$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/MogQit98IbgTdcg7PxwXx4GpO-g.roa File: MogQit98IbgTdcg7PxwXx4GpO-g.roa (raw, json) Hash identifier: 5fwf4uq9HEschhxe4yxhS1e3qBs5BbhDQ3W2PQRJ+vE= Subject key identifier: 32:88:10:8A:DF:7C:21:B8:13:75:C8:3B:3F:1C:17:C7:81:A9:3B:E8 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 12E0 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/MogQit98IbgTdcg7PxwXx4GpO-g.roa Signing time: Fri 30 Aug 2024 01:56:45 +0000 ROA not before: Fri 30 Aug 2024 01:56:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 182.173.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4832 (0x12e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 30 01:56:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3288108ADF7C21B81375C83B3F1C17C781A93BE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:86:91:25:ec:b9:47:ae:53:7d:3a:27:8b:d3: c3:cc:09:5c:d1:95:6b:18:dd:bc:59:9f:75:56:b6: 42:6a:fc:c9:01:69:65:00:58:df:d4:c6:f9:ee:86: 50:3c:2d:b5:0c:36:82:89:45:37:6d:7b:ba:9e:88: 8d:f5:dc:ce:98:6f:e4:3e:f0:5f:a6:4e:cc:ae:4a: 91:be:b7:58:fb:b4:e1:2e:ad:23:6c:d0:bf:94:2c: 84:55:1c:6d:38:4f:e9:52:94:de:ac:59:d4:52:1a: 2a:ef:26:3b:88:a0:d8:ab:55:d6:f6:1a:fb:df:6a: bb:6a:11:b1:95:53:ce:45:91:b6:9f:30:dc:38:41: 40:55:32:4b:11:99:e6:3e:74:dc:82:f5:97:12:9e: b1:83:49:b5:e1:84:06:16:80:c3:4f:77:e6:20:14: 5a:27:db:66:4c:a6:09:d0:ca:74:e8:61:40:fc:ef: 7a:01:aa:18:8c:65:9e:68:d7:47:25:eb:26:03:ac: 9b:bc:ec:8c:76:ac:43:b5:2c:be:33:ab:82:08:3e: 0e:32:f8:8e:cd:46:7c:af:3e:95:bf:ff:67:0f:f2: b4:07:2e:23:0a:a5:87:48:1f:d8:8d:7d:d8:5d:e9: dc:1b:2a:ec:1b:c0:3e:13:83:8e:48:01:08:45:e9: 7f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:88:10:8A:DF:7C:21:B8:13:75:C8:3B:3F:1C:17:C7:81:A9:3B:E8 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/MogQit98IbgTdcg7PxwXx4GpO-g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 182.173.8.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:46:92:d9:c3:de:7d:1d:63:e3:b7:a5:05:99:48:41:26:fb: 3f:b8:03:91:7e:52:bd:da:05:90:21:bf:51:b3:ff:28:7b:d6: 20:ba:24:43:c5:09:e6:b6:91:6a:f3:e4:a4:8a:8d:0c:a9:ee: 2c:7a:a4:59:bd:30:ff:63:98:3b:cd:3f:9e:2f:69:b3:79:61: 5a:8b:f4:97:e4:75:ed:82:85:9d:72:6c:fa:10:55:4a:58:07: 3a:96:a8:ef:2e:cd:10:0b:81:37:ac:2d:c2:45:b3:df:f9:06: 34:b9:b9:92:4b:3a:97:c6:ac:a7:9c:ba:97:8d:20:a1:1d:9a: 58:2c:8b:cd:69:cf:d4:f8:a5:cc:24:13:07:aa:4a:b6:0c:7b: 8c:80:20:62:48:12:8b:fb:6b:6b:45:b6:3f:28:30:e9:c1:ad: 2d:e5:11:3d:57:60:19:76:d8:90:6d:5b:21:03:a9:71:0e:81: 3c:19:c1:5a:6b:e4:ba:ca:08:6f:f2:28:d5:05:94:49:ee:34: b8:2f:0a:8c:9a:9c:6b:30:94:33:ad:3f:5c:f6:ff:12:d7:85: e9:09:67:86:91:d6:18:af:69:3d:6d:cf:74:31:e4:52:34:7f: fe:fa:22:2d:70:4d:3f:dd:8d:08:0c:97:7e:dd:f0:9d:37:f7: 6d:13:4a:eb -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEuAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MzAw MTU2NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMyODgxMDhBREY3QzIx QjgxMzc1QzgzQjNGMUMxN0M3ODFBOTNCRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFhpEl7LlHrlN9OieL08PMCVzRlWsY3bxZn3VWtkJq/MkBaWUA WN/UxvnuhlA8LbUMNoKJRTdte7qeiI313M6Yb+Q+8F+mTsyuSpG+t1j7tOEurSNs 0L+ULIRVHG04T+lSlN6sWdRSGirvJjuIoNirVdb2GvvfartqEbGVU85FkbafMNw4 QUBVMksRmeY+dNyC9ZcSnrGDSbXhhAYWgMNPd+YgFFon22ZMpgnQynToYUD873oB qhiMZZ5o10cl6yYDrJu87Ix2rEO1LL4zq4IIPg4y+I7NRnyvPpW//2cP8rQHLiMK pYdIH9iNfdhd6dwbKuwbwD4Tg45IAQhF6X8tAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUMogQit98IbgTdcg7PxwXx4GpO+gwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9Nb2dRaXQ5OEliZ1RkY2c3UHh3 WHg0R3BPLWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCtq0I MA0GCSqGSIb3DQEBCwUAA4IBAQAeRpLZw959HWPjt6UFmUhBJvs/uAORflK92gWQ Ib9Rs/8oe9YguiRDxQnmtpFq8+Skio0Mqe4seqRZvTD/Y5g7zT+eL2mzeWFai/SX 5HXtgoWdcmz6EFVKWAc6lqjvLs0QC4E3rC3CRbPf+QY0ubmSSzqXxqynnLqXjSCh HZpYLIvNac/U+KXMJBMHqkq2DHuMgCBiSBKL+2trRbY/KDDpwa0t5RE9V2AZdtiQ bVshA6lxDoE8GcFaa+S6yghv8ijVBZRJ7jS4LwqMmpxrMJQzrT9c9v8S14XpCWeG kdYYr2k9bc90MeRSNH/++iItcE0/3Y0IDJd+3fCdN/dtE0rr -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org