$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rAJQAKorLGBtRfuRX394GiNLJyM.roa File: rAJQAKorLGBtRfuRX394GiNLJyM.roa (raw, json) Hash identifier: TitXfCjv2ihGxgJLCDdY/2DvO3SFLz6YP/r8k+jU3N0= Subject key identifier: AC:02:50:00:AA:2B:2C:60:6D:45:FB:91:5F:7F:78:1A:23:4B:27:23 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CCB Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rAJQAKorLGBtRfuRX394GiNLJyM.roa Signing time: Mon 26 Aug 2024 05:27:33 +0000 ROA not before: Mon 26 Aug 2024 05:27:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 59.102.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3275 (0xccb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AC025000AA2B2C606D45FB915F7F781A234B2723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:82:92:69:4e:ab:f7:e5:d3:b1:34:f3:1b:c9: df:ad:a7:e7:fd:07:ad:38:2f:cc:56:ae:ac:cd:43: 8d:73:41:97:f6:1b:e9:12:84:e0:75:b7:a9:80:5c: 2c:75:c3:4d:68:fc:b5:d5:50:41:8c:1d:a4:78:1a: 2c:71:13:70:ad:f4:84:03:bf:7c:88:9e:18:99:39: 6e:df:d9:f6:98:c7:8e:45:b3:bf:2d:dc:25:cf:cb: 1a:47:86:4a:1f:81:a2:db:36:92:a8:80:84:6e:84: 9b:e3:fc:f3:28:6d:e2:ff:31:e7:43:20:44:48:15: 30:9d:b8:58:bb:d4:3f:b6:99:83:51:9f:af:6f:c3: e8:38:b2:67:6d:ad:3c:4f:39:6a:5e:cc:d1:d8:df: 27:0f:00:5e:8b:ef:02:b3:85:e5:e5:af:eb:b3:06: c3:f5:b2:1f:e1:6d:43:31:e9:38:bc:4d:27:ea:45: 05:ec:d7:2e:53:0b:09:a4:5b:44:74:a8:18:0e:1a: ac:21:1d:e8:62:53:48:50:c1:ee:51:03:1e:a2:a7: f1:97:b0:b0:e2:19:c2:ff:5b:fe:21:c4:ed:84:2c: 13:ee:e7:3e:27:ca:bc:24:9c:77:18:f6:37:ca:33: a3:61:bc:c5:6a:1b:e7:39:c0:6f:60:6a:11:2b:10: 93:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:02:50:00:AA:2B:2C:60:6D:45:FB:91:5F:7F:78:1A:23:4B:27:23 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/rAJQAKorLGBtRfuRX394GiNLJyM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.102.128.0/17 Signature Algorithm: sha256WithRSAEncryption 79:2a:0c:b1:3c:af:6d:48:3f:25:24:3e:bd:4b:9b:ac:9a:6b: ce:98:1f:c5:40:7d:2b:0e:27:37:8e:85:4b:7e:10:83:a5:b8: 42:7c:a6:a0:68:58:d7:93:6b:f1:70:a3:cd:30:b8:70:8d:3d: 46:41:4b:0c:43:03:31:7d:e8:53:d4:f5:3e:0f:e2:92:43:26: 84:45:d0:8f:90:1e:94:35:d9:14:c4:b4:24:3e:21:7b:d8:0c: 2c:30:89:3f:75:8f:9d:4d:28:3b:e8:0a:ed:57:3b:df:e7:d6: 60:60:df:2f:f0:94:bb:13:7e:07:6c:34:4e:a2:50:f7:47:88: f4:2a:ed:a7:fb:96:dd:56:e7:b0:78:21:a1:49:bb:a9:a1:fa: 2e:15:49:3a:e4:ba:4e:0e:d6:2d:a6:ef:fe:70:2c:a6:ab:00: ee:29:e0:77:77:8e:6a:5b:bf:1d:7f:7c:52:18:1b:59:17:5c: c9:b0:02:c5:ce:e1:5e:dd:4e:7e:57:3b:b2:45:66:63:d9:44: 99:bd:fb:04:18:20:c6:54:55:64:f7:ce:f7:4d:09:09:7d:d6: 19:df:6d:4d:76:2a:7f:76:5b:ec:6d:8b:34:96:43:54:cc:53: be:69:6c:5f:a9:09:22:a8:be:8c:51:16:b5:a5:da:0f:15:8d: ff:24:32:1d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFDMDI1MDAwQUEyQjJD NjA2RDQ1RkI5MTVGN0Y3ODFBMjM0QjI3MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZgpJpTqv35dOxNPMbyd+tp+f9B604L8xWrqzNQ41zQZf2G+kS hOB1t6mAXCx1w01o/LXVUEGMHaR4GixxE3Ct9IQDv3yInhiZOW7f2faYx45Fs78t 3CXPyxpHhkofgaLbNpKogIRuhJvj/PMobeL/MedDIERIFTCduFi71D+2mYNRn69v w+g4smdtrTxPOWpezNHY3ycPAF6L7wKzheXlr+uzBsP1sh/hbUMx6Ti8TSfqRQXs 1y5TCwmkW0R0qBgOGqwhHehiU0hQwe5RAx6ip/GXsLDiGcL/W/4hxO2ELBPu5z4n yrwknHcY9jfKM6NhvMVqG+c5wG9gahErEJPrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUrAJQAKorLGBtRfuRX394GiNLJyMwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9yQUpRQUtvckxHQnRSZnVSWDM5 NEdpTkxKeU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHO2aA MA0GCSqGSIb3DQEBCwUAA4IBAQB5KgyxPK9tSD8lJD69S5usmmvOmB/FQH0rDic3 joVLfhCDpbhCfKagaFjXk2vxcKPNMLhwjT1GQUsMQwMxfehT1PU+D+KSQyaERdCP kB6UNdkUxLQkPiF72AwsMIk/dY+dTSg76ArtVzvf59ZgYN8v8JS7E34HbDROolD3 R4j0Ku2n+5bdVueweCGhSbupofouFUk65LpODtYtpu/+cCymqwDuKeB3d45qW78d f3xSGBtZF1zJsALFzuFe3U5+VzuyRWZj2USZvfsEGCDGVFVk9873TQkJfdYZ321N dip/dlvsbYs0lkNUzFO+aWxfqQkiqL6MURa1pdoPFY3/JDId -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:45 2024 by rpki-client on console-fra.rpki-client.org