$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/-1qitLuqgqcR1ShIPkVDajkLt6E.roa File: -1qitLuqgqcR1ShIPkVDajkLt6E.roa (raw, json) Hash identifier: VePX7T+YTq1T/goD71donh1XyM4rc9dPsEojEVThgq8= Subject key identifier: FB:5A:A2:B4:BB:AA:82:A7:11:D5:28:48:3E:45:43:6A:39:0B:B7:A1 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10BE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-1qitLuqgqcR1ShIPkVDajkLt6E.roa Signing time: Mon 26 Aug 2024 05:16:45 +0000 ROA not before: Mon 26 Aug 2024 05:16:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18412 IP address blocks: 2401:e180:8e00::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4286 (0x10be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FB5AA2B4BBAA82A711D528483E45436A390BB7A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d9:24:4c:6e:5d:67:ac:ba:6f:0b:f0:d2:9f: d5:d9:ea:7b:13:4c:1d:83:87:38:37:c8:41:bf:aa: 1b:35:77:bc:3a:15:c8:4d:33:ca:15:8c:4b:71:ae: 9c:ce:2d:10:9d:b9:41:9d:4f:6e:60:f1:c5:7d:74: 70:b9:5d:41:d7:6a:43:2f:46:cd:56:11:4a:ba:3a: 36:3f:d8:1d:ba:37:4f:9f:da:e0:1d:b4:75:56:03: 9f:53:cb:46:58:22:14:1e:e8:a8:27:ab:ee:bf:f0: 0a:ba:b8:fe:c2:00:eb:a9:4c:88:69:6d:0d:2a:c9: b2:9f:65:f1:dd:85:09:2c:cc:ef:c5:15:dd:ce:94: a8:1a:4f:07:8a:36:cd:c2:49:20:9c:7b:8d:e6:29: 80:1f:72:fa:bf:e5:41:f4:13:14:dd:53:42:38:b2: 31:f0:e0:20:16:a6:44:d2:cd:58:85:a4:6a:8c:50: 73:ee:f9:1b:3d:bf:18:82:43:35:62:f2:b4:28:56: e8:67:8b:53:40:b8:f0:52:d4:1c:bf:d5:86:7a:a9: 6d:be:4b:f6:3b:e3:84:76:53:19:ef:0d:92:47:e8: 7e:58:10:70:d9:41:67:2d:69:fa:66:88:50:14:35: ee:9f:5d:d9:79:99:34:99:d5:63:9e:4e:5d:ff:3b: 22:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:5A:A2:B4:BB:AA:82:A7:11:D5:28:48:3E:45:43:6A:39:0B:B7:A1 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/-1qitLuqgqcR1ShIPkVDajkLt6E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8e00::/44 Signature Algorithm: sha256WithRSAEncryption 64:38:bd:40:0f:af:0d:a7:44:72:90:ce:86:16:4f:b4:80:2f: 20:16:35:3a:27:d7:ef:4f:f1:b2:a8:b3:44:c1:e7:51:15:90: 06:50:73:ae:3f:b6:d7:1f:0b:d7:81:54:b4:e1:9e:cd:d9:81: ac:90:ba:c6:e9:d9:30:f7:c6:47:c8:8c:2c:d3:49:5e:35:1f: f4:cd:f3:a7:ab:e0:23:7a:f0:9e:32:66:64:01:ff:2d:35:ed: d0:25:c4:5d:44:d5:2b:61:f2:0c:76:69:9d:46:03:94:cc:d3: 82:0f:4a:c0:00:bf:2e:a0:42:25:c6:9b:10:21:00:72:8e:84: 87:54:95:ea:9d:bb:60:87:bb:ac:a7:8b:f9:e8:5a:7c:8d:75: 70:d8:f1:19:fa:d9:7c:f4:be:04:0e:3d:72:a8:ab:57:76:2c: 36:9e:33:17:31:3b:5a:8c:7b:d1:2a:0e:dc:59:14:70:df:ea: b0:36:a2:76:4b:59:69:0d:11:28:0b:6c:c8:90:32:5a:dc:2f: 4a:75:90:31:c7:65:5f:66:4a:74:82:96:36:f8:d3:50:09:0d: 1e:15:f3:77:41:7d:c2:b9:83:73:bb:9a:10:ab:0b:46:5e:fb: c3:65:c1:fe:1d:84:0a:29:41:b0:5a:f1:98:6f:32:4f:d4:d9: a5:b6:b8:fd -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCNUFBMkI0QkJBQTgy QTcxMUQ1Mjg0ODNFNDU0MzZBMzkwQkI3QTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj2SRMbl1nrLpvC/DSn9XZ6nsTTB2Dhzg3yEG/qhs1d7w6FchN M8oVjEtxrpzOLRCduUGdT25g8cV9dHC5XUHXakMvRs1WEUq6OjY/2B26N0+f2uAd tHVWA59Ty0ZYIhQe6Kgnq+6/8Aq6uP7CAOupTIhpbQ0qybKfZfHdhQkszO/FFd3O lKgaTweKNs3CSSCce43mKYAfcvq/5UH0ExTdU0I4sjHw4CAWpkTSzViFpGqMUHPu +Rs9vxiCQzVi8rQoVuhni1NAuPBS1By/1YZ6qW2+S/Y744R2UxnvDZJH6H5YEHDZ QWctafpmiFAUNe6fXdl5mTSZ1WOeTl3/OyJnAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU+1qitLuqgqcR1ShIPkVDajkLt6EwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULy0xcWl0THVxZ3FjUjFTaElQa1ZEYWpr THQ2RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAjgAw DQYJKoZIhvcNAQELBQADggEBAGQ4vUAPrw2nRHKQzoYWT7SALyAWNTon1+9P8bKo s0TB51EVkAZQc64/ttcfC9eBVLThns3ZgayQusbp2TD3xkfIjCzTSV41H/TN86er 4CN68J4yZmQB/y017dAlxF1E1Sth8gx2aZ1GA5TM04IPSsAAvy6gQiXGmxAhAHKO hIdUleqdu2CHu6yni/noWnyNdXDY8Rn62Xz0vgQOPXKoq1d2LDaeMxcxO1qMe9Eq DtxZFHDf6rA2onZLWWkNESgLbMiQMlrcL0p1kDHHZV9mSnSCljb401AJDR4V83dB fcK5g3O7mhCrC0Ze+8Nlwf4dhAopQbBa8ZhvMk/U2aW2uP0= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org