$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/hvYQLsrmnmbup41bv7xx6rLyMbY.roa File: hvYQLsrmnmbup41bv7xx6rLyMbY.roa (raw, json) Hash identifier: jF2DMIxP4K8thKSA43B9yURMhAoYKxcIGK9DtE/zDEY= Subject key identifier: 86:F6:10:2E:CA:E6:9E:66:EE:A7:8D:5B:BF:BC:71:EA:B2:F2:31:B6 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 102B Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/hvYQLsrmnmbup41bv7xx6rLyMbY.roa Signing time: Mon 26 Aug 2024 05:16:08 +0000 ROA not before: Mon 26 Aug 2024 05:16:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 2001:f10::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4139 (0x102b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=86F6102ECAE69E66EEA78D5BBFBC71EAB2F231B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:07:1d:fe:36:b7:a7:81:c1:d9:59:65:31:98: 01:1c:9e:aa:24:16:79:7c:65:68:9e:1c:34:82:20: 36:2f:e3:c3:40:eb:48:2d:91:2b:f6:53:ef:70:13: b3:af:67:17:1e:a6:89:b0:e1:fc:1f:0f:5d:51:32: 6f:4b:12:d5:19:9a:b1:eb:d6:9f:3f:1c:54:1c:f4: 17:dc:85:8d:70:25:4d:08:be:54:ff:50:6d:03:d2: da:9c:17:1b:f5:47:4b:91:ea:56:b0:9f:ed:9c:1b: 6c:3e:b2:0c:b4:c4:69:4b:5d:bd:e0:cd:7b:61:d0: 25:4c:1c:34:f2:53:fc:d8:e5:82:95:63:d9:2b:1f: e5:bd:9a:33:51:69:33:40:69:3d:de:7c:2e:28:76: 9e:7e:d6:af:41:6f:9a:c7:f8:63:a2:a1:51:e9:cd: 5f:ef:c7:fa:b8:71:25:a4:f3:97:d7:f1:41:bf:6c: aa:e3:5f:1f:e4:ae:c3:e8:17:c3:fb:b6:ea:25:1f: fd:e8:d2:22:e5:7c:e4:77:b7:e8:c2:80:98:03:95: 83:69:4c:ae:9f:84:85:7c:bb:79:3f:2f:d2:86:c0: 6b:ff:1a:11:30:54:54:83:af:98:4b:2d:97:d7:cf: 45:0a:5c:2a:99:7a:db:8a:b7:78:f5:43:82:03:42: 79:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F6:10:2E:CA:E6:9E:66:EE:A7:8D:5B:BF:BC:71:EA:B2:F2:31:B6 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/hvYQLsrmnmbup41bv7xx6rLyMbY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:f10::/32 Signature Algorithm: sha256WithRSAEncryption af:51:69:6f:79:21:10:1a:5e:81:6f:cb:66:d9:70:da:07:3d: d2:95:94:6f:5a:52:b4:4f:15:86:52:03:aa:08:6c:09:f3:b4: 58:bc:23:d2:87:49:90:ad:6d:e2:4e:44:bd:5c:52:92:91:2a: 34:4b:fd:95:0f:fd:d4:7b:dc:a6:a7:dd:53:3e:11:35:92:ec: 3f:12:ce:5d:03:a3:65:73:a9:f0:70:dd:ce:58:f6:62:68:11: d9:7b:11:af:84:51:b3:74:01:2a:a5:6b:3d:ab:dd:04:00:eb: e3:e0:e1:3c:8a:38:c5:03:b1:c8:e2:ee:2e:61:c4:04:35:bc: 00:9e:41:8a:7b:76:9c:c1:af:92:94:d8:2a:30:96:44:f6:69: 3c:36:da:32:e3:a2:85:61:1a:e1:d0:fc:25:46:de:dc:2c:4f: e6:0d:99:0d:fb:81:d8:85:5b:6c:f1:0d:45:9c:87:9c:11:73: e1:44:75:eb:fd:9e:b5:10:32:e9:e3:db:0a:e0:1f:a2:15:a2: 7c:2b:74:3b:13:47:33:71:1d:c5:13:95:44:37:91:03:eb:18: db:e8:09:49:a1:a8:ba:a3:78:35:3a:56:ef:c2:d5:ba:ba:a3: f3:73:fe:9c:6a:f3:65:49:30:ee:e3:7a:a9:e9:ee:7f:50:f3: 73:01:a0:90 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICECswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2RjYxMDJFQ0FFNjlF NjZFRUE3OEQ1QkJGQkM3MUVBQjJGMjMxQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9Bx3+NrengcHZWWUxmAEcnqokFnl8ZWieHDSCIDYv48NA60gt kSv2U+9wE7OvZxcepomw4fwfD11RMm9LEtUZmrHr1p8/HFQc9BfchY1wJU0IvlT/ UG0D0tqcFxv1R0uR6lawn+2cG2w+sgy0xGlLXb3gzXth0CVMHDTyU/zY5YKVY9kr H+W9mjNRaTNAaT3efC4odp5+1q9Bb5rH+GOioVHpzV/vx/q4cSWk85fX8UG/bKrj Xx/krsPoF8P7tuolH/3o0iLlfOR3t+jCgJgDlYNpTK6fhIV8u3k/L9KGwGv/GhEw VFSDr5hLLZfXz0UKXCqZetuKt3j1Q4IDQnnJAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUhvYQLsrmnmbup41bv7xx6rLyMbYwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2h2WVFMc3Jtbm1idXA0MWJ2N3h4NnJM eU1iWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAQ8QMA0G CSqGSIb3DQEBCwUAA4IBAQCvUWlveSEQGl6Bb8tm2XDaBz3SlZRvWlK0TxWGUgOq CGwJ87RYvCPSh0mQrW3iTkS9XFKSkSo0S/2VD/3Ue9ymp91TPhE1kuw/Es5dA6Nl c6nwcN3OWPZiaBHZexGvhFGzdAEqpWs9q90EAOvj4OE8ijjFA7HI4u4uYcQENbwA nkGKe3acwa+SlNgqMJZE9mk8Ntoy46KFYRrh0PwlRt7cLE/mDZkN+4HYhVts8Q1F nIecEXPhRHXr/Z61EDLp49sK4B+iFaJ8K3Q7E0czcR3FE5VEN5ED6xjb6AlJoai6 o3g1OlbvwtW6uqPzc/6cavNlSTDu43qp6e5/UPNzAaCQ -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org