$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/aFPKLwYIW_GDHsOyUJRljaB6E1Y.roa File: aFPKLwYIW_GDHsOyUJRljaB6E1Y.roa (raw, json) Hash identifier: HD3ASO5KRLGKtpjDrMJ6UvCCPzsTbCY0kESoeJEJA0E= Subject key identifier: 68:53:CA:2F:06:08:5B:F1:83:1E:C3:B2:50:94:65:8D:A0:7A:13:56 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10A0 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aFPKLwYIW_GDHsOyUJRljaB6E1Y.roa Signing time: Mon 26 Aug 2024 05:16:37 +0000 ROA not before: Mon 26 Aug 2024 05:16:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 2404::/26 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4256 (0x10a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6853CA2F06085BF1831EC3B25094658DA07A1356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:54:1a:11:c0:44:12:b4:be:a2:ec:e7:38:a8: 83:92:99:31:be:ca:50:29:8a:9d:63:9f:61:e1:70: b0:dc:d2:d8:94:aa:2a:bf:bf:d6:e6:ab:3c:0b:91: 57:54:9d:f1:11:9d:9d:34:05:96:72:01:b3:85:0b: b6:a0:59:31:6e:d0:15:fd:b8:16:b2:5e:e7:75:7e: 43:8e:00:ea:f9:7a:80:f6:9f:ec:85:f7:e0:b5:b7: b5:19:c4:d2:9a:d4:81:5a:01:0d:8a:df:da:74:6a: 86:e7:1a:cf:29:0d:3d:72:04:88:b2:19:46:0a:4d: 43:0d:21:2c:7e:a3:ce:90:5d:f6:a5:43:62:75:56: dd:05:5c:aa:a8:09:d3:6d:1c:02:6d:ad:df:c8:35: ff:66:ef:d3:c8:a9:0d:b1:43:43:65:de:93:49:f8: 68:35:56:ac:ab:90:f3:08:20:5c:64:08:f5:5f:53: de:9a:3b:16:38:95:d8:57:38:e2:cf:9f:13:2c:1f: b8:4c:f0:64:3d:2d:07:24:3b:d4:2b:16:ed:dd:14: 4a:fe:63:b7:67:a6:b9:da:c2:50:53:1f:75:f2:5e: f3:2f:12:e2:7a:88:68:ca:db:b6:0f:e0:01:61:60: 9f:e5:06:39:8f:d8:24:48:58:9a:7d:42:7a:23:81: 96:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:53:CA:2F:06:08:5B:F1:83:1E:C3:B2:50:94:65:8D:A0:7A:13:56 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/aFPKLwYIW_GDHsOyUJRljaB6E1Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404::/26 Signature Algorithm: sha256WithRSAEncryption 92:cd:86:24:f4:1e:a2:7b:f8:ec:8f:26:e5:21:b2:01:93:e1: 3d:10:58:97:0f:0e:a0:cc:94:b9:e5:d5:4a:3d:71:dd:84:21: b5:9b:63:25:30:93:60:ef:38:89:cd:68:60:b0:08:58:9b:5b: 2c:3b:c3:d1:91:62:fa:df:04:84:6f:95:3c:94:cb:27:53:b4: 18:3f:52:a9:e7:91:a7:c3:f8:1d:67:fb:a6:1e:d5:25:65:09: bd:5c:6b:13:8c:61:b7:7f:0c:37:94:d2:14:e4:ae:a4:b4:6d: c6:b5:cc:82:f6:66:1a:f9:f3:7b:a4:a4:3d:56:a7:b1:69:35: 9e:54:93:c2:b2:d9:1f:40:1e:20:a9:9c:40:a2:9e:dd:8e:5b: cf:7e:5e:0f:60:73:b3:52:28:01:a0:af:ba:69:66:34:66:6a: e9:34:62:2a:3b:e0:eb:e3:30:d6:9c:48:94:43:d8:68:0f:a7: ae:05:0e:0d:ff:f5:24:f0:ce:3a:14:ab:c7:eb:d3:2b:66:45: 15:3b:54:ba:83:23:3d:82:84:1e:26:51:d2:0f:c6:48:30:e3: 57:76:b4:a5:dd:0f:a2:7a:fa:d0:74:34:9d:4c:22:66:81:ee: 30:27:fc:6c:40:6f:08:9f:2d:1b:5e:2d:11:ab:ed:dc:3e:63: 0e:0d:dd:05 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICEKAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4NTNDQTJGMDYwODVC RjE4MzFFQzNCMjUwOTQ2NThEQTA3QTEzNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0VBoRwEQStL6i7Oc4qIOSmTG+ylApip1jn2HhcLDc0tiUqiq/ v9bmqzwLkVdUnfERnZ00BZZyAbOFC7agWTFu0BX9uBayXud1fkOOAOr5eoD2n+yF 9+C1t7UZxNKa1IFaAQ2K39p0aobnGs8pDT1yBIiyGUYKTUMNISx+o86QXfalQ2J1 Vt0FXKqoCdNtHAJtrd/INf9m79PIqQ2xQ0Nl3pNJ+Gg1VqyrkPMIIFxkCPVfU96a OxY4ldhXOOLPnxMsH7hM8GQ9LQckO9QrFu3dFEr+Y7dnprnawlBTH3XyXvMvEuJ6 iGjK27YP4AFhYJ/lBjmP2CRIWJp9QnojgZajAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUaFPKLwYIW/GDHsOyUJRljaB6E1YwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2FGUEtMd1lJV19HREhzT3lVSlJsamFC NkUxWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQYkBAAAMA0G CSqGSIb3DQEBCwUAA4IBAQCSzYYk9B6ie/jsjyblIbIBk+E9EFiXDw6gzJS55dVK PXHdhCG1m2MlMJNg7ziJzWhgsAhYm1ssO8PRkWL63wSEb5U8lMsnU7QYP1Kp55Gn w/gdZ/umHtUlZQm9XGsTjGG3fww3lNIU5K6ktG3GtcyC9mYa+fN7pKQ9VqexaTWe VJPCstkfQB4gqZxAop7djlvPfl4PYHOzUigBoK+6aWY0ZmrpNGIqO+Dr4zDWnEiU Q9hoD6euBQ4N//Uk8M46FKvH69MrZkUVO1S6gyM9goQeJlHSD8ZIMONXdrSl3Q+i evrQdDSdTCJmge4wJ/xsQG8Iny0bXi0Rq+3cPmMODd0F -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:05 2024 by rpki-client on console-ams.rpki-client.org