$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/biDJbBGAFU4KV7b_CLHyS0h75x0.roa File: biDJbBGAFU4KV7b_CLHyS0h75x0.roa (raw, json) Hash identifier: KIFS0RP5AR3gugs/csqOFnbtAeg4Y9aZsp9rFKEs12U= Subject key identifier: 6E:20:C9:6C:11:80:15:4E:0A:57:B6:FF:08:B1:F2:4B:48:7B:E7:1D Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CBD Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/biDJbBGAFU4KV7b_CLHyS0h75x0.roa Signing time: Mon 26 Aug 2024 05:28:05 +0000 ROA not before: Mon 26 Aug 2024 05:28:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 61.67.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3261 (0xcbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6E20C96C1180154E0A57B6FF08B1F24B487BE71D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:38:2b:33:21:56:79:24:83:d7:62:82:6b:6a: 2b:49:44:d6:4b:d2:67:74:ad:96:fc:57:1f:76:4c: cf:8a:47:4f:34:e3:63:0a:ea:e0:9b:94:c4:a4:04: c5:5c:c9:cb:b2:53:cd:5a:cf:d6:3d:c2:37:83:5b: 4e:3a:e4:f9:a0:b0:1c:9c:fa:b0:ea:ee:c0:c8:09: ae:2a:46:9f:be:6f:e1:f2:e9:02:0c:1b:a2:eb:32: d8:95:a4:47:01:7d:b6:5d:40:46:97:33:a3:5c:71: 9b:a3:6a:6a:4f:42:6b:b0:f4:db:3b:cf:a3:43:a6: d7:7d:36:2f:29:9d:b4:f1:f6:11:67:7d:3a:be:36: 23:32:a3:37:f1:95:bc:df:b3:ae:9b:f3:75:d3:0d: b4:a4:1a:69:cf:49:1c:8d:b0:cb:de:d2:76:db:e4: 11:d1:56:e6:9e:d2:29:16:a9:36:f1:40:b1:12:d7: d8:c7:9f:73:3e:1c:50:80:c7:55:8d:4b:24:8b:f7: 11:45:dc:e8:9a:dc:85:ea:bd:ba:46:a3:2a:da:03: a8:93:09:72:5a:6d:39:26:01:63:01:a1:76:ce:07: b4:ea:c6:f4:9b:8f:f6:b3:f9:fa:4b:1e:3d:4f:3d: 93:75:63:41:39:0c:30:0c:25:b1:8d:52:be:d4:f9: 35:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:20:C9:6C:11:80:15:4E:0A:57:B6:FF:08:B1:F2:4B:48:7B:E7:1D X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/biDJbBGAFU4KV7b_CLHyS0h75x0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.16.0/20 Signature Algorithm: sha256WithRSAEncryption b4:b5:20:a1:1d:67:a3:a5:e8:dc:85:98:e4:7e:5d:8b:b0:05: 35:ad:d8:77:8b:cb:ec:5c:ac:9b:ef:67:71:b2:e1:36:bd:fc: c8:e8:83:33:62:10:62:62:2c:9d:2d:ab:0b:4a:7e:af:0f:c8: 74:63:b6:24:e3:db:6f:4a:df:7f:e5:52:63:64:16:89:90:d1: cf:ea:a8:22:9e:6b:7e:55:a0:b2:94:80:08:98:eb:b4:66:e9: d6:a9:f8:b4:31:64:02:d0:5a:d4:bc:ea:21:ca:f8:85:8a:a8: e1:68:eb:09:f8:2d:5d:97:9d:53:32:52:7e:b0:9f:c8:b4:c8: d6:24:82:14:ac:02:1b:83:98:ee:ab:6a:27:3f:1e:b4:de:45: 53:07:7e:0b:dc:a6:1e:fd:70:13:54:d9:31:2e:76:ae:f1:9b: b0:00:82:de:91:34:aa:c4:4d:0a:24:f4:aa:22:3e:9d:37:7f: 3d:f2:23:a8:14:58:a6:01:82:d5:c8:67:96:b8:57:3d:ed:69: 5b:ae:b6:43:a2:7e:88:2f:ed:fb:92:01:6d:a8:36:df:16:d9: 35:e1:04:fc:c9:19:d7:5d:3c:59:e3:36:2f:24:52:f9:3f:2f: 7b:c6:e3:58:dc:e6:44:54:ef:fd:8f:e1:1a:35:c7:3d:d1:38: e6:ae:78:38 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFMjBDOTZDMTE4MDE1 NEUwQTU3QjZGRjA4QjFGMjRCNDg3QkU3MUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNOCszIVZ5JIPXYoJraitJRNZL0md0rZb8Vx92TM+KR08042MK 6uCblMSkBMVcycuyU81az9Y9wjeDW0465PmgsByc+rDq7sDICa4qRp++b+Hy6QIM G6LrMtiVpEcBfbZdQEaXM6NccZujampPQmuw9Ns7z6NDptd9Ni8pnbTx9hFnfTq+ NiMyozfxlbzfs66b83XTDbSkGmnPSRyNsMve0nbb5BHRVuae0ikWqTbxQLES19jH n3M+HFCAx1WNSySL9xFF3Oia3IXqvbpGoyraA6iTCXJabTkmAWMBoXbOB7TqxvSb j/az+fpLHj1PPZN1Y0E5DDAMJbGNUr7U+TW1AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUbiDJbBGAFU4KV7b/CLHyS0h75x0wHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvYmlESmJCR0FGVTRLVjdiX0NMSHlT MGg3NXgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBD1DEDAN BgkqhkiG9w0BAQsFAAOCAQEAtLUgoR1no6Xo3IWY5H5di7AFNa3Yd4vL7Fysm+9n cbLhNr38yOiDM2IQYmIsnS2rC0p+rw/IdGO2JOPbb0rff+VSY2QWiZDRz+qoIp5r flWgspSACJjrtGbp1qn4tDFkAtBa1LzqIcr4hYqo4WjrCfgtXZedUzJSfrCfyLTI 1iSCFKwCG4OY7qtqJz8etN5FUwd+C9ymHv1wE1TZMS52rvGbsACC3pE0qsRNCiT0 qiI+nTd/PfIjqBRYpgGC1chnlrhXPe1pW662Q6J+iC/t+5IBbag23xbZNeEE/MkZ 1108WeM2LyRS+T8ve8bjWNzmRFTv/Y/hGjXHPdE45q54OA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:14 2024 by rpki-client on console-fra.rpki-client.org