$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EASPNET/UvoihLayc-Ce3QQglpHlec3OCtg.roa File: UvoihLayc-Ce3QQglpHlec3OCtg.roa (raw, json) Hash identifier: ngBpPktJUGBBwXlCji0+EXKfLMhUVApGLIyypkv5zq4= Subject key identifier: 52:FA:22:84:B6:B2:73:E0:9E:DD:04:20:96:91:E5:79:CD:CE:0A:D8 Certificate issuer: /CN=552B16164C361040D88F32D36509448CF3BB9D25 Certificate serial: 0C30 Authority key identifier: 55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/UvoihLayc-Ce3QQglpHlec3OCtg.roa Signing time: Mon 26 Aug 2024 05:12:59 +0000 ROA not before: Mon 26 Aug 2024 05:12:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10135 IP address blocks: 2405:5600::/32 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3120 (0xc30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=552B16164C361040D88F32D36509448CF3BB9D25 Validity Not Before: Aug 26 05:12:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=52FA2284B6B273E09EDD04209691E579CDCE0AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a3:7d:cc:c1:35:26:73:da:52:f0:ef:0f:fb: 16:f7:3b:5d:ee:7a:d3:33:6e:ea:17:e1:2c:62:e2: 94:1c:a7:61:47:de:e9:72:62:10:b4:cc:99:9a:ff: d6:5f:e1:e5:22:cd:d4:f5:31:af:d7:f6:41:dc:07: 01:3b:27:26:f7:3b:cf:f2:b4:52:c2:f9:85:44:bb: 9c:f2:59:40:76:36:3b:68:40:fe:ea:ed:f9:dc:90: 51:cc:bb:a9:14:ae:f5:c1:7f:0e:4c:59:2f:11:ca: d3:90:fe:a2:90:3e:36:e5:65:fd:c6:de:7b:43:49: 5f:f8:53:02:4c:93:e8:80:bf:25:f1:4d:c4:19:06: 62:83:9a:fa:2c:fc:79:71:ce:b6:75:56:a8:33:1e: e1:b4:74:7c:1e:f6:44:20:cf:0e:74:37:27:71:68: b3:39:d0:69:a4:fc:1b:54:e1:0b:97:08:09:fd:1d: 84:8d:b7:98:9a:a4:dd:e8:e4:0a:b0:1d:c1:d7:e2: ae:0e:7b:19:a4:7e:50:c7:51:c8:6e:ac:2c:d2:78: 27:3d:fb:4c:f0:dd:fd:be:46:cd:6e:1c:41:7d:7b: e5:57:69:cc:c3:58:06:64:dc:ad:81:da:c1:c3:b2: a9:6c:dc:23:e3:48:76:39:18:da:98:35:8d:9f:11: 72:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:FA:22:84:B6:B2:73:E0:9E:DD:04:20:96:91:E5:79:CD:CE:0A:D8 X509v3 Authority Key Identifier: keyid:55:2B:16:16:4C:36:10:40:D8:8F:32:D3:65:09:44:8C:F3:BB:9D:25 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/VSsWFkw2EEDYjzLTZQlEjPO7nSU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VSsWFkw2EEDYjzLTZQlEjPO7nSU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EASPNET/UvoihLayc-Ce3QQglpHlec3OCtg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:5600::/32 Signature Algorithm: sha256WithRSAEncryption 6f:e9:94:f4:67:6a:d1:b5:df:82:09:8b:76:fa:0f:5e:3b:4a: f3:66:a1:bf:3f:66:04:c2:83:35:2d:bf:4d:e7:ac:9c:01:c8: e4:0f:bc:41:7e:06:72:c1:7f:dc:6d:9f:fa:e8:95:5f:be:e6: b2:73:3e:29:0c:95:9e:48:c6:93:73:c9:69:ef:c0:38:ed:71: bb:b4:98:0e:be:ef:87:94:86:ac:36:53:d6:1f:60:7a:8f:a6: 6f:59:19:2b:cd:ed:c0:65:ca:fb:2b:b5:f7:d2:4b:41:58:6a: 2b:fa:88:9a:25:e1:b9:38:4f:89:10:21:e2:6e:b4:e1:ca:df: 90:44:a7:f9:26:d3:16:17:2b:0b:c8:19:0e:8f:7a:54:39:b6: 03:b3:81:36:1c:e9:dd:3f:04:fb:a5:ad:16:65:17:e6:2d:62: d5:f0:0b:20:f2:2d:d5:47:04:8f:ba:9e:12:b6:39:95:04:c2: 75:d4:48:18:9b:cb:58:1e:4e:fa:52:37:65:d2:ea:3d:76:4d: 9c:21:f5:67:e9:b4:e4:05:78:ff:e5:17:d0:1d:3b:10:18:0c: 70:29:48:72:98:f7:3f:a5:d8:d1:e9:00:2c:2f:3e:71:55:79: 76:c1:48:26:a2:50:a9:87:13:5f:ef:f5:0e:eb:3f:58:2e:2d: 00:80:b0:5a -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDDAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUy QjE2MTY0QzM2MTA0MEQ4OEYzMkQzNjUwOTQ0OENGM0JCOUQyNTAeFw0yNDA4MjYw NTEyNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyRkEyMjg0QjZCMjcz RTA5RUREMDQyMDk2OTFFNTc5Q0RDRTBBRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwo33MwTUmc9pS8O8P+xb3O13uetMzbuoX4Sxi4pQcp2FH3uly YhC0zJma/9Zf4eUizdT1Ma/X9kHcBwE7Jyb3O8/ytFLC+YVEu5zyWUB2NjtoQP7q 7fnckFHMu6kUrvXBfw5MWS8RytOQ/qKQPjblZf3G3ntDSV/4UwJMk+iAvyXxTcQZ BmKDmvos/HlxzrZ1VqgzHuG0dHwe9kQgzw50NydxaLM50Gmk/BtU4QuXCAn9HYSN t5iapN3o5AqwHcHX4q4OexmkflDHUchurCzSeCc9+0zw3f2+Rs1uHEF9e+VXaczD WAZk3K2B2sHDsqls3CPjSHY5GNqYNY2fEXKtAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUUvoihLayc+Ce3QQglpHlec3OCtgwHwYDVR0jBBgwFoAUVSsWFkw2EEDYjzLT ZQlEjPO7nSUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUFTUE5F VC9WU3NXRmt3MkVFRFlqekxUWlFsRWpQTzduU1UuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ZTc1dGa3cyRUVEWWp6TFRaUWxFalBPN25TVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VBU1BORVQvVXZvaWhMYXljLUNlM1FR Z2xwSGxlYzNPQ3RnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQFVgAwDQYJKoZIhvcNAQELBQADggEBAG/plPRnatG134IJi3b6D147SvNmob8/ ZgTCgzUtv03nrJwByOQPvEF+BnLBf9xtn/rolV++5rJzPikMlZ5IxpNzyWnvwDjt cbu0mA6+74eUhqw2U9YfYHqPpm9ZGSvN7cBlyvsrtffSS0FYaiv6iJol4bk4T4kQ IeJutOHK35BEp/km0xYXKwvIGQ6PelQ5tgOzgTYc6d0/BPulrRZlF+YtYtXwCyDy LdVHBI+6nhK2OZUEwnXUSBiby1geTvpSN2XS6j12TZwh9WfptOQFeP/lF9AdOxAY DHApSHKY9z+l2NHpACwvPnFVeXbBSCaiUKmHE1/v9Q7rP1guLQCAsFo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org