$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/jTLOo7gydtfleHeCQTE8FFts8Kw.roa File: jTLOo7gydtfleHeCQTE8FFts8Kw.roa (raw, json) Hash identifier: qMirWODUI6qz6X5EEcR9iDa5M+yNhPLgZcLCtLT/SnU= Subject key identifier: 8D:32:CE:A3:B8:32:76:D7:E5:78:77:82:41:31:3C:14:5B:6C:F0:AC Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0C56 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/jTLOo7gydtfleHeCQTE8FFts8Kw.roa Signing time: Mon 26 Aug 2024 05:12:05 +0000 ROA not before: Mon 26 Aug 2024 05:12:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 180.92.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3158 (0xc56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 26 05:12:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D32CEA3B83276D7E578778241313C145B6CF0AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:75:c2:2f:35:b9:bd:50:25:7d:8b:72:61:14: 38:d5:6b:20:54:69:b9:40:00:2c:37:49:14:a3:f4: 4b:9d:93:48:29:b3:9a:44:b4:b9:12:62:bf:c4:4b: 49:14:41:c4:83:ae:91:f7:0e:0f:21:ce:1e:07:2b: b5:a7:e2:e8:7e:99:8e:08:4c:fd:77:7d:47:9e:d2: e5:e7:56:c4:df:65:99:8c:7b:26:32:06:19:4e:29: 26:52:06:5e:bf:d2:69:14:ef:ed:54:86:30:a4:2b: d0:e3:63:f4:98:2f:aa:38:06:ec:f1:4c:91:fc:22: 32:74:68:21:96:61:71:49:59:06:6b:a3:98:c7:dc: d3:5a:88:22:8c:b7:a1:d2:64:01:0a:8e:c0:65:4b: 8e:45:7a:5c:7a:02:c5:ae:56:00:64:f3:e6:27:3f: 9c:c7:cb:72:6f:b4:fe:3f:e5:33:54:92:f1:4d:07: 12:85:11:09:06:e5:3b:72:0a:60:77:c9:05:12:6a: d8:1b:d8:06:79:94:d9:09:99:6b:5e:7d:e8:80:17: e7:00:8a:69:cf:ce:15:7c:00:af:c1:8c:07:aa:53: 7b:f8:26:bf:f5:6c:67:d9:a7:64:f4:f9:af:2e:34: d5:ad:7a:95:e5:ca:a7:08:03:cd:79:7e:70:42:a6: 43:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:32:CE:A3:B8:32:76:D7:E5:78:77:82:41:31:3C:14:5B:6C:F0:AC X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/jTLOo7gydtfleHeCQTE8FFts8Kw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.92.0.0/20 Signature Algorithm: sha256WithRSAEncryption 6d:c2:16:49:b5:3f:2a:cf:fe:34:ed:b4:b4:c1:62:23:53:5d: 7e:3c:2f:ca:af:df:ad:74:39:07:7a:4a:04:15:8c:8a:99:cd: cb:2a:2f:c5:0f:8d:8c:34:12:1a:a7:d4:c0:f1:9c:00:79:9d: f5:ad:98:b4:e1:c8:32:ae:ef:55:51:d2:50:66:7d:97:04:cf: 0c:46:f6:08:74:ca:09:3c:e0:64:3a:7f:7c:f5:37:3e:03:92: dd:4b:0e:87:a0:47:04:61:37:ed:f1:ce:d9:23:a8:70:c8:43: 5a:75:0a:0f:b5:8d:93:1a:34:90:99:55:da:1a:80:d6:51:4a: 48:4e:12:17:40:eb:bc:5d:75:97:a2:97:a9:30:9d:72:36:2e: 7d:d8:a6:0d:2c:8e:4d:74:42:e3:ae:80:dc:4c:01:e5:00:72: d5:dc:bb:7b:47:99:e1:56:24:ce:f4:e1:9d:2e:b0:df:3e:86: de:64:96:21:9e:4c:86:82:3d:9f:18:08:c3:77:27:14:93:88: 81:ae:4c:12:e6:77:86:47:40:5b:d7:25:78:f8:02:3e:43:8c: 58:f2:6d:8a:a7:c7:52:51:bb:f2:56:9d:4f:9f:46:8f:14:6e: 19:58:b1:4f:0f:7c:de:5f:34:a1:1e:0f:cb:38:63:9d:f0:b2: ae:9b:4c:d2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDFYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNDA4MjYw NTEyMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhEMzJDRUEzQjgzMjc2 RDdFNTc4Nzc4MjQxMzEzQzE0NUI2Q0YwQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOdcIvNbm9UCV9i3JhFDjVayBUablAACw3SRSj9Eudk0gps5pE tLkSYr/ES0kUQcSDrpH3Dg8hzh4HK7Wn4uh+mY4ITP13fUee0uXnVsTfZZmMeyYy BhlOKSZSBl6/0mkU7+1UhjCkK9DjY/SYL6o4BuzxTJH8IjJ0aCGWYXFJWQZro5jH 3NNaiCKMt6HSZAEKjsBlS45Felx6AsWuVgBk8+YnP5zHy3JvtP4/5TNUkvFNBxKF EQkG5TtyCmB3yQUSatgb2AZ5lNkJmWtefeiAF+cAimnPzhV8AK/BjAeqU3v4Jr/1 bGfZp2T0+a8uNNWtepXlyqcIA815fnBCpkOHAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUjTLOo7gydtfleHeCQTE8FFts8KwwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvalRMT283Z3lkdGZsZUhl Q1FURThGRnRzOEt3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BLRcADANBgkqhkiG9w0BAQsFAAOCAQEAbcIWSbU/Ks/+NO20tMFiI1Ndfjwvyq/f rXQ5B3pKBBWMipnNyyovxQ+NjDQSGqfUwPGcAHmd9a2YtOHIMq7vVVHSUGZ9lwTP DEb2CHTKCTzgZDp/fPU3PgOS3UsOh6BHBGE37fHO2SOocMhDWnUKD7WNkxo0kJlV 2hqA1lFKSE4SF0DrvF11l6KXqTCdcjYufdimDSyOTXRC466A3EwB5QBy1dy7e0eZ 4VYkzvThnS6w3z6G3mSWIZ5MhoI9nxgIw3cnFJOIga5MEuZ3hkdAW9clePgCPkOM WPJtiqfHUlG78ladT59GjxRuGVixTw983l80oR4PyzhjnfCyrptM0g== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org