$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa File: 7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa (raw, json) Hash identifier: vxuSLmx2slILT73KGIICKjidSUBoTz6HcpPYCErrpSM= Subject key identifier: ED:71:4B:C2:2D:8E:12:CE:BE:34:D3:CF:EB:65:14:02:AB:05:4C:14 Certificate issuer: /CN=A736CFF1948740614D0321E63B8403EB9AB9748D Certificate serial: C9 Authority key identifier: A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa Signing time: Fri 01 Sep 2023 08:31:11 +0000 ROA not before: Fri 01 Sep 2023 08:31:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 983 IP address blocks: 2400:bea0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A736CFF1948740614D0321E63B8403EB9AB9748D Validity Not Before: Sep 1 08:31:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=ED714BC22D8E12CEBE34D3CFEB651402AB054C14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:86:9b:f6:01:80:13:e5:d9:71:c7:a5:c5:db: 48:60:ad:32:33:33:e5:2c:20:b4:fe:a5:4b:3a:94: 69:b0:12:37:b4:b2:03:03:7f:38:be:9e:f2:e3:1e: 53:a4:e0:d7:ca:26:8f:f2:d6:93:0e:84:31:a9:aa: 96:9b:63:6c:53:2d:aa:a3:16:68:08:7d:b5:94:53: 82:00:2b:4e:63:e5:08:8d:13:f8:34:58:88:0d:c0: 2a:b4:10:fc:1e:26:58:61:53:a4:32:99:a7:9a:ef: 88:2c:b7:b9:8e:d2:77:3c:20:9c:f1:45:ba:31:f6: f2:5d:d7:31:a3:64:63:ce:17:13:0a:dc:1f:fb:ab: 3f:1a:ea:f8:62:c3:22:2e:f6:d8:81:dc:56:76:36: c1:76:52:fd:0f:bd:d2:b6:2e:e0:08:3d:4c:2d:44: 98:38:bc:65:81:85:c5:d9:b5:81:83:62:a9:65:65: 20:64:5d:d5:f5:db:d1:0f:cb:a0:84:ab:74:0d:91: 97:a5:e2:86:b5:9a:67:43:0b:5c:86:db:96:fd:93: b8:6d:fe:02:08:16:48:7b:11:39:09:cb:80:2d:13: fa:05:12:57:e0:7c:02:7e:14:26:ee:18:b5:ad:cd: 64:a9:ff:e1:ce:2e:e7:7f:19:d4:7c:5a:b9:ff:12: f2:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:71:4B:C2:2D:8E:12:CE:BE:34:D3:CF:EB:65:14:02:AB:05:4C:14 X509v3 Authority Key Identifier: keyid:A7:36:CF:F1:94:87:40:61:4D:03:21:E6:3B:84:03:EB:9A:B9:74:8D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/pzbP8ZSHQGFNAyHmO4QD65q5dI0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pzbP8ZSHQGFNAyHmO4QD65q5dI0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCHENTEK/7XFLwi2OEs6-NNPP62UUAqsFTBQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:bea0::/32 Signature Algorithm: sha256WithRSAEncryption a1:f0:44:9f:df:07:c5:38:1f:37:62:27:10:81:6a:5d:d7:9f: 4a:ee:78:bc:55:4a:8f:00:a3:5a:2f:ee:de:0a:66:4f:d6:8e: 2c:12:b8:5e:f1:53:bd:64:77:2c:a8:f1:3e:6c:40:8d:24:60: b8:51:7f:cc:e4:21:7d:ba:c9:bb:fe:ac:c1:37:ca:40:c5:d3: 0e:b3:81:42:d5:ea:0c:c7:30:32:cd:25:f2:3c:ed:2a:af:90: 6c:ba:2d:42:27:f1:e0:e7:15:95:63:00:5e:10:2f:3a:bc:b3: 69:2b:b0:cc:c0:a8:7a:30:9a:7c:fd:79:56:da:f4:18:50:a9: c3:d0:93:a2:11:40:f2:a6:13:51:ee:bd:cd:0a:38:2b:b3:bd: cf:15:5a:8e:9d:f6:46:f2:d3:c9:2e:b6:63:40:d9:d2:4b:14: 17:87:4b:77:73:0c:51:5f:2c:08:7f:d5:76:b2:a9:e8:26:6b: 26:7a:71:8f:ea:43:e8:cf:3b:db:28:0e:83:81:7a:b5:8f:63: 25:10:87:09:e0:82:35:06:12:d7:ab:c6:b9:8c:69:6e:16:46: d0:cf:78:46:17:f7:e8:d5:90:35:89:41:65:09:6d:0a:4f:7f: cc:bb:67:57:e4:90:ff:fe:af:10:56:40:f6:2d:41:35:d3:51: f7:fc:35:01 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTcz NkNGRjE5NDg3NDA2MTREMDMyMUU2M0I4NDAzRUI5QUI5NzQ4RDAeFw0yMzA5MDEw ODMxMTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVENzE0QkMyMkQ4RTEy Q0VCRTM0RDNDRkVCNjUxNDAyQUIwNTRDMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVhpv2AYAT5dlxx6XF20hgrTIzM+UsILT+pUs6lGmwEje0sgMD fzi+nvLjHlOk4NfKJo/y1pMOhDGpqpabY2xTLaqjFmgIfbWUU4IAK05j5QiNE/g0 WIgNwCq0EPweJlhhU6Qymaea74gst7mO0nc8IJzxRbox9vJd1zGjZGPOFxMK3B/7 qz8a6vhiwyIu9tiB3FZ2NsF2Uv0PvdK2LuAIPUwtRJg4vGWBhcXZtYGDYqllZSBk XdX129EPy6CEq3QNkZel4oa1mmdDC1yG25b9k7ht/gIIFkh7ETkJy4AtE/oFElfg fAJ+FCbuGLWtzWSp/+HOLud/GdR8Wrn/EvIBAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQU7XFLwi2OEs6+NNPP62UUAqsFTBQwHwYDVR0jBBgwFoAUpzbP8ZSHQGFNAyHm O4QD65q5dI0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DSEVO VEVLL3B6YlA4WlNIUUdGTkF5SG1PNFFENjVxNWRJMC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcHpiUDhaU0hRR0ZOQXlIbU80UUQ2NXE1ZEkwLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09DSEVOVEVLLzdYRkx3aTJPRXM2 LU5OUFA2MlVVQXFzRlRCUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAL6gMA0GCSqGSIb3DQEBCwUAA4IBAQCh8ESf3wfFOB83YicQgWpd159K 7ni8VUqPAKNaL+7eCmZP1o4sErhe8VO9ZHcsqPE+bECNJGC4UX/M5CF9usm7/qzB N8pAxdMOs4FC1eoMxzAyzSXyPO0qr5Bsui1CJ/Hg5xWVYwBeEC86vLNpK7DMwKh6 MJp8/XlW2vQYUKnD0JOiEUDyphNR7r3NCjgrs73PFVqOnfZG8tPJLrZjQNnSSxQX h0t3cwxRXywIf9V2sqnoJmsmenGP6kPozzvbKA6DgXq1j2MlEIcJ4II1BhLXq8a5 jGluFkbQz3hGF/fo1ZA1iUFlCW0KT3/Mu2dX5JD//q8QVkD2LUE101H3/DUB -----END CERTIFICATE-----Generated at Mon Jun 3 12:43:59 2024 by rpki-client on console-fra.rpki-client.org