$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/2LGyw72voSM4Jbbwr2emCNA2Ij0.roa File: 2LGyw72voSM4Jbbwr2emCNA2Ij0.roa (raw, json) Hash identifier: 3rO7ncGex0j9+3RrurwOgXLKDUiP3L5OcHrYa8TAr/o= Subject key identifier: D8:B1:B2:C3:BD:AF:A1:23:38:25:B6:F0:AF:67:A6:08:D0:36:22:3D Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FE5 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/2LGyw72voSM4Jbbwr2emCNA2Ij0.roa Signing time: Mon 26 Aug 2024 05:15:51 +0000 ROA not before: Mon 26 Aug 2024 05:15:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9674 IP address blocks: 39.8.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4069 (0xfe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D8B1B2C3BDAFA1233825B6F0AF67A608D036223D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:df:6c:59:db:6b:4c:35:4c:c1:18:b7:c7:49: 53:0b:68:9f:c5:8a:fa:63:3d:52:90:d0:07:0e:60: aa:f9:63:6b:fc:06:8b:1f:70:b3:a0:a2:74:2d:50: e7:cf:56:9b:d9:1a:48:90:84:e9:de:e6:af:62:7e: d0:55:b2:97:88:70:6c:16:2b:80:76:c6:23:b0:88: 70:c6:53:eb:d7:b9:ea:a5:39:ef:5a:70:bd:f7:4f: 0f:9e:b0:46:87:a9:6a:d4:d4:c6:c4:a5:53:89:0c: 9e:2f:b5:18:8b:53:5e:6a:27:89:a7:b5:9b:34:6e: f4:df:b2:fa:53:c0:7c:27:88:a2:26:77:00:62:8c: e2:64:f3:b4:6e:c8:63:07:b5:9a:07:47:c5:2a:2c: ff:8d:f0:b8:38:c8:b2:37:34:34:8f:11:44:6b:58: c0:21:41:06:d4:0a:d2:31:66:68:7a:8d:ec:c3:2e: ca:e7:e9:c0:77:fd:71:2d:e5:1a:d4:0e:e5:97:2c: 27:5d:da:4d:63:0b:31:54:dc:20:6c:a3:7a:c1:b4: 5d:5e:55:2b:69:3a:50:ba:ac:8e:a0:82:54:d2:e4: 8a:2a:46:da:91:29:d8:f6:19:d6:ed:1a:ff:94:22: 6f:79:47:e1:f6:4c:a1:2e:6d:4d:8d:07:84:f5:a7: 21:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:B1:B2:C3:BD:AF:A1:23:38:25:B6:F0:AF:67:A6:08:D0:36:22:3D X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/2LGyw72voSM4Jbbwr2emCNA2Ij0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.8.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2e:b8:81:e3:99:34:4a:c5:6e:28:71:bd:01:3b:42:b3:42:b2: a3:28:71:8a:5b:12:e5:cc:75:67:76:4e:c4:d9:f7:e8:0f:00: 06:09:0e:9c:82:49:44:7b:63:10:85:7b:a9:0b:47:eb:5d:15: 4e:c5:c2:92:a4:90:39:3d:8c:92:2c:c2:2e:8a:91:12:a0:ed: 30:51:35:e9:94:da:4f:42:19:a2:02:45:97:df:5b:92:a5:9c: 30:14:78:99:a3:90:d9:43:e0:46:25:81:ea:38:e3:78:e0:17: 1c:99:93:91:96:47:d8:5c:30:fe:35:67:a4:0e:4e:78:dd:cc: 12:1f:5d:73:cb:da:dd:42:c1:b8:e0:ee:ed:7f:11:82:ce:82: d4:a5:76:39:17:f3:65:19:19:17:0c:a0:55:21:63:d1:b0:eb: 75:56:c3:dd:95:54:0e:31:9e:0f:77:8e:76:c3:56:06:45:81: 55:df:71:49:89:da:0b:68:e7:50:26:16:88:b4:ef:3f:f1:0e: d1:df:23:66:aa:0b:b8:fc:ad:0a:5e:fb:61:5b:99:40:e5:b8: 6f:43:d9:fa:74:a7:c9:3b:4d:fe:8c:8c:4c:39:a9:fd:57:92: 0b:fb:6e:c9:50:ad:cd:a0:dd:74:78:ca:9e:75:f9:98:2f:40: 17:7f:d6:90 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICD+UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4QjFCMkMzQkRBRkEx MjMzODI1QjZGMEFGNjdBNjA4RDAzNjIyM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm32xZ22tMNUzBGLfHSVMLaJ/FivpjPVKQ0AcOYKr5Y2v8Bosf cLOgonQtUOfPVpvZGkiQhOne5q9iftBVspeIcGwWK4B2xiOwiHDGU+vXueqlOe9a cL33Tw+esEaHqWrU1MbEpVOJDJ4vtRiLU15qJ4mntZs0bvTfsvpTwHwniKImdwBi jOJk87RuyGMHtZoHR8UqLP+N8Lg4yLI3NDSPEURrWMAhQQbUCtIxZmh6jezDLsrn 6cB3/XEt5RrUDuWXLCdd2k1jCzFU3CBso3rBtF1eVStpOlC6rI6gglTS5IoqRtqR Kdj2GdbtGv+UIm95R+H2TKEubU2NB4T1pyHLAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU2LGyw72voSM4Jbbwr2emCNA2Ij0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzJMR3l3NzJ2b1NNNEpiYndyMmVtQ05B MklqMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwInCDANBgkq hkiG9w0BAQsFAAOCAQEALriB45k0SsVuKHG9ATtCs0KyoyhxilsS5cx1Z3ZOxNn3 6A8ABgkOnIJJRHtjEIV7qQtH610VTsXCkqSQOT2MkizCLoqREqDtMFE16ZTaT0IZ ogJFl99bkqWcMBR4maOQ2UPgRiWB6jjjeOAXHJmTkZZH2Fww/jVnpA5OeN3MEh9d c8va3ULBuODu7X8Rgs6C1KV2ORfzZRkZFwygVSFj0bDrdVbD3ZVUDjGeD3eOdsNW BkWBVd9xSYnaC2jnUCYWiLTvP/EO0d8jZqoLuPytCl77YVuZQOW4b0PZ+nSnyTtN /oyMTDmp/VeSC/tuyVCtzaDddHjKnnX5mC9AF3/WkA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:07 2024 by rpki-client on console-fra.rpki-client.org