$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/MxadeoBPy1qTJ8BoKfwBNDKAFC4.roa File: MxadeoBPy1qTJ8BoKfwBNDKAFC4.roa (raw, json) Hash identifier: qpNxkQgkmc7vuLaJWolRS3El9A9GzConzN7zFqKggcU= Subject key identifier: 33:16:9D:7A:80:4F:CB:5A:93:27:C0:68:29:FC:01:34:32:80:14:2E Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Certificate serial: 0C49 Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/MxadeoBPy1qTJ8BoKfwBNDKAFC4.roa Signing time: Mon 26 Aug 2024 05:32:44 +0000 ROA not before: Mon 26 Aug 2024 05:32:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 43.250.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Validity Not Before: Aug 26 05:32:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=33169D7A804FCB5A9327C06829FC01343280142E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:9e:53:ce:6e:d4:f4:68:d3:b4:f1:21:66:cb: 8b:14:7a:c7:7d:4e:d7:27:aa:f9:5d:3a:aa:43:c9: f8:39:03:e0:cf:fa:6d:27:43:a9:14:56:eb:8c:6d: 7b:f0:d2:af:0e:5a:70:d2:e8:d8:f4:1a:56:df:03: 86:37:bd:2e:22:dd:50:80:26:b8:83:58:28:51:a6: 86:0e:fe:57:cc:fd:2a:0e:6d:1e:a4:0f:cf:ed:ac: 94:a3:2a:c3:73:83:8f:12:4d:60:b2:e1:43:c0:db: 84:67:b6:e8:f9:cf:a5:ff:2e:0c:52:8a:6f:ae:25: 15:03:f5:10:41:a8:b5:0e:ba:79:21:49:13:5a:8b: dc:45:b5:77:76:d4:73:61:1b:dc:d4:08:c8:ee:3c: ad:83:1d:76:f4:7b:9c:2a:82:bc:89:f7:bf:5d:b7: 45:51:cc:37:07:9b:d9:a8:c7:a5:17:17:d8:77:1d: 7d:ff:02:97:df:2f:7f:c0:24:81:c8:f8:e8:7e:15: b7:7b:53:ba:05:44:5e:c2:08:25:50:ef:cc:b8:ac: ac:fc:d4:3b:31:28:b5:f4:7a:6d:04:4f:82:e5:55: 3e:45:25:a9:be:e8:5b:09:58:8f:ca:4c:96:0a:32: a5:5c:f1:de:72:82:62:2e:d0:d1:be:e9:16:e3:09: de:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:16:9D:7A:80:4F:CB:5A:93:27:C0:68:29:FC:01:34:32:80:14:2E X509v3 Authority Key Identifier: keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/MxadeoBPy1qTJ8BoKfwBNDKAFC4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.250.44.0/23 Signature Algorithm: sha256WithRSAEncryption 76:2e:ee:4b:f6:8b:69:bf:0c:e9:5a:6c:28:6c:de:5f:aa:34: 89:29:65:54:39:12:2b:b2:c1:5a:46:aa:f9:d7:db:3e:74:01: 9c:0b:21:4a:2e:8f:42:72:6e:ae:af:6f:99:d0:fa:95:62:e0: fc:5a:0d:65:02:25:83:08:61:c8:bf:a0:fb:c5:c0:ac:3d:9e: 38:8a:65:ea:ae:dd:1b:bf:64:64:05:16:34:ac:9b:38:c3:35: 85:d9:13:9e:fb:47:32:4e:9e:62:53:0e:b5:2b:cc:0b:70:b3: 4e:56:11:02:7b:67:85:3c:a9:3c:e1:6a:64:a7:17:2d:f9:66: d7:ae:c3:67:ef:ec:4f:c9:33:b9:49:30:ea:b6:89:64:32:28: 0a:19:64:44:bd:a6:ec:73:84:43:58:f1:4b:50:cc:6e:93:11: 38:3d:ce:bc:f7:67:67:11:19:20:99:ee:61:30:ac:d0:1c:5a: 22:45:ee:aa:9a:66:a9:c4:a0:28:c5:9e:bb:ad:8d:b3:4a:d7: 6c:39:53:d2:f2:e5:27:38:25:79:bd:96:6d:41:7d:78:5f:e5: 12:1b:db:5d:0c:48:0a:37:2a:c6:30:7a:40:8d:32:86:02:aa: 75:66:49:0c:4b:a2:4c:14:f3:ef:b4:1e:bc:ad:2e:0e:4e:04: 8d:d7:d5:f8 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yNDA4MjYw NTMyNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzMTY5RDdBODA0RkNC NUE5MzI3QzA2ODI5RkMwMTM0MzI4MDE0MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMnlPObtT0aNO08SFmy4sUesd9TtcnqvldOqpDyfg5A+DP+m0n Q6kUVuuMbXvw0q8OWnDS6Nj0GlbfA4Y3vS4i3VCAJriDWChRpoYO/lfM/SoObR6k D8/trJSjKsNzg48STWCy4UPA24Rntuj5z6X/LgxSim+uJRUD9RBBqLUOunkhSRNa i9xFtXd21HNhG9zUCMjuPK2DHXb0e5wqgryJ979dt0VRzDcHm9mox6UXF9h3HX3/ ApffL3/AJIHI+Oh+Fbd7U7oFRF7CCCVQ78y4rKz81DsxKLX0em0ET4LlVT5FJam+ 6FsJWI/KTJYKMqVc8d5ygmIu0NG+6RbjCd6pAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUMxadeoBPy1qTJ8BoKfwBNDKAFC4wHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7 t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL014YWRlb0JQeTFxVEo4Qm9LZndCTkRL QUZDNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAEr+iwwDQYJ KoZIhvcNAQELBQADggEBAHYu7kv2i2m/DOlabChs3l+qNIkpZVQ5EiuywVpGqvnX 2z50AZwLIUouj0Jybq6vb5nQ+pVi4PxaDWUCJYMIYci/oPvFwKw9njiKZequ3Ru/ ZGQFFjSsmzjDNYXZE577RzJOnmJTDrUrzAtws05WEQJ7Z4U8qTzhamSnFy35Zteu w2fv7E/JM7lJMOq2iWQyKAoZZES9puxzhENY8UtQzG6TETg9zrz3Z2cRGSCZ7mEw rNAcWiJF7qqaZqnEoCjFnrutjbNK12w5U9Ly5Sc4JXm9lm1BfXhf5RIb210MSAo3 KsYwekCNMoYCqnVmSQxLokwU8++0HrytLg5OBI3X1fg= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org