$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/aGEbZLNZ4htvSoUOmtD-gAQmGys.roa File: aGEbZLNZ4htvSoUOmtD-gAQmGys.roa (raw, json) Hash identifier: ZXmvoGmZhBsM43ZPgl/M+gVCZmjq2xEVnt8lF74o95g= Subject key identifier: 68:61:1B:64:B3:59:E2:1B:6F:4A:85:0E:9A:D0:FE:80:04:26:1B:2B Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 07 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/aGEbZLNZ4htvSoUOmtD-gAQmGys.roa Signing time: Thu 17 Oct 2024 06:20:39 +0000 ROA not before: Thu 17 Oct 2024 06:20:39 +0000 ROA not after: Wed 15 Oct 2025 15:30:20 +0000 asID: 150766 IP address blocks: 160.191.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Oct 17 06:20:39 2024 GMT Not After : Oct 15 15:30:20 2025 GMT Subject: CN=68611B64B359E21B6F4A850E9AD0FE8004261B2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e5:bd:50:9a:19:f4:98:54:ab:80:63:a1:4c: 49:b9:c6:5b:f7:71:a6:93:ef:1a:43:b2:74:bf:e9: b1:9e:be:5d:98:d3:84:f1:2d:63:ce:43:88:c2:43: 12:a4:55:fd:48:84:10:ef:34:ff:e3:e5:6a:f7:60: bf:e4:dc:4d:39:13:42:73:27:e6:dd:6e:41:4a:8a: ca:f1:c4:81:30:60:e1:e4:21:a3:b8:1c:ed:b9:95: 12:5e:48:55:93:94:6a:00:6d:8a:f5:15:d8:d7:3f: bb:f9:bd:44:85:b0:d6:a4:38:0b:64:28:c0:32:d4: d5:78:5f:43:11:49:f4:27:89:f3:2a:c2:94:83:78: 23:ca:6c:fa:b5:b9:5e:5c:68:63:53:7b:79:9e:24: f7:b7:47:ea:f3:61:4e:13:d2:63:c1:ba:41:ed:17: 07:32:33:82:28:a4:64:10:e1:b4:c9:33:2e:99:9d: 97:9d:24:47:95:4a:b3:ef:82:10:7e:4f:67:25:5d: cc:26:81:1d:cf:07:9b:75:bb:ac:81:85:92:56:63: 10:17:8d:9e:06:f6:02:b9:39:41:a1:14:74:99:c0: 14:80:bc:72:dd:e0:87:56:f6:af:66:14:ea:0b:b9: b8:ec:48:3e:b3:97:3e:1b:66:1e:e8:87:39:0a:be: 07:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:61:1B:64:B3:59:E2:1B:6F:4A:85:0E:9A:D0:FE:80:04:26:1B:2B X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/aGEbZLNZ4htvSoUOmtD-gAQmGys.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.9.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:e8:72:29:3a:7d:57:3a:10:bb:11:f4:89:16:bf:0d:0b:0a: c4:d2:57:21:0a:f0:3a:dc:00:a0:b5:17:6d:b1:c1:ff:ad:c5: 35:3c:ae:bc:58:c5:b8:67:cf:66:72:e0:01:c1:ce:16:62:09: d0:8a:85:6e:78:7f:1a:9c:2a:a7:10:ef:ba:7a:db:67:95:80: da:52:7d:8b:d7:37:d0:cb:5e:37:d3:a4:2d:08:bf:86:7d:a2: e9:80:56:7f:97:95:ee:1f:6a:2b:8a:47:b4:09:9a:e6:e7:e5: c7:22:59:06:3a:b0:52:f2:f1:de:59:b4:05:9c:05:5d:e1:7e: 48:55:0f:fc:5c:f9:ff:dd:95:9a:a5:1a:c3:cd:95:b5:fa:e8: bc:9e:aa:56:dc:d9:48:8f:50:0e:9f:de:e8:66:92:d9:57:30: 92:53:43:75:36:57:ee:f0:d7:d0:f3:a5:4a:87:95:85:e6:c9: f4:09:f5:5d:a0:3a:c7:79:e1:7b:14:a3:7e:86:02:a5:5a:72: e2:12:d3:5b:43:4d:f6:d7:d0:50:11:23:8c:61:c8:22:1b:34: 04:fd:ab:24:c6:80:5f:e2:25:be:07:66:66:27:40:39:a9:16: 25:23:2a:90:af:5c:5e:dd:06:cc:e1:f7:f4:48:38:95:d0:c3: cb:27:0a:4a -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyMEFD Q0E4NzE4NTAwMzczQUZGNzdCNDE0QjIzREM2QTVGMTQ3NEVFMB4XDTI0MTAxNzA2 MjAzOVoXDTI1MTAxNTE1MzAyMFowMzExMC8GA1UEAxMoNjg2MTFCNjRCMzU5RTIx QjZGNEE4NTBFOUFEMEZFODAwNDI2MUIyQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMzlvVCaGfSYVKuAY6FMSbnGW/dxppPvGkOydL/psZ6+XZjThPEt Y85DiMJDEqRV/UiEEO80/+Plavdgv+TcTTkTQnMn5t1uQUqKyvHEgTBg4eQho7gc 7bmVEl5IVZOUagBtivUV2Nc/u/m9RIWw1qQ4C2QowDLU1XhfQxFJ9CeJ8yrClIN4 I8ps+rW5XlxoY1N7eZ4k97dH6vNhThPSY8G6Qe0XBzIzgiikZBDhtMkzLpmdl50k R5VKs++CEH5PZyVdzCaBHc8Hm3W7rIGFklZjEBeNngb2Ark5QaEUdJnAFIC8ct3g h1b2r2YU6gu5uOxIPrOXPhtmHuiHOQq+B2UCAwEAAaOCAe4wggHqMB0GA1UdDgQW BBRoYRtks1niG29KhQ6a0P6ABCYbKzAfBgNVHSMEGDAWgBQgrMqHGFADc6/3e0FL I9xqXxR07jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVRIREQv SUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9JS3pLaHhoUUEzT3Y5M3RCU3lQY2FsOFVkTzQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVRIREQvYUdFYlpMTlo0aHR2U29VT210 RC1nQVFtR3lzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKC/ CTANBgkqhkiG9w0BAQsFAAOCAQEAGuhyKTp9VzoQuxH0iRa/DQsKxNJXIQrwOtwA oLUXbbHB/63FNTyuvFjFuGfPZnLgAcHOFmIJ0IqFbnh/GpwqpxDvunrbZ5WA2lJ9 i9c30MteN9OkLQi/hn2i6YBWf5eV7h9qK4pHtAma5uflxyJZBjqwUvLx3lm0BZwF XeF+SFUP/Fz5/92VmqUaw82VtfrovJ6qVtzZSI9QDp/e6GaS2VcwklNDdTZX7vDX 0POlSoeVhebJ9An1XaA6x3nhexSjfoYCpVpy4hLTW0NN9tfQUBEjjGHIIhs0BP2r JMaAX+IlvgdmZidAOakWJSMqkK9cXt0GzOH39Eg4ldDDyycKSg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:01 2024 by rpki-client on console-ams.rpki-client.org