$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/YYuEPkHCTUaakU7HB1ztR3mNY-Q.roa File: YYuEPkHCTUaakU7HB1ztR3mNY-Q.roa (raw, json) Hash identifier: 5qsmyO/kdzahPKhAHRgos4rXjjEBxB0yrASx0JtEr6Q= Subject key identifier: 61:8B:84:3E:41:C2:4D:46:9A:91:4E:C7:07:5C:ED:47:79:8D:63:E4 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FD4 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YYuEPkHCTUaakU7HB1ztR3mNY-Q.roa Signing time: Mon 26 Aug 2024 05:15:47 +0000 ROA not before: Mon 26 Aug 2024 05:15:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131591 IP address blocks: 101.136.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4052 (0xfd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=618B843E41C24D469A914EC7075CED47798D63E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:69:c5:4f:13:a1:b6:a2:af:5f:66:9f:ed: 60:aa:93:8e:28:a3:79:29:7e:de:50:9a:12:b2:47: f4:77:e9:9b:71:9b:17:4d:7b:4b:56:0e:cf:f6:17: 4b:ce:52:de:ef:25:a6:0e:3b:36:89:8a:ce:4d:1c: a7:88:42:00:e8:a5:5e:a6:a3:8b:5c:5b:a3:a8:e4: f4:e9:eb:c3:c6:1a:bd:aa:a5:47:18:d2:0d:91:b3: e4:25:63:e0:96:81:95:e5:8c:e3:e4:ba:ef:bd:ba: bc:0e:8e:fe:fc:1b:6a:ef:83:3c:e8:83:92:ba:4e: 4c:e9:fc:25:6f:69:f3:06:35:df:6e:9e:e1:bc:b7: 85:aa:1d:19:7c:37:e4:4c:e2:3d:c5:91:c4:f3:70: f9:b2:dd:44:4e:bc:a4:12:c8:2a:2e:f7:08:29:5e: 99:4d:ac:33:e4:89:5f:9c:d1:89:3b:a7:30:5b:6f: 63:9e:d3:04:9c:82:11:d4:24:b2:0e:e6:84:0d:a6: 28:f5:29:84:61:94:38:58:a4:ff:ef:d6:b7:7c:51: 70:27:27:b0:da:49:ca:2f:d4:1a:ba:5c:71:ff:50: 2d:b0:db:ae:b6:f6:f7:2a:de:cc:8d:57:b4:20:c4: 5f:10:62:ab:e3:f6:c5:b4:1b:10:2d:6a:b6:eb:44: 01:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:8B:84:3E:41:C2:4D:46:9A:91:4E:C7:07:5C:ED:47:79:8D:63:E4 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/YYuEPkHCTUaakU7HB1ztR3mNY-Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.136.0.0/14 Signature Algorithm: sha256WithRSAEncryption 2a:22:21:e4:0a:32:92:ba:87:f1:55:84:57:5a:b7:c9:c7:12: f5:9a:57:f5:b4:07:1e:83:7f:93:4c:4f:bd:89:d1:0d:88:56: 0e:33:4e:d0:89:44:95:47:ce:fe:7a:ae:db:91:cc:3c:7b:69: 57:c3:02:a6:85:1f:f7:1d:ad:01:b6:3d:ac:74:8c:03:6d:59: c9:8e:54:93:eb:df:94:ae:84:55:a3:58:46:70:23:b3:e8:79: 18:48:0a:96:a0:0f:e3:a8:04:98:ed:f3:15:18:38:37:b4:b8: 06:34:1b:17:e0:de:12:52:eb:be:e0:67:0f:e9:0d:ef:fb:c1: b2:50:f9:ab:dc:5c:77:eb:94:d3:3b:ae:47:d2:35:82:a5:ed: 11:78:b7:91:e8:e5:6f:a9:3c:eb:13:41:46:da:78:a5:2d:d8: ec:30:e1:e1:f3:4c:ec:95:e1:35:a8:00:1f:1d:f6:01:c7:c8: 8c:ef:f0:cb:9f:60:b9:e6:bf:84:cd:86:43:6e:0f:db:43:2a: 33:34:69:99:2e:0b:7c:7e:4f:83:bd:64:74:f1:b4:2f:7c:96: 72:09:49:a6:22:b1:96:cf:58:c6:ca:7c:77:45:57:bf:34:91: c0:f2:da:3b:f9:af:f6:d8:c4:2c:fc:72:dc:56:9e:df:1d:b0: 24:34:68:c8 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICD9QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYxOEI4NDNFNDFDMjRE NDY5QTkxNEVDNzA3NUNFRDQ3Nzk4RDYzRTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/zWnFTxOhtqKvX2af7WCqk44oo3kpft5QmhKyR/R36ZtxmxdN e0tWDs/2F0vOUt7vJaYOOzaJis5NHKeIQgDopV6mo4tcW6Oo5PTp68PGGr2qpUcY 0g2Rs+QlY+CWgZXljOPkuu+9urwOjv78G2rvgzzog5K6Tkzp/CVvafMGNd9unuG8 t4WqHRl8N+RM4j3FkcTzcPmy3UROvKQSyCou9wgpXplNrDPkiV+c0Yk7pzBbb2Oe 0wScghHUJLIO5oQNpij1KYRhlDhYpP/v1rd8UXAnJ7DaScov1Bq6XHH/UC2w2662 9vcq3syNV7QgxF8QYqvj9sW0GxAtarbrRAElAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUYYuEPkHCTUaakU7HB1ztR3mNY+QwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1lZdUVQa0hDVFVhYWtVN0hCMXp0UjNt TlktUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwJliDANBgkq hkiG9w0BAQsFAAOCAQEAKiIh5AoykrqH8VWEV1q3yccS9ZpX9bQHHoN/k0xPvYnR DYhWDjNO0IlElUfO/nqu25HMPHtpV8MCpoUf9x2tAbY9rHSMA21ZyY5Uk+vflK6E VaNYRnAjs+h5GEgKlqAP46gEmO3zFRg4N7S4BjQbF+DeElLrvuBnD+kN7/vBslD5 q9xcd+uU0zuuR9I1gqXtEXi3kejlb6k86xNBRtp4pS3Y7DDh4fNM7JXhNagAHx32 AcfIjO/wy59guea/hM2GQ24P20MqMzRpmS4LfH5Pg71kdPG0L3yWcglJpiKxls9Y xsp8d0VXvzSRwPLaO/mv9tjELPxy3Fae3x2wJDRoyA== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:05 2024 by rpki-client on console-ams.rpki-client.org