$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/XAYRcHnNUmdmML6-vjfAT8ORlsc.roa File: XAYRcHnNUmdmML6-vjfAT8ORlsc.roa (raw, json) Hash identifier: sdNaM3oiYQ58l/hP2mLp2t4lnQ2rFY7LmkG43Tk8Lzw= Subject key identifier: 5C:06:11:70:79:CD:52:67:66:30:BE:BE:BE:37:C0:4F:C3:91:96:C7 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10AB Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XAYRcHnNUmdmML6-vjfAT8ORlsc.roa Signing time: Mon 26 Aug 2024 05:16:40 +0000 ROA not before: Mon 26 Aug 2024 05:16:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 2404:0:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4267 (0x10ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5C06117079CD52676630BEBEBE37C04FC39196C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8d:cc:40:20:3c:64:22:0b:c7:8a:a6:bc:62: ed:61:a1:11:05:88:04:cb:d1:43:44:33:5a:f9:07: ce:91:5e:01:b7:18:07:aa:6d:13:c0:f3:7d:38:05: 2b:50:23:5b:21:42:a2:5f:20:31:28:ac:01:3f:86: 17:ab:94:1b:d6:63:d5:bb:18:e7:6a:e0:04:95:69: f5:c2:dc:bf:83:33:87:61:8d:16:07:02:d1:31:8a: 99:7d:40:ec:f5:cb:9d:6b:7e:3a:1f:8b:cc:34:9a: 45:a5:ef:c3:b1:61:89:c0:a4:7c:33:35:5f:d3:32: 25:47:69:fd:4f:cb:19:46:22:db:af:56:8f:d9:42: ce:f4:8d:bf:91:c8:65:fb:15:7f:a5:f8:a6:89:39: 61:5e:e6:80:05:63:61:eb:3a:65:d8:4a:f2:64:f2: 4c:cb:e8:c0:6c:c4:86:82:f2:97:58:f4:5b:c2:72: 93:8a:c3:e7:49:2a:8d:ca:d8:1e:25:06:04:46:d7: 58:e7:ca:19:6d:e9:b9:38:9c:68:9b:9a:40:c4:be: 83:ca:54:39:85:42:3b:2a:24:c7:c0:d3:96:cb:8b: 63:af:cf:6b:7a:ab:b2:90:5e:ce:fc:3c:83:84:b5: fe:06:b4:28:cc:c7:ee:bb:e7:13:13:93:1d:cf:eb: 2d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:06:11:70:79:CD:52:67:66:30:BE:BE:BE:37:C0:4F:C3:91:96:C7 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/XAYRcHnNUmdmML6-vjfAT8ORlsc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:4000::/36 Signature Algorithm: sha256WithRSAEncryption 65:3a:28:54:5f:1e:e9:03:6c:43:48:20:ea:68:5f:c0:37:0d: 4b:1a:74:d5:b0:5d:0a:77:07:4d:66:39:e9:f7:13:8a:40:ea: 35:d2:4c:7a:7d:5b:5a:6f:85:67:23:5b:e6:bb:df:eb:3a:32: fa:95:64:0b:0f:1a:68:7b:c6:62:68:36:dd:70:15:30:f4:1f: af:e9:53:41:98:4b:74:67:ae:c1:2a:a5:6d:ee:fa:d7:4b:68: 5f:97:98:74:16:5d:d7:c1:77:bd:e8:09:2a:f6:54:5d:9b:bb: 41:c0:6f:41:87:c1:37:b3:74:5b:d2:84:96:d7:75:1a:d8:6b: ab:a4:9d:ae:32:bf:8b:58:32:56:12:87:51:1f:13:a8:46:ea: 70:51:b3:a9:9b:5b:1d:6b:79:5a:97:9c:d9:ba:5a:cc:7b:70: 2e:99:0e:76:c3:22:20:31:47:11:40:dc:f7:ec:6d:2d:c7:e5: 3a:ea:42:ea:19:c4:22:d6:df:32:3c:d6:b5:bf:ff:dd:a1:a1: da:b6:6c:24:52:2e:0a:12:40:97:38:79:5a:c3:72:62:72:9e: 0f:fb:a8:15:52:82:f5:a2:ff:e5:b8:0e:fe:f8:37:0c:bc:85: 5d:92:02:7f:6b:7c:be:11:5f:b8:a5:0d:16:04:90:74:75:57: 8b:61:e5:18 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEKswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDMDYxMTcwNzlDRDUy Njc2NjMwQkVCRUJFMzdDMDRGQzM5MTk2QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFjcxAIDxkIgvHiqa8Yu1hoREFiATL0UNEM1r5B86RXgG3GAeq bRPA8304BStQI1shQqJfIDEorAE/hherlBvWY9W7GOdq4ASVafXC3L+DM4dhjRYH AtExipl9QOz1y51rfjofi8w0mkWl78OxYYnApHwzNV/TMiVHaf1PyxlGItuvVo/Z Qs70jb+RyGX7FX+l+KaJOWFe5oAFY2HrOmXYSvJk8kzL6MBsxIaC8pdY9FvCcpOK w+dJKo3K2B4lBgRG11jnyhlt6bk4nGibmkDEvoPKVDmFQjsqJMfA05bLi2Ovz2t6 q7KQXs78PIOEtf4GtCjMx+675xMTkx3P6y29AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUXAYRcHnNUmdmML6+vjfAT8ORlscwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1hBWVJjSG5OVW1kbU1MNi12amZBVDhP UmxzYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAQDAN BgkqhkiG9w0BAQsFAAOCAQEAZTooVF8e6QNsQ0gg6mhfwDcNSxp01bBdCncHTWY5 6fcTikDqNdJMen1bWm+FZyNb5rvf6zoy+pVkCw8aaHvGYmg23XAVMPQfr+lTQZhL dGeuwSqlbe7610toX5eYdBZd18F3vegJKvZUXZu7QcBvQYfBN7N0W9KEltd1Gthr q6SdrjK/i1gyVhKHUR8TqEbqcFGzqZtbHWt5Wpec2bpazHtwLpkOdsMiIDFHEUDc 9+xtLcflOupC6hnEItbfMjzWtb//3aGh2rZsJFIuChJAlzh5WsNyYnKeD/uoFVKC 9aL/5bgO/vg3DLyFXZICf2t8vhFfuKUNFgSQdHVXi2HlGA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org