$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/xRQmviVX2zDMfqnTgVz01rtUh8o.roa File: xRQmviVX2zDMfqnTgVz01rtUh8o.roa (raw, json) Hash identifier: 6CLiUayOdOBmbcnh2VVbIAczsqEdMCVug1QnPD/zAM4= Subject key identifier: C5:14:26:BE:25:57:DB:30:CC:7E:A9:D3:81:5C:F4:D6:BB:54:87:CA Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CB8 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xRQmviVX2zDMfqnTgVz01rtUh8o.roa Signing time: Mon 26 Aug 2024 05:28:04 +0000 ROA not before: Mon 26 Aug 2024 05:28:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 49.213.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3256 (0xcb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C51426BE2557DB30CC7EA9D3815CF4D6BB5487CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:00:93:b7:fb:8d:23:af:97:c2:37:8b:43:7f: f1:18:6d:a7:a7:30:df:67:d7:83:ba:88:ea:c4:0c: a1:f9:e7:27:00:14:65:b6:15:72:a3:0d:75:70:37: 75:93:9a:d1:d1:f5:ec:e0:0f:a1:2e:47:85:f3:cb: 1b:ca:ca:88:ad:bc:84:df:fb:76:a0:5d:b4:47:98: e0:79:75:6c:73:6e:6f:2f:dd:41:b7:e9:5f:74:c0: 5f:78:16:2e:54:b7:94:28:68:b1:c2:00:8a:4c:0f: 7e:e1:d1:df:85:fb:02:a6:b9:40:13:34:9a:84:e8: 04:4e:54:b9:e4:ea:8c:67:1a:14:45:42:6b:ac:bb: f2:c6:1a:da:2c:8a:d5:23:08:36:87:d1:39:ad:e1: 28:6c:d0:d1:29:23:f2:eb:41:20:c0:6e:d2:04:3f: ca:d5:7e:49:9f:72:2b:73:cc:9f:b1:e5:a5:d5:92: fa:a4:76:ee:cb:45:c7:ce:64:90:e2:0d:a3:e4:38: 7f:e8:f4:42:98:fa:4c:61:53:b5:02:a5:9b:12:a8: 08:94:2c:97:8d:05:98:36:e3:97:2b:40:34:8c:ec: 84:08:e5:45:c0:5d:c9:27:2f:94:2c:4f:08:50:0d: 9a:a8:31:f6:1d:36:02:43:f5:91:34:72:d4:66:5c: 59:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:14:26:BE:25:57:DB:30:CC:7E:A9:D3:81:5C:F4:D6:BB:54:87:CA X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xRQmviVX2zDMfqnTgVz01rtUh8o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.167.0/24 Signature Algorithm: sha256WithRSAEncryption 21:97:4f:38:da:45:b9:f1:70:ed:48:03:3e:f6:df:62:27:d3: 0f:b6:eb:ad:df:ad:ce:ec:5a:8f:f6:c1:e6:b4:e9:99:18:62: ff:30:94:b5:ba:b1:3a:a7:69:33:b4:23:40:9a:71:2c:c8:a0: f6:ae:ba:21:c1:5b:ce:6f:6c:bf:67:8a:e2:60:9f:a5:81:71: 8f:bc:f8:32:8d:f8:59:57:a6:20:23:78:8f:2f:27:aa:f3:d9: 0c:38:f7:24:0a:0d:94:be:98:b5:8c:26:3c:31:88:ef:db:12: cc:00:c3:98:7f:42:4f:c2:da:b8:b8:94:c6:6f:9d:70:67:11: 99:0d:1c:b0:f8:67:79:3b:9f:11:3b:6c:82:0b:88:89:90:47: d8:57:f6:73:57:d4:ec:db:da:49:97:33:e0:ec:ad:c7:9d:0e: c9:a1:ff:b0:67:5a:fa:41:a8:52:82:81:d0:ba:1b:d6:11:db: d4:67:92:d2:0a:a6:2d:78:43:22:f3:17:d2:e9:8d:e7:ff:52: 56:ad:7d:04:a9:34:af:3a:81:f1:1f:58:0f:4e:df:5c:69:d9: cd:9d:bf:80:5d:0c:fd:c9:95:d3:e6:ed:27:cd:4a:ce:96:2b: e9:08:9b:75:10:b4:5e:62:5e:e7:dc:e1:bf:2d:6c:0c:6c:ee: e4:bd:08:3d -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDLgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1MTQyNkJFMjU1N0RC MzBDQzdFQTlEMzgxNUNGNEQ2QkI1NDg3Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpAJO3+40jr5fCN4tDf/EYbaenMN9n14O6iOrEDKH55ycAFGW2 FXKjDXVwN3WTmtHR9ezgD6EuR4XzyxvKyoitvITf+3agXbRHmOB5dWxzbm8v3UG3 6V90wF94Fi5Ut5QoaLHCAIpMD37h0d+F+wKmuUATNJqE6AROVLnk6oxnGhRFQmus u/LGGtositUjCDaH0Tmt4Shs0NEpI/LrQSDAbtIEP8rVfkmfcitzzJ+x5aXVkvqk du7LRcfOZJDiDaPkOH/o9EKY+kxhU7UCpZsSqAiULJeNBZg245crQDSM7IQI5UXA XcknL5QsTwhQDZqoMfYdNgJD9ZE0ctRmXFkbAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUxRQmviVX2zDMfqnTgVz01rtUh8owHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAveFJRbXZpVlgyekRNZnFuVGdWejAx cnRVaDhvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHVpzAN BgkqhkiG9w0BAQsFAAOCAQEAIZdPONpFufFw7UgDPvbfYifTD7brrd+tzuxaj/bB 5rTpmRhi/zCUtbqxOqdpM7QjQJpxLMig9q66IcFbzm9sv2eK4mCfpYFxj7z4Mo34 WVemICN4jy8nqvPZDDj3JAoNlL6YtYwmPDGI79sSzADDmH9CT8LauLiUxm+dcGcR mQ0csPhneTufETtsgguIiZBH2Ff2c1fU7NvaSZcz4Oytx50OyaH/sGda+kGoUoKB 0Lob1hHb1GeS0gqmLXhDIvMX0umN5/9SVq19BKk0rzqB8R9YD07fXGnZzZ2/gF0M /cmV0+btJ81KzpYr6QibdRC0XmJe59zhvy1sDGzu5L0IPQ== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:45 2024 by rpki-client on console-fra.rpki-client.org