:67:0e:17:de:88:e0:c6:0d:83:00:5f:a6: 1c:82:66:67:3f:4b:a2:33:84:05:35:fc:f6:b8:47:fc:8e:98: 18:6d:85:35:46:53:77:3d:84:89:87:48:7f:a2:c8:12:1e:41: 96:25:93:e3:f8:94:70:ba:89:c6:2e:4d:be:f4:1d:9b:01:b2: be:9b:a0:95:2a:eb:5f:bd:9b:c2:e4:11:90:f8:24:90:48:d8: 32:a2:03:4a:9a:2a:8c:6b:09:0c:3b:97:78:13:9f:0b:ba:61: 78:46:cb:da -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDM4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZEMDE5M0UyQzlEMjU5 RDFDRkE2Q0ZCNUVGOTlBRDgwRDJFNURDQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOvm1EFA1K6zq/8U9myTW8Sg2oqx3gMZnpyfHWITACMTmzz7Uf ZNNEESeDhXjNcB4EBJWuavwWp/Lr+cNa6Hl4IjhRdEqypOzT48V/NW38EzvjSBqJ M2Tl91qtS9BQ+ksJECOuMqRaJAbC2sPVGtaAufmmcU4OGp2ZCCUr3xi9IoWQDGN9 0zxz2AW10Y4Uy/Rprf5eBBXsXH/XHtRwIHyHLrXHiclJGg1TfVKcaqRdGlgXGne0 /csRBgFDtTf6poFQaTygqlOkH58TfTSj5sftA4IgX7WKFA51CAcAuCD6qk60onog EVf8PMjmNmgHHt0U/4bmtSURbAmZCvDqTDUrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/QGT4snSWdHPps+175mtgNLl3LQwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9fUUdUNHNuU1dkSFBwcy0xNzVt dGdOTGwzTFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTpA MA0GCSqGSIb3DQEBCwUAA4IBAQBwvHuzUcoK9VGQg9JK/Ft2xfa+Nj8dY3ioWGcS EEPb4VY0pCnXAuLGmSkFc1fM4hUyFunXjXt947o/ve3nuDsKY3R+idG1UAkakTZi sK2Blq1f5tsuo3nmKmGPaaLi7kRIrehFHSNIsPO9zPPTl57MXP6eA4Xf0I6kyPS7 6RPT+NV9JTnKRbKsn3xBcYvSfhjCyuGWLWNnDhfeiODGDYMAX6YcgmZnP0uiM4QF Nfz2uEf8jpgYbYU1RlN3PYSJh0h/osgSHkGWJZPj+JRwuonGLk2+9B2bAbK+m6CV KutfvZvC5BGQ+CSQSNgyogNKmiqMawkMO5d4E58LumF4Rsva -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org