$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/cu64GSNPmdMzLOkerOPlhUiDfrg.roa File: cu64GSNPmdMzLOkerOPlhUiDfrg.roa (raw, json) Hash identifier: cxGkKZoCVIisdUjozddIKpnPjy9DEDKxdKCGvYhzi5I= Subject key identifier: 72:EE:B8:19:23:4F:99:D3:33:2C:E9:1E:AC:E3:E5:85:48:83:7E:B8 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 101E Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cu64GSNPmdMzLOkerOPlhUiDfrg.roa Signing time: Mon 26 Aug 2024 05:16:05 +0000 ROA not before: Mon 26 Aug 2024 05:16:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.202.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4126 (0x101e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=72EEB819234F99D3332CE91EACE3E58548837EB8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d3:d7:22:0b:83:ae:2c:cb:28:47:b9:70:f5: fe:e3:02:95:27:b5:af:08:d3:a6:2e:30:f2:c0:52: 82:af:b1:c9:cc:76:d8:21:5f:96:c5:7d:91:e1:fa: fa:85:c7:00:e8:89:c6:fb:57:cd:40:eb:d4:f9:1b: b0:b0:5d:1f:41:3b:96:db:6a:6a:ff:9f:c3:6b:2e: 51:c4:03:a1:fc:00:95:57:60:30:72:8a:fa:8e:8c: ee:29:af:40:aa:ec:a6:88:1f:97:07:7c:ed:f5:f8: c9:d9:ff:42:e0:c0:f0:c4:1e:f5:90:dd:ad:83:fc: 55:82:a6:30:45:19:a1:42:10:ae:c1:00:ba:f7:38: 10:aa:62:ca:14:65:9f:b3:16:6e:01:5b:b5:fc:65: 0f:6e:bf:22:fb:a5:4d:91:18:15:17:04:f3:be:7e: ba:11:7f:3b:47:43:ae:1d:84:0a:a7:f7:7e:19:0f: e6:f2:6d:b6:53:d3:c5:ef:47:53:90:af:d3:34:82: 3c:3a:e8:4c:25:bc:00:10:c0:7f:55:a1:30:1e:71: f0:d0:b2:dc:f2:54:30:a9:95:22:e4:9e:c5:3d:f8: dc:42:85:b9:9e:37:2c:85:98:0c:94:f8:20:11:c3: 13:2b:85:a8:14:4c:38:10:3c:a2:7f:f8:a2:0f:19: e9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EE:B8:19:23:4F:99:D3:33:2C:E9:1E:AC:E3:E5:85:48:83:7E:B8 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/cu64GSNPmdMzLOkerOPlhUiDfrg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.0.0/19 Signature Algorithm: sha256WithRSAEncryption 26:18:4d:d0:71:98:d2:f3:0d:1b:ec:35:f5:f8:d9:f4:77:db: 86:8f:79:1a:ce:6c:8b:c6:bd:e0:cf:2e:a4:8d:f0:41:db:99: 9d:2c:4b:dc:e0:3e:a3:75:80:3a:12:30:03:dc:da:bd:b9:94: 94:a6:cc:f5:a3:2a:c5:a6:f4:61:35:ba:94:60:f3:b8:bd:1f: c4:8d:58:c3:45:98:b0:8b:e0:91:26:7c:c1:85:a4:3d:97:3f: 11:1b:ba:3d:c0:33:8d:de:a8:e8:98:8d:7d:27:27:ee:2b:70: 6f:74:79:b7:cc:40:b3:49:ab:c7:69:da:e9:9b:5a:60:43:1e: 41:36:f7:f8:7d:d7:1a:6b:06:e6:72:76:a8:02:34:ec:ab:9c: 36:70:ae:99:ea:fe:62:73:f6:4b:d4:d3:09:16:4f:15:66:56: de:7f:2e:b0:fa:dc:3c:4d:aa:51:8a:4a:b3:c4:17:ad:88:96: 4f:12:11:75:af:62:e2:a2:a1:56:99:4a:99:e9:70:eb:85:78: f2:55:8b:b2:e5:0a:33:a5:8e:44:95:b8:09:cb:89:b4:58:62: 2c:a7:99:3a:4e:b8:98:c6:44:43:7d:d6:35:ea:1e:53:96:15: 25:48:7a:ed:cc:1b:8e:54:9e:a5:2f:04:c5:64:2b:3c:c8:df: 0f:ae:83:f7 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEB4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcyRUVCODE5MjM0Rjk5 RDMzMzJDRTkxRUFDRTNFNTg1NDg4MzdFQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCl09ciC4OuLMsoR7lw9f7jApUnta8I06YuMPLAUoKvscnMdtgh X5bFfZHh+vqFxwDoicb7V81A69T5G7CwXR9BO5bbamr/n8NrLlHEA6H8AJVXYDBy ivqOjO4pr0Cq7KaIH5cHfO31+MnZ/0LgwPDEHvWQ3a2D/FWCpjBFGaFCEK7BALr3 OBCqYsoUZZ+zFm4BW7X8ZQ9uvyL7pU2RGBUXBPO+froRfztHQ64dhAqn934ZD+by bbZT08XvR1OQr9M0gjw66EwlvAAQwH9VoTAecfDQstzyVDCplSLknsU9+NxChbme NyyFmAyU+CARwxMrhagUTDgQPKJ/+KIPGekxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUcu64GSNPmdMzLOkerOPlhUiDfrgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2N1NjRHU05QbWRNekxPa2VyT1BsaFVp RGZyZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXSygAwDQYJ KoZIhvcNAQELBQADggEBACYYTdBxmNLzDRvsNfX42fR324aPeRrObIvGveDPLqSN 8EHbmZ0sS9zgPqN1gDoSMAPc2r25lJSmzPWjKsWm9GE1upRg87i9H8SNWMNFmLCL 4JEmfMGFpD2XPxEbuj3AM43eqOiYjX0nJ+4rcG90ebfMQLNJq8dp2umbWmBDHkE2 9/h91xprBuZydqgCNOyrnDZwrpnq/mJz9kvU0wkWTxVmVt5/LrD63DxNqlGKSrPE F62Ilk8SEXWvYuKioVaZSpnpcOuFePJVi7LlCjOljkSVuAnLibRYYiynmTpOuJjG REN91jXqHlOWFSVIeu3MG45UnqUvBMVkKzzI3w+ug/c= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:05 2024 by rpki-client on console-ams.rpki-client.org