$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/4VVVNXurB3R05kSMvWpQg4H5nB4.roa File: 4VVVNXurB3R05kSMvWpQg4H5nB4.roa (raw, json) Hash identifier: ErxJZr3B5xvNb2EpMuEgrEUZ1vSBkkOfNeT/2U5NOVg= Subject key identifier: E1:55:55:35:7B:AB:07:74:74:E6:44:8C:BD:6A:50:83:81:F9:9C:1E Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FF9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4VVVNXurB3R05kSMvWpQg4H5nB4.roa Signing time: Mon 26 Aug 2024 05:15:56 +0000 ROA not before: Mon 26 Aug 2024 05:15:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18412 IP address blocks: 2401:e180:8960::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4089 (0xff9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E15555357BAB077474E6448CBD6A508381F99C1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b5:84:19:a3:e9:26:40:f8:16:7f:28:25:df: 28:1c:e8:00:ed:4a:17:0a:26:41:93:7c:8c:f3:e7: ab:e2:40:a2:f2:3c:f3:60:0c:67:1d:82:a0:2e:d3: 8d:e6:00:14:35:86:7c:9c:ae:64:09:d3:7d:0e:e6: b3:43:7d:ae:4e:d3:c3:b8:ba:59:60:2b:41:19:6c: 07:5c:b3:53:54:78:7d:92:13:f5:eb:1b:db:88:3d: b3:69:fc:24:f2:81:77:7b:03:c1:6b:fa:1e:5a:2d: 68:a0:ca:94:d4:4e:ef:09:86:0d:a5:7c:2f:41:0b: 31:4e:b5:3a:08:63:20:9b:e1:6a:26:8f:54:73:70: 93:51:2d:60:9e:d5:0a:39:75:f1:f1:3f:5e:5b:6d: a1:f0:95:5a:a3:95:45:de:ae:51:13:86:61:e4:73: ef:ca:8e:66:fc:10:27:5e:e7:d6:d4:3c:4e:0e:81: 1c:5e:ae:26:4c:af:75:4e:d4:fc:bc:f8:3d:90:1e: a2:a5:27:31:aa:39:5f:3c:7c:81:0b:ea:4d:d7:01: c1:da:bf:04:34:e2:91:ec:5f:0d:0a:18:a5:c2:9c: 93:f3:9e:fa:4e:17:77:db:74:9a:67:d4:bc:9d:5a: e2:f4:1f:b9:20:f5:21:e7:16:05:25:e3:6b:6c:f4: 0e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:55:55:35:7B:AB:07:74:74:E6:44:8C:BD:6A:50:83:81:F9:9C:1E X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/4VVVNXurB3R05kSMvWpQg4H5nB4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8960::/44 Signature Algorithm: sha256WithRSAEncryption 65:65:0e:b1:45:03:43:5b:9f:a6:13:49:30:f6:e1:56:11:c1: 27:8f:46:f6:9e:f6:5c:f2:06:28:40:b0:44:86:09:6b:0a:9b: 25:e8:88:3e:81:35:07:eb:ff:c0:f0:50:98:9e:39:1a:87:92: 60:aa:4d:be:51:28:98:82:80:11:84:1d:0c:1a:14:40:37:bd: a8:17:11:e1:f3:b0:c0:2d:1d:8f:2a:67:d6:1e:f9:bb:b1:47: 81:eb:fb:17:a8:c7:9a:01:aa:37:bc:7e:49:24:99:96:14:a6: b0:98:68:78:a2:1e:f0:07:e7:4b:18:8b:29:8b:68:13:ce:63: 08:52:67:99:62:69:1f:2e:44:e8:20:0c:af:65:53:e0:ac:74: a0:04:d1:7e:3b:88:f5:b7:ec:94:0a:5c:08:93:7b:be:98:43: 51:43:fe:85:fa:c8:cd:3b:30:c8:e5:76:51:ad:2f:e1:47:5a: 22:b8:33:e0:5c:f9:5d:b0:ea:63:68:28:10:26:2c:e9:2f:1e: 91:7e:20:af:30:3c:af:87:2e:36:f3:f8:3f:35:39:32:ac:70: 7b:d6:49:da:34:fa:aa:6e:e5:ab:03:50:14:40:2c:69:34:09: d9:21:51:3f:3e:c3:27:7d:1f:f5:10:b7:d0:a7:e6:39:b8:33: 30:7b:eb:86 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD/kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUxNTU1NTM1N0JBQjA3 NzQ3NEU2NDQ4Q0JENkE1MDgzODFGOTlDMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCotYQZo+kmQPgWfygl3ygc6ADtShcKJkGTfIzz56viQKLyPPNg DGcdgqAu043mABQ1hnycrmQJ030O5rNDfa5O08O4ullgK0EZbAdcs1NUeH2SE/Xr G9uIPbNp/CTygXd7A8Fr+h5aLWigypTUTu8Jhg2lfC9BCzFOtToIYyCb4Womj1Rz cJNRLWCe1Qo5dfHxP15bbaHwlVqjlUXerlEThmHkc+/Kjmb8ECde59bUPE4OgRxe riZMr3VO1Py8+D2QHqKlJzGqOV88fIEL6k3XAcHavwQ04pHsXw0KGKXCnJPznvpO F3fbdJpn1LydWuL0H7kg9SHnFgUl42ts9A73AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU4VVVNXurB3R05kSMvWpQg4H5nB4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzRWVlZOWHVyQjNSMDVrU012V3BRZzRI NW5CNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAiWAw DQYJKoZIhvcNAQELBQADggEBAGVlDrFFA0Nbn6YTSTD24VYRwSePRvae9lzyBihA sESGCWsKmyXoiD6BNQfr/8DwUJieORqHkmCqTb5RKJiCgBGEHQwaFEA3vagXEeHz sMAtHY8qZ9Ye+buxR4Hr+xeox5oBqje8fkkkmZYUprCYaHiiHvAH50sYiymLaBPO YwhSZ5liaR8uROggDK9lU+CsdKAE0X47iPW37JQKXAiTe76YQ1FD/oX6yM07MMjl dlGtL+FHWiK4M+Bc+V2w6mNoKBAmLOkvHpF+IK8wPK+HLjbz+D81OTKscHvWSdo0 +qpu5asDUBRALGk0CdkhUT8+wyd9H/UQt9Cn5jm4MzB764Y= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org