$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/KHd3D4uvbVKw8cLfowcRgleOiFM.roa File: KHd3D4uvbVKw8cLfowcRgleOiFM.roa (raw, json) Hash identifier: 2hZKzXOQRdpOI/wWesNdcwQs3aXS18lFkTdNSq0ZpQc= Subject key identifier: 28:77:77:0F:8B:AF:6D:52:B0:F1:C2:DF:A3:07:11:82:57:8E:88:53 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C70 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/KHd3D4uvbVKw8cLfowcRgleOiFM.roa Signing time: Mon 26 Aug 2024 05:32:39 +0000 ROA not before: Mon 26 Aug 2024 05:32:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 2914 IP address blocks: 2001:d40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3184 (0xc70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2877770F8BAF6D52B0F1C2DFA3071182578E8853 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:ca:d6:1b:24:2d:ba:35:8f:3e:88:0f:21: f7:4f:9b:60:ec:52:f5:98:f5:23:49:5f:ac:a8:c4: d9:51:f8:a5:8e:9e:30:60:46:58:aa:1b:bc:46:c9: 25:3d:11:85:10:58:34:08:83:32:3f:20:18:d2:f4: 25:21:f7:67:c5:d3:ef:1b:f9:d1:ac:33:6f:86:60: 36:9b:20:0a:c8:51:10:50:cc:c2:9d:08:27:51:54: eb:e1:c6:35:6d:ce:cd:db:72:72:f9:94:83:a9:fe: ff:23:e2:1e:1a:91:b1:a7:ed:ee:7d:c8:2d:2d:32: d5:bd:7e:57:30:8c:0a:2a:79:ee:3e:7e:85:a6:47: 74:84:c8:00:f6:3c:b8:2e:24:2a:c0:98:01:8b:44: 78:49:0d:7f:77:75:ea:3d:0d:72:45:32:30:00:80: 1e:09:21:e9:76:6e:22:57:7b:58:31:80:e9:10:2d: 58:92:e0:46:f1:c9:f3:c7:15:d4:dc:6e:56:62:ce: 0a:3f:b3:90:86:c5:cc:9b:8c:1d:05:27:18:d9:31: 58:b4:d4:f7:2c:c1:79:28:e8:32:59:f4:06:20:07: 93:d2:1d:b3:ab:12:7d:ff:e9:e3:d3:6b:3e:29:ec: 86:5d:3f:e3:fe:bf:62:f9:f1:4d:23:72:95:55:92: 03:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:77:77:0F:8B:AF:6D:52:B0:F1:C2:DF:A3:07:11:82:57:8E:88:53 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/KHd3D4uvbVKw8cLfowcRgleOiFM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:d40::/32 Signature Algorithm: sha256WithRSAEncryption c6:24:60:ae:e9:b9:8b:cd:61:48:f0:8b:15:f1:cb:dc:41:84: f3:29:85:5f:82:ec:27:74:cc:d4:3d:04:9f:7d:89:25:e1:80: 13:88:16:4c:a2:7b:73:c4:e3:61:e4:ae:f4:60:c1:77:fe:59: 28:c5:c2:26:58:5b:c0:e0:e6:00:02:61:61:8e:2f:59:ac:f0: be:6c:78:24:df:a1:e3:2f:d4:ae:85:0d:a1:7d:67:ce:01:55: a5:e8:aa:d4:5b:ed:c9:76:b1:d0:04:17:d1:51:59:50:39:f9: c1:ec:f5:0b:06:d0:0d:9b:1f:68:7a:06:89:41:9e:c4:12:03: 3d:dc:8b:31:b0:94:d4:d7:56:b7:65:f3:b1:de:d3:65:93:93: cb:94:88:8b:a7:00:2f:ef:a4:7e:de:0c:7e:5c:da:17:e0:96: 7a:82:f7:86:13:ce:49:9c:02:3f:c4:b9:e3:05:0b:f9:08:9f: fd:48:0f:ab:6f:b1:7e:eb:06:fb:22:32:22:70:eb:16:9d:2d: 48:93:56:90:ec:f7:dd:44:49:b2:e9:16:22:c9:c2:32:fc:c4: 78:ce:e3:d9:ef:7e:38:81:9d:90:57:5b:4b:d8:a6:2d:94:01: 82:43:8a:98:5b:e7:85:38:ba:78:56:52:51:96:b4:3b:d3:10: fc:95:6b:cd -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDHAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4Nzc3NzBGOEJBRjZE NTJCMEYxQzJERkEzMDcxMTgyNTc4RTg4NTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz78rWGyQtujWPPogPIfdPm2DsUvWY9SNJX6yoxNlR+KWOnjBg RliqG7xGySU9EYUQWDQIgzI/IBjS9CUh92fF0+8b+dGsM2+GYDabIArIURBQzMKd CCdRVOvhxjVtzs3bcnL5lIOp/v8j4h4akbGn7e59yC0tMtW9flcwjAoqee4+foWm R3SEyAD2PLguJCrAmAGLRHhJDX93deo9DXJFMjAAgB4JIel2biJXe1gxgOkQLViS 4EbxyfPHFdTcblZizgo/s5CGxcybjB0FJxjZMVi01PcswXko6DJZ9AYgB5PSHbOr En3/6ePTaz4p7IZdP+P+v2L58U0jcpVVkgMbAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUKHd3D4uvbVKw8cLfowcRgleOiFMwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9LSGQzRDR1dmJWS3c4Y0xmb3dj UmdsZU9pRk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEN QDANBgkqhkiG9w0BAQsFAAOCAQEAxiRgrum5i81hSPCLFfHL3EGE8ymFX4LsJ3TM 1D0En32JJeGAE4gWTKJ7c8TjYeSu9GDBd/5ZKMXCJlhbwODmAAJhYY4vWazwvmx4 JN+h4y/UroUNoX1nzgFVpeiq1FvtyXax0AQX0VFZUDn5wez1CwbQDZsfaHoGiUGe xBIDPdyLMbCU1NdWt2Xzsd7TZZOTy5SIi6cAL++kft4MflzaF+CWeoL3hhPOSZwC P8S54wUL+Qif/UgPq2+xfusG+yIyInDrFp0tSJNWkOz33URJsukWIsnCMvzEeM7j 2e9+OIGdkFdbS9imLZQBgkOKmFvnhTi6eFZSUZa0O9MQ/JVrzQ== -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:21 2024 by rpki-client on console-ams.rpki-client.org