$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/inV1REwscC4f8j9g73U0rL0mSRM.roa File: inV1REwscC4f8j9g73U0rL0mSRM.roa (raw, json) Hash identifier: RV59Y29UFwPuE4YCpqpM9nVfNwqew1N8AAPwPJlCtHE= Subject key identifier: 8A:75:75:44:4C:2C:70:2E:1F:F2:3F:60:EF:75:34:AC:BD:26:49:13 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CC7 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/inV1REwscC4f8j9g73U0rL0mSRM.roa Signing time: Mon 26 Aug 2024 05:28:07 +0000 ROA not before: Mon 26 Aug 2024 05:28:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 58.99.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3271 (0xcc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8A7575444C2C702E1FF23F60EF7534ACBD264913 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:dc:d0:6c:06:e8:1e:09:89:49:27:84:b7:71: 66:d2:d1:df:fc:0b:47:15:d9:70:67:44:65:d7:6e: 0b:11:dc:5f:4d:fa:08:d4:f7:52:fb:c1:10:04:c2: 29:b6:3c:23:0d:44:14:a7:45:48:4a:74:e4:1e:94: b4:bb:c8:b4:a7:f1:7b:c3:2b:5e:82:39:65:83:12: eb:fe:ac:a2:89:f7:08:40:17:dc:96:e6:d2:eb:fc: 04:19:61:0a:bc:b2:03:82:64:7e:85:7f:e6:0f:3c: b5:6a:c8:e6:0f:10:81:64:71:f5:af:f5:d2:b5:56: fd:fa:5a:2a:bb:5d:53:b2:44:15:a6:5f:68:5a:46: f8:c0:a5:05:22:fe:22:b0:c0:a5:57:4a:e2:54:7c: 58:3b:a4:f3:44:41:c3:70:78:96:4c:43:7e:63:62: fc:f5:46:3f:43:31:9d:5d:07:b2:3e:d2:79:4b:23: 98:40:4b:f0:79:a9:ff:75:23:68:9c:fc:50:fc:33: 3e:fc:db:1d:1f:be:82:bd:44:5f:05:f6:1d:f1:bd: 74:04:50:23:66:7f:6a:45:e9:09:bf:c6:47:d6:cc: 00:e6:bd:db:f4:a5:5c:83:26:02:fe:36:ae:05:fa: 66:d7:ea:13:d0:81:db:6f:4d:b4:1d:68:a4:66:66: 0b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:75:75:44:4C:2C:70:2E:1F:F2:3F:60:EF:75:34:AC:BD:26:49:13 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/inV1REwscC4f8j9g73U0rL0mSRM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.99.64.0/18 Signature Algorithm: sha256WithRSAEncryption 67:6c:08:74:81:03:5b:76:96:7a:b8:58:66:8d:ac:16:bb:c8: 57:23:b8:01:55:a3:7e:bc:87:c4:9c:d1:bb:ff:2a:0a:ae:3c: b7:1a:5a:99:9e:e3:a8:db:dd:eb:43:6c:54:e0:44:15:82:56: f5:63:9e:0d:55:d3:1c:40:7c:4b:05:f0:39:da:35:e1:b1:63: d3:24:8f:fc:ca:36:ba:f7:0d:18:ab:29:14:76:55:54:9e:60: 44:18:88:59:a3:94:6e:0f:d5:3e:6e:b8:cc:ff:20:79:82:97: ab:7d:c4:24:d7:96:11:dc:02:98:62:42:7d:9f:e0:f9:b5:9e: b5:8c:09:c3:4d:61:6e:e3:26:9e:a5:a3:2a:1a:46:b3:33:6c: 03:79:de:44:08:4c:68:48:c6:13:03:b7:7a:71:91:56:bc:f1: 60:f8:2d:1d:87:3f:5a:04:47:29:b9:cf:bc:fe:0d:bd:79:0e: e7:a0:60:01:58:fe:7d:0f:6a:c0:31:b0:01:f6:ce:00:9b:f7: 51:77:36:10:eb:7c:90:db:21:60:14:39:1a:d8:a0:3b:ad:4a: 7e:69:fd:13:f7:95:00:3f:68:f0:6c:a7:cc:a5:e2:b9:4b:f4: 3b:4f:b8:43:b8:27:d5:78:c0:9a:8a:0f:61:f3:7b:aa:7a:c9: 9f:8d:d9:37 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDMcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhBNzU3NTQ0NEMyQzcw MkUxRkYyM0Y2MEVGNzUzNEFDQkQyNjQ5MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR3NBsBugeCYlJJ4S3cWbS0d/8C0cV2XBnRGXXbgsR3F9N+gjU 91L7wRAEwim2PCMNRBSnRUhKdOQelLS7yLSn8XvDK16COWWDEuv+rKKJ9whAF9yW 5tLr/AQZYQq8sgOCZH6Ff+YPPLVqyOYPEIFkcfWv9dK1Vv36Wiq7XVOyRBWmX2ha RvjApQUi/iKwwKVXSuJUfFg7pPNEQcNweJZMQ35jYvz1Rj9DMZ1dB7I+0nlLI5hA S/B5qf91I2ic/FD8Mz782x0fvoK9RF8F9h3xvXQEUCNmf2pF6Qm/xkfWzADmvdv0 pVyDJgL+Nq4F+mbX6hPQgdtvTbQdaKRmZgunAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUinV1REwscC4f8j9g73U0rL0mSRMwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvaW5WMVJFd3NjQzRmOGo5ZzczVTBy TDBtU1JNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBjpjQDAN BgkqhkiG9w0BAQsFAAOCAQEAZ2wIdIEDW3aWerhYZo2sFrvIVyO4AVWjfryHxJzR u/8qCq48txpamZ7jqNvd60NsVOBEFYJW9WOeDVXTHEB8SwXwOdo14bFj0ySP/Mo2 uvcNGKspFHZVVJ5gRBiIWaOUbg/VPm64zP8geYKXq33EJNeWEdwCmGJCfZ/g+bWe tYwJw01hbuMmnqWjKhpGszNsA3neRAhMaEjGEwO3enGRVrzxYPgtHYc/WgRHKbnP vP4NvXkO56BgAVj+fQ9qwDGwAfbOAJv3UXc2EOt8kNshYBQ5GtigO61Kfmn9E/eV AD9o8GynzKXiuUv0O0+4Q7gn1XjAmooPYfN7qnrJn43ZNw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org