$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa File: yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa (raw, json) Hash identifier: ORU7yVMQ2T6ipHm36gagEeVvnWxMopq9HfXDWUD3yv0= Subject key identifier: CA:1B:19:43:B8:D6:48:41:C5:F8:E5:2D:28:E9:C6:2C:5F:2D:5F:CF Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CCD Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa Signing time: Mon 26 Aug 2024 05:27:34 +0000 ROA not before: Mon 26 Aug 2024 05:27:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 123.0.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3277 (0xccd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CA1B1943B8D64841C5F8E52D28E9C62C5F2D5FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1e:43:26:29:64:1e:95:71:f1:3f:9f:ae:e7: f2:a6:e1:1d:d7:af:d8:e6:f9:d2:f6:35:0e:2b:dd: d8:83:42:62:cf:bf:d0:b8:6b:31:b5:51:72:04:3f: 56:83:cc:bc:47:3b:e2:1c:80:ba:ac:61:31:b6:81: 4a:55:ce:1b:4e:cd:b2:0a:4e:25:a9:30:cb:2c:b0: 5b:fb:1b:c3:84:04:29:15:f9:3c:07:06:16:e7:9e: 13:1b:f2:8f:b8:dd:a4:12:fb:48:67:2a:23:47:0f: 8e:bc:4a:56:64:ca:cd:aa:5f:33:0f:a7:32:d6:7f: 1a:bb:4a:6b:b7:37:7e:13:97:2b:25:ae:20:bc:e3: 62:a6:d7:7e:b9:5e:55:7a:89:3f:25:84:6b:d6:78: 03:5a:a4:62:6b:bd:7f:79:e9:f6:45:ab:53:b1:72: 4d:ec:38:85:fe:43:ad:c3:2e:3e:28:ab:b3:e7:bb: 2a:e7:c6:5b:b6:af:75:10:9c:91:fa:b4:1e:41:da: 46:7f:46:b6:89:6e:4f:b9:c9:45:b9:f2:03:b0:ec: 1b:c3:d8:d2:fb:2b:83:67:9f:b3:83:cd:54:b1:a7: 44:db:9b:64:46:1d:8e:69:3a:45:53:9f:e1:29:52: 0e:09:4a:24:6a:49:f3:14:fe:ac:87:ce:44:29:50: 3a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:1B:19:43:B8:D6:48:41:C5:F8:E5:2D:28:E9:C6:2C:5F:2D:5F:CF X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/yhsZQ7jWSEHF-OUtKOnGLF8tX88.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.192.0/18 Signature Algorithm: sha256WithRSAEncryption 30:f7:44:fc:5f:de:41:89:e6:5f:a0:e4:a8:74:47:59:64:dd: 6a:70:4c:4e:9d:11:05:0a:01:f4:2f:30:87:82:38:9e:59:bb: ed:b0:e2:d3:3a:0c:82:29:a7:a8:92:9d:57:64:99:81:90:21: 96:00:96:8b:10:76:08:6a:7d:b2:1a:70:3b:b6:28:93:f0:88: cb:ac:2d:62:ca:15:e7:61:8f:34:0a:7a:12:e2:17:02:0a:b2: 1f:ea:07:3f:49:fb:06:ca:8b:d6:1f:64:10:bb:01:eb:29:04: 25:73:04:fa:e8:c0:00:fa:7c:1c:cb:69:a8:a6:99:a3:f6:30: 27:30:bb:97:bd:71:cc:b5:71:a4:38:f8:2a:cd:78:39:b3:da: 8e:3a:58:21:a8:eb:84:d6:d6:61:43:6b:cd:5e:60:a5:c0:5b: 17:85:f4:0e:c4:3d:34:44:30:f8:d3:b0:84:6d:3b:7d:29:20: 90:51:ff:f0:e6:6c:e2:49:ce:d6:88:b5:f8:e8:44:9a:76:bf: 31:01:2b:ef:77:cd:ae:b9:ba:40:4a:7d:10:f3:76:1b:b0:47: 04:6e:d9:fe:e4:0c:11:09:9f:b1:9d:6b:5c:ff:37:6f:74:09: 79:a1:db:d4:59:57:be:f6:85:b7:c5:e6:6a:32:c3:eb:26:61: 61:ee:04:af -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDM0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBMUIxOTQzQjhENjQ4 NDFDNUY4RTUyRDI4RTlDNjJDNUYyRDVGQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9HkMmKWQelXHxP5+u5/Km4R3Xr9jm+dL2NQ4r3diDQmLPv9C4 azG1UXIEP1aDzLxHO+IcgLqsYTG2gUpVzhtOzbIKTiWpMMsssFv7G8OEBCkV+TwH BhbnnhMb8o+43aQS+0hnKiNHD468SlZkys2qXzMPpzLWfxq7Smu3N34TlyslriC8 42Km1365XlV6iT8lhGvWeANapGJrvX956fZFq1Oxck3sOIX+Q63DLj4oq7Pnuyrn xlu2r3UQnJH6tB5B2kZ/RraJbk+5yUW58gOw7BvD2NL7K4Nnn7ODzVSxp0Tbm2RG HY5pOkVTn+EpUg4JSiRqSfMU/qyHzkQpUDpvAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUyhsZQ7jWSEHF+OUtKOnGLF8tX88wHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS95aHNaUTdqV1NFSEYtT1V0S09u R0xGOHRYODgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGewDA MA0GCSqGSIb3DQEBCwUAA4IBAQAw90T8X95BieZfoOSodEdZZN1qcExOnREFCgH0 LzCHgjieWbvtsOLTOgyCKaeokp1XZJmBkCGWAJaLEHYIan2yGnA7tiiT8IjLrC1i yhXnYY80CnoS4hcCCrIf6gc/SfsGyovWH2QQuwHrKQQlcwT66MAA+nwcy2moppmj 9jAnMLuXvXHMtXGkOPgqzXg5s9qOOlghqOuE1tZhQ2vNXmClwFsXhfQOxD00RDD4 07CEbTt9KSCQUf/w5mziSc7WiLX46ESadr8xASvvd82uubpASn0Q83YbsEcEbtn+ 5AwRCZ+xnWtc/zdvdAl5odvUWVe+9oW3xeZqMsPrJmFh7gSv -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org