$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/erZeiV1X-Fb2m-I6TjI8Mi47D1s.roa File: erZeiV1X-Fb2m-I6TjI8Mi47D1s.roa (raw, json) Hash identifier: hOL9oFsZfuNn/12P4ZUIv/wvUX5bp0yOqqriaLHgn5E= Subject key identifier: 7A:B6:5E:89:5D:57:F8:56:F6:9B:E2:3A:4E:32:3C:32:2E:3B:0F:5B Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Certificate serial: 01E5 Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/erZeiV1X-Fb2m-I6TjI8Mi47D1s.roa Signing time: Sat 09 Nov 2024 02:30:44 +0000 ROA not before: Sat 09 Nov 2024 02:30:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 6939 IP address blocks: 160.30.78.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Validity Not Before: Nov 9 02:30:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7AB65E895D57F856F69BE23A4E323C322E3B0F5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a0:7d:d3:cf:56:92:a0:4b:ba:4d:4e:68:25: 79:e0:d6:fc:bb:29:f6:aa:d5:fd:53:83:a7:c3:fe: 57:94:35:10:b9:4c:ab:6c:c0:4a:c4:97:28:e8:e2: b3:c4:7f:53:e9:64:1d:f0:e5:b3:34:ce:80:6d:21: ea:15:e0:09:2c:a8:51:14:2b:47:20:a0:c4:54:81: 3e:e6:9b:a0:d8:ef:c1:fc:43:29:a0:22:ed:70:f4: 71:5d:f7:7b:dc:21:61:70:d9:cc:69:51:4d:26:c3: 4a:6b:32:05:e3:91:84:7a:5e:dd:89:25:e8:a1:e9: ac:48:a5:ee:21:c9:37:32:79:ac:75:39:2d:d1:c0: fa:35:76:d9:e0:b0:e4:7e:0f:8c:ef:a9:0b:75:86: 9a:66:e3:71:54:59:e7:1f:8c:08:39:3c:6e:0e:f0: fd:ce:cb:b2:f7:30:d0:67:d8:37:88:f3:c2:43:aa: 7d:c5:9c:ba:af:3c:36:30:45:4e:d0:a8:6a:69:1f: 16:2b:5c:89:0f:d3:73:80:03:57:76:d0:17:e5:3f: 58:cc:b7:0f:27:ee:4f:c2:51:18:56:41:3c:61:a3: 6a:ca:c5:be:77:57:97:92:89:c4:ce:78:9e:d4:65: 05:3c:03:df:2b:b6:84:d2:de:f1:4e:5f:37:2c:dd: 46:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B6:5E:89:5D:57:F8:56:F6:9B:E2:3A:4E:32:3C:32:2E:3B:0F:5B X509v3 Authority Key Identifier: keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/erZeiV1X-Fb2m-I6TjI8Mi47D1s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.78.0/23 Signature Algorithm: sha256WithRSAEncryption 47:3a:3c:7c:68:ae:0d:8a:38:94:f4:5f:7c:b0:da:39:0b:61: 2a:7c:48:4f:fb:54:b4:d3:44:40:48:b3:22:e2:7a:f8:80:01: 0f:34:01:d9:e8:66:82:a3:33:7a:89:7b:1e:b0:35:12:3a:09: a0:e4:21:e8:2e:b2:29:32:58:5f:cf:a0:ce:fc:60:e3:ac:c5: c6:ab:65:23:5e:ae:9d:40:83:da:51:03:04:04:c1:a0:3b:4e: c6:ca:4e:1f:7c:7f:8e:18:5e:42:4c:30:55:c1:5a:44:45:4e: ea:63:9b:60:68:39:32:53:5f:6e:ac:1c:ff:2f:8a:9b:0e:5d: 4f:6c:ab:3a:5a:fd:50:ff:12:3b:1e:fb:70:02:82:01:c2:cd: c6:60:79:9b:f4:8d:c2:4f:68:c8:72:2f:75:b8:65:43:de:06: 64:3b:39:a6:c6:f0:03:32:bc:88:21:40:6c:9b:ad:f5:da:7b: 81:25:16:6d:ee:60:e0:e1:b0:2e:e8:02:31:8b:87:75:e8:52: 2f:46:22:45:d8:af:06:ae:27:a1:df:c9:83:7f:e1:eb:5f:b1: 12:64:a2:82:82:ad:fe:15:ef:ca:52:78:cf:4d:e6:77:5b:15: 90:0b:d3:1e:e4:87:bf:d7:8c:e4:01:b0:ae:68:0d:fd:ce:cf: 80:a9:27:ab -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDRG OERDRjY2QjI1QjcxOTA1NkQxRUQ2NUMxNkVBOTI1N0U1NTUzRDAeFw0yNDExMDkw MjMwNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdBQjY1RTg5NUQ1N0Y4 NTZGNjlCRTIzQTRFMzIzQzMyMkUzQjBGNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwoH3Tz1aSoEu6TU5oJXng1vy7Kfaq1f1Tg6fD/leUNRC5TKts wErElyjo4rPEf1PpZB3w5bM0zoBtIeoV4AksqFEUK0cgoMRUgT7mm6DY78H8Qymg Iu1w9HFd93vcIWFw2cxpUU0mw0prMgXjkYR6Xt2JJeih6axIpe4hyTcyeax1OS3R wPo1dtngsOR+D4zvqQt1hppm43FUWecfjAg5PG4O8P3Oy7L3MNBn2DeI88JDqn3F nLqvPDYwRU7QqGppHxYrXIkP03OAA1d20BflP1jMtw8n7k/CURhWQTxho2rKxb53 V5eSicTOeJ7UZQU8A98rtoTS3vFOXzcs3UZdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUerZeiV1X+Fb2m+I6TjI8Mi47D1swHwYDVR0jBBgwFoAURPjc9msltxkFbR7W XBbqklflVT0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9V L1JQamM5bXNsdHhrRmJSN1dYQmJxa2xmbFZUMC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVJRE9VL2VyWmVpVjFYLUZiMm0tSTZU akk4TWk0N0Qxcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGg Hk4wDQYJKoZIhvcNAQELBQADggEBAEc6PHxorg2KOJT0X3yw2jkLYSp8SE/7VLTT REBIsyLieviAAQ80AdnoZoKjM3qJex6wNRI6CaDkIegusikyWF/PoM78YOOsxcar ZSNerp1Ag9pRAwQEwaA7TsbKTh98f44YXkJMMFXBWkRFTupjm2BoOTJTX26sHP8v ipsOXU9sqzpa/VD/Ejse+3ACggHCzcZgeZv0jcJPaMhyL3W4ZUPeBmQ7OabG8AMy vIghQGybrfXae4ElFm3uYODhsC7oAjGLh3XoUi9GIkXYrwauJ6HfyYN/4etfsRJk ooKCrf4V78pSeM9N5ndbFZAL0x7kh7/XjOQBsK5oDf3Oz4CpJ6s= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:29 2024 by rpki-client on console-ams.rpki-client.org