$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/JmhEAL96eh9MoKNTCjZ26fpvwAU.roa File: JmhEAL96eh9MoKNTCjZ26fpvwAU.roa (raw, json) Hash identifier: /VkHa2lxcg7z6oy41flXfyRSD3hdWfST4nRUfkWR6es= Subject key identifier: 26:68:44:00:BF:7A:7A:1F:4C:A0:A3:53:0A:36:76:E9:FA:6F:C0:05 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 100B Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/JmhEAL96eh9MoKNTCjZ26fpvwAU.roa Signing time: Mon 26 Aug 2024 05:16:00 +0000 ROA not before: Mon 26 Aug 2024 05:16:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.63.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4107 (0x100b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=26684400BF7A7A1F4CA0A3530A3676E9FA6FC005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0b:e6:05:96:7d:46:ec:f4:db:80:1d:f0:86: 25:35:d9:98:93:4d:e4:6f:57:08:2d:9b:3b:4b:5f: c5:4f:71:ef:81:3a:99:51:bf:4f:7b:b8:10:f7:1f: 7f:53:cc:15:b9:7f:71:ef:6f:24:c2:57:3d:d8:36: d2:23:fc:a4:dd:09:8c:5d:c2:6b:3a:6c:3a:32:16: 5a:53:60:b8:10:8a:27:83:16:75:2f:c8:8f:07:79: 84:7b:77:09:e2:d7:15:75:03:9b:28:92:9f:24:3b: 4d:b2:42:4b:7c:1e:b6:b3:86:51:69:ae:8d:69:0e: b2:8e:71:22:e1:98:37:3b:bd:b2:c7:e9:1e:2b:1e: 24:76:3e:c8:20:c6:45:31:a3:a7:9c:b2:54:fe:05: 1f:d5:7e:30:be:e5:2d:18:01:c2:a8:c0:97:0c:9d: bb:8c:0c:c4:83:63:e1:6d:69:ab:0b:7f:88:06:f5: e6:91:d9:d7:ed:48:6a:96:92:29:e6:76:6c:53:df: 46:36:ad:76:59:43:f2:3f:3f:32:5e:54:e5:a8:08: 03:2f:b3:ca:de:75:5a:78:50:32:c9:ff:2e:4e:68: 90:20:e4:a6:d3:5a:8f:75:b1:ba:e6:86:96:2a:3b: fc:a6:55:54:85:d9:8c:6b:df:aa:72:34:03:b5:02: ae:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:68:44:00:BF:7A:7A:1F:4C:A0:A3:53:0A:36:76:E9:FA:6F:C0:05 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/JmhEAL96eh9MoKNTCjZ26fpvwAU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.224.0/19 Signature Algorithm: sha256WithRSAEncryption 85:0a:be:5c:c9:79:2a:8f:36:cb:26:fa:1b:e1:8d:34:0d:99: 45:79:b9:be:7e:20:46:8a:28:8b:04:f6:2f:cb:83:05:cc:cf: 42:2b:c6:a0:2b:0d:59:4b:d6:86:75:78:10:4d:04:ca:55:14: 0e:49:72:d9:8a:ba:ed:c4:a7:dc:c8:20:c4:9d:63:f4:39:09: 80:81:fa:1c:d2:b9:71:5d:29:62:34:5d:d2:21:ef:26:dc:ed: 86:51:c3:22:71:c1:1d:7e:61:4c:c3:17:d6:f6:5a:21:aa:f8: fa:7e:28:10:91:77:f7:69:01:5c:24:89:ae:e7:71:53:41:44: fd:87:87:cb:20:a4:17:ac:82:78:d9:23:8c:d9:99:c6:98:2a: ab:a2:ea:ba:1b:43:d3:ad:a8:cf:d9:02:2b:3d:ec:1f:13:09: ce:9d:96:ff:99:40:cd:a9:86:08:82:5a:43:85:e6:de:c0:d0: 73:f5:d9:d6:86:7d:3e:b5:d3:53:0b:e1:19:12:b2:49:98:b4: 3a:cf:31:b1:64:4c:b5:0d:a4:74:14:04:10:64:44:b3:a1:d0: 79:c7:d0:4a:f7:fa:48:75:00:3f:2e:17:9c:72:1a:a4:d7:a7: 8a:fb:39:58:87:b7:23:54:32:cf:c3:3b:1f:ec:16:ab:a0:2f: 71:de:e4:57 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2Njg0NDAwQkY3QTdB MUY0Q0EwQTM1MzBBMzY3NkU5RkE2RkMwMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIC+YFln1G7PTbgB3whiU12ZiTTeRvVwgtmztLX8VPce+BOplR v097uBD3H39TzBW5f3HvbyTCVz3YNtIj/KTdCYxdwms6bDoyFlpTYLgQiieDFnUv yI8HeYR7dwni1xV1A5sokp8kO02yQkt8HrazhlFpro1pDrKOcSLhmDc7vbLH6R4r HiR2PsggxkUxo6ecslT+BR/VfjC+5S0YAcKowJcMnbuMDMSDY+FtaasLf4gG9eaR 2dftSGqWkinmdmxT30Y2rXZZQ/I/PzJeVOWoCAMvs8redVp4UDLJ/y5OaJAg5KbT Wo91sbrmhpYqO/ymVVSF2Yxr36pyNAO1Aq73AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUJmhEAL96eh9MoKNTCjZ26fpvwAUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0ptaEVBTDk2ZWg5TW9LTlRDaloyNmZw dndBVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSP+AwDQYJ KoZIhvcNAQELBQADggEBAIUKvlzJeSqPNssm+hvhjTQNmUV5ub5+IEaKKIsE9i/L gwXMz0IrxqArDVlL1oZ1eBBNBMpVFA5JctmKuu3Ep9zIIMSdY/Q5CYCB+hzSuXFd KWI0XdIh7ybc7YZRwyJxwR1+YUzDF9b2WiGq+Pp+KBCRd/dpAVwkia7ncVNBRP2H h8sgpBesgnjZI4zZmcaYKqui6robQ9OtqM/ZAis97B8TCc6dlv+ZQM2phgiCWkOF 5t7A0HP12daGfT6101ML4RkSskmYtDrPMbFkTLUNpHQUBBBkRLOh0HnH0Er3+kh1 AD8uF5xyGqTXp4r7OViHtyNUMs/DOx/sFqugL3He5Fc= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org