$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ARCHE/CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa File: CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa (raw, json) Hash identifier: UvKlnuBENJqhFwaYrf38DiKOLYBvAhZbeWg1fJE+G9s= Subject key identifier: 09:E5:D8:8E:F7:3F:A5:B7:6A:9E:C3:A7:52:5C:E1:A5:6D:27:17:0D Certificate issuer: /CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Certificate serial: 06 Authority key identifier: 06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa Signing time: Sun 04 Feb 2024 12:21:29 +0000 ROA not before: Sun 04 Feb 2024 12:21:29 +0000 ROA not after: Thu 23 Jan 2025 15:30:21 +0000 asID: 18041 IP address blocks: 2401:7a60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=069CE651DD7D716A89A8EE84873DCCBF41354799 Validity Not Before: Feb 4 12:21:29 2024 GMT Not After : Jan 23 15:30:21 2025 GMT Subject: CN=09E5D88EF73FA5B76A9EC3A7525CE1A56D27170D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:22:8f:33:42:24:78:34:5b:43:9b:ff:97:26: 57:0b:6b:41:58:5b:19:94:1d:a0:94:54:ed:e7:f3: 4f:7d:b1:ff:a5:c9:b5:8b:af:e1:e0:92:1e:ae:22: cd:53:61:af:3b:a4:c1:13:93:93:a0:d1:58:f1:8b: 76:75:e2:37:79:bc:92:0f:51:fb:18:0e:a6:18:15: ea:d6:e4:5b:df:8f:fa:e6:83:4b:f3:44:f9:ce:5e: 41:94:5e:cd:91:d1:16:5d:21:af:4d:1e:13:13:1d: ec:9e:fa:de:16:26:bc:b2:2b:df:c9:c2:cf:e6:42: 74:dd:55:fb:7a:8d:23:b3:74:4e:df:21:18:dc:a2: e3:0b:0e:df:9e:96:d3:74:37:92:5f:04:13:8c:6b: 1d:7f:32:2e:ec:0c:bf:05:d2:97:56:31:97:db:1a: 91:3b:32:6a:11:8f:7d:0a:f9:79:06:e4:5d:2e:2b: 5b:86:5e:a7:13:9a:43:4a:92:ac:72:ab:ef:1d:99: 22:5b:d0:9b:2f:ef:b2:1c:26:4c:9c:01:b4:9a:e8: 1d:eb:6c:4c:9d:44:7f:d0:20:49:1c:eb:52:e9:a6: 14:23:72:3a:63:e9:47:30:92:5c:6f:e7:fb:b9:ef: 0b:23:3c:29:36:cc:e3:8e:57:8b:3c:f6:25:52:34: 79:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E5:D8:8E:F7:3F:A5:B7:6A:9E:C3:A7:52:5C:E1:A5:6D:27:17:0D X509v3 Authority Key Identifier: keyid:06:9C:E6:51:DD:7D:71:6A:89:A8:EE:84:87:3D:CC:BF:41:35:47:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BpzmUd19cWqJqO6Ehz3Mv0E1R5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ARCHE/CeXYjvc_pbdqnsOnUlzhpW0nFw0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:7a60::/32 Signature Algorithm: sha256WithRSAEncryption b2:eb:b4:64:b4:94:01:e1:97:53:55:88:ee:ba:ac:02:f2:5a: 7f:a1:fd:83:71:e1:62:9e:cb:1b:a1:23:f8:81:27:d8:91:d5: 81:52:1c:cd:58:c7:e4:26:4d:4a:72:12:3a:71:26:a9:e0:9a: 66:a6:ea:b8:b1:69:1a:10:1d:4f:6c:a2:89:78:a1:6e:23:3c: 99:7d:10:d7:e3:c3:c2:eb:12:32:4e:36:13:f3:17:67:3f:73: 5e:d4:5e:83:27:55:0d:92:8a:6c:bb:41:4b:97:9d:ef:ee:12: 09:8b:29:27:83:4f:e9:88:d1:ae:f3:ea:75:a8:45:76:89:08: 67:ec:18:a2:42:ef:f6:63:a6:17:27:72:13:ad:d7:b1:64:5f: 5e:e6:53:a1:6d:b3:1f:91:0d:07:74:b8:33:8a:2d:3f:dc:23: 43:0b:60:49:ef:8e:b5:da:21:ec:1f:92:ef:d3:15:6a:24:7c: b3:d4:d9:ef:98:7b:b4:c5:1c:3c:f2:c3:9b:5e:08:63:32:c6: c5:c4:5f:03:e7:14:2e:3f:f1:30:a8:7a:55:1b:ea:79:ac:31: 2c:7a:0d:d1:6b:32:c3:70:56:6a:e4:ea:a8:f1:c3:e1:0e:0f: b5:15:85:ad:9d:30:32:86:ec:ec:c4:6c:0f:5f:df:e0:e2:f0: 9c:12:23:ab -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwNjlD RTY1MUREN0Q3MTZBODlBOEVFODQ4NzNEQ0NCRjQxMzU0Nzk5MB4XDTI0MDIwNDEy MjEyOVoXDTI1MDEyMzE1MzAyMVowMzExMC8GA1UEAxMoMDlFNUQ4OEVGNzNGQTVC NzZBOUVDM0E3NTI1Q0UxQTU2RDI3MTcwRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALgijzNCJHg0W0Ob/5cmVwtrQVhbGZQdoJRU7efzT32x/6XJtYuv 4eCSHq4izVNhrzukwROTk6DRWPGLdnXiN3m8kg9R+xgOphgV6tbkW9+P+uaDS/NE +c5eQZRezZHRFl0hr00eExMd7J763hYmvLIr38nCz+ZCdN1V+3qNI7N0Tt8hGNyi 4wsO356W03Q3kl8EE4xrHX8yLuwMvwXSl1Yxl9sakTsyahGPfQr5eQbkXS4rW4Ze pxOaQ0qSrHKr7x2ZIlvQmy/vshwmTJwBtJroHetsTJ1Ef9AgSRzrUummFCNyOmPp RzCSXG/n+7nvCyM8KTbM445Xizz2JVI0eeUCAwEAAaOCAe0wggHpMB0GA1UdDgQW BBQJ5diO9z+lt2qew6dSXOGlbScXDTAfBgNVHSMEGDAWgBQGnOZR3X1xaomo7oSH Pcy/QTVHmTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BUkNIRS9C cHptVWQxOWNXcUpxTzZFaHozTXYwRTFSNWsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0Jwem1VZDE5Y1dxSnFPNkVoejNNdjBFMVI1ay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0FSQ0hFL0NlWFlqdmNfcGJkcW5zT25VbHpo cFcwbkZ3MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAXpg MA0GCSqGSIb3DQEBCwUAA4IBAQCy67RktJQB4ZdTVYjuuqwC8lp/of2DceFinssb oSP4gSfYkdWBUhzNWMfkJk1KchI6cSap4Jpmpuq4sWkaEB1PbKKJeKFuIzyZfRDX 48PC6xIyTjYT8xdnP3Ne1F6DJ1UNkopsu0FLl53v7hIJiykng0/piNGu8+p1qEV2 iQhn7BiiQu/2Y6YXJ3ITrdexZF9e5lOhbbMfkQ0HdLgzii0/3CNDC2BJ74612iHs H5Lv0xVqJHyz1NnvmHu0xRw88sObXghjMsbFxF8D5xQuP/EwqHpVG+p5rDEseg3R azLDcFZq5Oqo8cPhDg+1FYWtnTAyhuzsxGwPX9/g4vCcEiOr -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:48 2024 by rpki-client on console-fra.rpki-client.org