$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_9o6buutOGvk4ol9i22v8FB0p28.roa File: _9o6buutOGvk4ol9i22v8FB0p28.roa (raw, json) Hash identifier: yI1tHE/SbAYpTISvUaq1Ht2Unn6y0ORAMqcRrdTO4TE= Subject key identifier: FF:DA:3A:6E:EB:AD:38:6B:E4:E2:89:7D:8B:6D:AF:F0:50:74:A7:6F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1024 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_9o6buutOGvk4ol9i22v8FB0p28.roa Signing time: Mon 26 Aug 2024 05:16:07 +0000 ROA not before: Mon 26 Aug 2024 05:16:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 203.79.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4132 (0x1024) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FFDA3A6EEBAD386BE4E2897D8B6DAFF05074A76F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:18:02:b2:da:da:e7:f5:76:4d:36:a1:dd:10: e5:55:04:f6:b6:45:96:9c:25:dc:5f:8f:ce:41:09: e8:f2:2d:00:e6:3b:d8:f5:e7:d1:d5:01:9b:a1:20: 15:be:f7:a6:f9:23:58:10:34:f2:d6:c8:db:bc:0d: 50:0c:c6:54:e1:6c:9f:80:86:9c:95:da:93:48:ad: 7d:75:0f:2f:df:5a:03:a7:8f:0b:8a:69:a1:94:57: 1f:cc:41:64:4c:b2:f0:4f:e8:e0:1b:5b:f9:55:08: 1b:d1:51:b0:fa:70:0a:87:66:64:6f:65:b9:6a:51: bd:47:7d:1f:23:a2:71:95:f7:5c:80:94:6a:a3:93: be:07:2b:24:a7:8c:1a:4f:29:e1:ac:b8:a2:cb:de: f5:b2:97:8b:17:dd:3b:77:74:3c:03:f6:50:83:e3: b4:ab:8c:1c:c3:42:46:9d:c3:06:ed:32:1c:03:3f: e6:c6:d5:8f:67:0f:75:df:8a:ec:f5:a4:70:9c:71: fe:34:0c:0b:90:7c:b6:6a:73:1f:e8:d0:f6:9a:e4: 6f:f0:dc:de:1a:e4:8c:bd:69:8d:d5:08:6c:c1:68: 72:cd:62:70:bf:eb:a4:46:42:39:9b:23:e8:99:0d: 1c:9d:32:1a:b6:40:93:61:bb:0e:01:fe:e2:ff:74: c3:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:DA:3A:6E:EB:AD:38:6B:E4:E2:89:7D:8B:6D:AF:F0:50:74:A7:6F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_9o6buutOGvk4ol9i22v8FB0p28.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.235.0/24 Signature Algorithm: sha256WithRSAEncryption a7:69:55:56:3e:9a:d7:f3:3e:97:24:d6:07:ab:28:f9:44:fa: 9a:5c:0a:75:0d:f0:a4:da:dd:10:ac:59:ac:7e:62:7d:33:86: c8:9a:32:1a:e0:3e:97:44:42:c0:47:e7:19:a3:ef:84:17:2b: e0:92:2e:0e:b6:1f:7a:71:ec:51:50:82:a2:b0:ab:58:36:d6: fa:03:d4:a7:94:17:90:46:57:2f:05:4f:3b:89:0d:c0:2d:bf: e2:f3:7d:72:92:4b:f9:04:e3:0e:09:48:55:5f:e3:30:81:9d: 23:4d:70:dd:d9:e6:df:1b:ca:89:51:08:d4:b9:8f:a8:92:6c: a7:ad:76:3b:6e:bd:be:e9:8e:32:ab:d4:8c:39:f1:f5:8f:be: 25:a3:92:2f:8e:63:40:3a:07:e0:3e:08:4c:4d:f8:2d:89:37: e2:26:ee:6b:61:91:60:86:44:3f:15:4c:5f:8d:f6:ad:29:7f: 43:1f:a3:56:4f:9f:f4:37:d6:a1:35:ac:a0:af:2f:d8:e1:d0: 0f:ea:4e:df:76:50:08:fb:63:76:1b:57:0a:08:8d:1d:e5:06: d1:54:f6:1c:c5:c7:ed:f8:2e:60:89:7c:ed:aa:f8:96:19:4e: 7d:26:fe:0c:b7:0a:5c:00:81:b0:b0:af:32:1d:8e:48:7f:ec: 3e:b8:30:bc -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICECQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZGREEzQTZFRUJBRDM4 NkJFNEUyODk3RDhCNkRBRkYwNTA3NEE3NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiGAKy2trn9XZNNqHdEOVVBPa2RZacJdxfj85BCejyLQDmO9j1 59HVAZuhIBW+96b5I1gQNPLWyNu8DVAMxlThbJ+AhpyV2pNIrX11Dy/fWgOnjwuK aaGUVx/MQWRMsvBP6OAbW/lVCBvRUbD6cAqHZmRvZblqUb1HfR8jonGV91yAlGqj k74HKySnjBpPKeGsuKLL3vWyl4sX3Tt3dDwD9lCD47SrjBzDQkadwwbtMhwDP+bG 1Y9nD3Xfiuz1pHCccf40DAuQfLZqcx/o0Paa5G/w3N4a5Iy9aY3VCGzBaHLNYnC/ 66RGQjmbI+iZDRydMhq2QJNhuw4B/uL/dMPxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU/9o6buutOGvk4ol9i22v8FB0p28wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL185bzZidXV0T0d2azRvbDlpMjJ2OEZC MHAyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADLT+swDQYJ KoZIhvcNAQELBQADggEBAKdpVVY+mtfzPpck1gerKPlE+ppcCnUN8KTa3RCsWax+ Yn0zhsiaMhrgPpdEQsBH5xmj74QXK+CSLg62H3px7FFQgqKwq1g21voD1KeUF5BG Vy8FTzuJDcAtv+LzfXKSS/kE4w4JSFVf4zCBnSNNcN3Z5t8byolRCNS5j6iSbKet djtuvb7pjjKr1Iw58fWPviWjki+OY0A6B+A+CExN+C2JN+Im7mthkWCGRD8VTF+N 9q0pf0Mfo1ZPn/Q31qE1rKCvL9jh0A/qTt92UAj7Y3YbVwoIjR3lBtFU9hzFx+34 LmCJfO2q+JYZTn0m/gy3ClwAgbCwrzIdjkh/7D64MLw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org