$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/h7obf1iyAv-w34e6rLDFITHRKUQ.roa File: h7obf1iyAv-w34e6rLDFITHRKUQ.roa (raw, json) Hash identifier: QLOslWpLwTt15c/DMgW71lIwcMzLwC4ZC+qxhPoRl/k= Subject key identifier: 87:BA:1B:7F:58:B2:02:FF:B0:DF:87:BA:AC:B0:C5:21:31:D1:29:44 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0F1B Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/h7obf1iyAv-w34e6rLDFITHRKUQ.roa Signing time: Mon 26 Aug 2024 05:12:45 +0000 ROA not before: Mon 26 Aug 2024 05:12:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131641 IP address blocks: 2404:8cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3867 (0xf1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 26 05:12:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=87BA1B7F58B202FFB0DF87BAACB0C52131D12944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:f4:f6:68:e6:01:04:ee:4b:d7:3a:f7:79:72: 7e:45:cc:50:99:55:ad:fd:1d:ca:88:96:c1:35:94: 9d:bb:89:83:b5:f6:fd:a2:30:91:ce:60:d1:1a:1a: a1:5c:ab:86:e0:08:ed:80:ce:28:e6:ee:ca:6f:e9: 14:a4:80:4e:b7:f4:7c:ae:9a:a8:12:d2:d3:d5:06: ca:57:f3:13:c9:c2:76:4b:0a:4e:30:a7:33:6c:17: a5:e9:77:ef:e2:a9:29:1b:38:df:9d:a0:16:87:a2: 4e:40:34:11:16:b1:89:37:2a:22:4b:e8:f1:4d:5e: f7:cb:0f:37:22:7e:40:79:fd:b6:25:48:2b:9f:bd: c9:64:19:23:5f:9f:25:ab:a1:4c:dd:73:9d:00:be: d2:a2:e7:e7:a7:e3:78:cf:02:57:35:1a:45:37:d2: 0f:5f:9a:76:49:4f:fc:c1:df:e5:d2:c8:14:82:be: c9:ae:bc:1c:8f:5f:22:92:42:e6:9c:02:be:b0:3e: 70:34:41:a5:58:13:30:96:98:26:92:26:fa:2c:13: 5d:9c:df:b1:d6:bf:c9:47:97:4e:47:60:11:56:6d: 11:29:fa:5d:54:d0:38:3d:6f:06:36:84:5d:8f:3f: 3b:50:a5:c7:58:68:df:5e:b6:b4:bb:04:b9:29:c3: 2f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:BA:1B:7F:58:B2:02:FF:B0:DF:87:BA:AC:B0:C5:21:31:D1:29:44 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/h7obf1iyAv-w34e6rLDFITHRKUQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:8cc0::/32 Signature Algorithm: sha256WithRSAEncryption 35:a9:52:dd:ae:e6:9b:97:69:37:b7:3d:06:f0:1a:50:1a:55: 8c:38:c8:d0:e1:df:63:3c:05:39:e6:6f:f7:bf:a8:34:92:c8: e9:4e:7a:1c:50:ed:6e:47:0d:55:4e:79:29:db:90:c4:25:06: 2b:22:fc:2d:d9:53:79:1f:12:00:58:4c:9d:58:a3:42:b6:6e: 34:f1:17:bc:50:1f:cd:9a:30:f5:9c:e9:57:02:71:cd:11:73: a3:66:64:79:e8:5b:ca:77:4a:68:82:35:79:f9:78:b5:ab:9a: 6a:34:30:2a:28:8f:0e:a4:9d:e2:d9:ef:80:9c:aa:54:c7:f6: 54:5d:66:be:5b:0c:49:2a:45:a7:c3:3c:b2:3b:6b:27:63:b1: 20:8f:cd:12:ac:c3:db:ba:a0:f9:96:ee:06:cb:36:85:2c:19: 60:dd:df:4e:69:05:13:86:cd:a6:2f:b2:c1:7e:4c:30:93:c1: 5e:ce:cd:57:1e:35:b1:10:3e:eb:81:75:4b:e0:57:e6:e1:fc: 86:0e:32:9f:ae:b0:4f:7b:92:bd:23:9b:39:ae:34:e2:41:03: 7c:c3:79:b6:8f:f2:9b:15:d4:fc:3a:55:c0:f9:79:60:a4:ff: 1b:46:c4:63:bd:a8:51:6a:bc:35:24:6e:97:86:72:c1:68:dc: bc:49:96:bc -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDxswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNDA4MjYw NTEyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg3QkExQjdGNThCMjAy RkZCMERGODdCQUFDQjBDNTIxMzFEMTI5NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg9PZo5gEE7kvXOvd5cn5FzFCZVa39HcqIlsE1lJ27iYO19v2i MJHOYNEaGqFcq4bgCO2Azijm7spv6RSkgE639HyumqgS0tPVBspX8xPJwnZLCk4w pzNsF6Xpd+/iqSkbON+doBaHok5ANBEWsYk3KiJL6PFNXvfLDzcifkB5/bYlSCuf vclkGSNfnyWroUzdc50AvtKi5+en43jPAlc1GkU30g9fmnZJT/zB3+XSyBSCvsmu vByPXyKSQuacAr6wPnA0QaVYEzCWmCaSJvosE12c37HWv8lHl05HYBFWbREp+l1U 0Dg9bwY2hF2PPztQpcdYaN9etrS7BLkpwy9DAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUh7obf1iyAv+w34e6rLDFITHRKUQwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2g3b2JmMWl5QXYtdzM0ZTZyTERGSVRI UktVUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBIzAMA0G CSqGSIb3DQEBCwUAA4IBAQA1qVLdruabl2k3tz0G8BpQGlWMOMjQ4d9jPAU55m/3 v6g0ksjpTnocUO1uRw1VTnkp25DEJQYrIvwt2VN5HxIAWEydWKNCtm408Re8UB/N mjD1nOlXAnHNEXOjZmR56FvKd0pogjV5+Xi1q5pqNDAqKI8OpJ3i2e+AnKpUx/ZU XWa+WwxJKkWnwzyyO2snY7Egj80SrMPbuqD5lu4GyzaFLBlg3d9OaQUThs2mL7LB fkwwk8Fezs1XHjWxED7rgXVL4Ffm4fyGDjKfrrBPe5K9I5s5rjTiQQN8w3m2j/Kb FdT8OlXA+XlgpP8bRsRjvahRarw1JG6XhnLBaNy8SZa8 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org