$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/7S0-PSJXkm8K3V-s9y63BSDrZhY.roa File: 7S0-PSJXkm8K3V-s9y63BSDrZhY.roa (raw, json) Hash identifier: 21d1oNjT2YE8ZRK+lSL4uMC5g1apTw2qIeABAVDfohg= Subject key identifier: ED:2D:3E:3D:22:57:92:6F:0A:DD:5F:AC:F7:2E:B7:05:20:EB:66:16 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C71 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/7S0-PSJXkm8K3V-s9y63BSDrZhY.roa Signing time: Mon 26 Aug 2024 05:32:40 +0000 ROA not before: Mon 26 Aug 2024 05:32:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 2914 IP address blocks: 61.58.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3185 (0xc71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ED2D3E3D2257926F0ADD5FACF72EB70520EB6616 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b3:25:40:24:71:61:ea:63:61:12:39:ce:ce: b2:75:f5:65:c5:24:e7:3a:9b:ba:48:92:b8:4c:b5: da:8f:d1:23:2d:ac:41:b8:b3:97:6b:40:16:20:9a: c9:81:80:ae:71:79:aa:73:d9:39:1b:1c:ea:fd:f1: 80:a5:63:ad:a5:7c:d0:1a:dc:91:cc:ae:33:0f:eb: 4e:d6:02:f8:93:a4:d3:0c:eb:f9:5b:ce:61:fb:ee: f9:94:c9:41:a0:95:8e:e6:27:d1:86:36:4f:b0:96: 96:0b:57:93:6e:54:ff:e5:b5:4c:c5:62:89:d8:1b: 52:e4:3c:a8:00:ae:95:d2:c7:35:b7:38:f0:fc:11: bd:21:e9:40:c6:75:ff:98:6e:b5:f2:3b:25:65:bb: ad:67:a9:2a:56:ef:ba:67:b1:8e:58:6d:d4:c1:25: f4:e9:b5:dc:87:07:68:e6:c2:29:e3:b1:02:ea:6c: 68:de:0f:b3:5f:9f:54:58:62:e5:1d:42:4d:d1:b6: eb:49:78:f3:51:57:6b:4e:b9:62:d9:a8:6c:e9:7f: 75:e5:85:61:7a:a8:2a:9a:2f:c7:cf:3e:ab:78:29: 39:03:c1:a5:d0:73:03:70:95:1c:60:67:42:6e:a2: 3e:0f:e6:b7:c6:b3:5d:e6:07:65:98:9f:41:fc:82: 13:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:2D:3E:3D:22:57:92:6F:0A:DD:5F:AC:F7:2E:B7:05:20:EB:66:16 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/7S0-PSJXkm8K3V-s9y63BSDrZhY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.32.0/20 Signature Algorithm: sha256WithRSAEncryption 17:74:f2:b7:cd:a7:6f:a6:1a:9e:f6:54:65:a0:d1:3a:7b:36: 77:1f:70:1b:da:b5:fc:d7:9a:39:7d:de:13:fc:55:b6:ac:67: 02:1d:98:82:41:82:4b:72:53:8f:18:70:a3:16:a7:92:10:54: 7d:e0:29:90:12:ff:f5:7a:5f:84:91:c7:66:37:84:91:0c:b7: fc:6f:fc:6e:57:5e:61:2c:c2:67:55:0a:8d:da:24:48:b3:f3: 47:2c:1f:02:27:ad:2f:04:0d:f5:0c:57:8f:3b:af:34:2c:ca: 08:cb:84:83:3d:cf:97:c0:68:55:00:dc:b8:e2:19:83:af:28: a2:92:23:19:2f:4f:fb:33:e6:2c:cc:9e:4f:2e:e1:24:b0:40: 14:33:06:8d:58:9e:17:ba:0e:27:0d:04:32:d1:a9:5a:29:48: 9b:0f:09:32:95:0c:4f:57:1a:dc:0a:fb:7c:ed:c8:91:16:77: 6b:53:3e:4e:1e:cc:3a:52:82:78:ad:68:85:74:37:71:8e:95: e7:83:4c:0f:0e:22:7f:96:bc:1e:7e:c2:4b:f4:52:72:40:cb: 24:59:10:cd:9e:25:3f:c3:9e:13:e5:3d:03:ab:d5:b5:dc:51: 16:a8:2f:24:e3:fd:b6:b2:34:6d:98:8e:17:96:88:ca:27:36: 19:60:28:71 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVEMkQzRTNEMjI1Nzky NkYwQURENUZBQ0Y3MkVCNzA1MjBFQjY2MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdsyVAJHFh6mNhEjnOzrJ19WXFJOc6m7pIkrhMtdqP0SMtrEG4 s5drQBYgmsmBgK5xeapz2TkbHOr98YClY62lfNAa3JHMrjMP607WAviTpNMM6/lb zmH77vmUyUGglY7mJ9GGNk+wlpYLV5NuVP/ltUzFYonYG1LkPKgArpXSxzW3OPD8 Eb0h6UDGdf+YbrXyOyVlu61nqSpW77pnsY5YbdTBJfTptdyHB2jmwinjsQLqbGje D7Nfn1RYYuUdQk3RtutJePNRV2tOuWLZqGzpf3XlhWF6qCqaL8fPPqt4KTkDwaXQ cwNwlRxgZ0Juoj4P5rfGs13mB2WYn0H8ghMFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7S0+PSJXkm8K3V+s9y63BSDrZhYwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC83UzAtUFNKWGttOEszVi1zOXk2 M0JTRHJaaFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTog MA0GCSqGSIb3DQEBCwUAA4IBAQAXdPK3zadvphqe9lRloNE6ezZ3H3Ab2rX815o5 fd4T/FW2rGcCHZiCQYJLclOPGHCjFqeSEFR94CmQEv/1el+EkcdmN4SRDLf8b/xu V15hLMJnVQqN2iRIs/NHLB8CJ60vBA31DFePO680LMoIy4SDPc+XwGhVANy44hmD ryiikiMZL0/7M+YszJ5PLuEksEAUMwaNWJ4Xug4nDQQy0alaKUibDwkylQxPVxrc Cvt87ciRFndrUz5OHsw6UoJ4rWiFdDdxjpXng0wPDiJ/lrwefsJL9FJyQMskWRDN niU/w54T5T0Dq9W13FEWqC8k4/22sjRtmI4XlojKJzYZYChx -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:21 2024 by rpki-client on console-ams.rpki-client.org