$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCETECH/AFwMi2WtmuswbDhK_xfXYERr3zI.roa File: AFwMi2WtmuswbDhK_xfXYERr3zI.roa (raw, json) Hash identifier: KC+xkDJZAoURBhM7AgoKm+35qIvvglEHxBZNTh5CVIE= Subject key identifier: 00:5C:0C:8B:65:AD:9A:EB:30:6C:38:4A:FF:17:D7:60:44:6B:DF:32 Certificate issuer: /CN=7E9CEF27C8DED13506B3399D992ECFF626B57951 Certificate serial: 07 Authority key identifier: 7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/AFwMi2WtmuswbDhK_xfXYERr3zI.roa Signing time: Tue 09 Jul 2024 10:09:50 +0000 ROA not before: Tue 09 Jul 2024 10:09:50 +0000 ROA not after: Wed 09 Jul 2025 08:49:00 +0000 asID: 208223 IP address blocks: 160.25.104.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 07:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E9CEF27C8DED13506B3399D992ECFF626B57951 Validity Not Before: Jul 9 10:09:50 2024 GMT Not After : Jul 9 08:49:00 2025 GMT Subject: CN=005C0C8B65AD9AEB306C384AFF17D760446BDF32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:26:e1:79:33:12:b3:30:43:c9:82:21:16:dd: 6b:a4:ff:a7:b6:c5:89:80:49:b6:4f:e4:d5:22:6c: 49:f9:f6:fd:c5:44:f0:fb:9b:fd:ef:ce:ef:7f:81: e5:06:5a:22:15:6b:fc:00:54:c2:02:c9:ed:ce:11: 16:94:a4:47:4f:17:8c:4c:39:1b:07:87:14:b8:a3: 5a:bc:03:25:a9:e7:d7:bd:43:85:e3:b6:7c:f0:11: bd:2b:b5:b4:1b:ea:e6:4f:24:3e:f9:45:13:e5:00: d4:f9:38:e0:c8:0d:b4:8e:51:7d:43:ab:b6:2a:04: fd:44:bf:6d:6e:7a:50:9d:7e:53:71:96:d8:e1:78: b5:45:ba:6f:4e:8c:3a:b5:91:36:86:06:07:e5:52: bd:16:85:65:ae:ab:2b:c5:8d:7b:35:ae:1b:0f:f6: 1c:5e:7d:ee:19:d4:d6:0d:66:a5:a9:7c:c7:56:6f: 86:05:82:48:3c:1d:24:ef:2c:a5:fa:0f:9e:e2:b3: 6f:74:db:a6:2f:26:42:ad:1e:a2:60:97:f9:72:f6: af:80:f1:10:21:92:1d:3b:03:e0:8b:ef:1b:25:37: 32:a2:cd:da:39:25:08:98:87:96:8b:66:9d:7a:f6: d4:30:36:6c:95:56:ab:0a:02:52:10:07:af:18:7b: 5a:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:5C:0C:8B:65:AD:9A:EB:30:6C:38:4A:FF:17:D7:60:44:6B:DF:32 X509v3 Authority Key Identifier: keyid:7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/AFwMi2WtmuswbDhK_xfXYERr3zI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.25.104.0/23 Signature Algorithm: sha256WithRSAEncryption ca:1a:ba:d1:72:77:10:06:85:5a:1d:80:02:dd:38:1e:1f:cf: 76:7a:1c:85:57:9a:9c:9c:29:50:02:13:4d:b7:d2:40:77:43: 78:65:f2:a3:db:bc:e0:f7:2a:c5:8e:f2:fb:e8:46:4f:78:1c: e7:b3:0e:52:f6:98:c1:64:a3:37:64:0b:31:4e:5e:46:36:d7: e9:33:53:b0:90:3b:2c:e4:5e:7d:78:5a:82:46:74:66:3a:a1: b9:9d:1c:f9:cb:fa:4f:4f:c8:8e:24:43:57:cf:d5:95:d8:a9: e7:31:07:11:16:ce:70:26:5e:9e:3d:6d:dd:4a:74:20:69:b2: 69:67:da:98:8e:fc:1c:10:bd:57:22:6c:a3:9a:75:6d:6d:01: 40:32:01:4f:67:8f:d9:b6:3e:4f:dd:70:fc:9c:4e:26:9e:ce: fe:02:fc:25:69:e6:63:be:58:89:df:ca:6c:5b:f4:be:dd:32: a5:c4:35:63:04:e9:d0:1d:3e:ac:66:72:7d:5d:a7:59:51:03: 57:a5:5a:d6:34:4d:22:a8:58:02:a1:8e:a2:c9:d9:65:d8:e6: 12:af:4e:dd:95:29:81:5c:07:a2:32:a6:9b:ab:c8:23:53:76: b4:a7:bc:44:0e:69:da:df:5a:7f:89:f3:8f:6f:d6:20:f9:99: 1c:90:54:2c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3RTlD RUYyN0M4REVEMTM1MDZCMzM5OUQ5OTJFQ0ZGNjI2QjU3OTUxMB4XDTI0MDcwOTEw MDk1MFoXDTI1MDcwOTA4NDkwMFowMzExMC8GA1UEAxMoMDA1QzBDOEI2NUFEOUFF QjMwNkMzODRBRkYxN0Q3NjA0NDZCREYzMjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKkm4XkzErMwQ8mCIRbda6T/p7bFiYBJtk/k1SJsSfn2/cVE8Pub /e/O73+B5QZaIhVr/ABUwgLJ7c4RFpSkR08XjEw5GweHFLijWrwDJann171DheO2 fPARvSu1tBvq5k8kPvlFE+UA1Pk44MgNtI5RfUOrtioE/US/bW56UJ1+U3GW2OF4 tUW6b06MOrWRNoYGB+VSvRaFZa6rK8WNezWuGw/2HF597hnU1g1mpal8x1ZvhgWC SDwdJO8spfoPnuKzb3Tbpi8mQq0eomCX+XL2r4DxECGSHTsD4IvvGyU3MqLN2jkl CJiHlotmnXr21DA2bJVWqwoCUhAHrxh7WicCAwEAAaOCAfAwggHsMB0GA1UdDgQW BBQAXAyLZa2a6zBsOEr/F9dgRGvfMjAfBgNVHSMEGDAWgBR+nO8nyN7RNQazOZ2Z Ls/2JrV5UTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQ0VURUNI L2ZwenZKOGplMFRVR3N6bWRtUzdQOWlhMWVWRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZnB6dko4amUwVFVHc3ptZG1TN1A5aWExZVZFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NFVEVDSC9BRndNaTJXdG11c3diRGhL X3hmWFlFUnIzekkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB oBloMA0GCSqGSIb3DQEBCwUAA4IBAQDKGrrRcncQBoVaHYAC3TgeH892ehyFV5qc nClQAhNNt9JAd0N4ZfKj27zg9yrFjvL76EZPeBznsw5S9pjBZKM3ZAsxTl5GNtfp M1OwkDss5F59eFqCRnRmOqG5nRz5y/pPT8iOJENXz9WV2KnnMQcRFs5wJl6ePW3d SnQgabJpZ9qYjvwcEL1XImyjmnVtbQFAMgFPZ4/Ztj5P3XD8nE4mns7+AvwlaeZj vliJ38psW/S+3TKlxDVjBOnQHT6sZnJ9XadZUQNXpVrWNE0iqFgCoY6iydll2OYS r07dlSmBXAeiMqabq8gjU3a0p7xEDmna31p/ifOPb9Yg+ZkckFQs -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:24 2024 by rpki-client on console-ams.rpki-client.org