$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/74DXKR5XSvQGa3Ths_6dX6VV5YM.roa File: 74DXKR5XSvQGa3Ths_6dX6VV5YM.roa (raw, json) Hash identifier: etL5azDrWWOzvtEO5Y1EIFZSgxnhn3nsuNVO1pgLDKw= Subject key identifier: EF:80:D7:29:1E:57:4A:F4:06:6B:74:E1:B3:FE:9D:5F:A5:55:E5:83 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0C59 Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/74DXKR5XSvQGa3Ths_6dX6VV5YM.roa Signing time: Mon 26 Aug 2024 05:12:20 +0000 ROA not before: Mon 26 Aug 2024 05:12:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131662 IP address blocks: 2403:a2c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 26 05:12:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EF80D7291E574AF4066B74E1B3FE9D5FA555E583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:85:55:66:46:9d:f6:84:17:fb:3e:f4:ba:be: f6:5e:06:77:1b:e2:11:37:7f:a1:da:08:b4:cd:a9: e6:b9:59:fb:7a:d3:01:be:1e:6c:84:29:8e:cc:bd: f7:89:5b:36:9d:29:76:29:ec:25:f6:3b:3b:7a:b5: 46:50:41:c0:96:76:0c:53:7a:cc:df:cf:b7:95:b9: 9e:b2:b1:02:3f:71:eb:75:9f:fa:6f:e8:1b:04:bd: c4:af:0d:0a:a8:ac:df:c3:c8:a9:87:f9:ea:68:b2: 5d:b0:ce:a7:41:fd:a8:ea:a2:be:0a:44:fe:50:3f: 7e:2a:ad:b6:47:b8:9b:cb:fa:92:3d:8c:c2:9d:1d: 02:18:a6:eb:0e:dd:e5:59:f9:44:c3:1a:2e:49:3b: 28:85:16:fd:4c:90:97:d3:15:96:3d:65:61:0d:fb: e0:2e:f0:74:23:f6:05:46:ad:18:75:f2:0c:ec:73: 9b:fe:98:7b:dd:36:c1:8f:7c:2d:af:a8:c8:aa:0b: f7:39:ce:8e:ea:51:78:cd:b7:46:f1:67:88:91:87: 73:c8:14:f2:46:ec:65:6f:1b:a9:21:34:fc:e0:7b: 37:6b:c5:f5:0e:a0:a0:75:7b:48:b6:cb:0e:4d:e4: b4:5e:a6:4f:40:7f:c7:a3:cf:a5:d9:d7:6c:d6:cb: 80:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:80:D7:29:1E:57:4A:F4:06:6B:74:E1:B3:FE:9D:5F:A5:55:E5:83 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/74DXKR5XSvQGa3Ths_6dX6VV5YM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:a2c0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:d3:8c:52:12:5a:2b:08:49:b9:b7:b4:9e:68:96:99:ea:3c: 5e:ef:89:4c:ad:05:de:ad:c1:f2:fb:30:db:33:6c:46:ff:18: 7b:32:31:e9:bc:7e:b2:32:41:e4:ef:4d:d2:a8:e5:bf:03:c0: ed:f1:a2:d5:af:59:c8:3e:23:d6:78:51:60:6e:a1:f4:0d:65: 3c:cc:89:0b:92:84:12:dc:f4:86:47:db:83:b1:b1:fe:50:28: 59:ee:ef:f2:12:46:40:9c:87:f1:1b:c6:97:0f:df:e6:72:84: b0:25:36:c8:69:e7:b2:54:1d:30:f4:6d:b2:c9:c8:f1:db:1c: 15:3a:be:f6:1f:10:87:e8:7d:58:93:dc:57:7d:86:e6:49:e7: 6b:f4:b6:47:52:ad:00:e4:4d:f1:68:14:20:aa:5d:a1:77:74: cc:1d:6c:41:e7:ce:d0:43:0f:10:19:20:04:50:1a:cc:8b:63: e4:45:83:79:5b:84:df:66:4f:a8:e2:0f:93:ae:9e:18:90:3b: 9e:4e:b4:21:7d:93:25:33:cd:34:3a:f6:ab:1a:71:49:b0:91: 21:4c:01:51:e9:6b:9b:86:c4:8c:28:b1:d6:ac:a2:1b:bc:1c: c1:3d:f6:c5:e7:e3:8c:01:95:4c:c3:72:7e:e1:23:f0:76:4c: cc:49:37:8a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNDA4MjYw NTEyMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGODBENzI5MUU1NzRB RjQwNjZCNzRFMUIzRkU5RDVGQTU1NUU1ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuhVVmRp32hBf7PvS6vvZeBncb4hE3f6HaCLTNqea5Wft60wG+ HmyEKY7MvfeJWzadKXYp7CX2Ozt6tUZQQcCWdgxTeszfz7eVuZ6ysQI/cet1n/pv 6BsEvcSvDQqorN/DyKmH+eposl2wzqdB/ajqor4KRP5QP34qrbZHuJvL+pI9jMKd HQIYpusO3eVZ+UTDGi5JOyiFFv1MkJfTFZY9ZWEN++Au8HQj9gVGrRh18gzsc5v+ mHvdNsGPfC2vqMiqC/c5zo7qUXjNt0bxZ4iRh3PIFPJG7GVvG6khNPzgezdrxfUO oKB1e0i2yw5N5LRepk9Af8ejz6XZ12zWy4BPAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU74DXKR5XSvQGa3Ths/6dX6VV5YMwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vNzREWEtSNVhTdlFHYTNU aHNfNmRYNlZWNVlNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQDosAwDQYJKoZIhvcNAQELBQADggEBAE3TjFISWisISbm3tJ5olpnqPF7viUyt Bd6twfL7MNszbEb/GHsyMem8frIyQeTvTdKo5b8DwO3xotWvWcg+I9Z4UWBuofQN ZTzMiQuShBLc9IZH24Oxsf5QKFnu7/ISRkCch/EbxpcP3+ZyhLAlNshp57JUHTD0 bbLJyPHbHBU6vvYfEIfofViT3Fd9huZJ52v0tkdSrQDkTfFoFCCqXaF3dMwdbEHn ztBDDxAZIARQGsyLY+RFg3lbhN9mT6jiD5OunhiQO55OtCF9kyUzzTQ69qsacUmw kSFMAVHpa5uGxIwosdasohu8HME99sXn44wBlUzDcn7hI/B2TMxJN4o= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org