$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/z2c6z3sRwH-dcFi9DISXfF4tgNM.roa File: z2c6z3sRwH-dcFi9DISXfF4tgNM.roa (raw, json) Hash identifier: 0ECA76m+MAoEWRFw880+6cX5tl7ecs+QO0uEKE7dvgA= Subject key identifier: CF:67:3A:CF:7B:11:C0:7F:9D:70:58:BD:0C:84:97:7C:5E:2D:80:D3 Certificate issuer: /CN=A082F5D992E6BC25E08997538616180702E857C3 Certificate serial: 03A8 Authority key identifier: A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/z2c6z3sRwH-dcFi9DISXfF4tgNM.roa Signing time: Mon 26 Aug 2024 05:11:52 +0000 ROA not before: Mon 26 Aug 2024 05:11:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38839 IP address blocks: 2406:d7c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 936 (0x3a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A082F5D992E6BC25E08997538616180702E857C3 Validity Not Before: Aug 26 05:11:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CF673ACF7B11C07F9D7058BD0C84977C5E2D80D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:77:bb:c9:de:39:9a:4d:7a:9b:2b:74:97:94: d4:4b:50:b8:a9:61:11:3f:cb:c1:69:01:e7:82:5f: 31:4a:65:e1:70:f0:42:ef:80:ee:03:5f:41:13:4d: 51:4a:5f:d5:36:0c:73:85:dd:44:6b:83:cf:01:5f: 51:f8:5e:a3:e4:95:ee:6a:4e:61:18:9b:30:23:20: f1:81:ab:b4:f8:b7:4c:a0:05:92:a3:9f:b8:b8:af: 1e:fe:65:94:47:7b:ed:88:a5:95:3c:46:b8:a5:b6: 68:3a:c1:73:8e:1e:21:53:d6:bc:07:3c:e1:15:63: 94:95:df:1c:e9:f3:a2:4b:91:c6:53:4b:a2:c9:41: ed:80:1c:af:d3:78:38:bc:97:28:bc:08:13:1d:1e: 48:5d:0d:f6:16:9b:b0:45:9f:cd:82:c5:98:86:6d: f4:5b:92:1c:e1:b7:01:8a:d8:e3:b5:8f:d6:69:d2: 52:3e:77:12:2f:17:cb:c0:99:2f:f0:ce:e4:94:62: 9c:c9:05:f7:f1:c9:5d:47:16:83:53:66:9d:28:1b: 56:ef:96:ac:82:fb:63:20:a8:60:c9:0d:40:1e:58: 45:9d:99:b5:f4:c7:2b:2d:ce:60:25:62:c0:92:1f: 2f:28:aa:d8:9d:a5:7e:d4:f8:e1:b7:89:90:c7:78: 97:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:67:3A:CF:7B:11:C0:7F:9D:70:58:BD:0C:84:97:7C:5E:2D:80:D3 X509v3 Authority Key Identifier: keyid:A0:82:F5:D9:92:E6:BC:25:E0:89:97:53:86:16:18:07:02:E8:57:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/oIL12ZLmvCXgiZdThhYYBwLoV8M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oIL12ZLmvCXgiZdThhYYBwLoV8M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CSPTEK/z2c6z3sRwH-dcFi9DISXfF4tgNM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d7c0::/32 Signature Algorithm: sha256WithRSAEncryption 94:ff:93:d2:d8:30:3c:3d:ff:ad:9b:72:06:2d:30:c5:58:b6: b5:bf:8e:a5:f1:81:eb:18:2e:12:6d:8f:47:87:ed:28:e1:05: 61:9d:64:e9:57:d0:46:ee:ef:fd:6f:ce:13:3e:f8:cf:0a:d9: 6e:32:7d:ae:51:d9:1a:4c:7c:3f:fa:d4:0d:a0:b7:c8:b0:c2: 5b:d7:ea:b5:72:48:12:6f:91:02:7d:39:29:d5:b7:3c:43:31: 42:c1:43:91:17:cd:2a:cb:69:79:28:41:43:b1:4e:eb:16:66: 39:d4:d4:28:3f:83:f7:37:66:45:29:09:55:92:b3:a3:c0:9f: e8:84:db:85:3d:08:27:8b:8f:2b:bd:e6:7b:08:64:bd:a0:08: cd:14:d5:9a:da:20:85:ce:67:fa:41:72:35:f3:b0:23:cb:5e: 68:1b:18:09:2c:64:a8:8b:95:e1:97:bf:c8:04:e7:96:b4:b3: d7:77:e4:43:2c:56:31:a2:b9:f2:9b:79:92:1b:76:15:59:d8: ca:a6:42:04:dc:24:6e:0b:61:21:af:21:f9:fe:42:1e:ee:47: f9:cd:43:69:28:00:de:3d:23:64:23:12:20:76:4f:1a:71:5f: b4:b4:a8:6c:45:41:11:87:58:0e:da:44:1c:aa:55:f1:00:e6: 6c:67:dc:1c -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICA6gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTA4 MkY1RDk5MkU2QkMyNUUwODk5NzUzODYxNjE4MDcwMkU4NTdDMzAeFw0yNDA4MjYw NTExNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENGNjczQUNGN0IxMUMw N0Y5RDcwNThCRDBDODQ5NzdDNUUyRDgwRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDzd7vJ3jmaTXqbK3SXlNRLULipYRE/y8FpAeeCXzFKZeFw8ELv gO4DX0ETTVFKX9U2DHOF3URrg88BX1H4XqPkle5qTmEYmzAjIPGBq7T4t0ygBZKj n7i4rx7+ZZRHe+2IpZU8Rriltmg6wXOOHiFT1rwHPOEVY5SV3xzp86JLkcZTS6LJ Qe2AHK/TeDi8lyi8CBMdHkhdDfYWm7BFn82CxZiGbfRbkhzhtwGK2OO1j9Zp0lI+ dxIvF8vAmS/wzuSUYpzJBffxyV1HFoNTZp0oG1bvlqyC+2MgqGDJDUAeWEWdmbX0 xystzmAlYsCSHy8oqtidpX7U+OG3iZDHeJdfAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUz2c6z3sRwH+dcFi9DISXfF4tgNMwHwYDVR0jBBgwFoAUoIL12ZLmvCXgiZdT hhYYBwLoV8MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1NQVEVL L29JTDEyWkxtdkNYZ2laZFRoaFlZQndMb1Y4TS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evb0lMMTJaTG12Q1hnaVpkVGhoWVlCd0xvVjhNLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1NQVEVLL3oyYzZ6M3NSd0gtZGNGaTlE SVNYZkY0dGdOTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BtfAMA0GCSqGSIb3DQEBCwUAA4IBAQCU/5PS2DA8Pf+tm3IGLTDFWLa1v46l8YHr GC4SbY9Hh+0o4QVhnWTpV9BG7u/9b84TPvjPCtluMn2uUdkaTHw/+tQNoLfIsMJb 1+q1ckgSb5ECfTkp1bc8QzFCwUORF80qy2l5KEFDsU7rFmY51NQoP4P3N2ZFKQlV krOjwJ/ohNuFPQgni48rveZ7CGS9oAjNFNWa2iCFzmf6QXI187Ajy15oGxgJLGSo i5Xhl7/IBOeWtLPXd+RDLFYxornym3mSG3YVWdjKpkIE3CRuC2EhryH5/kIe7kf5 zUNpKADePSNkIxIgdk8acV+0tKhsRUERh1gO2kQcqlXxAOZsZ9wc -----END CERTIFICATE-----Generated at Mon Nov 25 06:08:43 2024 by rpki-client on console-fra.rpki-client.org