$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/_o9znJcIkbVcdhRfm2rU4R0tal8.roa File: _o9znJcIkbVcdhRfm2rU4R0tal8.roa (raw, json) Hash identifier: uQK0qI3PEzKjXMCeVXEMEv6CFLAphxs84CVN/gykPaE= Subject key identifier: FE:8F:73:9C:97:08:91:B5:5C:76:14:5F:9B:6A:D4:E1:1D:2D:6A:5F Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CB9 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/_o9znJcIkbVcdhRfm2rU4R0tal8.roa Signing time: Mon 26 Aug 2024 05:28:05 +0000 ROA not before: Mon 26 Aug 2024 05:28:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 49.213.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3257 (0xcb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FE8F739C970891B55C76145F9B6AD4E11D2D6A5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a1:dc:72:b3:f0:3a:79:fa:26:a6:c3:5c:6a: 48:ea:5a:be:55:e7:f4:54:bf:4c:50:f8:d3:50:e1: a2:74:94:92:de:11:a6:19:e6:e8:03:e8:86:94:28: f6:81:ce:df:ab:59:3d:79:78:41:e2:e4:3e:2b:3b: 49:76:58:5b:d3:f3:16:bf:55:9e:87:de:06:af:d9: 6c:cf:7f:fc:5b:72:04:da:92:d8:4b:b6:14:68:e7: 5f:d1:83:ba:7d:be:da:bd:87:9c:04:cd:a6:6a:fe: d2:d8:2c:a1:db:4b:b8:03:74:7d:01:50:c6:4e:d2: c8:ed:f9:cb:07:42:11:d2:8c:2f:68:6f:ea:6d:be: bc:bd:0b:bc:29:95:5e:24:3a:70:43:3d:34:82:12: 21:3e:46:0e:a2:28:51:b2:c3:3f:11:51:f3:ae:d7: 42:f1:18:cd:f9:b2:3f:0e:e7:78:ff:9a:e4:9e:2c: ee:27:fc:0a:11:de:4a:0e:b1:cf:f8:e8:c9:61:29: 7f:5f:7a:c4:40:8e:53:5e:00:9f:18:d4:01:0f:00: 90:b0:e9:9e:60:3c:7e:ee:db:e3:ff:88:bf:fc:5a: 16:64:d3:4a:1f:91:d8:a1:0e:88:f6:f5:fb:3b:6e: f3:5f:86:bb:63:e8:e2:19:bb:2f:1f:31:d9:20:c7: 90:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8F:73:9C:97:08:91:B5:5C:76:14:5F:9B:6A:D4:E1:1D:2D:6A:5F X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/_o9znJcIkbVcdhRfm2rU4R0tal8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.128.0/17 Signature Algorithm: sha256WithRSAEncryption 6f:d7:b8:4b:c6:d8:71:7a:92:b0:0d:d9:39:2a:48:a0:df:1d: 15:90:91:0e:9e:3f:11:18:97:53:69:e1:14:44:b3:15:f7:fb: 17:75:06:a6:42:19:de:5c:02:c3:ce:22:8a:08:85:2e:c8:6d: 73:77:06:6b:d5:ef:58:04:d9:dc:e8:e4:8f:11:25:ff:72:ca: 6b:d7:3d:cc:8c:95:8b:7e:76:5b:20:b6:e0:13:03:77:fb:9d: 0a:2f:b3:54:cb:00:54:a1:56:50:28:c3:53:9d:70:c9:3c:62: 25:0f:e0:37:eb:ed:7d:13:8d:c9:06:f6:0e:2f:d2:e3:5e:cd: 71:f0:53:ef:dd:10:51:66:db:14:7f:14:7f:68:59:98:c9:d9: 35:67:dc:a7:58:8c:11:b5:ac:8c:ca:10:87:d5:ca:71:c8:7e: 51:d6:ca:27:e0:95:73:c4:78:68:6b:95:af:bb:53:b6:92:82: 0a:8d:b9:8a:65:03:3e:96:b3:c1:4a:4b:8b:71:0f:d6:f5:c9: 8f:d7:8a:cb:03:a8:53:a3:27:11:3f:b5:c2:e8:07:aa:bc:df: 35:44:d5:85:45:ea:27:b3:8b:8a:fa:35:7a:4c:3a:1b:9a:3e: d5:27:9e:33:63:d3:26:80:80:b6:9b:03:db:74:b1:5c:2a:a2: 04:b8:8e:d5 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDLkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFOEY3MzlDOTcwODkx QjU1Qzc2MTQ1RjlCNkFENEUxMUQyRDZBNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+odxys/A6efompsNcakjqWr5V5/RUv0xQ+NNQ4aJ0lJLeEaYZ 5ugD6IaUKPaBzt+rWT15eEHi5D4rO0l2WFvT8xa/VZ6H3gav2WzPf/xbcgTakthL thRo51/Rg7p9vtq9h5wEzaZq/tLYLKHbS7gDdH0BUMZO0sjt+csHQhHSjC9ob+pt vry9C7wplV4kOnBDPTSCEiE+Rg6iKFGywz8RUfOu10LxGM35sj8O53j/muSeLO4n /AoR3koOsc/46MlhKX9fesRAjlNeAJ8Y1AEPAJCw6Z5gPH7u2+P/iL/8WhZk00of kdihDoj29fs7bvNfhrtj6OIZuy8fMdkgx5AjAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU/o9znJcIkbVcdhRfm2rU4R0tal8wHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvX285em5KY0lrYlZjZGhSZm0yclU0 UjB0YWw4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBzHVgDAN BgkqhkiG9w0BAQsFAAOCAQEAb9e4S8bYcXqSsA3ZOSpIoN8dFZCRDp4/ERiXU2nh FESzFff7F3UGpkIZ3lwCw84iigiFLshtc3cGa9XvWATZ3OjkjxEl/3LKa9c9zIyV i352WyC24BMDd/udCi+zVMsAVKFWUCjDU51wyTxiJQ/gN+vtfRONyQb2Di/S417N cfBT790QUWbbFH8Uf2hZmMnZNWfcp1iMEbWsjMoQh9XKcch+UdbKJ+CVc8R4aGuV r7tTtpKCCo25imUDPpazwUpLi3EP1vXJj9eKywOoU6MnET+1wugHqrzfNUTVhUXq J7OLivo1ekw6G5o+1SeeM2PTJoCAtpsD23SxXCqiBLiO1Q== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:14 2024 by rpki-client on console-fra.rpki-client.org