$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_hjWljh6zt3P4cXVv3WJzYl33t8.roa File: _hjWljh6zt3P4cXVv3WJzYl33t8.roa (raw, json) Hash identifier: 0up4SExwYAtd0xnLdzHjY+TGvS5dppMdhfv8gnLZiXE= Subject key identifier: FE:18:D6:96:38:7A:CE:DD:CF:E1:C5:D5:BF:75:89:CD:89:77:DE:DF Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C7A Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_hjWljh6zt3P4cXVv3WJzYl33t8.roa Signing time: Mon 26 Aug 2024 05:32:41 +0000 ROA not before: Mon 26 Aug 2024 05:32:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3949 IP address blocks: 122.255.94.16/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FE18D696387ACEDDCFE1C5D5BF7589CD8977DEDF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:27:b9:50:63:85:f4:2f:bf:88:b8:bb:0f:65: 93:3e:f6:db:ba:11:14:97:fd:0e:20:02:44:71:04: 9d:98:e8:89:af:bd:cf:41:89:fb:7c:6b:71:6e:1a: fa:a3:54:92:78:a8:e4:67:b7:e3:61:22:67:8c:e3: d6:a3:8a:d7:60:95:5e:da:67:b5:33:84:a4:c3:cf: e7:24:10:84:02:9b:45:9e:4b:be:57:b1:a3:e9:1a: 57:81:90:15:8a:8a:e5:f6:f6:d0:96:57:ef:a3:1a: 38:20:f8:df:50:f7:35:96:59:e1:60:6e:3a:bd:67: 1a:a1:19:91:62:cf:72:74:f7:d8:34:f0:c9:03:89: 81:95:a9:f9:09:cc:a8:bf:3b:5f:93:d3:23:0c:41: 62:fb:7a:10:42:b2:0b:80:f2:8a:da:75:87:25:cf: ab:74:f1:5b:c8:61:6e:02:47:a2:dd:3c:b3:8e:f4: 17:53:a1:40:9c:d8:98:1a:5a:dc:78:35:02:06:8b: 7a:c4:e4:8f:5f:77:85:9d:74:26:3b:21:4f:d4:b7: 65:e9:b1:5f:45:89:f5:c8:23:28:ca:4d:b1:c1:9f: 1c:2c:8f:43:4a:04:95:03:ef:73:09:c3:f0:cb:9b: 04:fe:dd:56:a7:da:d2:e4:d8:94:27:f2:0b:55:3a: d3:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:18:D6:96:38:7A:CE:DD:CF:E1:C5:D5:BF:75:89:CD:89:77:DE:DF X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/_hjWljh6zt3P4cXVv3WJzYl33t8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.94.16/28 Signature Algorithm: sha256WithRSAEncryption 61:0d:3e:a2:4a:61:24:ba:0c:9a:01:df:cb:51:7c:f2:51:9d: 2a:6f:65:76:05:74:9f:c2:b1:65:79:7d:ec:9a:53:17:62:f6: d6:05:78:2a:e7:de:62:78:b7:a8:5a:81:e6:78:50:37:a3:b3: 9b:42:de:a7:7d:be:c1:57:95:db:15:29:b2:88:bf:48:3d:db: 15:7b:1e:34:8d:44:de:3f:cd:f2:46:01:74:68:82:7e:59:10: 55:27:2f:a3:69:80:d3:be:0d:e3:37:40:80:ae:f4:57:fd:82: 20:61:8f:b8:61:4d:4c:83:bf:87:94:e5:c4:5e:c2:45:60:de: 3d:3e:01:d6:41:c7:8f:ec:2c:dc:6b:c3:fb:ce:7d:38:68:50: e9:54:99:42:86:4a:29:66:70:b4:f4:a2:aa:5d:50:3b:91:0f: 2b:f0:55:95:b7:21:6f:83:0f:ae:64:94:cc:a9:6d:4a:77:77: 1f:22:a6:c0:0f:55:21:9d:5b:31:73:c4:2c:7f:be:34:27:2c: cf:8d:18:77:b8:27:83:1c:59:dc:81:c1:eb:c4:03:e0:42:6c: e0:9d:a8:9c:f1:83:cb:c5:77:7b:8e:55:67:bd:ae:65:78:c7: ea:9e:2e:76:28:5f:82:f6:5f:99:82:a4:68:78:e6:c0:04:67: 7c:c3:cf:fb -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFMThENjk2Mzg3QUNF RERDRkUxQzVENUJGNzU4OUNEODk3N0RFREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0J7lQY4X0L7+IuLsPZZM+9tu6ERSX/Q4gAkRxBJ2Y6Imvvc9B ift8a3FuGvqjVJJ4qORnt+NhImeM49ajitdglV7aZ7UzhKTDz+ckEIQCm0WeS75X saPpGleBkBWKiuX29tCWV++jGjgg+N9Q9zWWWeFgbjq9ZxqhGZFiz3J099g08MkD iYGVqfkJzKi/O1+T0yMMQWL7ehBCsguA8oradYclz6t08VvIYW4CR6LdPLOO9BdT oUCc2JgaWtx4NQIGi3rE5I9fd4WddCY7IU/Ut2XpsV9FifXIIyjKTbHBnxwsj0NK BJUD73MJw/DLmwT+3Van2tLk2JQn8gtVOtOnAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU/hjWljh6zt3P4cXVv3WJzYl33t8wHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9faGpXbGpoNnp0M1A0Y1hWdjNX SnpZbDMzdDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9e EDANBgkqhkiG9w0BAQsFAAOCAQEAYQ0+okphJLoMmgHfy1F88lGdKm9ldgV0n8Kx ZXl97JpTF2L21gV4KufeYni3qFqB5nhQN6Ozm0Lep32+wVeV2xUpsoi/SD3bFXse NI1E3j/N8kYBdGiCflkQVScvo2mA074N4zdAgK70V/2CIGGPuGFNTIO/h5TlxF7C RWDePT4B1kHHj+ws3GvD+859OGhQ6VSZQoZKKWZwtPSiql1QO5EPK/BVlbchb4MP rmSUzKltSnd3HyKmwA9VIZ1bMXPELH++NCcsz40Yd7gngxxZ3IHB68QD4EJs4J2o nPGDy8V3e45VZ72uZXjH6p4udihfgvZfmYKkaHjmwARnfMPP+w== -----END CERTIFICATE-----Generated at Fri Nov 22 08:22:31 2024 by rpki-client on console-fra.rpki-client.org