$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/M_LLu_jS03is1be-N-9cb7MAgEk.roa File: M_LLu_jS03is1be-N-9cb7MAgEk.roa (raw, json) Hash identifier: trR5hWHCDc81ubrVuioiDnQa61ckc+Pq1NpX6GHxZyY= Subject key identifier: 33:F2:CB:BB:F8:D2:D3:78:AC:D5:B7:BE:37:EF:5C:6F:B3:00:80:49 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 12CF Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/M_LLu_jS03is1be-N-9cb7MAgEk.roa Signing time: Mon 26 Aug 2024 05:32:34 +0000 ROA not before: Mon 26 Aug 2024 05:32:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131621 IP address blocks: 182.173.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4815 (0x12cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 26 05:32:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=33F2CBBBF8D2D378ACD5B7BE37EF5C6FB3008049 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:9c:0e:84:f2:82:57:cc:10:0d:12:95:2b:7b: be:ef:d2:07:e3:e5:c0:ae:e1:1d:31:f4:0e:95:62: 73:50:71:20:fe:a9:88:a5:e5:81:05:cb:35:36:b6: e9:2c:b9:bf:6d:44:7d:5e:3f:77:3b:15:a0:b8:15: 91:2c:8a:60:2e:12:85:d8:a0:d0:38:cc:80:c8:ff: d9:d1:8f:55:45:12:48:e7:43:69:ec:33:b4:fc:bc: 98:71:fe:69:ec:8d:0b:c9:19:26:9a:38:bb:a8:6c: cb:c8:a2:4b:4f:09:6d:1d:e8:a9:ce:71:f8:60:37: 69:e5:a7:6b:d8:e2:00:75:6d:96:67:48:2a:f2:00: 4c:93:af:0d:dc:19:f8:50:65:1a:d4:e4:b2:88:a6: 83:f8:af:30:9d:c7:bd:47:76:77:77:90:dc:83:30: c3:76:6d:fb:00:73:54:14:8d:3a:a1:91:34:ba:73: f2:46:66:59:f4:e1:8a:9b:9c:c4:04:53:77:53:62: 69:f7:67:c8:dc:9f:79:f8:76:53:e1:21:4b:54:f6: 72:ae:b3:95:e5:2e:48:38:8f:c9:6a:9f:14:49:36: 4e:39:5a:83:29:3b:4c:bd:87:ef:72:ee:9d:ed:22: 0f:8f:65:bb:42:13:2d:30:89:45:b0:cd:1b:55:d5: f1:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F2:CB:BB:F8:D2:D3:78:AC:D5:B7:BE:37:EF:5C:6F:B3:00:80:49 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/M_LLu_jS03is1be-N-9cb7MAgEk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.1.0/24 Signature Algorithm: sha256WithRSAEncryption 44:ec:a9:56:e2:28:26:f3:1c:1f:0e:5a:08:4b:48:af:55:3b: 4a:40:0b:6d:e0:2b:48:d1:e5:2d:4e:52:f6:c3:b4:a1:0b:d7: cb:5b:85:15:5b:16:16:3a:78:66:eb:1d:59:d2:f6:0c:27:25: e4:5c:d8:3b:60:30:9c:51:56:6d:d0:ed:82:e0:0b:65:63:f3: 48:3c:6d:e9:a3:83:52:c2:ef:49:08:24:5d:9b:e0:4f:18:11: 02:f0:72:42:c0:d4:df:83:18:6e:af:70:bb:cb:6e:cb:ec:41: 2a:5d:b1:0b:78:4b:37:d1:d6:e2:67:4d:8f:9a:71:2a:c6:af: 97:c9:de:d5:9a:c5:be:82:60:67:12:9e:ca:0d:95:f6:5c:31: 27:74:c5:82:6c:f9:ac:8d:1f:e3:1a:e4:da:65:bc:f1:4f:27: 4c:db:00:95:17:1f:43:5b:e1:31:3c:a5:41:e4:b9:a5:45:ff: d1:bf:f7:7d:30:a6:85:a9:cc:c0:a1:5a:91:75:84:cc:d9:9f: 21:83:a1:09:17:37:d6:76:3d:b3:11:33:8d:3d:b7:76:c1:ea: 27:c6:52:0f:0d:b6:3b:e9:3e:83:31:48:5d:11:4b:32:28:79: eb:92:4e:58:4d:10:38:aa:6c:52:dd:76:73:09:53:1a:9a:8b: 85:42:0f:35 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEs8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MjYw NTMyMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzRjJDQkJCRjhEMkQz NzhBQ0Q1QjdCRTM3RUY1QzZGQjMwMDgwNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcnA6E8oJXzBANEpUre77v0gfj5cCu4R0x9A6VYnNQcSD+qYil 5YEFyzU2tuksub9tRH1eP3c7FaC4FZEsimAuEoXYoNA4zIDI/9nRj1VFEkjnQ2ns M7T8vJhx/mnsjQvJGSaaOLuobMvIoktPCW0d6KnOcfhgN2nlp2vY4gB1bZZnSCry AEyTrw3cGfhQZRrU5LKIpoP4rzCdx71Hdnd3kNyDMMN2bfsAc1QUjTqhkTS6c/JG Zln04YqbnMQEU3dTYmn3Z8jcn3n4dlPhIUtU9nKus5XlLkg4j8lqnxRJNk45WoMp O0y9h+9y7p3tIg+PZbtCEy0wiUWwzRtV1fFNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUM/LLu/jS03is1be+N+9cb7MAgEkwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9NX0xMdV9qUzAzaXMxYmUtTi05 Y2I3TUFnRWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAtq0B MA0GCSqGSIb3DQEBCwUAA4IBAQBE7KlW4igm8xwfDloIS0ivVTtKQAtt4CtI0eUt TlL2w7ShC9fLW4UVWxYWOnhm6x1Z0vYMJyXkXNg7YDCcUVZt0O2C4AtlY/NIPG3p o4NSwu9JCCRdm+BPGBEC8HJCwNTfgxhur3C7y27L7EEqXbELeEs30dbiZ02PmnEq xq+Xyd7VmsW+gmBnEp7KDZX2XDEndMWCbPmsjR/jGuTaZbzxTydM2wCVFx9DW+Ex PKVB5LmlRf/Rv/d9MKaFqczAoVqRdYTM2Z8hg6EJFzfWdj2zETONPbd2weonxlIP DbY76T6DMUhdEUsyKHnrkk5YTRA4qmxS3XZzCVMamouFQg81 -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:53 2024 by rpki-client on console-fra.rpki-client.org