$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/KXGlaj2UbIxryqwH-BFCNxfbx-4.roa File: KXGlaj2UbIxryqwH-BFCNxfbx-4.roa (raw, json) Hash identifier: Beqf+D4/eCzU55CmlIxuqgFYbx1ohUmgDBZ6Ca4igig= Subject key identifier: 29:71:A5:6A:3D:94:6C:8C:6B:CA:AC:07:F8:11:42:37:17:DB:C7:EE Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10A1 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/KXGlaj2UbIxryqwH-BFCNxfbx-4.roa Signing time: Mon 26 Aug 2024 05:16:38 +0000 ROA not before: Mon 26 Aug 2024 05:16:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 210.63.192.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4257 (0x10a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2971A56A3D946C8C6BCAAC07F811423717DBC7EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:70:50:7c:e0:4e:80:df:db:bc:f3:07:2f:9c: 34:af:e5:b2:4d:fb:72:a0:21:ca:34:8b:4a:c6:0a: 13:db:a4:ab:4d:8f:e5:44:9c:33:65:c2:45:6e:2e: 91:4c:51:b9:7e:fb:14:80:c1:bc:04:db:4c:9a:b4: cf:3b:5a:21:0a:18:70:c1:62:34:b5:cd:e0:20:ed: aa:fa:35:0d:e8:4c:ec:b2:99:65:4f:24:3f:da:26: ed:93:61:42:a5:4c:96:cb:c0:3d:03:e6:47:22:3d: 7f:bd:1d:d6:e8:a0:14:b5:09:ce:be:67:88:02:df: 98:73:a2:50:a7:22:b7:c7:5b:56:99:6a:80:24:93: 61:5e:a3:c9:11:8f:a1:fd:22:36:78:40:41:e7:eb: a1:2a:97:31:3f:2b:17:03:45:f3:11:73:ed:6f:01: f0:05:4e:f4:3f:c7:20:f0:e0:37:b9:39:0c:10:ca: fa:47:83:f9:3d:89:30:44:7e:e2:d2:5a:9e:92:64: 1b:67:3c:e4:81:f2:ea:08:7d:95:94:c9:b1:99:ba: b1:67:59:bb:05:43:c5:ff:7e:c5:47:87:b3:2a:10: 26:aa:bb:7a:71:bb:52:24:52:36:09:bb:3e:dd:1e: a8:aa:9c:15:9d:05:78:4e:a3:4c:26:da:ce:cd:b3: d0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:71:A5:6A:3D:94:6C:8C:6B:CA:AC:07:F8:11:42:37:17:DB:C7:EE X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/KXGlaj2UbIxryqwH-BFCNxfbx-4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.192.0/21 Signature Algorithm: sha256WithRSAEncryption 95:e4:4d:ce:55:90:5f:58:ae:c3:1f:5e:02:f2:5c:d6:5e:b5: 62:9e:a1:da:23:83:a8:88:26:ee:55:54:f8:ec:49:b4:64:eb: 43:1f:9b:00:61:56:21:99:0c:ea:53:fa:f3:ba:6f:50:b8:6d: 74:2a:da:22:ec:9c:28:c2:f6:f6:04:84:07:e5:5e:f6:4a:7e: 0c:3b:ed:a2:e0:44:f5:a4:3a:85:f5:ba:9f:33:90:f2:0f:d0: ee:b7:e0:c3:2c:80:fb:c4:37:61:c9:f2:92:60:b0:39:94:e6: a8:b0:ce:09:c2:ec:0e:ca:b6:a4:44:6a:d0:e6:6d:7a:e2:3d: 0f:99:0f:ff:24:7c:3e:6c:5e:02:d5:5a:a5:46:63:f3:f0:9f: f2:83:c9:17:ac:97:a4:70:29:da:c7:19:69:ed:fe:d6:3d:c4: a7:ad:f7:5a:1a:ee:03:93:ce:4b:59:c0:7d:4b:97:23:b3:42: 18:5b:d7:95:30:3d:f8:7b:0d:78:ee:9a:bb:e6:66:af:ca:eb: 00:07:9a:97:a3:e3:b4:8f:8a:2d:4c:45:cb:27:be:93:b9:78: 89:9e:00:0d:50:f0:5a:0f:2e:4b:2b:16:0b:c2:3b:ad:3c:6e: 57:dc:49:f2:62:94:75:c4:2c:5f:c4:75:5c:88:78:c4:60:20: 28:c7:c4:1f -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5NzFBNTZBM0Q5NDZD OEM2QkNBQUMwN0Y4MTE0MjM3MTdEQkM3RUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWcFB84E6A39u88wcvnDSv5bJN+3KgIco0i0rGChPbpKtNj+VE nDNlwkVuLpFMUbl++xSAwbwE20yatM87WiEKGHDBYjS1zeAg7ar6NQ3oTOyymWVP JD/aJu2TYUKlTJbLwD0D5kciPX+9HdbooBS1Cc6+Z4gC35hzolCnIrfHW1aZaoAk k2Feo8kRj6H9IjZ4QEHn66EqlzE/KxcDRfMRc+1vAfAFTvQ/xyDw4De5OQwQyvpH g/k9iTBEfuLSWp6SZBtnPOSB8uoIfZWUybGZurFnWbsFQ8X/fsVHh7MqECaqu3px u1IkUjYJuz7dHqiqnBWdBXhOo0wm2s7Ns9DVAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUKXGlaj2UbIxryqwH+BFCNxfbx+4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0tYR2xhajJVYkl4cnlxd0gtQkZDTnhm YngtNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSP8AwDQYJ KoZIhvcNAQELBQADggEBAJXkTc5VkF9YrsMfXgLyXNZetWKeodojg6iIJu5VVPjs SbRk60MfmwBhViGZDOpT+vO6b1C4bXQq2iLsnCjC9vYEhAflXvZKfgw77aLgRPWk OoX1up8zkPIP0O634MMsgPvEN2HJ8pJgsDmU5qiwzgnC7A7KtqREatDmbXriPQ+Z D/8kfD5sXgLVWqVGY/Pwn/KDyResl6RwKdrHGWnt/tY9xKet91oa7gOTzktZwH1L lyOzQhhb15UwPfh7DXjumrvmZq/K6wAHmpej47SPii1MRcsnvpO5eImeAA1Q8FoP LksrFgvCO608blfcSfJilHXELF/EdVyIeMRgICjHxB8= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org