$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/ab4DsdeJ93F1bcQpYddBxQEPLeM.roa File: ab4DsdeJ93F1bcQpYddBxQEPLeM.roa (raw, json) Hash identifier: uRRIIxCu2bHVe+iY3B59QvXp3Xxs+z+SxvkaFDLCdY0= Subject key identifier: 69:BE:03:B1:D7:89:F7:71:75:6D:C4:29:61:D7:41:C5:01:0F:2D:E3 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FDC Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ab4DsdeJ93F1bcQpYddBxQEPLeM.roa Signing time: Mon 26 Aug 2024 05:15:49 +0000 ROA not before: Mon 26 Aug 2024 05:15:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131591 IP address blocks: 222.250.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4060 (0xfdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=69BE03B1D789F771756DC42961D741C5010F2DE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:50:e1:ba:9d:90:fc:79:7f:10:3b:20:d6:86: 11:b3:54:ea:af:6f:f6:4e:e4:65:6f:0c:29:88:b0: a5:7b:2e:28:fc:16:a4:8c:35:ca:5a:43:b8:87:57: 95:51:1b:27:60:44:a5:c3:4f:21:88:2e:e2:8e:5f: 68:11:fe:d2:20:65:12:00:3d:fa:8e:a8:e1:21:51: a7:f3:bd:f3:57:9c:c5:f9:e0:22:56:b1:75:7d:a0: 6c:82:8b:11:13:6a:c7:10:44:f5:48:28:2f:72:24: 5f:9c:c4:50:0f:8a:2c:9f:4d:da:49:c6:7a:42:f8: 4d:2a:bd:f4:c8:64:02:e5:50:b1:40:17:21:ec:54: e3:a1:87:f4:fc:c4:e1:4f:0d:05:3e:b3:99:d1:ea: 93:90:01:f8:ce:8c:08:83:6e:74:f1:63:ff:ee:ca: 5d:09:a1:84:f3:48:af:5f:99:d6:8a:ff:22:46:56: 6b:14:cc:ac:b3:ad:25:8a:30:dc:e8:ae:a7:c2:7d: dc:64:55:59:84:c8:58:a5:02:00:90:24:4b:36:01: 43:82:69:c0:f2:8b:5c:e2:73:70:52:48:e6:49:04: 00:df:b8:72:96:24:eb:9d:57:2a:39:4b:d3:3f:ca: 68:1d:4e:60:11:ad:39:81:0e:03:39:e8:7d:16:42: ff:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BE:03:B1:D7:89:F7:71:75:6D:C4:29:61:D7:41:C5:01:0F:2D:E3 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/ab4DsdeJ93F1bcQpYddBxQEPLeM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.250.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:fd:e0:26:11:fe:8c:51:79:cb:bc:df:20:fd:83:35:a3:a4: 88:10:e8:7d:04:72:bf:77:a8:f8:dc:cf:8d:52:58:4b:1c:b4: 60:d0:65:5b:2d:b3:96:2e:3a:ce:53:47:a3:32:7d:fe:21:ad: 41:88:04:5b:fd:fc:25:6f:0a:e2:a4:95:97:7a:f8:5c:fc:9b: 78:08:d5:2d:8b:e6:19:51:23:1f:aa:09:5d:41:4c:b0:5e:34: 37:c9:1a:d8:07:44:20:6c:fa:6a:16:3c:ba:9a:60:82:df:a3: d9:e6:35:e1:75:28:dc:3e:16:75:43:31:ca:8b:5d:0a:08:6c: f4:61:29:f7:bf:86:87:4b:db:d9:bf:82:08:b4:96:05:7a:be: a2:ff:9b:b7:fc:25:83:76:44:f8:5b:74:59:47:4c:5b:c8:56: a6:f8:38:d6:99:d5:76:6e:79:4f:b5:f7:1c:2d:d4:72:56:2a: 9c:e1:1d:2b:85:5e:c2:6d:5f:94:3b:55:a0:a8:37:58:00:f5: 9a:e6:35:01:01:93:1f:60:ab:36:d2:bb:dc:a2:f9:22:0f:c9: 92:2c:bb:2b:d7:db:fe:93:a0:83:f5:ec:8d:49:ff:b8:c0:9d: 76:5a:cd:01:64:f6:3d:4f:52:cd:8a:e6:aa:61:8e:fe:6c:d2: c2:5c:dd:26 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICD9wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY5QkUwM0IxRDc4OUY3 NzE3NTZEQzQyOTYxRDc0MUM1MDEwRjJERTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOUOG6nZD8eX8QOyDWhhGzVOqvb/ZO5GVvDCmIsKV7Lij8FqSM NcpaQ7iHV5VRGydgRKXDTyGILuKOX2gR/tIgZRIAPfqOqOEhUafzvfNXnMX54CJW sXV9oGyCixETascQRPVIKC9yJF+cxFAPiiyfTdpJxnpC+E0qvfTIZALlULFAFyHs VOOhh/T8xOFPDQU+s5nR6pOQAfjOjAiDbnTxY//uyl0JoYTzSK9fmdaK/yJGVmsU zKyzrSWKMNzorqfCfdxkVVmEyFilAgCQJEs2AUOCacDyi1zic3BSSOZJBADfuHKW JOudVyo5S9M/ymgdTmARrTmBDgM56H0WQv8dAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUab4DsdeJ93F1bcQpYddBxQEPLeMwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2FiNERzZGVKOTNGMWJjUXBZZGRCeFFF UExlTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDe+jANBgkq hkiG9w0BAQsFAAOCAQEAU/3gJhH+jFF5y7zfIP2DNaOkiBDofQRyv3eo+NzPjVJY Sxy0YNBlWy2zli46zlNHozJ9/iGtQYgEW/38JW8K4qSVl3r4XPybeAjVLYvmGVEj H6oJXUFMsF40N8ka2AdEIGz6ahY8uppggt+j2eY14XUo3D4WdUMxyotdCghs9GEp 97+Gh0vb2b+CCLSWBXq+ov+bt/wlg3ZE+Ft0WUdMW8hWpvg41pnVdm55T7X3HC3U clYqnOEdK4Vewm1flDtVoKg3WAD1muY1AQGTH2CrNtK73KL5Ig/Jkiy7K9fb/pOg g/XsjUn/uMCddlrNAWT2PU9SzYrmqmGO/mzSwlzdJg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:05 2024 by rpki-client on console-ams.rpki-client.org