$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/_lTp6TexKs3sE8WLskVf2_HB1yM.roa File: _lTp6TexKs3sE8WLskVf2_HB1yM.roa (raw, json) Hash identifier: Wi6HBTetduELJRF3onnN9qyBjOaHZuzVeHjs4SzxzQs= Subject key identifier: FE:54:E9:E9:37:B1:2A:CD:EC:13:C5:8B:B2:45:5F:DB:F1:C1:D7:23 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10BD Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_lTp6TexKs3sE8WLskVf2_HB1yM.roa Signing time: Mon 26 Aug 2024 05:16:45 +0000 ROA not before: Mon 26 Aug 2024 05:16:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.202.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4285 (0x10bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FE54E9E937B12ACDEC13C58BB2455FDBF1C1D723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7d:64:09:2a:e9:01:f7:33:a1:ef:9b:ef:8f: 39:52:99:bf:03:0f:53:1d:58:4d:2e:74:00:fb:c8: f7:3a:6e:ba:cd:d9:da:26:9a:00:4f:72:b0:23:51: 77:8b:da:f1:fd:d0:54:bd:fc:1c:c3:17:af:6b:d7: 06:90:9b:8e:28:0a:45:11:ce:e4:24:b5:09:d6:b0: d3:62:b1:58:20:fe:44:5d:6d:04:ca:07:14:74:fc: c5:23:79:c9:5e:34:0c:dd:fa:c6:b0:4b:a5:68:66: 4a:dc:af:15:a6:d5:6d:12:0d:22:3e:94:39:13:00: 4c:3e:32:04:52:45:c8:57:1b:ab:d6:99:51:22:b6: 27:b3:f2:b3:4f:65:36:45:41:d6:ec:36:a1:63:1a: 32:c0:77:e0:43:ba:ec:d3:67:a6:40:1f:6f:7c:c5: ed:1f:d5:d4:9f:d0:8f:5f:e2:66:53:bb:b5:18:77: 9d:81:96:fe:b7:bf:8d:23:6a:69:4b:2b:e6:c3:10: fe:78:53:ea:ad:11:bc:ef:8e:35:61:e9:bb:a9:ae: f3:06:c7:68:08:ff:dd:24:74:dc:c7:e1:62:5e:25: a1:24:4f:8b:27:b4:c1:4f:5a:b0:0c:0f:bd:3b:6f: 3d:e5:ea:35:14:15:50:c0:e6:b6:ab:7b:e8:e9:33: 98:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:54:E9:E9:37:B1:2A:CD:EC:13:C5:8B:B2:45:5F:DB:F1:C1:D7:23 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/_lTp6TexKs3sE8WLskVf2_HB1yM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.128.0/17 Signature Algorithm: sha256WithRSAEncryption 2f:c2:8b:78:d9:f5:18:9f:b9:84:f9:0f:95:58:0c:90:e0:af: 81:15:d8:67:8a:df:fb:77:36:e3:f0:2e:22:59:28:0c:8e:98: c9:ce:54:58:3f:50:c1:75:ea:b7:fc:4a:b1:f6:ed:35:b0:21: 5d:64:c1:ec:88:76:0f:e1:5d:53:78:e8:8a:67:a9:f8:f3:ce: d6:61:33:8e:01:f6:9e:09:60:89:b5:90:cb:80:f6:d3:e4:1d: 3a:a3:11:95:86:85:da:20:3a:06:bb:76:3a:0d:ef:78:c1:4c: 52:c5:6e:65:5f:1b:e1:2d:a0:86:df:4d:e7:82:c6:47:cd:7c: f0:91:8d:db:82:0f:cd:e9:9c:b0:1d:ec:b7:bf:07:25:1b:5a: 86:49:18:fc:81:89:36:87:1c:c0:f2:e6:7d:a0:d6:01:3f:d8: 60:df:e1:43:30:ef:4b:9f:cd:f2:f4:fb:82:21:c9:d0:b7:be: 53:e1:ab:55:d6:bc:1b:3f:7a:b8:94:f1:57:9b:cd:02:0c:04: a4:7d:15:95:26:cd:ec:a0:d8:21:a1:91:ae:b3:21:4d:3e:21: b8:98:bc:6b:c3:ad:d8:92:5b:be:3e:7e:5b:d5:93:ab:bc:e5: 05:48:ba:8f:ed:21:21:51:12:f1:05:6e:59:81:78:68:05:40: 35:91:b6:2d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEL0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZFNTRFOUU5MzdCMTJB Q0RFQzEzQzU4QkIyNDU1RkRCRjFDMUQ3MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgfWQJKukB9zOh75vvjzlSmb8DD1MdWE0udAD7yPc6brrN2dom mgBPcrAjUXeL2vH90FS9/BzDF69r1waQm44oCkURzuQktQnWsNNisVgg/kRdbQTK BxR0/MUjecleNAzd+sawS6VoZkrcrxWm1W0SDSI+lDkTAEw+MgRSRchXG6vWmVEi tiez8rNPZTZFQdbsNqFjGjLAd+BDuuzTZ6ZAH298xe0f1dSf0I9f4mZTu7UYd52B lv63v40jamlLK+bDEP54U+qtEbzvjjVh6buprvMGx2gI/90kdNzH4WJeJaEkT4sn tMFPWrAMD707bz3l6jUUFVDA5rare+jpM5iNAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU/lTp6TexKs3sE8WLskVf2/HB1yMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL19sVHA2VGV4S3Mzc0U4V0xza1ZmMl9I QjF5TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfSyoAwDQYJ KoZIhvcNAQELBQADggEBAC/Ci3jZ9RifuYT5D5VYDJDgr4EV2GeK3/t3NuPwLiJZ KAyOmMnOVFg/UMF16rf8SrH27TWwIV1kweyIdg/hXVN46IpnqfjzztZhM44B9p4J YIm1kMuA9tPkHTqjEZWGhdogOga7djoN73jBTFLFbmVfG+EtoIbfTeeCxkfNfPCR jduCD83pnLAd7Le/ByUbWoZJGPyBiTaHHMDy5n2g1gE/2GDf4UMw70ufzfL0+4Ih ydC3vlPhq1XWvBs/eriU8VebzQIMBKR9FZUmzeyg2CGhka6zIU0+IbiYvGvDrdiS W74+flvVk6u85QVIuo/tISFREvEFblmBeGgFQDWRti0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org