$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/fvqLmWtP49NJ8-ltIY4jcchHZYU.roa File: fvqLmWtP49NJ8-ltIY4jcchHZYU.roa (raw, json) Hash identifier: /IZcCyxeR95HmE68jABUM1rFsnKo3G9RIOR0AT1a28A= Subject key identifier: 7E:FA:8B:99:6B:4F:E3:D3:49:F3:E9:6D:21:8E:23:71:C8:47:65:85 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1000 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fvqLmWtP49NJ8-ltIY4jcchHZYU.roa Signing time: Mon 26 Aug 2024 05:15:58 +0000 ROA not before: Mon 26 Aug 2024 05:15:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9311 IP address blocks: 210.203.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4096 (0x1000) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7EFA8B996B4FE3D349F3E96D218E2371C8476585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:44:8d:ed:dc:08:98:ea:a8:af:b0:fd:17:77: 33:f1:46:61:dc:27:01:7e:10:4c:e8:c0:02:d8:80: ce:00:b1:2d:d4:5e:2b:4b:58:c9:fd:db:8c:8c:4a: 8f:ea:91:57:22:3f:64:40:d9:92:fb:a0:90:f4:a9: e8:69:c2:03:0e:ad:7a:4e:e7:5b:56:0f:64:42:d9: df:7f:da:45:2a:16:7d:79:42:8d:4d:d1:cf:50:ff: b3:2b:57:c5:3b:20:b3:76:9b:92:7a:2d:a8:f3:70: 44:f3:93:95:00:07:50:9c:27:72:ca:9a:85:49:31: 49:87:64:50:26:e6:3d:8b:2f:f9:a8:81:d6:14:26: 4f:24:50:15:3a:bf:50:b6:37:7f:02:36:7a:8c:46: 24:d4:e6:48:51:85:4a:39:45:07:b2:dd:e6:d5:c9: f8:24:99:01:f5:c7:a8:75:7e:30:f0:c2:6c:50:8e: 7c:39:72:77:c7:6d:53:1e:d9:11:9e:e1:45:51:88: b4:e3:26:f1:f3:c0:d9:77:a5:69:b2:f5:db:c0:0c: 78:80:dc:eb:a6:6f:bb:60:be:f2:55:a1:1f:bb:38: b6:d9:ab:4e:e1:50:d8:87:fb:0c:93:94:03:e6:84: 40:a2:33:c4:a4:1e:02:4b:50:2a:08:42:02:8f:dc: 92:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:FA:8B:99:6B:4F:E3:D3:49:F3:E9:6D:21:8E:23:71:C8:47:65:85 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/fvqLmWtP49NJ8-ltIY4jcchHZYU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.0.0/17 Signature Algorithm: sha256WithRSAEncryption 15:8b:ed:9c:5b:a9:19:8b:0c:96:b9:85:a5:fa:a2:c4:c4:a8: 80:e3:26:4e:88:45:a5:07:10:a4:8f:21:a3:b8:60:e8:e3:f5: f7:5a:94:48:6c:90:93:2a:bb:c4:4b:77:0d:00:c9:ec:a2:3c: 53:28:55:50:d6:27:03:d7:69:e5:3e:f7:6f:54:38:3c:2d:ff: 3c:25:16:24:be:da:6d:2b:cc:9e:f3:e8:ef:ec:60:47:10:cc: 89:5b:0d:3d:ce:da:5b:95:13:b3:7d:5f:2a:00:d6:6f:dc:5a: 9f:e9:7b:9a:c6:a2:78:f6:68:cb:ca:8f:81:80:ee:88:80:0e: 46:37:a9:b1:37:90:f3:e1:39:ef:6c:17:b2:0f:90:cd:0d:85: 9c:2a:1f:28:f2:d8:0f:31:3b:79:0e:0b:a7:22:e3:4d:f5:b7: c7:34:c1:20:c9:4c:6b:2e:bf:10:15:50:12:2a:e8:c8:12:4e: 7c:3d:ca:6c:21:d7:e2:66:d8:30:58:f3:ec:d4:bb:06:44:bf: 53:f2:c2:12:db:e7:bc:62:6b:cd:df:cd:ca:8a:77:d8:9a:d3: 06:8f:3d:6e:fe:4f:88:27:79:d3:d0:b0:b6:a9:40:3b:52:fd: 17:91:73:80:95:8b:bc:92:1b:22:cb:b1:01:87:c8:84:82:07: d0:cd:37:cb -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEAAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFRkE4Qjk5NkI0RkUz RDM0OUYzRTk2RDIxOEUyMzcxQzg0NzY1ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNRI3t3AiY6qivsP0XdzPxRmHcJwF+EEzowALYgM4AsS3UXitL WMn924yMSo/qkVciP2RA2ZL7oJD0qehpwgMOrXpO51tWD2RC2d9/2kUqFn15Qo1N 0c9Q/7MrV8U7ILN2m5J6LajzcETzk5UAB1CcJ3LKmoVJMUmHZFAm5j2LL/mogdYU Jk8kUBU6v1C2N38CNnqMRiTU5khRhUo5RQey3ebVyfgkmQH1x6h1fjDwwmxQjnw5 cnfHbVMe2RGe4UVRiLTjJvHzwNl3pWmy9dvADHiA3Oumb7tgvvJVoR+7OLbZq07h UNiH+wyTlAPmhECiM8SkHgJLUCoIQgKP3JKhAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUfvqLmWtP49NJ8+ltIY4jcchHZYUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2Z2cUxtV3RQNDlOSjgtbHRJWTRqY2No SFpZVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfSywAwDQYJ KoZIhvcNAQELBQADggEBABWL7ZxbqRmLDJa5haX6osTEqIDjJk6IRaUHEKSPIaO4 YOjj9fdalEhskJMqu8RLdw0AyeyiPFMoVVDWJwPXaeU+929UODwt/zwlFiS+2m0r zJ7z6O/sYEcQzIlbDT3O2luVE7N9XyoA1m/cWp/pe5rGonj2aMvKj4GA7oiADkY3 qbE3kPPhOe9sF7IPkM0NhZwqHyjy2A8xO3kOC6ci4031t8c0wSDJTGsuvxAVUBIq 6MgSTnw9ymwh1+Jm2DBY8+zUuwZEv1PywhLb57xia83fzcqKd9ia0waPPW7+T4gn edPQsLapQDtS/ReRc4CVi7ySGyLLsQGHyISCB9DNN8s= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org