$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6LVSIALAZUau6oV6NZ-8yYVbcU0.roa File: 6LVSIALAZUau6oV6NZ-8yYVbcU0.roa (raw, json) Hash identifier: 5hlTH1YGOmYVHY8L3EU4T3ry/gSFJ8bKBtk4PsAaqE8= Subject key identifier: E8:B5:52:20:02:C0:65:46:AE:EA:85:7A:35:9F:BC:C9:85:5B:71:4D Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 12DE Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6LVSIALAZUau6oV6NZ-8yYVbcU0.roa Signing time: Fri 30 Aug 2024 01:56:28 +0000 ROA not before: Fri 30 Aug 2024 01:56:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 182.173.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4830 (0x12de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 30 01:56:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E8B5522002C06546AEEA857A359FBCC9855B714D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:f4:7a:9e:9b:12:ae:c5:43:80:7d:d9:4a: 6b:0d:64:3c:73:a0:19:07:30:31:16:54:6f:6c:f3: 97:2a:20:3b:f7:e2:b9:79:3d:9b:e4:05:81:8e:2a: 8a:a5:f5:20:15:89:41:f8:21:d2:91:76:15:eb:91: 35:3b:83:d6:78:0c:26:b4:14:12:25:83:ef:07:60: d3:ef:f9:9f:0a:f4:97:79:92:2b:6c:de:d8:18:12: f4:6f:f6:4f:04:5d:22:df:77:95:6f:ea:f1:28:a2: c8:ab:c5:9a:b5:cc:74:9d:ec:7b:2f:37:1f:91:6f: 40:d9:88:4e:4e:0b:4e:ec:3e:60:51:ca:e6:9e:a1: 8b:a4:e0:b6:04:fb:5b:ec:4b:e6:92:af:80:e4:18: f1:08:24:51:39:f2:c1:9c:5b:69:a0:32:8b:a2:d6: f0:f5:1c:1e:00:00:9e:93:eb:ed:aa:fe:48:4a:53: ba:84:2b:79:ee:9f:60:d5:42:f9:81:9b:f1:94:64: 54:2b:24:c4:5f:ff:45:5f:21:60:9f:9c:eb:7a:1d: ac:60:31:13:f4:33:06:f5:77:4e:6a:91:72:37:9a: 05:86:fc:a6:99:e7:b0:dc:3b:97:93:6b:86:c9:69: 97:ce:62:70:2b:73:01:52:94:48:6f:76:cd:0d:5d: 13:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:B5:52:20:02:C0:65:46:AE:EA:85:7A:35:9F:BC:C9:85:5B:71:4D X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/6LVSIALAZUau6oV6NZ-8yYVbcU0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.4.0/22 Signature Algorithm: sha256WithRSAEncryption b1:0b:1c:97:a2:65:ae:c9:e1:13:d3:f6:29:d0:1f:31:ac:02: df:0b:89:19:83:91:58:38:c5:8d:5a:6e:96:48:c3:10:db:7a: 0b:a3:fe:33:58:9f:f4:e9:ea:8f:a1:4e:cf:90:96:07:64:4b: 5b:78:42:13:4c:88:ed:ac:76:18:9a:5d:e6:cc:1f:cb:04:93: 67:23:5d:8c:43:12:fc:54:d1:32:f3:85:4d:70:87:2d:3d:1d: d0:86:5d:ae:c8:92:aa:90:97:bf:44:9a:13:19:e2:03:32:20: 55:dd:7d:e0:e2:fa:ba:6a:8e:39:d0:0b:78:02:7a:6e:f4:22: d2:a6:dc:f6:d5:6a:b6:52:6d:0c:fc:90:97:5b:04:e5:ec:50: ef:16:94:f4:71:29:59:0a:92:d8:04:7e:5a:aa:cc:33:78:9a: c4:0b:09:96:63:50:40:d9:a0:13:74:9c:b6:c2:29:24:86:d7: 3b:50:6d:4c:2d:bf:3b:22:2f:b3:f4:64:5a:5b:c8:d7:37:3b: 16:4c:fb:c3:cd:95:f9:4a:cd:ec:21:ce:e0:c1:25:42:f3:b6: 51:ac:ee:c2:01:66:aa:f5:12:35:ef:98:97:c1:64:94:7f:c7: e9:26:1d:91:dd:88:f5:b8:e9:a2:86:5c:92:17:e9:98:8f:d7: 34:b5:36:bd -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MzAw MTU2MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4QjU1MjIwMDJDMDY1 NDZBRUVBODU3QTM1OUZCQ0M5ODU1QjcxNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQBvR6npsSrsVDgH3ZSmsNZDxzoBkHMDEWVG9s85cqIDv34rl5 PZvkBYGOKoql9SAViUH4IdKRdhXrkTU7g9Z4DCa0FBIlg+8HYNPv+Z8K9Jd5kits 3tgYEvRv9k8EXSLfd5Vv6vEoosirxZq1zHSd7HsvNx+Rb0DZiE5OC07sPmBRyuae oYuk4LYE+1vsS+aSr4DkGPEIJFE58sGcW2mgMoui1vD1HB4AAJ6T6+2q/khKU7qE K3nun2DVQvmBm/GUZFQrJMRf/0VfIWCfnOt6HaxgMRP0Mwb1d05qkXI3mgWG/KaZ 57DcO5eTa4bJaZfOYnArcwFSlEhvds0NXRMnAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU6LVSIALAZUau6oV6NZ+8yYVbcU0wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy82TFZTSUFMQVpVYXU2b1Y2Tlot OHlZVmJjVTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtq0E MA0GCSqGSIb3DQEBCwUAA4IBAQCxCxyXomWuyeET0/Yp0B8xrALfC4kZg5FYOMWN Wm6WSMMQ23oLo/4zWJ/06eqPoU7PkJYHZEtbeEITTIjtrHYYml3mzB/LBJNnI12M QxL8VNEy84VNcIctPR3Qhl2uyJKqkJe/RJoTGeIDMiBV3X3g4vq6ao450At4Anpu 9CLSptz21Wq2Um0M/JCXWwTl7FDvFpT0cSlZCpLYBH5aqswzeJrECwmWY1BA2aAT dJy2wikkhtc7UG1MLb87Ii+z9GRaW8jXNzsWTPvDzZX5Ss3sIc7gwSVC87ZRrO7C AWaq9RI175iXwWSUf8fpJh2R3Yj1uOmihlySF+mYj9c0tTa9 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org