$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8gDjkaJIUcEhi0SIaW1GWggeUJE.roa File: 8gDjkaJIUcEhi0SIaW1GWggeUJE.roa (raw, json) Hash identifier: 2YiDSrTh9oI6+uIXY2q40GRj2OfHBzRdWrzOuN4ZRxI= Subject key identifier: F2:00:E3:91:A2:48:51:C1:21:8B:44:88:69:6D:46:5A:08:1E:50:91 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1012 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8gDjkaJIUcEhi0SIaW1GWggeUJE.roa Signing time: Mon 26 Aug 2024 05:16:01 +0000 ROA not before: Mon 26 Aug 2024 05:16:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 218.184.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4114 (0x1012) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F200E391A24851C1218B4488696D465A081E5091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:6d:4a:c6:77:74:41:03:cc:9a:cd:06:48: 58:33:87:9a:e9:e9:bf:43:ab:06:e5:e4:2e:e2:49: 13:ce:6d:a1:a6:0d:0d:64:62:a6:b7:ad:0b:4d:8b: 00:a1:e6:aa:83:64:89:a3:a3:d9:f4:2a:58:dd:86: 0a:dd:19:01:f4:70:6c:fd:7b:35:52:f3:2c:3a:3d: a1:63:9f:b1:b9:b4:c3:30:14:d2:74:3b:f8:bc:72: bf:d7:db:67:5a:95:58:23:5e:e9:dc:98:7c:b1:bc: 54:c8:e9:78:e1:0a:10:7f:fd:da:89:02:53:a5:cc: cb:63:7a:2a:77:b6:fd:ef:8e:59:df:84:9b:05:45: e1:ae:e8:d9:af:39:f8:54:c2:de:9f:87:ab:a0:fc: 34:cd:61:2f:7d:e1:58:46:d6:b3:06:80:6f:fa:f4: 8a:46:e4:74:01:53:97:ac:49:69:46:01:8d:34:f7: e8:75:66:06:a0:ec:2c:49:62:bb:5a:65:19:bc:e4: 24:79:85:b0:4f:61:2d:60:8f:94:0e:42:f4:73:c0: c2:76:9a:23:ac:eb:7a:96:89:2f:a3:12:ee:05:0e: 15:2d:c6:ef:b5:97:c0:72:ff:5a:ca:b0:9d:d7:00: 03:74:70:2c:02:7c:11:6c:44:ba:1a:92:2c:93:b4: 31:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:00:E3:91:A2:48:51:C1:21:8B:44:88:69:6D:46:5A:08:1E:50:91 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8gDjkaJIUcEhi0SIaW1GWggeUJE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:2c:18:ba:b7:0d:7e:af:b3:fd:51:9f:24:2f:32:7b:3c:c0: c3:10:2c:95:ee:95:eb:99:44:83:32:bc:dd:db:97:76:ec:07: c3:7b:71:87:40:fb:da:cc:4f:2b:c8:3e:c2:4d:92:1c:09:9e: bf:be:b1:f8:d3:af:a5:e9:fd:42:42:05:b5:9a:d8:c9:89:ba: 9f:6c:c8:de:a8:c1:16:ce:3f:79:ef:20:93:05:d7:79:0d:43: 8c:e4:4e:2f:01:74:c2:b5:e3:ed:4a:cf:d6:55:fc:99:f2:4d: 89:89:c5:e7:b2:70:04:69:2c:3d:88:7c:9b:56:86:a4:41:24: 17:4c:2d:73:50:08:2f:9b:be:0b:f2:71:81:79:1e:e7:2f:96: 50:19:4f:73:da:84:92:b2:dc:b9:56:63:ac:95:ad:e3:5e:27: fd:e9:b2:f9:bf:8b:c4:a6:c7:0d:12:7e:66:73:83:f4:d6:ec: 85:bb:f4:23:d2:76:33:ad:6a:89:8a:a2:21:96:ce:e5:a7:90: 6b:d1:a3:88:52:a1:dc:ad:9a:64:7d:e9:4f:dd:98:97:d0:95: 1f:17:cb:84:d3:66:84:c2:12:4e:21:43:a6:f3:85:d0:7c:00: af:4e:95:c6:f7:6d:ea:8f:05:51:0f:47:82:3f:bc:43:c1:73: 1f:84:1c:59 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEBIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyMDBFMzkxQTI0ODUx QzEyMThCNDQ4ODY5NkQ0NjVBMDgxRTUwOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAdG1Kxnd0QQPMms0GSFgzh5rp6b9Dqwbl5C7iSRPObaGmDQ1k Yqa3rQtNiwCh5qqDZImjo9n0KljdhgrdGQH0cGz9ezVS8yw6PaFjn7G5tMMwFNJ0 O/i8cr/X22dalVgjXuncmHyxvFTI6XjhChB//dqJAlOlzMtjeip3tv3vjlnfhJsF ReGu6NmvOfhUwt6fh6ug/DTNYS994VhG1rMGgG/69IpG5HQBU5esSWlGAY009+h1 Zgag7CxJYrtaZRm85CR5hbBPYS1gj5QOQvRzwMJ2miOs63qWiS+jEu4FDhUtxu+1 l8By/1rKsJ3XAAN0cCwCfBFsRLoakiyTtDGtAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU8gDjkaJIUcEhi0SIaW1GWggeUJEwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzhnRGprYUpJVWNFaGkwU0lhVzFHV2dn ZVVKRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDauDANBgkq hkiG9w0BAQsFAAOCAQEAHCwYurcNfq+z/VGfJC8yezzAwxAsle6V65lEgzK83duX duwHw3txh0D72sxPK8g+wk2SHAmev76x+NOvpen9QkIFtZrYyYm6n2zI3qjBFs4/ ee8gkwXXeQ1DjOROLwF0wrXj7UrP1lX8mfJNiYnF57JwBGksPYh8m1aGpEEkF0wt c1AIL5u+C/JxgXke5y+WUBlPc9qEkrLcuVZjrJWt414n/emy+b+LxKbHDRJ+ZnOD 9Nbshbv0I9J2M61qiYqiIZbO5aeQa9GjiFKh3K2aZH3pT92Yl9CVHxfLhNNmhMIS TiFDpvOF0HwAr06Vxvdt6o8FUQ9Hgj+8Q8FzH4QcWQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org