$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/SA8S8_pIW1D7SX0i6RGn5qpwpSE.roa File: SA8S8_pIW1D7SX0i6RGn5qpwpSE.roa (raw, json) Hash identifier: Cl0WUB2dAiNi/en0VrKtrqMToELOyfyzp07nZ/bh/Hw= Subject key identifier: 48:0F:12:F3:FA:48:5B:50:FB:49:7D:22:E9:11:A7:E6:AA:70:A5:21 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0D82 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/SA8S8_pIW1D7SX0i6RGn5qpwpSE.roa Signing time: Mon 26 Aug 2024 05:35:01 +0000 ROA not before: Mon 26 Aug 2024 05:35:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 121.50.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3458 (0xd82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 26 05:35:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=480F12F3FA485B50FB497D22E911A7E6AA70A521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:99:7a:7f:9f:f9:ea:3d:9a:ad:aa:f9:32:c9: 8f:8c:62:e5:66:2c:ad:78:1a:00:ec:10:11:23:41: b6:93:c5:02:a5:92:f3:14:1d:95:ad:e4:f3:60:4c: 79:fd:c2:40:51:20:ad:16:a2:c4:2f:23:4d:d0:7a: 10:f4:4d:7e:f5:55:1b:3f:26:0b:d5:17:a0:7f:02: 9f:c1:03:5a:d6:d6:dc:79:de:78:1a:64:37:a3:de: d0:6d:a4:b9:ed:27:93:50:c5:44:b5:cb:dc:0f:4c: f3:48:54:85:40:ea:a3:ef:c4:65:1b:d7:1d:26:16: 9c:63:a1:17:77:e3:36:db:ba:31:f0:55:a5:72:53: 64:a7:e9:69:99:79:58:1a:ef:ab:d2:db:bd:04:3c: e2:ed:f7:bc:72:0a:50:70:da:33:32:60:88:7a:f4: 18:70:28:a0:1f:7a:33:74:82:f4:c5:de:4c:dd:5d: bd:24:9c:c2:23:7d:0d:d2:07:0f:f4:82:05:8c:37: 32:53:61:61:2f:5e:3f:b2:5d:32:c9:ec:58:dd:4e: ca:49:56:12:82:f1:8c:ab:14:91:0a:4b:e5:05:a2: b8:20:09:8f:80:ac:05:78:a5:17:0f:7e:0f:6f:c3: 67:de:34:14:6c:6e:65:9f:c8:71:4c:ec:93:bf:ff: 33:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:0F:12:F3:FA:48:5B:50:FB:49:7D:22:E9:11:A7:E6:AA:70:A5:21 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/SA8S8_pIW1D7SX0i6RGn5qpwpSE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.148.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:fe:02:6c:ec:56:b9:8d:7c:d5:6f:3f:96:07:3e:99:73:97: 28:c4:f4:f0:95:33:a5:6d:97:f7:76:09:90:7a:c0:a9:1c:c0: da:ab:16:e9:85:b7:fa:f5:eb:d0:b9:bc:39:2c:27:a3:bd:99: 5d:0e:d8:e9:c0:1d:b2:a8:f0:cc:74:4b:a9:43:88:d2:fd:5e: b0:98:fb:25:2b:d3:b2:e5:ca:b7:ba:22:57:5f:04:2e:8a:44: 31:3f:cc:7f:08:1f:e9:42:be:27:71:18:c6:a2:02:52:9a:9d: 76:41:61:84:b3:1b:89:02:17:85:06:91:45:ec:c1:4e:f6:11: db:9b:59:ee:66:d0:87:1a:1e:8f:84:82:b6:64:07:81:4f:bd: 38:65:23:66:67:2c:e2:57:33:83:1c:ca:9d:1e:32:6b:f9:5d: e5:d4:33:ee:3d:8e:02:ad:cf:db:50:fd:23:98:03:24:0f:87: 5d:9a:42:ea:fa:62:a1:14:ff:d0:87:77:a3:cf:12:1e:dc:86: 41:00:e7:f1:0b:e2:1b:49:52:f7:90:7d:bf:dc:30:bc:d3:9c: 9e:5f:c3:28:7d:72:2d:77:d5:64:6e:cf:ff:c0:4a:0d:9b:63: 07:13:3c:f0:22:6c:6e:af:74:f1:8c:53:b9:44:0c:1d:a6:09: 2a:5a:98:e4 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNDA4MjYw NTM1MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4MEYxMkYzRkE0ODVC NTBGQjQ5N0QyMkU5MTFBN0U2QUE3MEE1MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJmXp/n/nqPZqtqvkyyY+MYuVmLK14GgDsEBEjQbaTxQKlkvMU HZWt5PNgTHn9wkBRIK0WosQvI03QehD0TX71VRs/JgvVF6B/Ap/BA1rW1tx53nga ZDej3tBtpLntJ5NQxUS1y9wPTPNIVIVA6qPvxGUb1x0mFpxjoRd34zbbujHwVaVy U2Sn6WmZeVga76vS270EPOLt97xyClBw2jMyYIh69BhwKKAfejN0gvTF3kzdXb0k nMIjfQ3SBw/0ggWMNzJTYWEvXj+yXTLJ7FjdTspJVhKC8YyrFJEKS+UForggCY+A rAV4pRcPfg9vw2feNBRsbmWfyHFM7JO//zPdAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUSA8S8/pIW1D7SX0i6RGn5qpwpSEwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL1NBOFM4X3BJVzFE N1NYMGk2UkduNXFwd3BTRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAB5MpQwDQYJKoZIhvcNAQELBQADggEBAHv+AmzsVrmNfNVvP5YHPplzlyjE 9PCVM6Vtl/d2CZB6wKkcwNqrFumFt/r169C5vDksJ6O9mV0O2OnAHbKo8Mx0S6lD iNL9XrCY+yUr07Llyre6IldfBC6KRDE/zH8IH+lCvidxGMaiAlKanXZBYYSzG4kC F4UGkUXswU72EdubWe5m0IcaHo+EgrZkB4FPvThlI2ZnLOJXM4Mcyp0eMmv5XeXU M+49jgKtz9tQ/SOYAyQPh12aQur6YqEU/9CHd6PPEh7chkEA5/EL4htJUveQfb/c MLzTnJ5fwyh9ci131WRuz//ASg2bYwcTPPAibG6vdPGMU7lEDB2mCSpamOQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org