$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/GVOi0LAPALSL8BEGerGHxLx3QtA.roa File: GVOi0LAPALSL8BEGerGHxLx3QtA.roa (raw, json) Hash identifier: SnLhJ22i1MM5LkzGDQbOkLxrqV93CjgFPfxdeaLHv7o= Subject key identifier: 19:53:A2:D0:B0:0F:00:B4:8B:F0:11:06:7A:B1:87:C4:BC:77:42:D0 Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Certificate serial: 0C10 Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/GVOi0LAPALSL8BEGerGHxLx3QtA.roa Signing time: Mon 23 Sep 2024 07:52:10 +0000 ROA not before: Mon 23 Sep 2024 07:52:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38254 IP address blocks: 2403:8ec0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Validity Not Before: Sep 23 07:52:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1953A2D0B00F00B48BF011067AB187C4BC7742D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:f0:55:ba:6c:d0:26:c4:c9:dd:12:82:69: 39:53:8a:58:8a:81:e1:ac:5c:da:65:ae:ee:76:62: b2:3e:0f:7a:68:91:8a:77:9b:ca:75:14:11:6b:08: b0:32:71:80:1e:a4:84:09:0c:e6:e6:3d:63:a8:0c: ad:af:83:3e:be:42:35:92:e4:50:9e:89:a2:f3:c7: f8:42:05:67:05:3a:08:1e:c3:6f:72:4f:2a:41:a8: 87:8c:9e:d0:f4:e5:a7:77:1d:a6:de:13:94:91:81: 90:2a:4e:f4:51:a0:c8:fc:df:02:18:71:dd:b7:d0: 08:cd:4b:a0:c1:01:06:c0:50:65:ca:88:f4:4d:fc: c1:8c:bb:eb:82:a9:07:15:e6:5b:d6:4e:f5:6b:5a: 75:bf:e6:7a:91:e5:f5:31:8b:21:ad:3f:fe:99:01: ff:27:b5:aa:6a:a8:6b:f9:59:0e:f5:37:fb:92:e4: 5c:6a:75:5d:0c:a7:c6:9f:bb:31:eb:7b:a9:8f:14: b1:0d:a9:03:35:bd:51:75:b9:52:a1:84:cb:3d:58: 0f:02:03:4e:fd:e2:9d:33:09:07:a5:ac:65:35:7b: 53:96:b3:c0:a7:1a:42:d8:32:c0:31:6e:ec:d9:0f: 95:56:49:e1:71:23:f2:be:33:eb:7d:5f:99:50:c7: 69:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:53:A2:D0:B0:0F:00:B4:8B:F0:11:06:7A:B1:87:C4:BC:77:42:D0 X509v3 Authority Key Identifier: keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/GVOi0LAPALSL8BEGerGHxLx3QtA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:8ec0:1::/48 Signature Algorithm: sha256WithRSAEncryption 64:6f:66:9f:c5:06:e8:c5:72:02:a8:b7:33:12:b0:32:45:52: 0d:ab:1c:71:f1:cd:dc:d2:c3:8b:00:41:ec:26:ae:69:25:8a: 6c:8d:d5:7f:1c:cb:49:0f:78:a4:20:54:1d:da:ff:61:8e:b2: 83:47:cd:7e:00:25:2f:5c:3d:fa:af:48:a6:63:44:99:02:96: cd:1f:60:56:d4:ae:ba:08:5f:ca:9e:bb:69:ce:72:6c:c0:ea: 02:76:44:a7:e8:94:f2:1c:2b:12:76:de:99:9a:ab:81:37:72: 16:57:1d:c5:c8:a4:5a:47:d5:75:7c:72:c0:ff:7c:65:3d:6a: 9d:a5:fd:b2:c2:48:61:62:1e:83:64:20:51:09:c3:d1:20:7a: 83:7a:59:40:33:3e:5c:94:64:88:5d:15:ee:d5:b6:42:de:42: 4e:f9:f4:ca:2f:9d:0d:39:b6:4b:82:b2:1c:e5:c4:f2:2c:1c: 86:78:78:4a:08:85:63:50:b8:ec:c6:bb:1d:be:39:8e:27:b1: d5:c8:f7:5e:97:e2:1e:f4:29:51:01:ff:fd:5d:bc:68:78:2c: bc:fb:6e:9a:7b:fa:22:8d:70:ae:65:c7:4e:32:b4:9e:44:a5: 05:73:cf:35:e6:7e:40:9e:4d:6e:18:d0:bb:4d:77:ea:1f:4a: 6c:25:9c:c4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4 NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yNDA5MjMw NzUyMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5NTNBMkQwQjAwRjAw QjQ4QkYwMTEwNjdBQjE4N0M0QkM3NzQyRDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPQPBVumzQJsTJ3RKCaTlTiliKgeGsXNplru52YrI+D3pokYp3 m8p1FBFrCLAycYAepIQJDObmPWOoDK2vgz6+QjWS5FCeiaLzx/hCBWcFOggew29y TypBqIeMntD05ad3HabeE5SRgZAqTvRRoMj83wIYcd230AjNS6DBAQbAUGXKiPRN /MGMu+uCqQcV5lvWTvVrWnW/5nqR5fUxiyGtP/6ZAf8ntapqqGv5WQ71N/uS5Fxq dV0Mp8afuzHre6mPFLENqQM1vVF1uVKhhMs9WA8CA0794p0zCQelrGU1e1OWs8Cn GkLYMsAxbuzZD5VWSeFxI/K+M+t9X5lQx2nTAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUGVOi0LAPALSL8BEGerGHxLx3QtAwHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVL0dWT2kwTEFQQUxTTDhCRUdl ckdIeEx4M1F0QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk A47AAAEwDQYJKoZIhvcNAQELBQADggEBAGRvZp/FBujFcgKotzMSsDJFUg2rHHHx zdzSw4sAQewmrmklimyN1X8cy0kPeKQgVB3a/2GOsoNHzX4AJS9cPfqvSKZjRJkC ls0fYFbUrroIX8qeu2nOcmzA6gJ2RKfolPIcKxJ23pmaq4E3chZXHcXIpFpH1XV8 csD/fGU9ap2l/bLCSGFiHoNkIFEJw9EgeoN6WUAzPlyUZIhdFe7VtkLeQk759Mov nQ05tkuCshzlxPIsHIZ4eEoIhWNQuOzGux2+OY4nsdXI916X4h70KVEB//1dvGh4 LLz7bpp7+iKNcK5lx04ytJ5EpQVzzzXmfkCeTW4Y0LtNd+ofSmwlnMQ= -----END CERTIFICATE-----Generated at Fri Sep 27 23:36:41 2024 by rpki-client on console-fra.rpki-client.org