$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/NlUMQxsJbx7SNnuLwL7Hcp2OlFg.roa File: NlUMQxsJbx7SNnuLwL7Hcp2OlFg.roa (raw, json) Hash identifier: gFcYS3pAB3pFJRZXyrcrLaBNxUGRjuEhbOAGrneCSuk= Subject key identifier: 36:55:0C:43:1B:09:6F:1E:D2:36:7B:8B:C0:BE:C7:72:9D:8E:94:58 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10CE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NlUMQxsJbx7SNnuLwL7Hcp2OlFg.roa Signing time: Mon 26 Aug 2024 05:16:48 +0000 ROA not before: Mon 26 Aug 2024 05:16:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 2404::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4302 (0x10ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=36550C431B096F1ED2367B8BC0BEC7729D8E9458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3b:f6:d7:c8:d2:32:4f:f3:65:d4:f4:67:52: 43:4b:0b:a4:f3:dc:c2:17:f8:5b:6d:b6:6d:ba:51: ed:e1:55:88:d4:dc:56:0a:ab:47:1c:ca:8a:bb:f6: b6:87:d3:11:7e:62:67:6d:fa:7a:78:05:8f:65:22: 27:a8:f5:86:4f:02:43:de:65:9a:c3:e6:b8:e0:96: c0:a1:7e:50:76:5f:aa:0b:f1:2f:db:46:3d:73:21: 61:03:f4:57:32:7d:61:59:e0:8a:e4:08:42:cc:09: 3b:90:13:f0:bf:7a:e6:2d:29:1f:d6:4f:f5:5b:36: b5:bd:c6:e7:57:45:57:35:9c:60:e9:23:cd:c4:f2: 09:c1:c8:f8:2b:37:c7:48:36:cc:a7:a9:bc:c3:6b: 12:d5:92:ec:9d:e9:43:09:a4:e6:dd:11:e9:32:64: 97:5e:ce:21:12:c4:18:27:c2:61:5e:5a:92:54:4a: 6d:60:5a:cf:6e:0c:6a:f4:29:f6:e5:1e:bd:60:4a: 84:18:84:d6:49:9c:5d:12:f1:dc:0d:f9:35:e8:33: 03:93:01:57:43:a2:1d:83:6e:aa:41:90:51:fb:39: 07:d3:9d:37:fe:e4:47:d8:01:4f:0b:c5:31:23:94: fb:80:f6:7f:94:ea:9b:11:69:93:ae:d2:64:eb:11: 7c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:55:0C:43:1B:09:6F:1E:D2:36:7B:8B:C0:BE:C7:72:9D:8E:94:58 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/NlUMQxsJbx7SNnuLwL7Hcp2OlFg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404::/36 Signature Algorithm: sha256WithRSAEncryption 88:2a:02:b5:16:c1:51:42:71:7e:53:50:99:a0:89:0e:d6:e7: a3:95:ce:37:cf:5a:25:75:1a:85:87:67:36:41:2a:00:fc:69: 49:c0:f3:8b:fc:a8:bd:57:32:a9:dc:38:4d:cb:04:db:66:a0: e9:d5:8b:56:b1:73:6c:7d:ac:94:81:7d:e5:35:0f:e3:24:22: 95:0e:d8:fc:3d:a7:cd:bd:99:a5:94:b2:72:f8:00:30:5b:c5: 99:8d:19:8a:bb:bc:a6:86:c2:ca:2e:a1:ed:8b:4f:6b:06:c0: 23:3e:9f:dc:75:92:70:69:cb:1a:a6:52:0d:ee:5c:b0:67:ea: 8b:c2:bf:b6:3d:ce:7e:b7:9d:26:03:e8:f3:71:6b:63:5c:06: f8:95:60:b0:77:51:07:f1:6e:78:df:b1:75:64:06:4b:5e:d5: 31:70:b5:3a:09:c7:77:9d:ab:67:42:8c:e2:20:c5:0e:16:a3: 5f:e5:81:53:32:d2:a6:68:57:20:b0:f9:35:02:f0:7c:33:0e: e4:30:d7:67:da:92:77:ca:a3:84:f8:ba:e0:d2:76:2f:dc:f5: a8:4f:5e:d1:c4:5c:99:92:e3:c5:f3:b2:9e:2e:4c:f4:5d:0d: 3e:aa:be:ff:97:d4:3f:c3:86:1b:0c:fe:fa:b8:f8:49:c6:95: 51:47:4d:ad -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEM4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2NTUwQzQzMUIwOTZG MUVEMjM2N0I4QkMwQkVDNzcyOUQ4RTk0NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0O/bXyNIyT/Nl1PRnUkNLC6Tz3MIX+Ftttm26Ue3hVYjU3FYK q0ccyoq79raH0xF+Ymdt+np4BY9lIieo9YZPAkPeZZrD5rjglsChflB2X6oL8S/b Rj1zIWED9FcyfWFZ4IrkCELMCTuQE/C/euYtKR/WT/VbNrW9xudXRVc1nGDpI83E 8gnByPgrN8dINsynqbzDaxLVkuyd6UMJpObdEekyZJdeziESxBgnwmFeWpJUSm1g Ws9uDGr0KfblHr1gSoQYhNZJnF0S8dwN+TXoMwOTAVdDoh2DbqpBkFH7OQfTnTf+ 5EfYAU8LxTEjlPuA9n+U6psRaZOu0mTrEXylAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUNlUMQxsJbx7SNnuLwL7Hcp2OlFgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL05sVU1ReHNKYng3U05udUx3TDdIY3Ay T2xGZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAADAN BgkqhkiG9w0BAQsFAAOCAQEAiCoCtRbBUUJxflNQmaCJDtbno5XON89aJXUahYdn NkEqAPxpScDzi/yovVcyqdw4TcsE22ag6dWLVrFzbH2slIF95TUP4yQilQ7Y/D2n zb2ZpZSycvgAMFvFmY0Ziru8pobCyi6h7YtPawbAIz6f3HWScGnLGqZSDe5csGfq i8K/tj3OfredJgPo83FrY1wG+JVgsHdRB/FueN+xdWQGS17VMXC1OgnHd52rZ0KM 4iDFDhajX+WBUzLSpmhXILD5NQLwfDMO5DDXZ9qSd8qjhPi64NJ2L9z1qE9e0cRc mZLjxfOyni5M9F0NPqq+/5fUP8OGGwz++rj4ScaVUUdNrQ== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:05 2024 by rpki-client on console-ams.rpki-client.org