$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/6oGMgLhEIDrbI_QZ4c8J7HClBcw.roa File: 6oGMgLhEIDrbI_QZ4c8J7HClBcw.roa (raw, json) Hash identifier: q8FAseqY+FycAxTEgGhbgE8ZNsn1y6qfk7YGZcE+mM4= Subject key identifier: EA:81:8C:80:B8:44:20:3A:DB:23:F4:19:E1:CF:09:EC:70:A5:05:CC Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1029 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6oGMgLhEIDrbI_QZ4c8J7HClBcw.roa Signing time: Mon 26 Aug 2024 05:16:08 +0000 ROA not before: Mon 26 Aug 2024 05:16:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 124.218.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EA818C80B844203ADB23F419E1CF09EC70A505CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2e:8e:d3:6b:4f:14:c2:48:9f:ac:ab:f2:35: 04:b9:03:1c:60:2a:18:ce:11:39:33:ac:6e:cb:7e: 0e:d7:95:bc:f3:86:54:cf:c5:35:5f:ad:dc:36:18: 57:2c:b6:34:94:ce:fb:87:9a:3e:b9:44:83:cf:c4: d7:fe:b7:e0:92:b3:68:fe:6c:7f:fe:06:89:d2:08: d7:09:3d:26:66:39:09:44:65:97:05:fd:74:23:7c: 0b:a0:94:9a:95:d2:19:98:35:86:b9:0c:dc:5d:5c: af:b8:23:d2:5c:46:c4:fb:7b:a1:81:69:c7:48:44: 32:92:6a:84:a4:19:6d:f1:57:ad:8e:41:c5:07:fa: 77:e3:1d:11:bb:53:07:01:d4:b0:6c:d3:17:dc:92: c0:1e:51:b1:91:ec:dd:2a:68:85:d2:7b:5d:f1:43: ec:eb:58:fa:a7:03:32:28:5f:5d:70:59:19:00:9a: 64:d3:b8:8c:7b:0a:6c:0e:40:04:27:f2:e9:ed:bc: ec:f0:79:7f:18:32:fb:1d:6a:73:3b:ac:4e:7e:ee: 10:18:7c:73:cd:de:d3:57:10:ef:7e:e3:99:46:23: 89:f2:94:a2:b6:9e:e2:4b:ef:a2:db:be:7b:13:0c: ff:80:7a:2b:7d:8f:8f:2c:12:f5:4c:5b:ff:3e:4f: 86:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:81:8C:80:B8:44:20:3A:DB:23:F4:19:E1:CF:09:EC:70:A5:05:CC X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/6oGMgLhEIDrbI_QZ4c8J7HClBcw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.0.0/18 Signature Algorithm: sha256WithRSAEncryption 78:1e:84:55:1f:a8:dc:97:4f:e4:6d:e8:2e:c1:b1:45:0c:7f: 21:93:25:47:e2:70:e5:3e:57:e2:b2:90:89:4c:ce:ea:c4:95: d8:7d:a7:e5:45:5f:dd:b0:85:e7:30:03:b6:27:4b:13:16:06: 4c:49:62:2b:3f:ca:85:25:ae:33:3e:37:5a:2c:7a:72:5e:67: d4:ff:c7:4f:43:b9:a0:90:0f:b1:d2:37:9f:a7:c8:30:c6:d7: c0:5a:f2:1c:dc:c9:69:8b:e1:22:6d:07:2d:e8:c3:fa:2a:27: 52:1f:68:03:46:9b:37:27:1c:5b:07:f5:29:75:55:5b:dd:4e: eb:04:c4:33:14:f8:32:7a:42:cb:e9:17:b1:53:b6:c7:91:e1: 05:20:59:13:3b:4a:55:29:eb:7e:dd:68:20:1c:38:ca:d5:89: 90:44:56:0b:9d:06:01:1d:4c:55:84:d6:63:03:a6:7d:ab:f2: 1e:ce:d5:05:7e:51:8f:30:29:97:51:1f:77:06:be:c5:b0:c3: 80:73:f2:09:ca:f7:c3:bb:93:7a:8a:39:73:ec:37:76:27:47: 02:bf:af:73:1a:45:e0:08:0b:26:d2:9d:05:63:d5:cc:d1:f5: 3c:e8:2a:92:6f:49:b4:f2:91:7c:ff:4d:f3:99:a6:2b:d4:e5: c6:12:01:c3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICECkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVBODE4QzgwQjg0NDIw M0FEQjIzRjQxOUUxQ0YwOUVDNzBBNTA1Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnLo7Ta08UwkifrKvyNQS5AxxgKhjOETkzrG7Lfg7XlbzzhlTP xTVfrdw2GFcstjSUzvuHmj65RIPPxNf+t+CSs2j+bH/+BonSCNcJPSZmOQlEZZcF /XQjfAuglJqV0hmYNYa5DNxdXK+4I9JcRsT7e6GBacdIRDKSaoSkGW3xV62OQcUH +nfjHRG7UwcB1LBs0xfcksAeUbGR7N0qaIXSe13xQ+zrWPqnAzIoX11wWRkAmmTT uIx7CmwOQAQn8untvOzweX8YMvsdanM7rE5+7hAYfHPN3tNXEO9+45lGI4nylKK2 nuJL76LbvnsTDP+Aeit9j48sEvVMW/8+T4ZLAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU6oGMgLhEIDrbI/QZ4c8J7HClBcwwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzZvR01nTGhFSURyYklfUVo0YzhKN0hD bEJjdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ82gAwDQYJ KoZIhvcNAQELBQADggEBAHgehFUfqNyXT+Rt6C7BsUUMfyGTJUficOU+V+KykIlM zurEldh9p+VFX92whecwA7YnSxMWBkxJYis/yoUlrjM+N1osenJeZ9T/x09DuaCQ D7HSN5+nyDDG18Ba8hzcyWmL4SJtBy3ow/oqJ1IfaANGmzcnHFsH9Sl1VVvdTusE xDMU+DJ6QsvpF7FTtseR4QUgWRM7SlUp637daCAcOMrViZBEVgudBgEdTFWE1mMD pn2r8h7O1QV+UY8wKZdRH3cGvsWww4Bz8gnK98O7k3qKOXPsN3YnRwK/r3MaReAI CybSnQVj1czR9TzoKpJvSbTykXz/TfOZpivU5cYSAcM= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org