$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Suapg-ovLGbJxX-MIyzobilrg9M.roa File: Suapg-ovLGbJxX-MIyzobilrg9M.roa (raw, json) Hash identifier: 9JmDrKwKtlMrU4g9qzG7CF6nclPa3Dyyfxi6JNbZ0V4= Subject key identifier: 4A:E6:A9:83:EA:2F:2C:66:C9:C5:7F:8C:23:2C:E8:6E:29:6B:83:D3 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CBE Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Suapg-ovLGbJxX-MIyzobilrg9M.roa Signing time: Mon 26 Aug 2024 05:28:05 +0000 ROA not before: Mon 26 Aug 2024 05:28:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 116.118.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4AE6A983EA2F2C66C9C57F8C232CE86E296B83D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:92:80:79:5b:2f:2f:95:80:90:bb:c8:a3:49: f3:a4:b1:2d:3e:1b:76:f3:49:bb:41:57:16:87:39: b6:4c:c5:00:fa:b3:77:dc:44:2d:79:50:4c:3f:1a: 81:61:01:5e:15:70:b4:5b:72:5c:c0:df:e0:38:97: b7:b3:68:df:12:bd:e6:47:ae:14:e0:29:d6:f9:37: 3b:83:15:ba:1a:15:3c:d1:31:75:36:d2:63:01:15: 89:a0:80:8d:a0:64:1e:6c:c8:24:5f:ab:67:35:a4: f6:94:38:8f:fd:4e:33:b4:82:c9:20:e8:02:17:76: ca:ab:f5:62:ea:46:a9:ca:6f:6b:ed:88:5c:38:fe: 0c:d1:86:3c:a8:a0:4a:4a:12:b1:aa:d0:8b:83:10: 8e:95:d4:02:81:43:1b:0e:79:9b:25:ab:1e:f7:e0: ce:af:d8:75:b0:a7:e4:12:04:8c:cc:49:61:fc:30: 09:7a:b6:74:ff:c2:31:b4:f7:a9:91:0b:01:4a:79: cb:98:42:00:3d:36:65:7b:d7:fc:9f:08:7d:6f:c2: 96:de:cc:d8:2a:ea:3e:7b:2b:45:ae:f4:2a:ff:95: c4:16:f1:88:56:c8:57:24:14:98:ee:2f:ff:04:4a: 9d:b5:dd:a8:12:c6:75:df:e0:67:95:72:64:f5:f5: 32:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:E6:A9:83:EA:2F:2C:66:C9:C5:7F:8C:23:2C:E8:6E:29:6B:83:D3 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Suapg-ovLGbJxX-MIyzobilrg9M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 116.118.128.0/18 Signature Algorithm: sha256WithRSAEncryption 89:b2:6d:32:30:b3:b6:66:b5:a2:3b:c6:2d:0f:a4:ad:8b:0f: 8c:21:7c:8e:f8:cc:8a:5f:72:f8:e7:81:98:fe:d4:0b:5a:1f: db:a9:2f:5f:1e:7b:b4:10:83:97:b9:a0:f2:23:b6:7b:82:b2: 4d:58:90:e3:40:ad:b4:f5:98:bb:45:eb:3d:89:45:6b:f4:b6: 26:ca:34:28:7d:ef:a4:ed:bd:c0:3b:14:d9:14:98:92:04:05: 56:5b:55:c8:f6:6d:e9:1a:e0:ed:6e:7a:87:1f:a3:91:6f:33: 92:1a:80:d6:05:e0:db:28:c6:6d:74:d9:20:38:47:0b:52:b3: 59:be:62:1a:5d:45:ad:f8:f7:82:a7:ef:3c:ee:37:e3:37:64: 7e:77:94:5a:dd:2a:bb:d8:21:d0:01:fa:9f:b0:98:99:1b:d4: 0e:a2:08:df:33:80:00:f8:be:dc:07:9d:2f:b1:64:82:10:2e: 61:79:f0:cd:0e:e6:1c:49:a6:62:58:49:b7:a9:69:46:d4:e2: 5b:2b:66:26:df:45:d5:a9:64:bf:2a:62:c0:19:53:38:e3:ed: 77:2d:7d:9a:aa:4b:78:f6:f3:40:b6:fb:0d:c8:ef:6b:f9:c8: a0:cd:2d:f3:a4:85:19:60:63:66:4d:da:d9:80:ad:a6:8d:42: 7e:ee:cf:16 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRBRTZBOTgzRUEyRjJD NjZDOUM1N0Y4QzIzMkNFODZFMjk2QjgzRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDukoB5Wy8vlYCQu8ijSfOksS0+G3bzSbtBVxaHObZMxQD6s3fc RC15UEw/GoFhAV4VcLRbclzA3+A4l7ezaN8SveZHrhTgKdb5NzuDFboaFTzRMXU2 0mMBFYmggI2gZB5syCRfq2c1pPaUOI/9TjO0gskg6AIXdsqr9WLqRqnKb2vtiFw4 /gzRhjyooEpKErGq0IuDEI6V1AKBQxsOeZslqx734M6v2HWwp+QSBIzMSWH8MAl6 tnT/wjG096mRCwFKecuYQgA9NmV71/yfCH1vwpbezNgq6j57K0Wu9Cr/lcQW8YhW yFckFJjuL/8ESp213agSxnXf4GeVcmT19TJRAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUSuapg+ovLGbJxX+MIyzobilrg9MwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvU3VhcGctb3ZMR2JKeFgtTUl5em9i aWxyZzlNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBnR2gDAN BgkqhkiG9w0BAQsFAAOCAQEAibJtMjCztma1ojvGLQ+krYsPjCF8jvjMil9y+OeB mP7UC1of26kvXx57tBCDl7mg8iO2e4KyTViQ40CttPWYu0XrPYlFa/S2Jso0KH3v pO29wDsU2RSYkgQFVltVyPZt6Rrg7W56hx+jkW8zkhqA1gXg2yjGbXTZIDhHC1Kz Wb5iGl1Frfj3gqfvPO434zdkfneUWt0qu9gh0AH6n7CYmRvUDqII3zOAAPi+3Aed L7FkghAuYXnwzQ7mHEmmYlhJt6lpRtTiWytmJt9F1alkvypiwBlTOOPtdy19mqpL ePbzQLb7Dcjva/nIoM0t86SFGWBjZk3a2YCtpo1Cfu7PFg== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:14 2024 by rpki-client on console-fra.rpki-client.org