$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/3dX68tzIoAbM9Lc4dA6OyvL7Vqg.roa File: 3dX68tzIoAbM9Lc4dA6OyvL7Vqg.roa (raw, json) Hash identifier: iPAxX/vvDCOWd50rp1XhKFadapZpDrcpkBD2gxP/6dY= Subject key identifier: DD:D5:FA:F2:DC:C8:A0:06:CC:F4:B7:38:74:0E:8E:CA:F2:FB:56:A8 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 106F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3dX68tzIoAbM9Lc4dA6OyvL7Vqg.roa Signing time: Mon 26 Aug 2024 05:16:24 +0000 ROA not before: Mon 26 Aug 2024 05:16:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9674 IP address blocks: 106.64.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4207 (0x106f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DDD5FAF2DCC8A006CCF4B738740E8ECAF2FB56A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8a:0e:b0:a5:e5:fa:17:65:3d:96:99:35:79: 43:ad:99:cf:79:57:f6:a3:05:31:e5:a3:ff:2e:5c: 8d:0a:b5:27:e2:53:93:95:16:76:fa:ca:de:ed:4a: 34:87:77:e0:f4:55:fc:4a:39:8c:e4:38:0a:e1:ae: 7a:9a:dd:0e:df:c6:96:b5:90:21:30:73:17:52:12: 87:2c:8b:e8:9d:4f:6c:ba:4b:c7:e2:c2:93:cb:2e: d0:b2:69:51:b3:43:40:8f:f6:05:cc:d0:4f:d8:7b: b8:44:5e:03:f6:50:f2:56:44:43:ff:37:c8:81:5b: 8c:83:59:48:66:ba:7d:00:9a:8d:e2:a8:75:ae:f7: eb:e6:8b:4d:1a:c8:27:51:75:a0:af:a1:3b:63:b8: 3c:91:6d:4a:0c:67:72:96:0a:e0:6a:20:9a:ef:56: 6d:f7:07:bb:3c:ec:72:7e:af:76:6f:38:66:40:8a: 2e:aa:7f:4d:62:70:be:d4:64:62:16:1b:a7:f8:79: b1:61:f7:dc:18:3a:49:16:7a:74:83:c3:b0:d2:68: e6:03:15:57:65:8f:ae:2b:f7:af:07:d4:b5:7e:7e: 3d:78:c7:b5:b9:ff:20:8e:d1:b7:ed:78:14:45:1f: 2b:dc:94:b3:dc:e5:e5:3b:e3:d5:92:c1:ab:a7:01: 27:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:D5:FA:F2:DC:C8:A0:06:CC:F4:B7:38:74:0E:8E:CA:F2:FB:56:A8 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/3dX68tzIoAbM9Lc4dA6OyvL7Vqg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.64.0.0/15 Signature Algorithm: sha256WithRSAEncryption 7c:45:fe:4e:34:41:67:38:dd:ba:ce:11:b9:71:36:de:7d:7a: 4c:9e:a3:08:d7:91:db:9e:b4:17:48:2d:36:96:a9:be:af:4f: bd:57:6c:5e:e9:be:68:eb:7d:64:c3:b9:e5:f5:c4:0b:77:c3: 6f:7a:15:b0:67:a9:0f:10:c4:67:64:51:6f:7b:e6:90:74:5a: e0:5a:c9:85:30:c0:f4:d3:32:a9:49:cd:c6:01:84:dc:2c:85: 53:5b:2d:64:42:30:93:ee:e8:67:86:c9:96:79:8a:58:19:76: 47:32:55:37:b9:62:5c:d6:e4:79:38:d9:49:37:29:3d:76:11: ee:fa:d4:18:a9:f9:d7:30:3c:9b:9d:07:ea:de:b9:0a:24:4f: 84:ad:70:45:2e:9a:14:3b:56:b0:ed:28:dc:81:44:a5:60:4d: 14:b2:c8:37:78:74:b3:36:5b:6d:f8:7a:ac:5a:75:64:b9:b2: b1:07:e7:94:4e:c1:00:c4:4c:de:54:e3:7e:a3:dc:bb:dc:0f: 85:b2:b1:65:05:46:63:c5:19:6b:52:41:73:7b:03:a8:bd:de: fa:01:7a:cf:f0:2b:d7:9f:94:7a:d4:45:84:c6:3e:24:72:1e: f4:90:b4:45:9f:6c:01:2c:48:2d:83:8a:44:e5:12:e6:be:4b: 51:bb:2c:ec -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEG8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERERDVGQUYyRENDOEEw MDZDQ0Y0QjczODc0MEU4RUNBRjJGQjU2QTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNig6wpeX6F2U9lpk1eUOtmc95V/ajBTHlo/8uXI0KtSfiU5OV Fnb6yt7tSjSHd+D0VfxKOYzkOArhrnqa3Q7fxpa1kCEwcxdSEocsi+idT2y6S8fi wpPLLtCyaVGzQ0CP9gXM0E/Ye7hEXgP2UPJWREP/N8iBW4yDWUhmun0Amo3iqHWu 9+vmi00ayCdRdaCvoTtjuDyRbUoMZ3KWCuBqIJrvVm33B7s87HJ+r3ZvOGZAii6q f01icL7UZGIWG6f4ebFh99wYOkkWenSDw7DSaOYDFVdlj64r968H1LV+fj14x7W5 /yCO0bfteBRFHyvclLPc5eU749WSwaunASe7AgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU3dX68tzIoAbM9Lc4dA6OyvL7VqgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzNkWDY4dHpJb0FiTTlMYzRkQTZPeXZM N1ZxZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwFqQDANBgkq hkiG9w0BAQsFAAOCAQEAfEX+TjRBZzjdus4RuXE23n16TJ6jCNeR2560F0gtNpap vq9PvVdsXum+aOt9ZMO55fXEC3fDb3oVsGepDxDEZ2RRb3vmkHRa4FrJhTDA9NMy qUnNxgGE3CyFU1stZEIwk+7oZ4bJlnmKWBl2RzJVN7liXNbkeTjZSTcpPXYR7vrU GKn51zA8m50H6t65CiRPhK1wRS6aFDtWsO0o3IFEpWBNFLLIN3h0szZbbfh6rFp1 ZLmysQfnlE7BAMRM3lTjfqPcu9wPhbKxZQVGY8UZa1JBc3sDqL3e+gF6z/Ar15+U etRFhMY+JHIe9JC0RZ9sASxILYOKROUS5r5LUbss7A== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:07 2024 by rpki-client on console-fra.rpki-client.org