$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/bepzV6BE8GrYwBVFe0fJYat8eQA.roa File: bepzV6BE8GrYwBVFe0fJYat8eQA.roa (raw, json) Hash identifier: Ja7v5yLtaixdmM1o9reetaq4P7k0I213yhYptN1niGo= Subject key identifier: 6D:EA:73:57:A0:44:F0:6A:D8:C0:15:45:7B:47:C9:61:AB:7C:79:00 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10B9 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/bepzV6BE8GrYwBVFe0fJYat8eQA.roa Signing time: Mon 26 Aug 2024 05:16:44 +0000 ROA not before: Mon 26 Aug 2024 05:16:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 124.218.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4281 (0x10b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6DEA7357A044F06AD8C015457B47C961AB7C7900 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:0d:18:f5:5a:fd:9e:06:96:01:38:c5:24:37: 1a:c7:5b:ef:2a:68:2c:0c:4a:05:2e:e7:4c:46:2e: 7e:59:da:5c:99:51:98:a0:e0:c7:aa:43:9d:78:be: 4f:b6:45:a9:b8:c8:b2:3d:22:66:34:d2:a9:ec:5a: dd:1f:75:d3:9a:8b:cf:46:64:97:8a:9c:0a:ee:64: 40:0f:85:ec:7a:8c:7e:02:16:3c:a0:ab:14:d4:23: 8e:a9:f1:74:5f:c8:4f:22:cc:01:00:4d:18:86:52: 08:98:db:37:ba:3a:1f:a5:26:3a:ba:32:f6:1a:11: b6:d0:cf:f9:17:d4:bd:03:3f:5a:c1:05:b5:70:ff: d2:b9:6c:07:72:4e:89:e0:71:47:3a:92:3f:91:9e: b4:14:0f:a8:cd:f3:03:5a:49:82:51:b3:52:ba:c1: 7d:8f:e7:5d:da:a7:06:ac:c7:52:72:01:f7:38:79: 1e:e0:07:13:d8:ae:64:32:c6:6a:f5:34:1c:93:31: 8d:6e:79:44:ba:6b:7b:02:c4:e3:1c:11:c0:d6:7d: ce:05:57:ba:ea:e0:76:d2:4d:2e:4e:1d:af:b8:29: b6:9b:bb:68:09:fc:05:7f:e4:69:0f:9e:92:c5:6d: 34:6a:3c:ce:c5:47:4b:3d:6f:0c:7f:52:23:57:bf: 67:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:EA:73:57:A0:44:F0:6A:D8:C0:15:45:7B:47:C9:61:AB:7C:79:00 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/bepzV6BE8GrYwBVFe0fJYat8eQA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.218.160.0/21 Signature Algorithm: sha256WithRSAEncryption 87:c1:39:ba:1c:65:4b:66:c2:57:55:a0:ad:4d:1f:83:cd:6a: ff:f8:05:1c:5d:ee:ea:2e:55:40:6d:55:15:fc:c8:5e:20:e8: 06:05:89:f0:6e:13:b5:a1:82:80:0e:57:63:5c:7b:ae:af:33: d2:0f:1a:20:58:56:97:2a:dd:23:c2:70:1d:12:b1:c2:dd:18: 34:80:09:b0:f4:2c:60:96:58:b2:c3:8f:d3:d7:60:b2:29:3a: ec:56:89:1d:5d:4d:bf:d2:72:e9:6a:70:9e:31:5a:8e:3a:c0: 67:cd:1c:89:cc:8d:43:b3:68:ba:21:e5:11:00:5c:9a:79:76: c4:de:d1:c3:58:3b:71:ff:35:94:79:e1:04:45:14:22:5a:50: db:30:d9:78:b7:45:f3:2d:67:0e:a4:01:95:12:5c:7e:65:02: ed:8e:a2:ac:c3:01:8c:92:b7:9a:12:cb:8b:82:3b:f4:af:16: 89:00:18:25:ec:fc:fe:80:0d:60:97:dc:99:e3:1f:59:4d:c0: 7b:be:8d:bc:c6:cc:03:6b:2c:e0:c9:29:6a:90:dc:50:fc:79: 1c:20:35:8a:30:d5:93:a5:55:b6:d7:df:7a:ed:94:fa:62:28: 82:0c:8f:dc:25:5d:36:e0:43:a6:99:c8:42:d1:96:70:cd:de: 1a:6e:b7:63 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICELkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZERUE3MzU3QTA0NEYw NkFEOEMwMTU0NTdCNDdDOTYxQUI3Qzc5MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUDRj1Wv2eBpYBOMUkNxrHW+8qaCwMSgUu50xGLn5Z2lyZUZig 4MeqQ514vk+2Ram4yLI9ImY00qnsWt0fddOai89GZJeKnAruZEAPhex6jH4CFjyg qxTUI46p8XRfyE8izAEATRiGUgiY2ze6Oh+lJjq6MvYaEbbQz/kX1L0DP1rBBbVw /9K5bAdyTongcUc6kj+RnrQUD6jN8wNaSYJRs1K6wX2P513apwasx1JyAfc4eR7g BxPYrmQyxmr1NByTMY1ueUS6a3sCxOMcEcDWfc4FV7rq4HbSTS5OHa+4Kbabu2gJ /AV/5GkPnpLFbTRqPM7FR0s9bwx/UiNXv2d9AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUbepzV6BE8GrYwBVFe0fJYat8eQAwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2JlcHpWNkJFOEdyWXdCVkZlMGZKWWF0 OGVRQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN82qAwDQYJ KoZIhvcNAQELBQADggEBAIfBObocZUtmwldVoK1NH4PNav/4BRxd7uouVUBtVRX8 yF4g6AYFifBuE7WhgoAOV2Nce66vM9IPGiBYVpcq3SPCcB0SscLdGDSACbD0LGCW WLLDj9PXYLIpOuxWiR1dTb/SculqcJ4xWo46wGfNHInMjUOzaLoh5REAXJp5dsTe 0cNYO3H/NZR54QRFFCJaUNsw2Xi3RfMtZw6kAZUSXH5lAu2OoqzDAYySt5oSy4uC O/SvFokAGCXs/P6ADWCX3JnjH1lNwHu+jbzGzANrLODJKWqQ3FD8eRwgNYow1ZOl VbbX33rtlPpiKIIMj9wlXTbgQ6aZyELRlnDN3hput2M= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org