$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Xroy2NVB8Vs5shLj3JdofMMSq-8.roa File: Xroy2NVB8Vs5shLj3JdofMMSq-8.roa (raw, json) Hash identifier: yRrOaf7yMAXzh/2WSyc8ELDgXdofcZ5GA7baLl8P7BM= Subject key identifier: 5E:BA:32:D8:D5:41:F1:5B:39:B2:12:E3:DC:97:68:7C:C3:12:AB:EF Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1042 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Xroy2NVB8Vs5shLj3JdofMMSq-8.roa Signing time: Mon 26 Aug 2024 05:16:13 +0000 ROA not before: Mon 26 Aug 2024 05:16:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 210.58.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4162 (0x1042) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5EBA32D8D541F15B39B212E3DC97687CC312ABEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:53:33:12:30:83:1e:b7:5f:7d:69:e9:cd:bc: 1c:75:5b:0c:05:0e:bb:2b:fb:6d:68:b9:85:10:1e: 36:cf:e8:24:7e:d0:c9:46:bd:4a:41:27:ff:eb:ca: c3:6a:f1:e4:db:7a:85:20:c4:76:fb:51:df:13:9a: 75:08:68:6f:61:73:a0:e5:66:a2:9d:08:c2:c9:be: 2e:a7:cb:89:0f:c5:24:fe:50:76:ea:09:c7:15:e6: 04:2a:42:80:50:68:8a:5a:51:a5:5f:20:eb:27:90: 5b:76:50:9c:3a:44:13:7c:ba:66:ef:95:af:d5:c6: 8c:1c:a9:95:1d:e0:eb:6d:44:6b:d5:3b:47:4f:c9: 04:f6:dd:1e:37:89:8f:bc:c4:f3:9d:bf:b7:f1:20: 1b:84:3c:d7:05:21:38:8e:8a:1f:9e:45:63:a3:7a: 9c:06:44:c4:70:75:c5:45:e2:a7:ad:7e:9a:41:db: f6:82:d2:06:ab:a7:ef:c2:05:91:62:30:1b:fe:21: 80:ee:63:01:79:9b:9a:c6:f7:3a:1e:63:29:7c:c3: 8d:25:e3:c2:ff:b3:f5:a2:a9:7f:75:72:a2:d2:88: dc:d0:b0:60:2f:48:75:a8:e2:e3:a8:ad:db:a6:0a: 26:7f:4e:52:42:6e:a4:3b:10:c7:f8:23:e3:d3:87: ad:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BA:32:D8:D5:41:F1:5B:39:B2:12:E3:DC:97:68:7C:C3:12:AB:EF X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Xroy2NVB8Vs5shLj3JdofMMSq-8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.58.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:70:9c:a5:b1:f1:75:d8:b5:c5:82:82:1e:ea:b0:0f:4e:63: 03:4f:35:51:f9:ce:60:0a:3d:ab:31:73:45:b7:ee:d8:d9:79: a3:f1:93:aa:0b:cf:db:60:8d:87:df:15:66:67:48:e3:da:d9: 53:65:a7:78:95:fd:74:18:48:29:e0:35:9e:38:22:6b:9c:22: 8a:23:fb:17:7b:18:5c:45:45:0f:c4:ae:10:3e:da:28:51:47: 5c:f2:f9:9e:2f:94:6f:b3:39:36:61:0e:49:7b:93:9e:7e:83: 75:24:49:1d:bd:74:ea:cd:1e:f8:5e:86:f6:a3:84:6c:10:e0: 72:68:9b:62:7a:21:c6:84:15:5b:e0:60:19:04:32:ae:a4:52: 88:3f:b1:83:94:59:0a:2e:52:85:c4:28:b4:ce:9c:a5:df:2f: 79:32:a4:04:f1:eb:d6:96:bb:28:e6:ef:9d:ba:4d:39:ca:ca: 37:7e:be:f9:15:c6:f4:72:8f:80:68:15:46:71:f7:c1:29:ff: 9a:fa:03:41:bf:3b:7f:b1:0e:65:64:10:b1:11:eb:12:41:5e: 79:86:4c:63:8c:a9:15:78:94:2f:4c:04:dd:59:9e:30:b5:9a: 29:f9:ab:b3:2b:65:fd:96:f6:eb:f7:f8:98:d8:5c:fc:ba:b1: 7e:6d:ac:a0 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEEIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFQkEzMkQ4RDU0MUYx NUIzOUIyMTJFM0RDOTc2ODdDQzMxMkFCRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbUzMSMIMet199aenNvBx1WwwFDrsr+21ouYUQHjbP6CR+0MlG vUpBJ//rysNq8eTbeoUgxHb7Ud8TmnUIaG9hc6DlZqKdCMLJvi6ny4kPxST+UHbq CccV5gQqQoBQaIpaUaVfIOsnkFt2UJw6RBN8umbvla/VxowcqZUd4OttRGvVO0dP yQT23R43iY+8xPOdv7fxIBuEPNcFITiOih+eRWOjepwGRMRwdcVF4qetfppB2/aC 0garp+/CBZFiMBv+IYDuYwF5m5rG9zoeYyl8w40l48L/s/WiqX91cqLSiNzQsGAv SHWo4uOordumCiZ/TlJCbqQ7EMf4I+PTh61TAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUXroy2NVB8Vs5shLj3JdofMMSq+8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1hyb3kyTlZCOFZzNXNoTGozSmRvZk1N U3EtOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDSOjANBgkq hkiG9w0BAQsFAAOCAQEAOXCcpbHxddi1xYKCHuqwD05jA081UfnOYAo9qzFzRbfu 2Nl5o/GTqgvP22CNh98VZmdI49rZU2WneJX9dBhIKeA1njgia5wiiiP7F3sYXEVF D8SuED7aKFFHXPL5ni+Ub7M5NmEOSXuTnn6DdSRJHb106s0e+F6G9qOEbBDgcmib YnohxoQVW+BgGQQyrqRSiD+xg5RZCi5ShcQotM6cpd8veTKkBPHr1pa7KObvnbpN OcrKN36++RXG9HKPgGgVRnH3wSn/mvoDQb87f7EOZWQQsRHrEkFeeYZMY4ypFXiU L0wE3VmeMLWaKfmrsytl/Zb26/f4mNhc/Lqxfm2soA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org