$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/9yByIdD5hTS_VgTvNhrLg4Uvtfs.roa File: 9yByIdD5hTS_VgTvNhrLg4Uvtfs.roa (raw, json) Hash identifier: tCzUqyJPOY8mLc8FvpfRXsuRHTk6xFlQ1mAzI9AQmGQ= Subject key identifier: F7:20:72:21:D0:F9:85:34:BF:56:04:EF:36:1A:CB:83:85:2F:B5:FB Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FCF Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9yByIdD5hTS_VgTvNhrLg4Uvtfs.roa Signing time: Mon 26 Aug 2024 05:15:46 +0000 ROA not before: Mon 26 Aug 2024 05:15:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 218.34.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4047 (0xfcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F7207221D0F98534BF5604EF361ACB83852FB5FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5d:0c:46:2e:52:3d:0d:b9:d2:bd:1c:ef:a0: 8e:16:a5:a5:17:35:15:2d:eb:8b:a6:35:c8:d6:f1: 2e:9a:0b:4d:56:97:34:df:90:4e:29:d6:96:31:de: dd:4d:c8:51:35:77:8a:eb:e6:39:a1:a7:0e:af:8b: 26:fb:e4:ef:b3:46:09:82:b8:21:3b:2a:cb:23:39: d6:2b:8e:96:9c:f7:7d:20:d6:68:3c:a3:df:db:00: 26:ed:a5:01:76:9c:92:29:76:aa:c2:7d:80:11:f2: 51:1e:f9:af:38:15:d9:57:47:2a:15:c0:29:c4:e1: 27:89:c7:d8:e6:f4:f8:b7:94:db:8e:63:a7:a0:23: a1:66:b8:17:82:be:30:74:ed:2f:98:34:84:26:fd: 8d:be:02:91:62:89:cd:ed:12:6f:20:f6:81:54:32: 0a:1c:5c:b6:43:d7:0c:e1:8b:43:27:7a:b6:c7:eb: 3d:38:d0:ad:9d:3f:98:8f:9a:05:03:cd:27:fc:ec: 31:e4:83:2e:b0:f3:cb:bd:e5:d0:da:fb:1d:b6:14: 2e:ff:fa:37:15:ce:66:e8:b6:0a:1a:e7:40:54:73: 90:b8:38:02:f6:d2:1d:da:dd:1e:42:91:e7:e6:2f: 61:f8:2d:e6:cb:49:f6:a5:b7:0a:5a:0e:9a:68:46: 4e:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:20:72:21:D0:F9:85:34:BF:56:04:EF:36:1A:CB:83:85:2F:B5:FB X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/9yByIdD5hTS_VgTvNhrLg4Uvtfs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.34.106.0/23 Signature Algorithm: sha256WithRSAEncryption 30:4f:90:c1:8d:50:92:db:e8:56:52:e3:46:37:05:8c:58:94: 02:2f:7a:2e:e1:ae:42:a2:79:30:21:70:b7:85:d7:bc:ae:bc: e7:26:81:63:9d:bd:b2:f8:e8:5c:b5:36:41:f6:5a:ab:85:b1: 1f:bf:5c:44:6d:da:72:47:e0:16:5d:35:59:f2:ca:9b:ea:bb: 62:1c:a2:b0:68:a7:de:38:56:63:b3:98:86:75:ad:4f:b0:a0: c0:d0:c2:0b:ab:0f:63:e0:39:3e:87:a7:6d:0c:4c:9f:52:33: 44:15:ad:27:59:c9:9b:f0:2e:24:f9:15:25:23:ee:bb:a5:92: c8:a0:45:ad:e4:76:3e:46:f5:c3:81:a5:e8:86:cf:e3:46:41: 4e:43:41:68:33:40:1d:c7:ec:24:73:2e:bb:1e:ee:d2:8d:17: 32:f6:bc:46:72:25:27:4d:53:42:3d:36:29:9c:c7:dd:85:e6: 9b:4d:de:80:67:e4:1d:e0:d7:9f:ab:a5:c6:fd:6f:0d:a6:ba: bf:f0:4e:80:c1:45:47:b3:01:56:c6:55:67:58:d5:1a:ec:d0: 69:c2:63:fa:7a:35:c3:7e:0b:ed:96:9d:8d:af:04:5f:5f:b6: bd:13:ac:3c:48:81:6d:ef:8b:d6:fd:da:d8:15:13:28:88:f9: 49:59:e5:12 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD88wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY3MjA3MjIxRDBGOTg1 MzRCRjU2MDRFRjM2MUFDQjgzODUyRkI1RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCXQxGLlI9DbnSvRzvoI4WpaUXNRUt64umNcjW8S6aC01WlzTf kE4p1pYx3t1NyFE1d4rr5jmhpw6viyb75O+zRgmCuCE7KssjOdYrjpac930g1mg8 o9/bACbtpQF2nJIpdqrCfYAR8lEe+a84FdlXRyoVwCnE4SeJx9jm9Pi3lNuOY6eg I6FmuBeCvjB07S+YNIQm/Y2+ApFiic3tEm8g9oFUMgocXLZD1wzhi0MnerbH6z04 0K2dP5iPmgUDzSf87DHkgy6w88u95dDa+x22FC7/+jcVzmbotgoa50BUc5C4OAL2 0h3a3R5CkefmL2H4LebLSfaltwpaDppoRk6pAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU9yByIdD5hTS/VgTvNhrLg4UvtfswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzl5QnlJZEQ1aFRTX1ZnVHZOaHJMZzRV dnRmcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHaImowDQYJ KoZIhvcNAQELBQADggEBADBPkMGNUJLb6FZS40Y3BYxYlAIvei7hrkKieTAhcLeF 17yuvOcmgWOdvbL46Fy1NkH2WquFsR+/XERt2nJH4BZdNVnyypvqu2IcorBop944 VmOzmIZ1rU+woMDQwgurD2PgOT6Hp20MTJ9SM0QVrSdZyZvwLiT5FSUj7rulksig Ra3kdj5G9cOBpeiGz+NGQU5DQWgzQB3H7CRzLrse7tKNFzL2vEZyJSdNU0I9Nimc x92F5ptN3oBn5B3g15+rpcb9bw2mur/wToDBRUezAVbGVWdY1Rrs0GnCY/p6NcN+ C+2WnY2vBF9ftr0TrDxIgW3vi9b92tgVEyiI+UlZ5RI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org