$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/0eZjMYT5aMNaSEMMydkJmwpUE1k.roa File: 0eZjMYT5aMNaSEMMydkJmwpUE1k.roa (raw, json) Hash identifier: RyNNdGi9mvuqJSrIxjq5Z0P52UkZJVPLVxs3LnuVJzg= Subject key identifier: D1:E6:63:31:84:F9:68:C3:5A:48:43:0C:C9:D9:09:9B:0A:54:13:59 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CB7 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/0eZjMYT5aMNaSEMMydkJmwpUE1k.roa Signing time: Mon 26 Aug 2024 05:28:04 +0000 ROA not before: Mon 26 Aug 2024 05:28:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.58.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D1E6633184F968C35A48430CC9D9099B0A541359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:8b:61:dc:fe:2f:dd:ef:7c:cf:04:af:5d:b5: a1:43:65:ad:2c:13:64:94:1d:25:ee:3a:7e:f5:8e: 1d:90:d7:7a:a0:5a:54:d0:30:b1:47:16:0b:65:2d: f3:25:30:1e:45:ac:27:dd:8e:a2:4b:8c:50:69:ca: b9:61:c6:03:f0:61:3e:6e:63:f0:70:c8:20:fd:09: 1f:38:ce:ce:a0:36:e1:a5:9b:bf:d4:b9:7f:4f:15: ec:3c:82:55:ea:44:0f:87:5a:3e:60:ed:d9:79:62: 27:b6:5e:2e:c6:d8:bc:cf:b8:0d:03:0d:11:79:48: 61:7f:22:94:d2:29:52:b3:f3:de:c7:47:11:e9:1f: e9:09:75:e3:55:88:a4:bb:aa:cd:24:1e:25:fb:2f: d2:c1:9b:50:ad:55:99:c7:4d:7d:84:2f:84:bc:b7: ae:ae:b8:32:a7:2f:28:28:d9:2f:c0:db:e1:f1:a3: 1f:28:75:32:e8:57:32:88:d6:ed:2f:5b:f5:61:75: e4:43:38:89:7f:86:4d:bd:96:83:9f:10:4c:3a:c0: c9:0d:10:35:d4:29:30:01:7a:a6:f2:9d:27:a6:39: d8:de:8d:05:ee:c6:d9:5b:b2:fb:97:f3:57:47:27: 6d:9c:dc:13:c2:ff:84:34:73:a2:0c:aa:46:00:c8: 87:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:E6:63:31:84:F9:68:C3:5A:48:43:0C:C9:D9:09:9B:0A:54:13:59 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/0eZjMYT5aMNaSEMMydkJmwpUE1k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.159.0/24 Signature Algorithm: sha256WithRSAEncryption 77:84:78:95:41:8a:b0:b8:ef:85:89:66:fd:eb:5a:2a:02:7e: 3d:8c:36:9b:0c:16:95:e8:14:e7:1f:11:0b:0a:f7:b1:a1:40: 34:47:7f:b3:ed:93:3b:61:c0:a8:a4:e9:88:b0:eb:3c:10:da: 62:7c:1a:54:6d:ad:cf:9a:db:cf:ed:30:c1:35:53:45:40:12: 74:4d:04:e4:46:06:aa:e6:f8:49:fe:2b:42:15:92:21:82:30: b2:11:a0:e2:4c:1b:af:1c:46:3c:c2:37:c5:e9:7a:3c:33:0e: cd:1a:eb:34:c7:ca:4c:99:1b:d5:8b:f8:02:0e:de:40:98:f8: 63:42:24:47:c4:66:b9:ac:57:0f:5b:20:08:a7:51:18:bd:b7: 86:1a:b1:c5:a6:d1:2d:ed:8b:91:74:4f:77:72:aa:3e:60:6f: 16:78:76:36:78:a5:ab:20:c1:15:75:47:06:8f:d5:73:5a:8a: 9b:e0:0a:d6:7d:bc:ae:61:7b:1f:81:ac:ed:b6:07:04:12:f8: cd:cd:f2:fd:e4:c6:76:50:fe:c8:41:5d:48:09:3d:9d:8f:06: d6:92:db:4c:cd:b2:16:8c:35:bd:6a:db:71:06:12:7a:51:2b: e7:68:b3:4e:e6:ff:84:fb:b0:ea:9e:5f:98:42:ff:96:12:f1: 56:9e:bf:b3 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQxRTY2MzMxODRGOTY4 QzM1QTQ4NDMwQ0M5RDkwOTlCMEE1NDEzNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwi2Hc/i/d73zPBK9dtaFDZa0sE2SUHSXuOn71jh2Q13qgWlTQ MLFHFgtlLfMlMB5FrCfdjqJLjFBpyrlhxgPwYT5uY/BwyCD9CR84zs6gNuGlm7/U uX9PFew8glXqRA+HWj5g7dl5Yie2Xi7G2LzPuA0DDRF5SGF/IpTSKVKz897HRxHp H+kJdeNViKS7qs0kHiX7L9LBm1CtVZnHTX2EL4S8t66uuDKnLygo2S/A2+Hxox8o dTLoVzKI1u0vW/VhdeRDOIl/hk29loOfEEw6wMkNEDXUKTABeqbynSemOdjejQXu xtlbsvuX81dHJ22c3BPC/4Q0c6IMqkYAyIdPAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU0eZjMYT5aMNaSEMMydkJmwpUE1kwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvMGVaak1ZVDVhTU5hU0VNTXlka0pt d3BVRTFrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD06nzAN BgkqhkiG9w0BAQsFAAOCAQEAd4R4lUGKsLjvhYlm/etaKgJ+PYw2mwwWlegU5x8R Cwr3saFANEd/s+2TO2HAqKTpiLDrPBDaYnwaVG2tz5rbz+0wwTVTRUASdE0E5EYG qub4Sf4rQhWSIYIwshGg4kwbrxxGPMI3xel6PDMOzRrrNMfKTJkb1Yv4Ag7eQJj4 Y0IkR8RmuaxXD1sgCKdRGL23hhqxxabRLe2LkXRPd3KqPmBvFnh2NnilqyDBFXVH Bo/Vc1qKm+AK1n28rmF7H4Gs7bYHBBL4zc3y/eTGdlD+yEFdSAk9nY8G1pLbTM2y Fow1vWrbcQYSelEr52izTub/hPuw6p5fmEL/lhLxVp6/sw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org