$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/-B7JaFUTdKjBLfe68kiR0KN0GUo.roa File: -B7JaFUTdKjBLfe68kiR0KN0GUo.roa (raw, json) Hash identifier: wlEb1UqPdNQ8Amg91iTAGbemmLlGq6OtdGbdjdgUiAg= Subject key identifier: F8:1E:C9:68:55:13:74:A8:C1:2D:F7:BA:F2:48:91:D0:A3:74:19:4A Certificate issuer: /CN=646D69C88D096F7D39220D288688914729045EF8 Certificate serial: 0683 Authority key identifier: 64:6D:69:C8:8D:09:6F:7D:39:22:0D:28:86:88:91:47:29:04:5E:F8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZG1pyI0Jb305Ig0ohoiRRykEXvg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/-B7JaFUTdKjBLfe68kiR0KN0GUo.roa Signing time: Mon 26 Aug 2024 04:50:24 +0000 ROA not before: Mon 26 Aug 2024 04:50:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17420 IP address blocks: 211.79.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/ZG1pyI0Jb305Ig0ohoiRRykEXvg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/ZG1pyI0Jb305Ig0ohoiRRykEXvg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZG1pyI0Jb305Ig0ohoiRRykEXvg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1667 (0x683) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=646D69C88D096F7D39220D288688914729045EF8 Validity Not Before: Aug 26 04:50:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F81EC968551374A8C12DF7BAF24891D0A374194A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c8:d8:a4:a6:81:6f:fa:ac:45:99:46:e4:0e: f6:42:e7:ae:17:9e:52:2c:90:04:41:db:55:48:5b: c0:15:54:a5:e6:e5:80:a7:51:b5:87:23:a2:da:75: 45:c8:07:18:bf:4b:36:aa:c2:de:c1:41:94:ca:05: d4:20:e4:b1:57:3c:f0:5b:a7:ad:39:3c:c0:9e:45: fa:b9:a8:53:2f:a0:66:da:e7:79:df:16:b0:86:e0: be:af:35:44:a4:67:9a:37:81:36:a3:4f:54:50:d8: e4:28:06:53:e5:18:27:72:47:a2:87:69:27:68:00: 11:12:46:90:52:8b:39:59:85:2f:d7:b9:a9:84:6e: c4:db:4d:92:54:42:ff:c9:06:61:d1:5f:b9:f1:f4: c5:c9:e7:e2:b0:e7:85:69:e7:44:f6:26:64:17:b7: 95:b3:36:a5:30:d9:06:1c:2a:03:a2:f6:0d:05:11: 88:fe:39:d8:6a:2e:cc:0f:93:a6:83:19:c1:6d:21: 0d:cf:72:54:f6:40:a6:c6:2d:da:2f:2b:96:0e:58: cb:87:fd:54:a1:28:4c:c5:c5:79:e1:1f:e8:bc:2a: a0:ff:6b:2d:6c:ed:f7:b5:81:b1:30:f7:92:82:98: cf:40:66:04:d6:aa:a9:68:70:2b:c9:e7:00:4d:28: 7f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:1E:C9:68:55:13:74:A8:C1:2D:F7:BA:F2:48:91:D0:A3:74:19:4A X509v3 Authority Key Identifier: keyid:64:6D:69:C8:8D:09:6F:7D:39:22:0D:28:86:88:91:47:29:04:5E:F8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/ZG1pyI0Jb305Ig0ohoiRRykEXvg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZG1pyI0Jb305Ig0ohoiRRykEXvg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ACEREDC/-B7JaFUTdKjBLfe68kiR0KN0GUo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.79.192.0/20 Signature Algorithm: sha256WithRSAEncryption 3d:a2:25:2e:0b:74:35:f6:de:a3:20:84:8e:a9:e1:f4:c2:af: 83:ab:b3:9e:63:a2:02:c7:8b:74:c9:29:12:d9:a8:fd:8b:a1: fc:5e:ed:bb:40:ad:15:e2:0b:11:7d:fc:97:c8:2f:4e:2c:77: 2b:2e:58:e8:9e:f3:e7:50:f0:d3:98:06:dd:cc:25:cd:44:eb: bf:b0:2d:65:6c:d1:d6:8c:bc:ea:13:d1:4b:c4:6c:5a:3d:37: 5d:ab:eb:27:eb:5d:45:bd:1c:3d:98:41:aa:58:47:df:0a:aa: c0:d3:08:c0:21:78:77:ff:45:0e:5c:df:63:22:66:95:7b:d6: 6b:7c:a8:0a:50:cf:d0:93:4c:10:d0:1d:4d:cc:fd:d8:73:d8: e7:f8:fb:ab:27:0e:79:cd:ea:92:4e:0b:2c:1b:c2:10:96:0e: 06:e7:46:44:c0:1a:6e:4e:f6:ec:c2:71:9a:64:e7:9e:8a:53: 66:b7:6b:8b:12:6e:c8:19:4e:45:90:6d:6d:9c:89:da:06:d5: 9b:fe:c9:e6:0c:60:3d:38:55:49:5f:15:e3:36:08:ea:87:88: 83:06:82:47:27:85:53:23:02:8d:36:9a:bc:67:91:23:79:15: 0f:ed:91:0b:3f:e4:76:a2:27:d0:11:0a:cc:ae:fe:75:17:36: 88:6a:4b:75 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBoMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjQ2 RDY5Qzg4RDA5NkY3RDM5MjIwRDI4ODY4ODkxNDcyOTA0NUVGODAeFw0yNDA4MjYw NDUwMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4MUVDOTY4NTUxMzc0 QThDMTJERjdCQUYyNDg5MUQwQTM3NDE5NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpyNikpoFv+qxFmUbkDvZC564XnlIskARB21VIW8AVVKXm5YCn UbWHI6LadUXIBxi/Szaqwt7BQZTKBdQg5LFXPPBbp605PMCeRfq5qFMvoGba53nf FrCG4L6vNUSkZ5o3gTajT1RQ2OQoBlPlGCdyR6KHaSdoABESRpBSizlZhS/XuamE bsTbTZJUQv/JBmHRX7nx9MXJ5+Kw54Vp50T2JmQXt5WzNqUw2QYcKgOi9g0FEYj+ OdhqLswPk6aDGcFtIQ3PclT2QKbGLdovK5YOWMuH/VShKEzFxXnhH+i8KqD/ay1s 7fe1gbEw95KCmM9AZgTWqqlocCvJ5wBNKH9PAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU+B7JaFUTdKjBLfe68kiR0KN0GUowHwYDVR0jBBgwFoAUZG1pyI0Jb305Ig0o hoiRRykEXvgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUNFUkVE Qy9aRzFweUkwSmIzMDVJZzBvaG9pUlJ5a0VYdmcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1pHMXB5STBKYjMwNUlnMG9ob2lSUnlrRVh2Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FDRVJFREMvLUI3SmFGVVRkS2pCTGZl NjhraVIwS04wR1VvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNNPwDANBgkqhkiG9w0BAQsFAAOCAQEAPaIlLgt0NfbeoyCEjqnh9MKvg6uznmOi AseLdMkpEtmo/Yuh/F7tu0CtFeILEX38l8gvTix3Ky5Y6J7z51Dw05gG3cwlzUTr v7AtZWzR1oy86hPRS8RsWj03XavrJ+tdRb0cPZhBqlhH3wqqwNMIwCF4d/9FDlzf YyJmlXvWa3yoClDP0JNMENAdTcz92HPY5/j7qycOec3qkk4LLBvCEJYOBudGRMAa bk727MJxmmTnnopTZrdrixJuyBlORZBtbZyJ2gbVm/7J5gxgPThVSV8V4zYI6oeI gwaCRyeFUyMCjTaavGeRI3kVD+2RCz/kdqIn0BEKzK7+dRc2iGpLdQ== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:01 2024 by rpki-client on console-ams.rpki-client.org