$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/KKP5YWbvnIxtOhTKcnxfxYp7FkU.roa File: KKP5YWbvnIxtOhTKcnxfxYp7FkU.roa (raw, json) Hash identifier: u+QxGCdGzBRgLstpM0b8FwUa0kN2Avha8CE+KLqB+s4= Subject key identifier: 28:A3:F9:61:66:EF:9C:8C:6D:3A:14:CA:72:7C:5F:C5:8A:7B:16:45 Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Certificate serial: 0B Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/KKP5YWbvnIxtOhTKcnxfxYp7FkU.roa Signing time: Wed 03 Jan 2024 18:07:47 +0000 ROA not before: Wed 03 Jan 2024 18:07:47 +0000 ROA not after: Tue 24 Dec 2024 15:30:20 +0000 asID: 150766 IP address blocks: 36.50.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD Validity Not Before: Jan 3 18:07:47 2024 GMT Not After : Dec 24 15:30:20 2024 GMT Subject: CN=28A3F96166EF9C8C6D3A14CA727C5FC58A7B1645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6c:f4:e1:93:98:8b:92:11:83:82:95:9e:81: 75:48:c6:8b:b2:0b:3e:bf:73:dd:95:06:01:f1:14: 9e:90:13:27:1e:68:36:c8:24:64:dc:3c:48:b3:95: 85:3a:af:d9:98:ca:b2:3d:78:7d:79:cc:8a:a3:cc: 78:99:5a:11:3e:60:c9:62:e8:a7:49:77:20:5d:2e: e4:4f:f4:7c:da:aa:b0:cc:46:6f:b3:ec:97:6e:de: 23:86:e8:42:c7:34:3d:08:19:92:a8:5e:8d:fa:f6: 4d:01:ac:9e:b8:fe:f3:a7:41:8e:2a:d0:6f:0d:3a: 69:ea:a0:9f:c5:38:d4:2a:3d:ff:85:97:1d:3d:77: cc:13:3b:f0:66:3c:a2:a5:30:60:7e:7b:a4:3f:8f: d7:c6:55:cf:76:2b:62:22:66:cc:b8:ce:3d:4a:76: ac:7c:9e:94:4f:4e:10:e4:74:21:65:1a:07:e7:04: 99:65:38:93:b7:3b:b8:94:3b:f5:65:a7:7c:8b:59: a2:08:84:a6:52:10:ee:aa:cd:af:64:5f:cc:cf:4d: 49:33:1e:f8:3e:56:dd:49:da:7a:3d:92:21:a8:3c: a7:5f:db:7f:86:fb:37:c5:47:0c:46:f4:a3:27:44: e5:f7:de:18:cc:f0:8d:d0:ac:6e:00:b3:ff:cd:5e: 67:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:A3:F9:61:66:EF:9C:8C:6D:3A:14:CA:72:7C:5F:C5:8A:7B:16:45 X509v3 Authority Key Identifier: keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/KKP5YWbvnIxtOhTKcnxfxYp7FkU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.50.229.0/24 Signature Algorithm: sha256WithRSAEncryption 33:96:72:35:6a:40:c7:d2:c5:ab:79:64:a2:56:ac:47:36:d3: 89:1a:d2:e3:f8:7c:33:c1:eb:c2:3e:4e:52:3f:47:a0:9e:7b: 84:96:d7:06:7b:4f:ef:ff:7a:85:d6:a9:74:36:c5:31:97:18: 63:31:75:74:5a:30:ab:7d:ac:a0:27:dc:92:99:23:22:04:7d: cb:7d:b1:54:a5:53:37:49:34:af:4b:d3:8e:f2:3d:c2:b9:bf: 7b:85:7f:6f:47:69:ff:d2:5d:07:5a:a6:5c:f1:9d:cb:19:f5: 58:4f:75:1c:dc:8a:c9:a9:36:27:f6:46:db:9d:d6:76:44:64: 53:f4:6a:09:a7:d2:b9:d8:16:b9:10:71:b9:bc:a3:d5:86:22: 5b:63:9e:a4:a3:d2:62:79:08:ac:d0:9e:f9:96:f3:19:2d:23: ce:e3:01:c9:cf:ce:4e:cc:93:84:cc:c6:f3:08:69:2b:2e:e9: 91:06:7d:c5:4c:79:b0:3d:c5:9d:a6:cc:62:8b:0e:d7:ba:e1: f9:97:0d:96:2a:89:a0:ae:83:d0:c0:f4:ed:9c:3f:5b:11:57: fe:1d:1d:ac:37:41:39:38:96:54:27:11:c7:20:2f:4a:3d:d4: 35:d5:b1:d2:46:da:7e:ee:d8:99:13:56:4c:e9:02:f1:cf:6b: 74:66:f1:3d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgIBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQkQ0 RERCNEJGOTMyQzUwMDZCNzA0Qjk4Mjg0MTAxNzRBQzQxMkFEMB4XDTI0MDEwMzE4 MDc0N1oXDTI0MTIyNDE1MzAyMFowMzExMC8GA1UEAxMoMjhBM0Y5NjE2NkVGOUM4 QzZEM0ExNENBNzI3QzVGQzU4QTdCMTY0NTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMVs9OGTmIuSEYOClZ6BdUjGi7ILPr9z3ZUGAfEUnpATJx5oNsgk ZNw8SLOVhTqv2ZjKsj14fXnMiqPMeJlaET5gyWLop0l3IF0u5E/0fNqqsMxGb7Ps l27eI4boQsc0PQgZkqhejfr2TQGsnrj+86dBjirQbw06aeqgn8U41Co9/4WXHT13 zBM78GY8oqUwYH57pD+P18ZVz3YrYiJmzLjOPUp2rHyelE9OEOR0IWUaB+cEmWU4 k7c7uJQ79WWnfItZogiEplIQ7qrNr2RfzM9NSTMe+D5W3Unaej2SIag8p1/bf4b7 N8VHDEb0oydE5ffeGMzwjdCsbgCz/81eZ5cCAwEAAaOCAfQwggHwMB0GA1UdDgQW BBQoo/lhZu+cjG06FMpyfF/FinsWRTAfBgNVHSMEGDAWgBSr1N20v5MsUAa3BLmC hBAXSsQSrTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0NPRElH SVQvcTlUZHRMLVRMRkFHdHdTNWdvUVFGMHJFRXEwLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOVRkdEwtVExGQUd0d1M1Z29RUUYwckVFcTAuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0NPRElHSVQvS0tQNVlXYnZuSXh0 T2hUS2NueGZ4WXA3RmtVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEACQy5TANBgkqhkiG9w0BAQsFAAOCAQEAM5ZyNWpAx9LFq3lkolasRzbTiRrS 4/h8M8Hrwj5OUj9HoJ57hJbXBntP7/96hdapdDbFMZcYYzF1dFowq32soCfckpkj IgR9y32xVKVTN0k0r0vTjvI9wrm/e4V/b0dp/9JdB1qmXPGdyxn1WE91HNyKyak2 J/ZG253WdkRkU/RqCafSudgWuRBxubyj1YYiW2OepKPSYnkIrNCe+ZbzGS0jzuMB yc/OTsyThMzG8whpKy7pkQZ9xUx5sD3FnabMYosO17rh+ZcNliqJoK6D0MD07Zw/ WxFX/h0drDdBOTiWVCcRxyAvSj3UNdWx0kbafu7YmRNWTOkC8c9rdGbxPQ== -----END CERTIFICATE-----Generated at Mon Nov 25 18:39:33 2024 by rpki-client on console-fra.rpki-client.org