$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/L9LR6IWu8DfniGUdvEyy4167PEo.roa File: L9LR6IWu8DfniGUdvEyy4167PEo.roa (raw, json) Hash identifier: awbVjyaNiPTeP9Wg1jyrbEMYxoNOYB/2+LG2jP+mGe0= Subject key identifier: 2F:D2:D1:E8:85:AE:F0:37:E7:88:65:1D:BC:4C:B2:E3:5E:BB:3C:4A Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FF1 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/L9LR6IWu8DfniGUdvEyy4167PEo.roa Signing time: Mon 26 Aug 2024 05:15:54 +0000 ROA not before: Mon 26 Aug 2024 05:15:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.63.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4081 (0xff1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2FD2D1E885AEF037E788651DBC4CB2E35EBB3C4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c1:42:8f:9b:b2:af:93:5f:83:37:d0:8a:d6: d1:9d:5c:b0:d8:3b:26:e2:af:05:b8:b7:41:2a:75: a2:99:2a:b5:3e:e8:4a:24:57:8e:d3:20:5e:de:30: a5:d6:68:5c:d1:31:29:7a:61:bb:7a:e9:36:66:b3: 36:c0:46:ed:dd:02:92:fa:00:c6:64:8e:3c:83:00: 77:db:03:80:81:cd:ca:4d:19:cf:be:a4:a7:07:90: 54:e8:1f:02:83:93:d3:fd:79:29:82:92:33:27:55: cc:f3:81:ba:7f:b0:b8:ba:bf:b6:6b:1f:79:d2:88: 4a:79:32:f6:df:0b:ab:39:23:4f:cb:af:9e:be:ed: 8d:d3:13:71:1d:44:70:bc:d7:5d:d7:3b:df:0a:07: db:23:84:e3:3a:19:51:c9:ed:28:ba:aa:34:15:a2: f8:78:f3:c1:ca:90:11:e9:a6:8a:83:97:eb:b9:28: 85:ac:9e:dd:ac:52:50:30:36:3b:9d:6f:8c:3a:21: 98:da:9e:2b:29:5f:5c:f7:75:a7:08:8c:c7:6c:82: 29:f6:af:16:08:bb:f4:88:dc:39:8c:9f:b5:7f:26: 0b:97:75:5b:9e:2f:7b:e7:0f:43:eb:ce:b1:87:9b: 88:15:34:37:9f:07:cb:50:82:b8:a0:0e:53:7d:bc: ef:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:D2:D1:E8:85:AE:F0:37:E7:88:65:1D:BC:4C:B2:E3:5E:BB:3C:4A X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/L9LR6IWu8DfniGUdvEyy4167PEo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.232.0/22 Signature Algorithm: sha256WithRSAEncryption 92:d2:ba:68:5b:c1:27:7e:ee:07:1b:62:3d:8d:5e:7c:dd:82: 27:70:53:9f:40:06:87:66:65:89:72:1a:1d:19:1a:7d:be:7d: 53:39:36:ed:97:14:83:af:ea:21:1a:0c:ea:05:58:3d:e2:9a: 4e:95:20:51:14:49:a9:10:28:19:6d:7c:05:cf:87:50:40:32: 51:16:ea:b6:2a:d2:cb:0f:5d:30:b3:0c:67:e8:96:12:fb:ab: 88:26:a9:06:a7:99:0f:12:98:b4:32:4c:da:85:ba:cf:f8:c6: 1e:fb:fd:7d:cf:05:10:17:93:43:63:5f:fd:ff:bc:6e:db:4f: 4b:02:13:c2:87:32:ae:8b:95:57:67:1c:82:c1:7b:9b:ef:2d: f2:65:98:b2:0e:d0:8b:b9:84:a6:c8:b8:6e:52:87:ca:5d:ca: 13:a7:5d:a6:24:bc:94:59:10:8d:ca:b7:cc:48:7c:c8:1b:46: 0c:4c:ac:6c:43:6d:1d:73:81:aa:4a:1e:a2:5d:e3:60:51:97: 65:df:1a:e7:19:99:62:65:b1:cd:6d:c7:85:f3:ab:89:4e:b4: 56:ff:46:06:7a:73:8e:e8:0a:7b:39:21:1b:3b:d4:3f:fb:bb: 63:00:2f:aa:29:24:b1:fb:ba:30:6e:e9:8c:b4:2d:82:0e:42: 87:e0:f6:98 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD/EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJGRDJEMUU4ODVBRUYw MzdFNzg4NjUxREJDNENCMkUzNUVCQjNDNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbwUKPm7Kvk1+DN9CK1tGdXLDYOybirwW4t0EqdaKZKrU+6Eok V47TIF7eMKXWaFzRMSl6Ybt66TZmszbARu3dApL6AMZkjjyDAHfbA4CBzcpNGc++ pKcHkFToHwKDk9P9eSmCkjMnVczzgbp/sLi6v7ZrH3nSiEp5MvbfC6s5I0/Lr56+ 7Y3TE3EdRHC8113XO98KB9sjhOM6GVHJ7Si6qjQVovh488HKkBHppoqDl+u5KIWs nt2sUlAwNjudb4w6IZjanispX1z3dacIjMdsgin2rxYIu/SI3DmMn7V/JguXdVue L3vnD0PrzrGHm4gVNDefB8tQgrigDlN9vO83AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUL9LR6IWu8DfniGUdvEyy4167PEowHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0w5TFI2SVd1OERmbmlHVWR2RXl5NDE2 N1BFby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALSP+gwDQYJ KoZIhvcNAQELBQADggEBAJLSumhbwSd+7gcbYj2NXnzdgidwU59ABodmZYlyGh0Z Gn2+fVM5Nu2XFIOv6iEaDOoFWD3imk6VIFEUSakQKBltfAXPh1BAMlEW6rYq0ssP XTCzDGfolhL7q4gmqQanmQ8SmLQyTNqFus/4xh77/X3PBRAXk0NjX/3/vG7bT0sC E8KHMq6LlVdnHILBe5vvLfJlmLIO0Iu5hKbIuG5Sh8pdyhOnXaYkvJRZEI3Kt8xI fMgbRgxMrGxDbR1zgapKHqJd42BRl2XfGucZmWJlsc1tx4Xzq4lOtFb/RgZ6c47o Cns5IRs71D/7u2MAL6opJLH7ujBu6Yy0LYIOQofg9pg= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org