$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCETECH/iHVtTdevarKwvutaENdy8-uPapk.roa File: iHVtTdevarKwvutaENdy8-uPapk.roa (raw, json) Hash identifier: a1f+FHA4cA4smMdVZWHio8M9WxAMzRkLZRUg8bOtMSc= Subject key identifier: 88:75:6D:4D:D7:AF:6A:B2:B0:BE:EB:5A:10:D7:72:F3:EB:8F:6A:99 Certificate issuer: /CN=7E9CEF27C8DED13506B3399D992ECFF626B57951 Certificate serial: 05 Authority key identifier: 7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/iHVtTdevarKwvutaENdy8-uPapk.roa Signing time: Tue 09 Jul 2024 10:09:41 +0000 ROA not before: Tue 09 Jul 2024 10:09:41 +0000 ROA not after: Wed 09 Jul 2025 08:49:00 +0000 asID: 208223 IP address blocks: 160.25.105.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Sep 2024 03:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E9CEF27C8DED13506B3399D992ECFF626B57951 Validity Not Before: Jul 9 10:09:41 2024 GMT Not After : Jul 9 08:49:00 2025 GMT Subject: CN=88756D4DD7AF6AB2B0BEEB5A10D772F3EB8F6A99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9b:8e:6f:67:3f:9c:dd:ef:bf:61:2d:1d:dc: 3d:7b:7b:79:88:71:54:b5:52:d0:51:93:c8:ed:58: 99:4a:e3:9b:bf:37:b7:b4:37:a0:65:f1:24:30:02: f0:be:a0:fc:1c:91:38:64:6c:a7:33:f7:82:e0:81: 8e:6d:3f:d3:be:35:2f:27:38:20:13:85:db:3a:70: 20:cf:83:8d:45:ca:c6:9e:f8:a6:31:7e:b2:cc:32: f0:5b:67:8b:c3:29:15:ed:88:ea:38:ea:0d:48:c0: a4:c5:65:a5:ef:e1:7c:e7:31:f9:68:ba:58:40:f5: 67:fb:e2:14:a7:3a:86:ae:95:58:8d:4b:36:31:85: a0:ba:30:ad:86:b8:ca:af:45:6e:ae:8b:39:a2:64: e8:99:a6:8e:a9:45:0a:74:42:15:36:75:2b:51:17: f4:3e:32:ee:9e:5b:b6:93:00:5d:a4:87:90:ff:cd: 24:0d:2f:6e:16:1b:a6:ac:b6:ef:74:9c:dd:99:7c: 78:fe:ad:d1:28:61:01:9d:44:ad:d0:fa:b5:30:10: d3:91:a0:bd:3d:c4:f4:ca:94:6d:db:70:22:3b:69: 97:61:fa:74:e3:cc:76:c5:47:4e:9b:e5:c8:74:1b: b9:ca:66:9f:20:dd:23:87:65:f8:56:69:bc:d3:5d: f7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:75:6D:4D:D7:AF:6A:B2:B0:BE:EB:5A:10:D7:72:F3:EB:8F:6A:99 X509v3 Authority Key Identifier: keyid:7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/iHVtTdevarKwvutaENdy8-uPapk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.25.105.0/24 Signature Algorithm: sha256WithRSAEncryption cc:91:15:58:1a:c2:b3:31:d9:10:c6:dd:29:38:e1:40:1d:b8: 7c:f0:26:51:4a:73:86:66:d8:1a:f7:08:5f:1a:2d:cb:03:71: 75:38:3c:8d:7a:01:a1:97:27:7e:6e:26:46:11:d4:31:12:7a: 49:f2:3a:8b:c2:ba:59:2b:2f:a0:9c:e4:2a:8a:fb:0f:7e:e0: 94:0c:28:3a:d8:b8:91:f9:cb:e0:ea:4b:18:5a:65:1c:98:25: 3f:37:4f:b9:6b:7a:12:c1:5d:1f:45:b3:42:f8:f3:e0:84:64: 07:8b:83:52:21:eb:44:55:62:8f:4f:69:1b:9d:46:70:45:5d: 51:3e:89:3a:82:56:82:5f:62:36:e9:92:e2:6a:f9:d7:c5:0a: e4:00:d6:0c:39:0e:94:d4:70:56:0a:16:7f:cd:ca:96:42:f9: 0b:73:b4:9c:dd:45:31:6e:19:bc:4b:cc:d5:c1:2a:0f:a3:d6: c7:50:f4:91:4d:35:bd:57:cf:b6:e8:97:54:02:69:89:ab:12: 01:da:21:bd:93:0c:1d:5a:a3:08:0b:74:1e:d1:9b:a6:bc:30: ba:11:bd:f0:fc:34:44:68:c7:f7:92:08:de:a8:21:8a:42:ba: 30:66:bb:a8:42:02:0c:24:e1:5e:01:b1:a3:36:40:00:ed:ff: 18:70:13:97 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3RTlD RUYyN0M4REVEMTM1MDZCMzM5OUQ5OTJFQ0ZGNjI2QjU3OTUxMB4XDTI0MDcwOTEw MDk0MVoXDTI1MDcwOTA4NDkwMFowMzExMC8GA1UEAxMoODg3NTZENEREN0FGNkFC MkIwQkVFQjVBMTBENzcyRjNFQjhGNkE5OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL+bjm9nP5zd779hLR3cPXt7eYhxVLVS0FGTyO1YmUrjm783t7Q3 oGXxJDAC8L6g/ByROGRspzP3guCBjm0/0741Lyc4IBOF2zpwIM+DjUXKxp74pjF+ sswy8Ftni8MpFe2I6jjqDUjApMVlpe/hfOcx+Wi6WED1Z/viFKc6hq6VWI1LNjGF oLowrYa4yq9Fbq6LOaJk6JmmjqlFCnRCFTZ1K1EX9D4y7p5btpMAXaSHkP/NJA0v bhYbpqy273Sc3Zl8eP6t0ShhAZ1ErdD6tTAQ05GgvT3E9MqUbdtwIjtpl2H6dOPM dsVHTpvlyHQbucpmnyDdI4dl+FZpvNNd9+sCAwEAAaOCAfAwggHsMB0GA1UdDgQW BBSIdW1N169qsrC+61oQ13Lz649qmTAfBgNVHSMEGDAWgBR+nO8nyN7RNQazOZ2Z Ls/2JrV5UTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQ0VURUNI L2ZwenZKOGplMFRVR3N6bWRtUzdQOWlhMWVWRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZnB6dko4amUwVFVHc3ptZG1TN1A5aWExZVZFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NFVEVDSC9pSFZ0VGRldmFyS3d2dXRh RU5keTgtdVBhcGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA oBlpMA0GCSqGSIb3DQEBCwUAA4IBAQDMkRVYGsKzMdkQxt0pOOFAHbh88CZRSnOG Ztga9whfGi3LA3F1ODyNegGhlyd+biZGEdQxEnpJ8jqLwrpZKy+gnOQqivsPfuCU DCg62LiR+cvg6ksYWmUcmCU/N0+5a3oSwV0fRbNC+PPghGQHi4NSIetEVWKPT2kb nUZwRV1RPok6glaCX2I26ZLiavnXxQrkANYMOQ6U1HBWChZ/zcqWQvkLc7Sc3UUx bhm8S8zVwSoPo9bHUPSRTTW9V8+26JdUAmmJqxIB2iG9kwwdWqMIC3Qe0ZumvDC6 Eb3w/DREaMf3kgjeqCGKQrowZruoQgIMJOFeAbGjNkAA7f8YcBOX -----END CERTIFICATE-----Generated at Wed Sep 18 23:45:42 2024 by rpki-client on console-ams.rpki-client.org