$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/9_haddH05apDobnFrNLUL1pusH0.roa File: 9_haddH05apDobnFrNLUL1pusH0.roa (raw, json) Hash identifier: zEYIUbukl49d8c9rpvyKy/HCDnl2d86FJ47fq4x6LhU= Subject key identifier: F7:F8:5A:75:D1:F4:E5:AA:43:A1:B9:C5:AC:D2:D4:2F:5A:6E:B0:7D Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 0230 Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/9_haddH05apDobnFrNLUL1pusH0.roa Signing time: Mon 26 Aug 2024 05:13:40 +0000 ROA not before: Mon 26 Aug 2024 05:13:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 2406:ee40::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 560 (0x230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Aug 26 05:13:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F7F85A75D1F4E5AA43A1B9C5ACD2D42F5A6EB07D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:87:77:58:22:2a:91:9c:1d:18:59:fd:3c:74: 56:06:5c:fe:e2:57:d5:a2:85:c7:60:25:bb:61:16: 1f:2e:27:5b:0e:71:ff:ea:53:22:af:70:41:77:2b: 6c:cc:55:88:c6:a4:5e:e4:d4:d5:e7:97:e7:c7:79: da:57:1c:44:98:91:df:66:70:7e:d2:2a:14:a1:e4: 77:39:e9:7a:29:2c:15:83:9f:d5:4a:48:54:fb:45: 6a:c7:aa:c5:39:9a:a6:a8:95:7b:ff:6d:d9:36:f5: e9:08:ca:1b:b2:f4:ea:b9:27:11:fe:f9:c0:07:d0: bd:a8:d0:97:44:6d:e3:3b:c7:3c:6b:53:aa:85:d4: ab:b7:c4:d2:71:37:2b:0d:f1:1b:e3:e3:d8:da:84: c8:42:b1:f6:fa:90:3f:20:c4:ae:79:d6:49:40:b3: 5b:dc:2f:43:fe:bc:f5:c9:93:d5:ec:66:e1:60:74: f1:43:41:e3:c7:2d:65:26:23:e7:a4:c4:3c:77:4a: 2b:f8:1c:3a:38:6a:fe:55:24:41:74:98:19:f6:af: 1c:25:25:c4:6f:82:fb:cb:a9:e2:f4:c7:36:f3:8a: da:7b:9f:72:10:ab:bc:c8:38:8b:ba:a7:c6:a7:6e: f4:18:80:b8:c8:bf:35:85:30:5b:48:73:be:e6:b8: 9d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:F8:5A:75:D1:F4:E5:AA:43:A1:B9:C5:AC:D2:D4:2F:5A:6E:B0:7D X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/9_haddH05apDobnFrNLUL1pusH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:ee40::/32 Signature Algorithm: sha256WithRSAEncryption 2c:44:a3:ae:5c:7e:eb:23:88:ee:4f:76:9a:da:0c:3a:c7:30: cb:9c:55:f6:31:2a:1e:df:b5:ea:56:69:d2:d4:54:15:7f:ee: c1:b3:70:64:53:14:ab:68:27:ca:60:21:84:84:7d:ec:ca:e4: b5:32:a1:0d:5c:d1:0a:28:f4:35:02:3d:97:5d:4d:62:d3:10: d2:4e:83:8a:1b:ce:c0:f3:4b:50:d1:8d:82:d2:40:cf:f0:d5: 2b:45:96:08:f4:a7:12:3f:25:5b:34:54:b0:89:22:c4:58:c2: 34:bc:b0:c3:43:52:f4:f2:64:d0:65:24:8d:cc:84:b9:51:31: 94:7c:e2:4f:ee:61:b6:8a:76:d1:41:89:61:0c:39:09:be:9c: 06:33:34:7f:00:44:ba:fb:99:05:fe:67:8a:28:ef:85:6f:7a: e9:a3:75:ce:7f:82:3b:34:13:4d:ac:18:37:20:09:19:d1:cc: f7:b1:67:49:44:5a:1b:0b:9b:8a:59:2c:3d:e2:09:cf:8e:3d: 93:ca:0f:a4:37:88:c2:4f:6d:c8:e4:4c:7f:94:a5:03:54:cf: 58:70:c6:af:1b:39:9f:37:a5:b8:4b:72:d1:88:a5:52:fd:80: aa:50:df:38:b9:5f:9a:d7:30:3c:fc:ac:45:f4:22:f7:ee:79: 09:6b:2e:06 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAjAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNDA4MjYw NTEzNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY3Rjg1QTc1RDFGNEU1 QUE0M0ExQjlDNUFDRDJENDJGNUE2RUIwN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCph3dYIiqRnB0YWf08dFYGXP7iV9WihcdgJbthFh8uJ1sOcf/q UyKvcEF3K2zMVYjGpF7k1NXnl+fHedpXHESYkd9mcH7SKhSh5Hc56XopLBWDn9VK SFT7RWrHqsU5mqaolXv/bdk29ekIyhuy9Oq5JxH++cAH0L2o0JdEbeM7xzxrU6qF 1Ku3xNJxNysN8Rvj49jahMhCsfb6kD8gxK551klAs1vcL0P+vPXJk9XsZuFgdPFD QePHLWUmI+ekxDx3Siv4HDo4av5VJEF0mBn2rxwlJcRvgvvLqeL0xzbzitp7n3IQ q7zIOIu6p8anbvQYgLjIvzWFMFtIc77muJ3XAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU9/haddH05apDobnFrNLUL1pusH0wHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy85X2hhZGRIMDVhcERv Ym5Gck5MVUwxcHVzSDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAbuQDANBgkqhkiG9w0BAQsFAAOCAQEALESjrlx+6yOI7k92mtoMOscwy5xV 9jEqHt+16lZp0tRUFX/uwbNwZFMUq2gnymAhhIR97MrktTKhDVzRCij0NQI9l11N YtMQ0k6DihvOwPNLUNGNgtJAz/DVK0WWCPSnEj8lWzRUsIkixFjCNLyww0NS9PJk 0GUkjcyEuVExlHziT+5htop20UGJYQw5Cb6cBjM0fwBEuvuZBf5niijvhW966aN1 zn+COzQTTawYNyAJGdHM97FnSURaGwubilksPeIJz449k8oPpDeIwk9tyORMf5Sl A1TPWHDGrxs5nzeluEty0YilUv2AqlDfOLlfmtcwPPysRfQi9+55CWsuBg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org