$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/H9DgnlCwwQHloflbGPLgT67SMxc.roa File: H9DgnlCwwQHloflbGPLgT67SMxc.roa (raw, json) Hash identifier: euCricQrCZA9Socdpg9tegY2rrJM9TEZuLMLyRGfMPg= Subject key identifier: 1F:D0:E0:9E:50:B0:C1:01:E5:A1:F9:5B:18:F2:E0:4F:AE:D2:33:17 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CB6 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/H9DgnlCwwQHloflbGPLgT67SMxc.roa Signing time: Mon 26 Aug 2024 05:28:04 +0000 ROA not before: Mon 26 Aug 2024 05:28:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 58.99.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3254 (0xcb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1FD0E09E50B0C101E5A1F95B18F2E04FAED23317 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:7d:74:43:c0:4f:d1:8f:f2:85:ca:70:a2:77: c3:5d:db:b0:51:9a:0d:cb:7e:c1:7c:ce:28:11:0b: 8c:39:19:e0:74:1d:8a:ef:39:66:5b:c2:21:00:da: 94:f1:d6:24:b6:ad:7e:1c:20:4e:3b:a4:22:05:4c: 4c:16:9f:14:b7:c6:c1:d3:ca:5e:3f:ce:21:34:a3: 02:f7:17:05:89:48:18:ee:5d:2a:d9:79:2e:db:d4: 9d:e9:64:09:bc:06:f0:41:9f:42:1a:a7:d6:0d:d0: d1:e8:f8:3a:87:3f:5a:43:7b:b8:bf:06:49:8b:fe: ef:be:16:bb:d9:e8:07:ea:a0:01:20:2d:96:75:ee: 44:d1:57:9a:54:d7:7e:28:38:e6:51:7c:d9:84:19: 08:c5:34:3c:e3:fc:e3:d7:28:b0:45:8e:7b:ff:2c: e5:00:55:2b:89:ad:23:7b:79:1e:20:0c:6e:98:4c: 4f:7b:7a:c1:73:79:48:09:e2:09:fd:47:f8:2f:2d: 30:22:84:e6:24:1b:16:aa:f6:f7:12:61:7d:5a:a8: df:b3:a2:5b:89:41:e3:48:11:34:b9:f0:a0:c4:78: f8:8d:76:94:a2:1b:1f:42:7e:a8:1e:bc:c4:da:9f: 9b:b7:4b:1f:78:17:0c:9e:77:bc:fe:c6:d1:25:45: 1d:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:D0:E0:9E:50:B0:C1:01:E5:A1:F9:5B:18:F2:E0:4F:AE:D2:33:17 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/H9DgnlCwwQHloflbGPLgT67SMxc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.99.0.0/18 Signature Algorithm: sha256WithRSAEncryption 02:16:bb:a6:86:3f:96:f8:09:af:10:b3:d9:f3:c4:e4:6c:72: 15:42:79:d4:8b:ba:71:48:51:0f:60:cf:27:e5:fe:4d:12:54: ea:dd:6f:96:20:dc:30:16:90:eb:6c:ce:3d:23:b6:fc:38:50: 6e:c0:e8:f1:75:76:7b:3a:fb:fa:2a:80:aa:4e:5a:c1:4e:63: 43:fd:02:ff:d2:c9:29:e9:64:30:23:9f:e5:41:e9:10:ea:98: 4a:6c:5c:e0:ab:2c:a6:39:2e:21:00:9a:64:ec:4a:c7:b0:0a: 7c:64:46:67:c3:d6:42:40:44:db:f8:b2:67:f9:13:4d:9a:c9: 4a:83:fd:4b:df:2c:e8:0f:0a:7b:e7:05:6e:da:f5:1a:e5:e9: 03:d6:08:7c:71:66:c1:2b:16:5a:39:ef:33:d3:50:72:f3:02: c3:48:5f:3a:8e:af:1b:12:d2:4b:76:f6:c1:89:05:61:b0:aa: 42:5e:c0:2d:97:b8:1b:38:60:fa:59:9b:fb:05:ad:19:dc:cb: fd:bd:da:f5:4b:95:52:8f:e1:56:55:f3:50:90:17:19:c8:82: 8c:45:ec:4a:21:f0:68:0c:80:2e:cd:35:cd:b2:11:ac:8c:b2: 51:3f:0d:b8:e4:37:75:4f:b0:2e:6d:35:05:bd:e1:4c:c3:7d: a5:f0:73:fe -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDLYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFGRDBFMDlFNTBCMEMx MDFFNUExRjk1QjE4RjJFMDRGQUVEMjMzMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgfXRDwE/Rj/KFynCid8Nd27BRmg3LfsF8zigRC4w5GeB0HYrv OWZbwiEA2pTx1iS2rX4cIE47pCIFTEwWnxS3xsHTyl4/ziE0owL3FwWJSBjuXSrZ eS7b1J3pZAm8BvBBn0Iap9YN0NHo+DqHP1pDe7i/BkmL/u++FrvZ6AfqoAEgLZZ1 7kTRV5pU134oOOZRfNmEGQjFNDzj/OPXKLBFjnv/LOUAVSuJrSN7eR4gDG6YTE97 esFzeUgJ4gn9R/gvLTAihOYkGxaq9vcSYX1aqN+zoluJQeNIETS58KDEePiNdpSi Gx9CfqgevMTan5u3Sx94Fwyed7z+xtElRR3LAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUH9DgnlCwwQHloflbGPLgT67SMxcwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvSDlEZ25sQ3d3UUhsb2ZsYkdQTGdU NjdTTXhjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjpjADAN BgkqhkiG9w0BAQsFAAOCAQEAAha7poY/lvgJrxCz2fPE5GxyFUJ51Iu6cUhRD2DP J+X+TRJU6t1vliDcMBaQ62zOPSO2/DhQbsDo8XV2ezr7+iqAqk5awU5jQ/0C/9LJ KelkMCOf5UHpEOqYSmxc4KsspjkuIQCaZOxKx7AKfGRGZ8PWQkBE2/iyZ/kTTZrJ SoP9S98s6A8Ke+cFbtr1GuXpA9YIfHFmwSsWWjnvM9NQcvMCw0hfOo6vGxLSS3b2 wYkFYbCqQl7ALZe4Gzhg+lmb+wWtGdzL/b3a9UuVUo/hVlXzUJAXGciCjEXsSiHw aAyALs01zbIRrIyyUT8NuOQ3dU+wLm01Bb3hTMN9pfBz/g== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org