$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWT/pl6fSz3y6VUxqvPTt_YHrPNLDw8.roa File: pl6fSz3y6VUxqvPTt_YHrPNLDw8.roa (raw, json) Hash identifier: CbojrIyXUPNoelnUJjrTWV6rBnqydLzNS/WK48l7KmA= Subject key identifier: A6:5E:9F:4B:3D:F2:E9:55:31:AA:F3:D3:B7:F6:07:AC:F3:4B:0F:0F Certificate issuer: /CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Certificate serial: 0C4C Authority key identifier: 7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/pl6fSz3y6VUxqvPTt_YHrPNLDw8.roa Signing time: Mon 26 Aug 2024 05:32:45 +0000 ROA not before: Mon 26 Aug 2024 05:32:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38851 IP address blocks: 43.250.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3148 (0xc4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7EC7F1677BB492380282153BB77EC2EBE3185378 Validity Not Before: Aug 26 05:32:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A65E9F4B3DF2E95531AAF3D3B7F607ACF34B0F0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5d:0a:74:71:de:cd:b0:7d:8f:da:bf:40:39: d9:e1:5e:7f:aa:b9:db:ec:b7:67:86:50:a0:f6:eb: 99:3b:8b:4d:d1:c7:04:a3:7b:85:04:f5:74:3b:40: 12:ac:52:62:6c:eb:f8:34:fd:d4:f8:c8:78:01:07: 4a:e6:43:f3:bd:08:ac:90:b0:c1:ea:5c:30:00:8a: 36:41:28:50:1b:eb:1a:ba:24:b4:0f:07:c8:83:2f: ca:b6:04:55:af:33:dc:10:26:82:c3:51:de:cf:35: 77:30:d3:64:69:96:76:bd:a0:23:e8:41:b0:37:2e: 50:a7:54:9e:89:16:df:2d:ab:cf:e5:5d:7e:1a:2a: 47:5c:50:8c:4b:f3:25:27:13:15:89:c7:87:a1:7f: e9:c3:20:5f:55:e7:88:b5:23:79:ab:78:6f:e0:fe: 99:51:84:bc:26:81:18:81:74:e1:78:65:e1:cc:d4: 87:0f:89:b0:2f:67:5c:3f:2f:19:46:71:77:1f:03: 15:f2:c5:81:b2:d1:66:15:ca:b2:a8:7c:b3:8a:2a: 57:04:ad:68:be:d5:10:70:e7:c6:a7:dc:5a:a1:ac: 31:ce:2a:d0:35:eb:e0:a0:58:ad:92:e8:ab:12:64: f2:26:f6:8d:8e:81:19:ab:15:7a:a5:9d:3d:cb:31: 44:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5E:9F:4B:3D:F2:E9:55:31:AA:F3:D3:B7:F6:07:AC:F3:4B:0F:0F X509v3 Authority Key Identifier: keyid:7E:C7:F1:67:7B:B4:92:38:02:82:15:3B:B7:7E:C2:EB:E3:18:53:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/fsfxZ3u0kjgCghU7t37C6-MYU3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fsfxZ3u0kjgCghU7t37C6-MYU3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWT/pl6fSz3y6VUxqvPTt_YHrPNLDw8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.250.44.0/22 Signature Algorithm: sha256WithRSAEncryption 72:dd:1c:67:4e:40:5f:12:16:f7:c3:63:d2:93:7e:30:ed:00: 87:2d:95:4f:9a:27:90:9a:11:a7:a0:23:ab:bf:f0:b0:0a:07: 87:41:1c:4f:5d:b3:80:7f:da:e2:33:6d:0f:07:ed:a8:13:0b: d4:bc:16:83:e7:dc:b7:c2:ab:0f:e7:50:2c:f7:dd:22:d9:e5: 34:2c:9a:7a:25:c9:ff:8a:e2:e9:4e:c8:5c:4f:23:5f:4d:0d: 8d:f3:b3:c2:4d:08:b2:8b:90:fc:55:45:6d:c7:f9:33:09:55: de:a1:a1:14:be:b1:83:10:ba:b6:99:ab:55:96:24:62:86:4a: e7:89:ff:de:db:19:0b:eb:e7:1a:1c:0d:a7:f7:b4:19:6f:2c: e3:52:2c:84:78:ac:fc:f6:01:dc:91:c1:87:9e:32:31:77:69: a1:40:25:03:d9:c0:f0:cb:85:02:61:1b:e4:7e:59:db:6d:fa: 39:98:2e:59:7d:dd:5a:80:a1:c3:7d:eb:4e:f1:78:32:a8:46: b1:2f:f7:11:84:1b:10:b9:e0:ee:3a:4b:7f:ac:e9:48:63:f5: 7d:25:60:c7:47:45:f9:e4:f0:32:e4:07:cd:c8:9e:bb:6d:89: 00:46:65:39:0c:23:f6:2d:01:53:c3:36:dd:72:fa:f1:6c:e2: 18:40:e7:a0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VD N0YxNjc3QkI0OTIzODAyODIxNTNCQjc3RUMyRUJFMzE4NTM3ODAeFw0yNDA4MjYw NTMyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2NUU5RjRCM0RGMkU5 NTUzMUFBRjNEM0I3RjYwN0FDRjM0QjBGMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2XQp0cd7NsH2P2r9AOdnhXn+qudvst2eGUKD265k7i03RxwSj e4UE9XQ7QBKsUmJs6/g0/dT4yHgBB0rmQ/O9CKyQsMHqXDAAijZBKFAb6xq6JLQP B8iDL8q2BFWvM9wQJoLDUd7PNXcw02Rplna9oCPoQbA3LlCnVJ6JFt8tq8/lXX4a KkdcUIxL8yUnExWJx4ehf+nDIF9V54i1I3mreG/g/plRhLwmgRiBdOF4ZeHM1IcP ibAvZ1w/LxlGcXcfAxXyxYGy0WYVyrKofLOKKlcErWi+1RBw58an3FqhrDHOKtA1 6+CgWK2S6KsSZPIm9o2OgRmrFXqlnT3LMUSFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUpl6fSz3y6VUxqvPTt/YHrPNLDw8wHwYDVR0jBBgwFoAUfsfxZ3u0kjgCghU7 t37C6+MYU3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL2Zz ZnhaM3Uwa2pnQ2doVTd0MzdDNi1NWVUzZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZnNmeFozdTBramdDZ2hVN3QzN0M2LU1ZVTNnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVFdUL3BsNmZTejN5NlZVeHF2UFR0X1lIclBO TER3OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIr+iwwDQYJ KoZIhvcNAQELBQADggEBAHLdHGdOQF8SFvfDY9KTfjDtAIctlU+aJ5CaEaegI6u/ 8LAKB4dBHE9ds4B/2uIzbQ8H7agTC9S8FoPn3LfCqw/nUCz33SLZ5TQsmnolyf+K 4ulOyFxPI19NDY3zs8JNCLKLkPxVRW3H+TMJVd6hoRS+sYMQuraZq1WWJGKGSueJ /97bGQvr5xocDaf3tBlvLONSLIR4rPz2AdyRwYeeMjF3aaFAJQPZwPDLhQJhG+R+ Wdtt+jmYLll93VqAocN9607xeDKoRrEv9xGEGxC54O46S3+s6Uhj9X0lYMdHRfnk 8DLkB83InrttiQBGZTkMI/YtAVPDNt1y+vFs4hhA56A= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org