$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/9mSMsr3ODESVNB-a3IhhA7wGpTs.roa File: 9mSMsr3ODESVNB-a3IhhA7wGpTs.roa (raw, json) Hash identifier: kDfUfOJ9rsvxcq37GNw2VgB3J5BPU3TSPXZo4yesfGo= Subject key identifier: F6:64:8C:B2:BD:CE:0C:44:95:34:1F:9A:DC:88:61:03:BC:06:A5:3B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FCE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9mSMsr3ODESVNB-a3IhhA7wGpTs.roa Signing time: Mon 26 Aug 2024 05:15:46 +0000 ROA not before: Mon 26 Aug 2024 05:15:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 210.203.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4046 (0xfce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F6648CB2BDCE0C4495341F9ADC886103BC06A53B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c9:79:2e:89:6b:1a:f0:a5:a7:b2:d5:a4:76: b1:91:a1:bc:f1:59:19:93:c0:05:c4:f6:c3:ad:79: f7:06:4f:cc:ca:81:0d:99:70:d2:51:18:42:31:7b: 08:3e:ea:ad:08:08:c9:04:5e:82:de:50:ff:36:10: 9f:0f:6d:ed:c0:f3:c7:cd:16:ed:44:a6:37:72:65: 8b:69:f1:40:12:77:68:ff:50:d5:3c:a3:7d:80:d5: f5:6d:a5:e9:bc:e7:a0:63:b9:49:2a:a3:99:f1:59: 29:3a:77:19:0b:2a:86:43:dc:cb:f5:87:b5:ab:e4: 70:ec:f4:19:63:60:1c:bc:a7:83:eb:54:0f:36:4b: 82:2d:b7:83:9a:68:54:d4:a2:08:a2:e9:92:01:50: be:cc:92:f0:98:c9:67:fe:b4:54:36:56:c8:c3:36: e1:c9:da:9c:49:12:fb:a7:83:ac:6c:4f:7a:46:de: 15:67:8b:13:06:18:b8:3d:15:21:93:18:7b:db:34: f3:74:dd:f5:1d:85:8d:c1:5f:af:37:82:88:97:1e: af:03:6f:12:48:31:f9:79:d9:06:76:bc:7a:08:cd: 9d:9c:35:0b:57:f9:f5:f2:f3:31:0b:37:b1:43:0b: 96:bb:bd:8f:2a:bf:d6:75:99:40:f6:c4:6a:9b:1e: 09:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:64:8C:B2:BD:CE:0C:44:95:34:1F:9A:DC:88:61:03:BC:06:A5:3B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9mSMsr3ODESVNB-a3IhhA7wGpTs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0d:c5:20:0a:52:a1:42:3d:03:2e:92:51:90:df:66:da:47:73: 3b:7f:0a:14:d2:b5:28:96:f0:c9:a7:4d:a1:02:60:71:41:18: 96:ee:04:99:03:20:5e:58:33:14:46:1c:48:cf:95:17:f6:50: 71:11:35:6f:4f:de:c2:b8:2e:0c:34:1d:d4:35:10:48:a7:e1: ea:36:49:dc:66:20:2f:55:58:43:65:ec:e9:b7:50:96:84:52: 53:cd:55:74:c4:02:e6:e3:99:a9:7b:72:7f:b7:45:b4:07:b3: 46:69:34:b7:da:39:d5:59:5f:30:a6:b1:90:c5:68:4c:59:65: f3:83:11:af:ab:1e:c6:13:d9:1f:79:93:43:6b:e8:f9:4e:af: 15:8e:c8:f1:f4:80:57:f0:ba:04:d0:c5:a7:c1:cf:62:17:c5: ee:2b:fe:1f:71:fe:5f:04:a2:77:9b:51:fb:f0:06:d7:2c:a0: 34:2f:96:c5:6f:63:76:49:05:da:9a:78:59:39:e2:ce:23:3d: 6d:3f:77:8c:2c:00:9e:8e:22:97:9c:18:69:aa:f0:d0:0f:24: 58:ba:5e:a0:22:94:5c:df:72:36:79:54:56:30:02:6f:e6:b2: 4a:e9:09:03:af:3b:91:41:12:97:09:53:52:cf:d5:c1:d6:c6: 5b:28:2a:70 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD84wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2NjQ4Q0IyQkRDRTBD NDQ5NTM0MUY5QURDODg2MTAzQkMwNkE1M0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8yXkuiWsa8KWnstWkdrGRobzxWRmTwAXE9sOtefcGT8zKgQ2Z cNJRGEIxewg+6q0ICMkEXoLeUP82EJ8Pbe3A88fNFu1EpjdyZYtp8UASd2j/UNU8 o32A1fVtpem856BjuUkqo5nxWSk6dxkLKoZD3Mv1h7Wr5HDs9BljYBy8p4PrVA82 S4Itt4OaaFTUogii6ZIBUL7MkvCYyWf+tFQ2VsjDNuHJ2pxJEvung6xsT3pG3hVn ixMGGLg9FSGTGHvbNPN03fUdhY3BX683goiXHq8DbxJIMfl52QZ2vHoIzZ2cNQtX +fXy8zELN7FDC5a7vY8qv9Z1mUD2xGqbHgkdAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU9mSMsr3ODESVNB+a3IhhA7wGpTswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzltU01zcjNPREVTVk5CLWEzSWhoQTd3 R3BUcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSy0AwDQYJ KoZIhvcNAQELBQADggEBAA3FIApSoUI9Ay6SUZDfZtpHczt/ChTStSiW8MmnTaEC YHFBGJbuBJkDIF5YMxRGHEjPlRf2UHERNW9P3sK4Lgw0HdQ1EEin4eo2SdxmIC9V WENl7Om3UJaEUlPNVXTEAubjmal7cn+3RbQHs0ZpNLfaOdVZXzCmsZDFaExZZfOD Ea+rHsYT2R95k0Nr6PlOrxWOyPH0gFfwugTQxafBz2IXxe4r/h9x/l8EonebUfvw BtcsoDQvlsVvY3ZJBdqaeFk54s4jPW0/d4wsAJ6OIpecGGmq8NAPJFi6XqAilFzf cjZ5VFYwAm/mskrpCQOvO5FBEpcJU1LP1cHWxlsoKnA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org