$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/-QHuoS0HO3hiZ6t3soJHes_aedA.roa File: -QHuoS0HO3hiZ6t3soJHes_aedA.roa (raw, json) Hash identifier: QoDYdYCj8J+MswKjLv2wwnr2kr4snD0sA/DBZ6JVtX4= Subject key identifier: F9:01:EE:A1:2D:07:3B:78:62:67:AB:77:B2:82:47:7A:CF:DA:79:D0 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C78 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/-QHuoS0HO3hiZ6t3soJHes_aedA.roa Signing time: Mon 26 Aug 2024 05:32:41 +0000 ROA not before: Mon 26 Aug 2024 05:32:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3949 IP address blocks: 61.58.41.176/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3192 (0xc78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F901EEA12D073B786267AB77B282477ACFDA79D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:7a:a6:90:69:45:04:27:84:57:0b:e9:50: 74:f9:85:2d:b5:98:2a:48:05:c5:ca:60:22:fc:16: 2e:de:5f:7a:fc:f5:6a:20:01:a7:f3:4b:9e:6b:07: 96:d4:fb:c3:3e:86:13:02:7f:50:40:ca:22:77:21: 94:30:06:aa:d1:0e:98:97:b6:43:e8:cb:31:02:4c: 81:5a:b8:99:75:e5:66:a7:c8:a5:cb:7f:06:e5:4e: e4:7e:6a:56:7f:3e:22:5d:84:49:e4:e3:6a:6d:22: 58:17:ff:35:f2:22:da:67:c5:ba:00:1f:61:b6:87: 3b:ec:54:91:80:83:20:06:fe:3d:67:71:2a:01:c1: 5c:d1:51:49:89:db:9f:3b:1b:5f:c8:f4:52:0e:f8: f2:90:b4:42:3d:d1:85:9e:83:59:b2:c2:1e:f4:bc: 48:f3:d6:0d:c0:3f:f3:2b:be:51:df:c0:20:b6:8f: 4d:ff:ab:2e:20:57:c2:de:d9:36:7f:c3:a2:c0:e9: 7f:72:8e:4a:a5:49:70:f6:c9:a0:d1:d5:72:99:44: 10:69:0c:39:2f:62:b4:23:79:b0:bb:75:22:e1:a8: 41:c0:19:1c:ec:5e:04:30:96:98:ac:4d:b5:9a:7b: f1:d1:27:48:11:fa:9d:35:a8:cf:e2:7a:23:27:61: ca:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:01:EE:A1:2D:07:3B:78:62:67:AB:77:B2:82:47:7A:CF:DA:79:D0 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/-QHuoS0HO3hiZ6t3soJHes_aedA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.41.176/28 Signature Algorithm: sha256WithRSAEncryption 31:69:58:04:d7:d3:f4:1c:9a:03:fc:86:77:eb:19:a8:6b:32: 9b:04:a5:29:5a:5c:9e:70:18:46:9c:a7:df:e9:e1:11:6f:03: 46:85:ca:ed:99:67:fc:0b:09:96:3f:e1:69:87:18:3d:6a:a4: dd:cc:68:d5:c7:e1:fe:83:4a:99:4e:15:89:18:06:41:2d:3b: f6:7e:a2:67:c9:dc:e1:f2:1c:2d:07:9a:15:55:92:f3:41:d5: e4:40:bf:6a:ea:91:ed:b3:c2:b9:bf:c8:30:50:1c:24:57:fe: e1:41:7d:8a:06:24:48:89:8c:98:cf:20:a8:fd:cc:9d:b1:3c: f0:fe:2d:73:46:8e:d3:94:54:b3:e4:39:f7:d1:a1:19:2c:a4: 5b:64:66:38:88:9f:6c:2a:d1:19:85:dd:0c:f5:9d:db:47:f0: 5a:14:96:ae:7d:ef:36:93:7a:8a:97:fe:48:3e:53:b9:42:1f: 6b:06:c5:54:bc:5a:a4:9f:56:9e:44:30:d5:ef:18:e9:12:a6: 06:5f:0a:0a:50:77:55:14:bf:5b:53:79:d6:fa:20:85:c4:37: 5b:45:f8:3a:6f:c7:0b:6e:ee:bb:33:01:72:7b:4e:e5:c3:3d: 03:19:b9:59:bb:69:88:4b:b0:2c:4d:b2:2d:e9:52:96:6d:ed: 95:d2:b3:b1 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5MDFFRUExMkQwNzNC Nzg2MjY3QUI3N0IyODI0NzdBQ0ZEQTc5RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDCnqmkGlFBCeEVwvpUHT5hS21mCpIBcXKYCL8Fi7eX3r89Wog AafzS55rB5bU+8M+hhMCf1BAyiJ3IZQwBqrRDpiXtkPoyzECTIFauJl15WanyKXL fwblTuR+alZ/PiJdhEnk42ptIlgX/zXyItpnxboAH2G2hzvsVJGAgyAG/j1ncSoB wVzRUUmJ2587G1/I9FIO+PKQtEI90YWeg1mywh70vEjz1g3AP/MrvlHfwCC2j03/ qy4gV8Le2TZ/w6LA6X9yjkqlSXD2yaDR1XKZRBBpDDkvYrQjebC7dSLhqEHAGRzs XgQwlpisTbWae/HRJ0gR+p01qM/ieiMnYcpdAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU+QHuoS0HO3hiZ6t3soJHes/aedAwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC8tUUh1b1MwSE8zaGlaNnQzc29K SGVzX2FlZEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEPTop sDANBgkqhkiG9w0BAQsFAAOCAQEAMWlYBNfT9ByaA/yGd+sZqGsymwSlKVpcnnAY Rpyn3+nhEW8DRoXK7Zln/AsJlj/haYcYPWqk3cxo1cfh/oNKmU4ViRgGQS079n6i Z8nc4fIcLQeaFVWS80HV5EC/auqR7bPCub/IMFAcJFf+4UF9igYkSImMmM8gqP3M nbE88P4tc0aO05RUs+Q599GhGSykW2RmOIifbCrRGYXdDPWd20fwWhSWrn3vNpN6 ipf+SD5TuUIfawbFVLxapJ9WnkQw1e8Y6RKmBl8KClB3VRS/W1N51voghcQ3W0X4 Om/HC27uuzMBcntO5cM9Axm5WbtpiEuwLE2yLelSlm3tldKzsQ== -----END CERTIFICATE-----Generated at Mon Nov 25 06:09:01 2024 by rpki-client on console-fra.rpki-client.org