$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/AdUH6pxwUBbqZmst_PDbGhUURbg.roa File: AdUH6pxwUBbqZmst_PDbGhUURbg.roa (raw, json) Hash identifier: tyX4nOFP3RgdSEQ/rUhvBaMYGrdRMv60oy5yUOABW04= Subject key identifier: 01:D5:07:EA:9C:70:50:16:EA:66:6B:2D:FC:F0:DB:1A:15:14:45:B8 Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0CB4 Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/AdUH6pxwUBbqZmst_PDbGhUURbg.roa Signing time: Mon 26 Aug 2024 05:19:29 +0000 ROA not before: Mon 26 Aug 2024 05:19:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 61.63.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3252 (0xcb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Aug 26 05:19:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=01D507EA9C705016EA666B2DFCF0DB1A151445B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:78:cc:28:66:98:02:81:32:a1:85:8e:c5:88: 24:30:4d:30:c3:64:70:3f:aa:1e:e4:ca:c9:bf:60: fd:bc:fd:73:b5:b4:8f:86:f7:f9:b1:d9:ca:e6:6a: 50:c2:ca:6e:54:38:24:81:d1:17:99:85:49:5c:4d: d7:0c:6d:c8:ef:59:7a:b5:23:54:e9:8a:72:b9:0f: 11:9b:85:43:64:3f:5b:85:0a:21:26:0d:34:7e:0d: 7a:6f:90:a7:4d:04:61:2c:24:b0:47:c6:32:67:0b: 13:b8:a9:f7:ae:58:42:1d:1b:81:65:14:c6:9b:99: 93:cf:20:72:f5:d5:87:35:f7:7b:e5:be:5a:f3:4d: 6e:4a:c6:70:2d:c5:c1:85:cd:b5:3e:41:9b:08:c0: 83:0b:b9:c9:ba:0c:8e:99:14:86:5a:64:03:b6:b9: 46:2d:4f:d3:2f:35:8e:27:88:97:2c:b2:20:d0:c2: bf:ce:bb:01:c2:87:b4:8a:b4:f3:ad:07:6c:90:25: d8:1a:49:0d:82:25:4d:ba:f7:6b:f8:b2:98:db:04: dc:9c:60:7d:96:2e:a3:71:1a:05:f1:d2:79:d9:4a: 15:db:86:8a:f0:63:31:0e:f5:34:a3:89:cc:18:5a: 3e:83:94:8c:f3:23:69:b1:45:1c:31:91:9d:5b:f2: 9e:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:D5:07:EA:9C:70:50:16:EA:66:6B:2D:FC:F0:DB:1A:15:14:45:B8 X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/AdUH6pxwUBbqZmst_PDbGhUURbg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.32.0/19 Signature Algorithm: sha256WithRSAEncryption 51:fe:b8:2b:3a:e3:bf:de:c5:96:4b:f6:28:90:6f:25:fb:11: 51:12:b2:1d:9a:f6:13:18:e4:4e:8a:1b:1d:a9:62:d8:46:76: 98:8b:fa:47:6f:b1:42:d4:b9:7d:d0:12:2f:5e:c2:48:d1:0b: 7e:a7:6c:5a:10:54:5d:79:f5:ff:81:b0:6f:1d:01:0b:89:9e: 75:5e:68:57:45:6e:fc:20:58:79:23:be:ec:0f:16:a7:d8:32: 5c:7c:3b:10:9e:75:94:d3:d5:d4:73:4f:a1:37:32:56:04:39: 4a:da:e1:75:9c:63:40:c1:62:aa:e8:97:37:b3:3e:44:91:83: 47:b6:4e:82:57:f7:a0:9c:ad:dd:eb:1c:f8:6f:08:73:b3:d6: 2c:b1:94:c1:b2:6e:7f:ae:16:b5:2e:ef:f4:66:86:92:01:89: a6:a6:42:33:56:9b:ba:7d:b6:51:fe:04:2f:02:3d:8f:fc:0d: 0f:33:3a:15:85:3b:93:e8:7c:25:17:08:d6:82:90:c6:33:a4: e7:55:79:24:9f:08:dd:19:11:4d:a3:cb:b4:c6:da:d6:33:64: 3d:16:3d:06:ce:b9:ed:c5:5e:b2:af:3b:f5:c4:62:35:41:6a: ec:b6:5a:98:5f:99:31:91:ec:72:a2:b7:8f:f5:ec:4a:17:7c: c3:07:8b:40 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDLQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNDA4MjYw NTE5MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAxRDUwN0VBOUM3MDUw MTZFQTY2NkIyREZDRjBEQjFBMTUxNDQ1QjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+eMwoZpgCgTKhhY7FiCQwTTDDZHA/qh7kysm/YP28/XO1tI+G 9/mx2crmalDCym5UOCSB0ReZhUlcTdcMbcjvWXq1I1TpinK5DxGbhUNkP1uFCiEm DTR+DXpvkKdNBGEsJLBHxjJnCxO4qfeuWEIdG4FlFMabmZPPIHL11Yc193vlvlrz TW5KxnAtxcGFzbU+QZsIwIMLucm6DI6ZFIZaZAO2uUYtT9MvNY4niJcssiDQwr/O uwHCh7SKtPOtB2yQJdgaSQ2CJU2692v4spjbBNycYH2WLqNxGgXx0nnZShXbhorw YzEO9TSjicwYWj6DlIzzI2mxRRwxkZ1b8p6TAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUAdUH6pxwUBbqZmst/PDbGhUURbgwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0FkVUg2cHh3VUJicVptc3RfUERiR2hV VVJiZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9PyAwDQYJ KoZIhvcNAQELBQADggEBAFH+uCs647/exZZL9iiQbyX7EVESsh2a9hMY5E6KGx2p YthGdpiL+kdvsULUuX3QEi9ewkjRC36nbFoQVF159f+BsG8dAQuJnnVeaFdFbvwg WHkjvuwPFqfYMlx8OxCedZTT1dRzT6E3MlYEOUra4XWcY0DBYqrolzezPkSRg0e2 ToJX96Ccrd3rHPhvCHOz1iyxlMGybn+uFrUu7/RmhpIBiaamQjNWm7p9tlH+BC8C PY/8DQ8zOhWFO5PofCUXCNaCkMYzpOdVeSSfCN0ZEU2jy7TG2tYzZD0WPQbOue3F XrKvO/XEYjVBauy2WphfmTGR7HKit4/17EoXfMMHi0A= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:49 2024 by rpki-client on console-ams.rpki-client.org