$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/2Pzc_ttjPhXoSl0T162ZE58vZB8.roa File: 2Pzc_ttjPhXoSl0T162ZE58vZB8.roa (raw, json) Hash identifier: CwPpVuQJAFXtznq6CtJNqPUIH8grFm74zwX9YQQcQxo= Subject key identifier: D8:FC:DC:FE:DB:63:3E:15:E8:4A:5D:13:D7:AD:99:13:9F:2F:64:1F Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0B9F Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/2Pzc_ttjPhXoSl0T162ZE58vZB8.roa Signing time: Fri 01 Sep 2023 10:01:06 +0000 ROA not before: Fri 01 Sep 2023 10:01:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 61.58.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2975 (0xb9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Sep 1 10:01:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D8FCDCFEDB633E15E84A5D13D7AD99139F2F641F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e8:8e:5d:91:6f:d3:1d:6e:8e:2a:b6:e0:19: 77:a9:5b:46:ec:8e:b5:6a:0d:02:6d:b4:d7:74:d2: 9f:8e:08:f8:54:8e:15:aa:cf:98:95:40:32:3a:47: 1e:87:ea:3d:0e:2f:e1:83:48:bb:a7:18:ba:ae:b3: a6:f4:5b:f4:9a:ad:b4:71:54:0b:8d:32:63:1c:12: af:ae:07:f9:f4:a7:7f:97:72:1e:d9:7b:b0:2d:35: 11:0d:f6:e8:9d:21:ee:67:bd:46:5f:24:7d:d3:47: 9c:6b:d2:63:d8:1d:67:5d:35:30:20:b7:e2:96:7e: 6a:82:3a:c3:d6:2f:33:a7:bc:be:31:65:30:4e:3b: 46:b6:15:e8:a8:9c:77:ad:6f:25:51:2f:2b:ef:ba: 90:8d:d3:22:46:4d:b1:ac:db:ff:50:f2:0f:53:13: ef:8d:8b:49:52:d8:9f:17:c6:4f:ad:8d:eb:e8:7d: 01:96:d5:66:67:f7:f5:f4:2c:e8:4b:92:8e:ab:57: a0:17:fa:87:69:67:dc:55:69:80:07:00:d8:6d:98: c2:c4:54:19:13:3f:3b:bf:a8:31:5e:33:08:f4:05: dd:7d:43:01:f6:f1:03:52:cc:0d:15:ea:28:b1:a3: 04:72:90:43:7b:22:63:bf:a8:35:03:b6:ed:3d:22: 5c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FC:DC:FE:DB:63:3E:15:E8:4A:5D:13:D7:AD:99:13:9F:2F:64:1F X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/2Pzc_ttjPhXoSl0T162ZE58vZB8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.156.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:00:d8:c6:6b:b2:33:6c:3f:49:45:f9:8f:b7:a5:b2:6e:88: 86:ae:8c:13:22:03:78:a4:59:f5:76:f4:14:d0:ff:12:08:72: 46:fb:ba:d6:b6:98:8e:e4:8e:f0:6d:2d:4e:b9:63:d4:93:91: 91:ce:d5:76:d0:50:84:13:b7:d5:0d:1f:4d:31:e2:7d:fd:ac: a2:e7:96:41:0c:1c:3b:8b:6c:54:d6:d6:54:9c:6c:10:27:de: 96:c6:59:9c:3d:b7:5d:99:29:0f:0c:b6:9c:70:80:4f:f7:a4: b8:e2:2a:ac:30:3f:06:ee:fc:09:42:62:d4:55:b5:f1:cc:9a: 91:74:3e:e0:62:a5:b7:f4:64:d6:45:cd:27:bb:63:fd:b2:38: 31:98:03:22:2f:d6:e1:4e:00:04:51:6b:81:c6:e4:ad:e5:0d: 8e:ad:85:a1:c7:cc:d8:a2:38:67:9a:b1:23:eb:05:ea:41:17: fa:76:2e:c0:0d:3b:f7:4b:4e:d9:77:cd:cf:7c:9c:ba:2b:06: 4b:f7:9e:58:38:33:21:52:54:ae:76:0c:df:94:6a:a5:7d:5a: bc:1c:28:1d:07:fb:74:4f:10:58:eb:5c:ed:7a:14:37:a9:4f: f8:3c:3b:82:cd:3a:5f:2f:d1:33:30:89:8a:a7:f5:a1:89:f0: 99:46:ba:22 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICC58wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yMzA5MDEx MDAxMDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ4RkNEQ0ZFREI2MzNF MTVFODRBNUQxM0Q3QUQ5OTEzOUYyRjY0MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr6I5dkW/THW6OKrbgGXepW0bsjrVqDQJttNd00p+OCPhUjhWq z5iVQDI6Rx6H6j0OL+GDSLunGLqus6b0W/SarbRxVAuNMmMcEq+uB/n0p3+Xch7Z e7AtNREN9uidIe5nvUZfJH3TR5xr0mPYHWddNTAgt+KWfmqCOsPWLzOnvL4xZTBO O0a2FeionHetbyVRLyvvupCN0yJGTbGs2/9Q8g9TE++Ni0lS2J8Xxk+tjevofQGW 1WZn9/X0LOhLko6rV6AX+odpZ9xVaYAHANhtmMLEVBkTPzu/qDFeMwj0Bd19QwH2 8QNSzA0V6iixowRykEN7ImO/qDUDtu09IlxFAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU2Pzc/ttjPhXoSl0T162ZE58vZB8wHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvMlB6Y190dGpQaFhvU2wwVDE2MlpF NTh2WkI4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAD06nDAN BgkqhkiG9w0BAQsFAAOCAQEADwDYxmuyM2w/SUX5j7elsm6Ihq6MEyIDeKRZ9Xb0 FND/EghyRvu61raYjuSO8G0tTrlj1JORkc7VdtBQhBO31Q0fTTHiff2soueWQQwc O4tsVNbWVJxsECfelsZZnD23XZkpDwy2nHCAT/ekuOIqrDA/Bu78CUJi1FW18cya kXQ+4GKlt/Rk1kXNJ7tj/bI4MZgDIi/W4U4ABFFrgcbkreUNjq2FocfM2KI4Z5qx I+sF6kEX+nYuwA0790tO2XfNz3ycuisGS/eeWDgzIVJUrnYM35RqpX1avBwoHQf7 dE8QWOtc7XoUN6lP+Dw7gs06Xy/RMzCJiqf1oYnwmUa6Ig== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:43 2024 by rpki-client on console-fra.rpki-client.org