$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/uSxka7PKB43YX1G89ZBHT1JuJTY.roa File: uSxka7PKB43YX1G89ZBHT1JuJTY.roa (raw, json) Hash identifier: /bE3uUHjQGi84EeSsMyAeucGkwYG+jHh0Qik1VMf/gU= Subject key identifier: B9:2C:64:6B:B3:CA:07:8D:D8:5F:51:BC:F5:90:47:4F:52:6E:25:36 Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 0122 Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/uSxka7PKB43YX1G89ZBHT1JuJTY.roa Signing time: Wed 09 Oct 2024 00:08:29 +0000 ROA not before: Wed 09 Oct 2024 00:08:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 2914 IP address blocks: 202.160.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Oct 9 00:08:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B92C646BB3CA078DD85F51BCF590474F526E2536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:07:04:a7:4f:40:f1:fe:fa:ef:81:7f:1f:b8: 36:a2:63:c3:f8:5d:50:75:de:8d:f1:e8:54:bc:cd: 75:d1:1d:e6:22:87:e6:f4:c4:4d:34:9a:77:f6:66: 32:0d:b2:29:e6:e4:d4:34:66:05:61:5c:48:ef:c5: b1:5e:c3:49:36:43:df:44:58:d1:c3:e8:ef:7a:e8: d3:02:05:f5:27:ec:88:1a:dc:71:7a:ac:09:de:3a: e2:39:26:94:63:f2:3e:29:9a:97:79:13:29:65:ba: d2:ab:17:fe:2a:2a:df:2c:a1:0e:70:a4:79:89:45: 5b:33:68:d3:6c:88:ec:1b:13:09:3d:cc:05:6a:f9: 45:cc:fb:3f:a2:ab:38:db:c5:99:f6:64:db:18:40: 10:ac:a6:2d:73:23:7b:5d:55:a3:c4:55:f5:4e:af: 75:9e:72:f1:f9:da:c4:7e:4d:a4:b3:1c:bd:c3:88: 60:ce:37:78:26:e6:c6:c5:1f:55:7b:3d:dd:eb:30: 46:e4:c3:8a:54:7a:9f:3e:51:70:50:cf:3e:35:1c: 13:2f:d2:0c:83:f5:d0:50:b3:85:24:86:58:4e:22: 2d:1a:04:e7:db:ed:b9:1a:f5:03:ac:7e:19:4f:32: 7d:c0:2f:99:14:14:c7:cc:6d:62:58:a4:43:d6:48: 5a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:2C:64:6B:B3:CA:07:8D:D8:5F:51:BC:F5:90:47:4F:52:6E:25:36 X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/uSxka7PKB43YX1G89ZBHT1JuJTY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.88.0/21 Signature Algorithm: sha256WithRSAEncryption 66:34:64:a4:96:61:05:0b:11:43:0c:bf:e3:17:4d:87:02:ef: 4b:f0:18:e9:32:47:94:2b:e5:71:e7:d2:c0:6f:6b:02:73:c2: 2d:e1:96:0f:3e:08:ac:12:80:5b:dd:f8:4c:ec:f8:bb:27:b4: e1:0d:ef:b9:c3:40:21:be:da:86:c7:bb:39:5e:ca:1d:d1:d3: a8:4d:d7:51:97:f8:ac:22:84:6b:81:62:e7:66:ba:90:26:df: a3:27:c5:2c:bc:df:60:6d:27:33:de:c0:87:af:f8:7a:f7:c6: 1d:b1:5a:48:ba:61:5e:f8:94:2e:a9:37:b3:37:fa:11:f8:7f: 15:0a:5c:62:0e:7e:ff:27:4c:18:31:83:21:5d:55:25:b3:c4: 28:fa:dd:14:bf:07:e1:97:6f:f0:31:7e:79:74:03:ff:38:32: a8:9b:19:31:bb:4f:bc:00:a8:26:6b:53:0e:18:62:04:b7:51: ea:94:d0:52:83:d2:86:ba:fa:90:a3:d0:39:b8:d1:0a:79:24: dc:ce:f5:34:30:e2:d6:a1:56:2a:3b:e9:2a:f3:ac:a6:a6:66: 20:2e:e8:ce:4c:77:2e:1e:d1:c6:35:43:d8:29:20:b1:fc:c7: a4:c4:5f:cf:2e:79:48:74:ca:63:3d:50:11:87:bb:a5:5f:7b: 62:32:17:02 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNDEwMDkw MDA4MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5MkM2NDZCQjNDQTA3 OEREODVGNTFCQ0Y1OTA0NzRGNTI2RTI1MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuBwSnT0Dx/vrvgX8fuDaiY8P4XVB13o3x6FS8zXXRHeYih+b0 xE00mnf2ZjINsinm5NQ0ZgVhXEjvxbFew0k2Q99EWNHD6O966NMCBfUn7Iga3HF6 rAneOuI5JpRj8j4pmpd5EyllutKrF/4qKt8soQ5wpHmJRVszaNNsiOwbEwk9zAVq +UXM+z+iqzjbxZn2ZNsYQBCspi1zI3tdVaPEVfVOr3WecvH52sR+TaSzHL3DiGDO N3gm5sbFH1V7Pd3rMEbkw4pUep8+UXBQzz41HBMv0gyD9dBQs4UkhlhOIi0aBOfb 7bka9QOsfhlPMn3AL5kUFMfMbWJYpEPWSFqrAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUuSxka7PKB43YX1G89ZBHT1JuJTYwHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL3VTeGthN1BLQjQz WVgxRzg5WkJIVDFKdUpUWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKoFgwDQYJKoZIhvcNAQELBQADggEBAGY0ZKSWYQULEUMMv+MXTYcC70vw GOkyR5Qr5XHn0sBvawJzwi3hlg8+CKwSgFvd+Ezs+LsntOEN77nDQCG+2obHuzle yh3R06hN11GX+KwihGuBYudmupAm36MnxSy832BtJzPewIev+Hr3xh2xWki6YV74 lC6pN7M3+hH4fxUKXGIOfv8nTBgxgyFdVSWzxCj63RS/B+GXb/Axfnl0A/84Mqib GTG7T7wAqCZrUw4YYgS3UeqU0FKD0oa6+pCj0Dm40Qp5JNzO9TQw4tahVio76Srz rKamZiAu6M5Mdy4e0cY1Q9gpILH8x6TEX88ueUh0ymM9UBGHu6Vfe2IyFwI= -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:18 2024 by rpki-client on console-ams.rpki-client.org