$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/9mc0W_EJ2Y7e53roWFL0VNu8DX8.roa File: 9mc0W_EJ2Y7e53roWFL0VNu8DX8.roa (raw, json) Hash identifier: YZxNiigNxuTuq0zriYnBfXFnkH+uLblwFNu4E3Pbfcs= Subject key identifier: F6:67:34:5B:F1:09:D9:8E:DE:E7:7A:E8:58:52:F4:54:DB:BC:0D:7F Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 054C Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/9mc0W_EJ2Y7e53roWFL0VNu8DX8.roa Signing time: Mon 26 Aug 2024 05:09:27 +0000 ROA not before: Mon 26 Aug 2024 05:09:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38136 IP address blocks: 2406:8dc0::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1356 (0x54c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Aug 26 05:09:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F667345BF109D98EDEE77AE85852F454DBBC0D7F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f5:47:2d:62:fb:a8:d7:df:1a:bc:fe:07:4c: 6c:a4:ed:91:1c:4c:50:2d:ae:47:4e:5e:c6:38:2d: ac:d7:86:a7:c3:00:e3:3c:0a:95:3c:a5:58:9c:52: 34:ea:02:10:4f:7b:e4:50:c0:9d:e0:7d:fd:04:df: fa:a0:25:1b:8b:c5:7f:87:73:e3:25:3b:bd:c1:c2: e2:2f:30:d1:03:4e:b6:0c:22:8f:08:e2:3a:e4:df: 01:b4:92:6d:d2:95:38:84:67:2b:be:d9:bc:da:40: 49:8f:96:c0:e0:d8:73:76:c2:5c:c9:1b:d0:fe:2e: 92:61:0d:b5:ad:16:22:5b:57:1e:23:9b:36:92:8f: 5e:d2:df:1b:87:7e:b6:24:57:a5:36:49:2c:8f:8e: e6:ec:0e:ce:f9:d2:8d:87:e7:13:31:cf:0e:ff:09: ff:b0:16:a1:1e:e7:d1:ab:d3:1b:5e:27:30:bd:37: d5:1f:22:6d:1a:28:f3:5a:50:0a:b3:00:3d:68:2d: 18:ac:42:d9:66:aa:45:44:6c:34:9f:c5:12:e2:02: f4:fa:2a:18:97:38:78:a0:21:3a:b6:94:b0:f8:c4: ca:8d:a1:90:66:ab:26:6b:f5:32:48:41:25:c9:f9: 26:9c:d0:d7:90:74:9e:66:a8:c2:53:08:96:ea:fc: 09:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:67:34:5B:F1:09:D9:8E:DE:E7:7A:E8:58:52:F4:54:DB:BC:0D:7F X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/9mc0W_EJ2Y7e53roWFL0VNu8DX8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:8dc0::/36 Signature Algorithm: sha256WithRSAEncryption 56:ec:ee:7e:1c:dd:6b:c0:93:1a:81:0b:02:e2:05:ad:36:78: 4d:a8:3d:ad:ca:3d:c1:93:2e:de:9a:00:6a:f3:32:69:fa:19: ec:81:0e:e3:5c:ce:af:28:49:98:57:14:4e:10:60:15:5c:a0: 2e:83:ab:1a:a3:04:05:54:6b:90:74:6f:a8:66:ed:8d:52:5b: 50:cf:67:9e:f9:cb:f6:77:43:74:d0:37:6f:38:10:aa:a5:fe: 44:51:8c:38:c8:69:d5:e9:b5:8b:c9:3d:72:a3:fe:76:e5:d8: b2:22:ce:3b:00:cd:d0:48:8e:92:a1:43:c3:6b:eb:e2:22:0c: 70:91:24:53:72:3c:c0:cb:a8:45:8b:c8:91:9f:3e:74:e4:16: 3a:4a:61:73:f1:dd:00:f0:e7:50:86:d4:b8:c4:9b:06:29:0c: e5:df:4d:0a:a6:ba:c1:6d:a0:65:77:34:33:16:04:45:5e:1f: 2a:e4:4f:50:c6:4f:08:83:91:a6:b6:7c:a9:5f:b4:81:6f:33: ea:d6:e4:a8:2e:70:3f:0f:aa:ca:90:11:38:56:52:61:d1:4f: 25:5e:8d:32:73:ac:87:85:c0:88:e6:a5:69:96:22:3a:86:35: 09:57:d0:38:59:b5:ab:51:cd:39:4f:ba:96:83:54:41:65:71: 3a:a5:53:c2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBUwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNDA4MjYw NTA5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2NjczNDVCRjEwOUQ5 OEVERUU3N0FFODU4NTJGNDU0REJCQzBEN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC69UctYvuo198avP4HTGyk7ZEcTFAtrkdOXsY4LazXhqfDAOM8 CpU8pVicUjTqAhBPe+RQwJ3gff0E3/qgJRuLxX+Hc+MlO73BwuIvMNEDTrYMIo8I 4jrk3wG0km3SlTiEZyu+2bzaQEmPlsDg2HN2wlzJG9D+LpJhDbWtFiJbVx4jmzaS j17S3xuHfrYkV6U2SSyPjubsDs750o2H5xMxzw7/Cf+wFqEe59Gr0xteJzC9N9Uf Im0aKPNaUAqzAD1oLRisQtlmqkVEbDSfxRLiAvT6KhiXOHigITq2lLD4xMqNoZBm qyZr9TJIQSXJ+Sac0NeQdJ5mqMJTCJbq/AlPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU9mc0W/EJ2Y7e53roWFL0VNu8DX8wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvOW1jMFdfRUoyWTdlNTNy b1dGTDBWTnU4RFg4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMG BCQGjcAAMA0GCSqGSIb3DQEBCwUAA4IBAQBW7O5+HN1rwJMagQsC4gWtNnhNqD2t yj3Bky7emgBq8zJp+hnsgQ7jXM6vKEmYVxROEGAVXKAug6saowQFVGuQdG+oZu2N UltQz2ee+cv2d0N00DdvOBCqpf5EUYw4yGnV6bWLyT1yo/525diyIs47AM3QSI6S oUPDa+viIgxwkSRTcjzAy6hFi8iRnz505BY6SmFz8d0A8OdQhtS4xJsGKQzl300K prrBbaBldzQzFgRFXh8q5E9Qxk8Ig5GmtnypX7SBbzPq1uSoLnA/D6rKkBE4VlJh 0U8lXo0yc6yHhcCI5qVpliI6hjUJV9A4WbWrUc05T7qWg1RBZXE6pVPC -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:29 2024 by rpki-client on console-ams.rpki-client.org