$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/-fO-p5gSreah9V1swrogvksE-i8.roa File: -fO-p5gSreah9V1swrogvksE-i8.roa (raw, json) Hash identifier: Aud5t9zVsspypXxgfNAupu1xFXWwQVT3sJyYYvvGOqA= Subject key identifier: F9:F3:BE:A7:98:12:AD:E6:A1:F5:5D:6C:C2:BA:20:BE:4B:04:FA:2F Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 027D Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/-fO-p5gSreah9V1swrogvksE-i8.roa Signing time: Mon 26 Aug 2024 05:19:07 +0000 ROA not before: Mon 26 Aug 2024 05:19:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2400:5ea0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 17:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Aug 26 05:19:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9F3BEA79812ADE6A1F55D6CC2BA20BE4B04FA2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e8:ac:01:55:a4:db:32:ed:f5:bd:fd:4e:ec: b3:ae:31:b9:aa:69:79:49:ae:dd:66:e0:97:8c:f0: a9:a4:f8:36:e0:e7:6d:3a:37:81:14:f7:5e:20:00: e9:99:65:97:19:5f:96:4b:6a:89:86:d9:b6:07:27: 28:c4:20:29:f0:22:6a:fb:bd:b2:53:53:23:83:50: 6a:f5:fa:ad:fd:70:45:7f:76:5e:b7:e2:ba:9d:3b: 6a:c0:26:70:32:7e:a5:98:57:c5:48:5e:eb:be:ea: e1:3d:91:22:bf:a2:b8:49:bb:3a:9d:0c:8d:fb:1a: ce:ec:88:9e:e9:67:b3:b5:4c:b5:c6:39:45:65:b5: 51:06:a8:b7:2b:9f:94:b6:a4:83:7a:5c:7c:81:10: b7:b5:93:cc:ad:bb:df:33:63:52:f8:5b:ea:22:f6: bc:2c:6f:1e:fe:63:a4:97:cd:5e:9d:9b:91:c2:73: 2a:f5:25:2a:ef:e2:05:92:a4:21:f7:bb:49:00:81: 64:2a:5b:86:bf:fa:2b:f0:d0:b2:39:41:f0:f7:9a: 51:26:35:2b:ba:74:b9:5d:e1:81:fb:f9:09:c3:d8: a5:25:da:dd:0d:57:15:3b:c2:67:e7:f9:13:d4:ef: 59:68:8e:5d:3e:a6:ce:8e:74:ea:44:eb:48:99:24: fa:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F3:BE:A7:98:12:AD:E6:A1:F5:5D:6C:C2:BA:20:BE:4B:04:FA:2F X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/-fO-p5gSreah9V1swrogvksE-i8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:5ea0::/32 Signature Algorithm: sha256WithRSAEncryption 62:3e:c3:2e:d1:d1:6b:74:d4:e7:3b:9b:b4:c5:d6:3b:10:5c: 48:aa:51:ac:54:b4:93:95:20:4f:29:b4:91:7e:52:5a:0c:04: a8:a4:21:58:4e:3f:3b:da:0e:01:a1:b8:75:98:70:ce:bf:eb: fa:96:b9:84:a2:f2:8d:e4:15:25:d2:d3:f3:4f:86:d3:c4:78: 4f:c1:62:98:f9:01:d4:1c:39:6c:4e:40:d6:41:0c:be:9e:b0: 03:02:3f:2c:dd:2f:24:63:15:5a:09:84:17:d2:b2:65:e6:22: 47:c2:ba:e7:4d:71:f2:07:bd:79:4b:48:06:a8:6e:53:ac:ca: 5c:53:a3:2d:66:ce:2e:3c:88:2e:ff:56:8e:7f:ca:06:27:8b: bb:53:73:f8:47:43:47:57:05:4e:3b:0f:b7:6e:20:28:d4:b2: ec:e9:5c:b9:53:27:8b:29:d0:74:7b:21:76:fe:66:35:38:4f: 92:95:6b:6f:d8:2a:bc:66:93:6a:3b:4d:00:fc:6f:90:34:cd: 45:3c:3e:a8:d4:a9:c5:65:2a:c6:3c:37:1d:45:32:12:7d:f7: 39:85:8e:97:06:03:05:31:41:42:7e:a7:a1:df:16:b8:ca:04: 0c:3d:00:bc:e3:59:b1:a8:76:62:ec:c9:c8:1f:94:bc:06:97: d9:c0:63:aa -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNDA4MjYw NTE5MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5RjNCRUE3OTgxMkFE RTZBMUY1NUQ2Q0MyQkEyMEJFNEIwNEZBMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDU6KwBVaTbMu31vf1O7LOuMbmqaXlJrt1m4JeM8Kmk+Dbg5206 N4EU914gAOmZZZcZX5ZLaomG2bYHJyjEICnwImr7vbJTUyODUGr1+q39cEV/dl63 4rqdO2rAJnAyfqWYV8VIXuu+6uE9kSK/orhJuzqdDI37Gs7siJ7pZ7O1TLXGOUVl tVEGqLcrn5S2pIN6XHyBELe1k8ytu98zY1L4W+oi9rwsbx7+Y6SXzV6dm5HCcyr1 JSrv4gWSpCH3u0kAgWQqW4a/+ivw0LI5QfD3mlEmNSu6dLld4YH7+QnD2KUl2t0N VxU7wmfn+RPU71lojl0+ps6OdOpE60iZJPqtAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU+fO+p5gSreah9V1swrogvksE+i8wHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNILy1mTy1wNWdTcmVhaDlWMXN3 cm9ndmtzRS1pOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk AF6gMA0GCSqGSIb3DQEBCwUAA4IBAQBiPsMu0dFrdNTnO5u0xdY7EFxIqlGsVLST lSBPKbSRflJaDASopCFYTj872g4Bobh1mHDOv+v6lrmEovKN5BUl0tPzT4bTxHhP wWKY+QHUHDlsTkDWQQy+nrADAj8s3S8kYxVaCYQX0rJl5iJHwrrnTXHyB715S0gG qG5TrMpcU6MtZs4uPIgu/1aOf8oGJ4u7U3P4R0NHVwVOOw+3biAo1LLs6Vy5UyeL KdB0eyF2/mY1OE+SlWtv2Cq8ZpNqO00A/G+QNM1FPD6o1KnFZSrGPDcdRTISffc5 hY6XBgMFMUFCfqeh3xa4ygQMPQC841mxqHZi7MnIH5S8BpfZwGOq -----END CERTIFICATE-----Generated at Sat Sep 28 14:43:50 2024 by rpki-client on console-ams.rpki-client.org