$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCETECH/t1JYgmNozAxi9aEkQx8pnMUZ6w8.roa File: t1JYgmNozAxi9aEkQx8pnMUZ6w8.roa (raw, json) Hash identifier: 4MaUhlxc0dWHo79tq2iv5RBG5m3sUag80vZRuLnvdVU= Subject key identifier: B7:52:58:82:63:68:CC:0C:62:F5:A1:24:43:1F:29:9C:C5:19:EB:0F Certificate issuer: /CN=7E9CEF27C8DED13506B3399D992ECFF626B57951 Certificate serial: 03 Authority key identifier: 7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/t1JYgmNozAxi9aEkQx8pnMUZ6w8.roa Signing time: Tue 09 Jul 2024 10:09:27 +0000 ROA not before: Tue 09 Jul 2024 10:09:27 +0000 ROA not after: Wed 09 Jul 2025 08:49:00 +0000 asID: 208223 IP address blocks: 160.25.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Sep 2024 03:49:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E9CEF27C8DED13506B3399D992ECFF626B57951 Validity Not Before: Jul 9 10:09:27 2024 GMT Not After : Jul 9 08:49:00 2025 GMT Subject: CN=B75258826368CC0C62F5A124431F299CC519EB0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:a3:9b:d0:72:56:1a:a8:07:68:05:0f:6d: 6c:eb:82:7d:20:c5:a6:0f:24:e7:ae:ee:ed:64:2c: 82:f0:23:ab:1c:ef:e9:1a:61:ab:44:1c:e5:8d:83: 15:35:6a:34:37:00:3a:8c:c2:5f:1d:42:0a:9d:cf: a0:ef:81:e5:fd:0d:98:1d:18:93:a9:8b:38:3e:1e: 48:e3:df:7d:cd:98:f0:8b:97:df:2a:d6:a8:f9:7e: 11:cc:80:22:34:7c:c5:41:6b:a3:94:e7:5f:33:bc: f3:28:4a:3e:ed:f0:e7:34:36:19:87:09:0b:43:57: 4c:fd:b9:89:1a:50:be:4f:67:e2:37:6d:85:10:6d: a3:11:79:16:8d:0d:5e:de:02:32:5a:53:24:44:5d: ea:f8:7d:35:67:d9:4a:08:81:da:e3:e6:3b:6b:18: a4:6f:72:fb:da:97:84:48:71:d8:21:bf:0b:29:44: 64:f5:a8:67:c9:41:4c:a6:88:f3:4b:6f:71:ae:7e: 69:3c:31:4a:93:96:90:eb:2c:00:9c:c9:43:6e:18: 10:1b:04:f9:3f:91:d0:4e:0c:79:4c:60:f2:45:d9: d1:32:ad:f1:c5:f4:57:55:a9:78:10:db:85:0a:da: f3:cf:c0:f8:8e:92:06:94:ea:40:de:08:d0:ca:fa: 0a:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:52:58:82:63:68:CC:0C:62:F5:A1:24:43:1F:29:9C:C5:19:EB:0F X509v3 Authority Key Identifier: keyid:7E:9C:EF:27:C8:DE:D1:35:06:B3:39:9D:99:2E:CF:F6:26:B5:79:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/fpzvJ8je0TUGszmdmS7P9ia1eVE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fpzvJ8je0TUGszmdmS7P9ia1eVE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/t1JYgmNozAxi9aEkQx8pnMUZ6w8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.25.104.0/24 Signature Algorithm: sha256WithRSAEncryption c4:0b:7e:5c:af:2c:3e:f6:1e:d0:4d:be:13:62:30:bb:e1:b0: 19:68:ef:d2:a4:81:42:77:07:e8:c4:6e:df:74:20:76:21:0f: f4:28:94:63:2f:e5:ba:03:f0:93:32:8a:da:98:af:bb:6b:fe: 56:8a:64:e4:c6:ae:fd:c7:79:50:85:ea:39:d9:ea:0f:d1:ca: 03:8c:fe:3f:92:4d:74:ee:b6:ef:78:3b:0e:d4:2d:88:87:6d: e1:19:e1:77:08:d0:dd:21:98:8c:6f:c9:4c:a1:4d:d1:72:95: be:fe:e1:d5:56:24:49:c1:f3:37:ad:06:8a:c7:65:a3:be:ff: 43:0f:db:1b:f1:40:a7:a2:29:c5:3e:b1:fc:c0:34:30:29:44: f4:b4:31:71:e9:d4:14:c2:6c:89:41:6f:f5:dc:86:44:56:75: 1f:e7:29:1a:a1:a0:9d:81:c1:b5:e1:cd:da:79:28:87:d3:36: 04:65:25:8b:d5:d3:48:4a:3a:0c:5c:0d:dd:72:fe:75:2c:35: 81:f3:61:9a:34:ef:4e:86:fb:0d:a8:eb:fd:38:9d:e8:be:e0: 73:f0:1d:2a:af:0e:89:6e:e0:55:5d:4b:e6:1e:71:5c:e8:e4: 31:03:82:5c:d9:5c:2e:82:73:89:b2:14:12:05:06:06:fd:dd: f8:c8:52:4d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3RTlD RUYyN0M4REVEMTM1MDZCMzM5OUQ5OTJFQ0ZGNjI2QjU3OTUxMB4XDTI0MDcwOTEw MDkyN1oXDTI1MDcwOTA4NDkwMFowMzExMC8GA1UEAxMoQjc1MjU4ODI2MzY4Q0Mw QzYyRjVBMTI0NDMxRjI5OUNDNTE5RUIwRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALj3o5vQclYaqAdoBQ9tbOuCfSDFpg8k567u7WQsgvAjqxzv6Rph q0Qc5Y2DFTVqNDcAOozCXx1CCp3PoO+B5f0NmB0Yk6mLOD4eSOPffc2Y8IuX3yrW qPl+EcyAIjR8xUFro5TnXzO88yhKPu3w5zQ2GYcJC0NXTP25iRpQvk9n4jdthRBt oxF5Fo0NXt4CMlpTJERd6vh9NWfZSgiB2uPmO2sYpG9y+9qXhEhx2CG/CylEZPWo Z8lBTKaI80tvca5+aTwxSpOWkOssAJzJQ24YEBsE+T+R0E4MeUxg8kXZ0TKt8cX0 V1WpeBDbhQra88/A+I6SBpTqQN4I0Mr6CgUCAwEAAaOCAfAwggHsMB0GA1UdDgQW BBS3UliCY2jMDGL1oSRDHymcxRnrDzAfBgNVHSMEGDAWgBR+nO8nyN7RNQazOZ2Z Ls/2JrV5UTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQ0VURUNI L2ZwenZKOGplMFRVR3N6bWRtUzdQOWlhMWVWRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZnB6dko4amUwVFVHc3ptZG1TN1A5aWExZVZFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NFVEVDSC90MUpZZ21Ob3pBeGk5YUVr UXg4cG5NVVo2dzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu dHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA oBloMA0GCSqGSIb3DQEBCwUAA4IBAQDEC35cryw+9h7QTb4TYjC74bAZaO/SpIFC dwfoxG7fdCB2IQ/0KJRjL+W6A/CTMoramK+7a/5WimTkxq79x3lQheo52eoP0coD jP4/kk107rbveDsO1C2Ih23hGeF3CNDdIZiMb8lMoU3RcpW+/uHVViRJwfM3rQaK x2Wjvv9DD9sb8UCnoinFPrH8wDQwKUT0tDFx6dQUwmyJQW/13IZEVnUf5ykaoaCd gcG14c3aeSiH0zYEZSWL1dNISjoMXA3dcv51LDWB82GaNO9OhvsNqOv9OJ3ovuBz 8B0qrw6JbuBVXUvmHnFc6OQxA4Jc2VwugnOJshQSBQYG/d34yFJN -----END CERTIFICATE-----Generated at Thu Sep 19 00:03:03 2024 by rpki-client on console-fra.rpki-client.org