$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/7s6hvH-MJgcCcFIxzgVZVH98_b0.roa File: 7s6hvH-MJgcCcFIxzgVZVH98_b0.roa (raw, json) Hash identifier: UGsw9lsOnGZ+PW9pn2Sw71AStlravsXAZlVVKDdjIk4= Subject key identifier: EE:CE:A1:BC:7F:8C:26:07:02:70:52:31:CE:05:59:54:7F:7C:FD:BD Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 100F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7s6hvH-MJgcCcFIxzgVZVH98_b0.roa Signing time: Mon 26 Aug 2024 05:16:01 +0000 ROA not before: Mon 26 Aug 2024 05:16:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 210.200.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4111 (0x100f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EECEA1BC7F8C260702705231CE0559547F7CFDBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:18:7e:9c:f4:3e:9e:c4:24:f3:fd:a7:93:41: 92:d4:f1:39:e1:7d:d0:f0:75:67:40:45:b2:52:bf: 14:f3:ba:1a:89:2d:46:37:27:6b:d3:1c:4b:46:0a: 53:f4:ed:97:fa:ad:0d:b6:1b:a9:0d:e7:1e:13:f3: 78:63:db:82:df:b5:00:f7:d9:fd:60:22:ee:c0:b8: f3:e5:4b:0c:be:2b:da:be:bb:e8:19:a2:aa:e6:d3: 3d:f6:76:fb:9b:9e:33:a8:70:3d:d8:cc:09:4f:4f: bd:0b:e9:f7:b9:59:bb:cb:0c:27:74:04:e0:45:a6: d2:3b:41:eb:3b:a6:c7:08:eb:f1:50:c1:c6:0f:95: 78:85:38:38:16:ff:1b:3f:e1:14:cc:29:30:86:db: 27:ae:83:ee:0a:0c:82:64:84:3e:bb:7d:ac:0f:30: e3:1f:95:03:50:8a:8c:47:3b:c6:bd:0f:62:fb:8b: 9a:1d:e8:24:3d:41:3e:20:19:ab:af:63:da:7d:92: aa:8b:6e:02:1a:35:c2:93:b9:1e:be:61:99:69:77: 81:ac:5b:6d:99:8c:ec:ab:5b:99:f0:37:1e:00:ea: ec:87:52:7b:1d:04:7c:d9:a9:52:ff:c3:d4:4d:94: 57:7f:b9:01:e8:25:ba:3c:3c:a2:09:70:25:12:cb: 6b:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:CE:A1:BC:7F:8C:26:07:02:70:52:31:CE:05:59:54:7F:7C:FD:BD X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7s6hvH-MJgcCcFIxzgVZVH98_b0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.200.64.0/18 Signature Algorithm: sha256WithRSAEncryption 02:54:ba:50:06:d1:34:b4:ca:1a:ce:ad:44:13:35:c9:d9:f8: 8b:15:86:6c:fd:75:cd:c1:17:40:39:72:83:62:cc:15:20:5f: f8:5e:65:71:68:d1:b1:5d:eb:a9:99:a3:aa:01:7e:a2:e1:07: 2f:59:76:f0:b2:cf:15:73:60:5b:29:6d:da:c6:28:b9:e5:5e: 40:30:12:70:a5:c8:74:af:8d:01:34:aa:71:79:3f:3d:62:df: eb:58:65:76:7a:31:57:72:f9:85:97:75:e6:f9:47:05:f7:03: 98:a2:58:47:48:5f:94:fb:b9:43:80:f5:17:48:c8:34:a0:82: 0d:29:7f:63:c0:67:36:4f:a0:76:72:60:97:36:29:e7:bc:99: 22:68:21:02:62:20:8d:f8:c1:3b:f7:f9:3e:80:18:ce:66:d3: fc:98:c0:ea:a1:17:ea:66:52:fa:fb:aa:2c:b6:5b:a4:36:4f: b3:b8:8d:a2:47:5a:28:0e:19:fa:1c:e0:bc:0b:9b:d6:83:f3: 15:48:ab:f3:a8:1e:9d:4d:a4:87:17:52:fc:5e:3f:35:8c:9c: 99:82:5a:23:45:7c:3e:12:07:19:f6:9e:ea:f1:d2:a5:0e:f4: 94:c9:47:b3:2b:f3:b7:49:e5:2c:8c:2b:14:b8:27:52:02:ec: 07:4d:e7:81 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEA8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFQ0VBMUJDN0Y4QzI2 MDcwMjcwNTIzMUNFMDU1OTU0N0Y3Q0ZEQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvGH6c9D6exCTz/aeTQZLU8TnhfdDwdWdARbJSvxTzuhqJLUY3 J2vTHEtGClP07Zf6rQ22G6kN5x4T83hj24LftQD32f1gIu7AuPPlSwy+K9q+u+gZ oqrm0z32dvubnjOocD3YzAlPT70L6fe5WbvLDCd0BOBFptI7Qes7pscI6/FQwcYP lXiFODgW/xs/4RTMKTCG2yeug+4KDIJkhD67fawPMOMflQNQioxHO8a9D2L7i5od 6CQ9QT4gGauvY9p9kqqLbgIaNcKTuR6+YZlpd4GsW22ZjOyrW5nwNx4A6uyHUnsd BHzZqVL/w9RNlFd/uQHoJbo8PKIJcCUSy2tzAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU7s6hvH+MJgcCcFIxzgVZVH98/b0wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzdzNmh2SC1NSmdjQ2NGSXh6Z1ZaVkg5 OF9iMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSyEAwDQYJ KoZIhvcNAQELBQADggEBAAJUulAG0TS0yhrOrUQTNcnZ+IsVhmz9dc3BF0A5coNi zBUgX/heZXFo0bFd66mZo6oBfqLhBy9ZdvCyzxVzYFspbdrGKLnlXkAwEnClyHSv jQE0qnF5Pz1i3+tYZXZ6MVdy+YWXdeb5RwX3A5iiWEdIX5T7uUOA9RdIyDSggg0p f2PAZzZPoHZyYJc2Kee8mSJoIQJiII34wTv3+T6AGM5m0/yYwOqhF+pmUvr7qiy2 W6Q2T7O4jaJHWigOGfoc4LwLm9aD8xVIq/OoHp1NpIcXUvxePzWMnJmCWiNFfD4S Bxn2nurx0qUO9JTJR7Mr87dJ5SyMKxS4J1IC7AdN54E= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org