$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/c_eTt3M5AJdzz4nd2DxxgP_uId8.roa File: c_eTt3M5AJdzz4nd2DxxgP_uId8.roa (raw, json) Hash identifier: hEj9EQbLNXtUwRC2sEpwaW2/gRpt7271kTlZWX4gJ7o= Subject key identifier: 73:F7:93:B7:73:39:00:97:73:CF:89:DD:D8:3C:71:80:FF:EE:21:DF Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E Certificate serial: 0C5D Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/c_eTt3M5AJdzz4nd2DxxgP_uId8.roa Signing time: Mon 26 Aug 2024 05:28:00 +0000 ROA not before: Mon 26 Aug 2024 05:28:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38254 IP address blocks: 2403:7f40:e001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3165 (0xc5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E Validity Not Before: Aug 26 05:28:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=73F793B77339009773CF89DDD83C7180FFEE21DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:da:73:7e:49:ea:6c:9f:87:ac:c9:26:4f:86: ec:e8:e0:a4:c0:02:36:9f:ff:b2:6e:67:5d:7f:e0: e2:e0:6c:19:6f:5e:0b:05:f2:36:0f:de:72:a1:67: 84:3d:36:f2:b1:a8:85:8f:c2:87:d5:38:ad:b3:59: ad:c0:22:83:4b:6f:fb:2f:77:ee:40:3e:70:a9:47: c7:6e:8c:10:24:a3:28:22:1b:a5:25:d6:40:8e:b0: d4:73:bb:4f:f3:50:84:3a:2f:ad:e2:46:5d:29:fe: e1:61:14:64:6a:f5:3a:9b:7d:e7:3e:00:4b:80:f6: 7d:61:3d:0b:9f:f3:cd:be:ee:96:f8:7f:10:80:30: d8:29:f1:25:64:4d:da:a8:43:2d:14:e7:f0:82:72: 5e:cf:44:e7:da:53:bc:36:49:d0:54:f1:e6:d8:78: 52:e9:28:04:92:c9:95:e8:50:37:89:54:64:db:17: a3:b3:2f:06:74:95:36:8c:d4:88:d2:0b:9b:b8:e0: 7a:97:cb:93:b6:f0:de:18:92:ce:b7:7b:70:9b:6a: 8f:58:af:29:3a:71:04:b1:35:b5:ca:49:05:38:a0: 0c:35:8a:b8:1e:77:79:36:87:a6:81:80:66:5e:84: 43:fc:ed:46:f5:46:92:cc:42:ae:ab:ef:1e:4d:6f: a2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:F7:93:B7:73:39:00:97:73:CF:89:DD:D8:3C:71:80:FF:EE:21:DF X509v3 Authority Key Identifier: keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/c_eTt3M5AJdzz4nd2DxxgP_uId8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:7f40:e001::/48 Signature Algorithm: sha256WithRSAEncryption 64:22:ae:f3:a5:4f:88:a7:57:37:a1:36:f6:18:6f:71:2a:82: c4:a4:11:bf:0e:60:92:9e:2a:b8:d0:8d:8d:34:70:d6:d7:e9: b5:2d:f9:d9:66:55:55:36:21:71:0c:58:96:6b:c0:57:7f:31: fe:31:f3:77:68:c3:11:32:4b:46:49:1e:ed:05:ab:47:8d:3b: 1c:bf:b3:31:51:c3:92:5c:ea:6e:8a:4d:0a:2e:d1:d8:f2:f2: 3a:56:14:47:b4:98:82:19:bf:0c:ae:83:bc:89:59:66:f6:dd: 3b:8a:ee:23:0f:67:7c:62:71:c0:bb:e1:24:5d:b5:38:a7:65: 65:46:e3:fa:33:64:71:31:8b:0d:1b:9f:1a:c5:fd:19:dd:e8: 2d:6e:4d:aa:30:74:62:df:b7:cf:a8:2f:8b:1d:31:07:e2:b7: ce:0a:f2:8a:36:8b:7c:5c:64:97:ba:ca:3f:41:50:76:9e:25: 0b:43:15:62:27:ed:3b:2d:94:e6:77:23:9c:27:e3:d3:58:2a: 21:a6:7b:bc:5f:7e:15:3f:6e:df:b8:d7:78:dd:bd:72:12:c1: 67:4b:53:be:06:33:9d:5f:a4:3b:e4:08:8f:cd:fb:e9:85:da: ef:db:85:17:49:1a:2a:42:0c:95:6f:4c:9b:2d:1f:30:bb:f5: d8:e2:a3:0c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDF0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3 MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yNDA4MjYw NTI4MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczRjc5M0I3NzMzOTAw OTc3M0NGODlEREQ4M0M3MTgwRkZFRTIxREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy2nN+Sepsn4esySZPhuzo4KTAAjaf/7JuZ11/4OLgbBlvXgsF 8jYP3nKhZ4Q9NvKxqIWPwofVOK2zWa3AIoNLb/svd+5APnCpR8dujBAkoygiG6Ul 1kCOsNRzu0/zUIQ6L63iRl0p/uFhFGRq9Tqbfec+AEuA9n1hPQuf882+7pb4fxCA MNgp8SVkTdqoQy0U5/CCcl7PROfaU7w2SdBU8ebYeFLpKASSyZXoUDeJVGTbF6Oz LwZ0lTaM1IjSC5u44HqXy5O28N4Yks63e3Cbao9Yryk6cQSxNbXKSQU4oAw1irge d3k2h6aBgGZehEP87Ub1RpLMQq6r7x5Nb6KBAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUc/eTt3M5AJdzz4nd2DxxgP/uId8wHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL2NfZVR0M001QUpkeno0bmQyRHh4Z1Bf dUlkOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAkA39A4AEw DQYJKoZIhvcNAQELBQADggEBAGQirvOlT4inVzehNvYYb3EqgsSkEb8OYJKeKrjQ jY00cNbX6bUt+dlmVVU2IXEMWJZrwFd/Mf4x83dowxEyS0ZJHu0Fq0eNOxy/szFR w5Jc6m6KTQou0djy8jpWFEe0mIIZvwyug7yJWWb23TuK7iMPZ3xiccC74SRdtTin ZWVG4/ozZHExiw0bnxrF/Rnd6C1uTaowdGLft8+oL4sdMQfit84K8oo2i3xcZJe6 yj9BUHaeJQtDFWIn7TstlOZ3I5wn49NYKiGme7xffhU/bt+413jdvXISwWdLU74G M51fpDvkCI/N++mF2u/bhRdJGipCDJVvTJstHzC79djioww= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:53 2024 by rpki-client on console-ams.rpki-client.org