$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/oOKmjDfy1SSrSx_la-36nyqmAYg.roa File: oOKmjDfy1SSrSx_la-36nyqmAYg.roa (raw, json) Hash identifier: 74x9jxi5Ybw2ssnP0mUyDTnH2WIgwGPnRK7TCHL39e0= Subject key identifier: A0:E2:A6:8C:37:F2:D5:24:AB:4B:1F:E5:6B:ED:FA:9F:2A:A6:01:88 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10D4 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/oOKmjDfy1SSrSx_la-36nyqmAYg.roa Signing time: Mon 26 Aug 2024 05:16:49 +0000 ROA not before: Mon 26 Aug 2024 05:16:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.202.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4308 (0x10d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A0E2A68C37F2D524AB4B1FE56BEDFA9F2AA60188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:4e:e2:82:e1:24:41:1f:98:07:72:cc:1d: d0:02:2b:79:c1:f6:f7:e8:6b:54:8d:67:94:70:39: 90:b2:8a:63:0d:8f:da:f5:ff:33:d2:14:23:78:c0: e9:e1:9a:c0:34:0d:07:78:7b:a3:4f:a4:f6:3a:7a: 7c:f6:3d:ad:b1:2f:1d:7f:72:91:1d:46:b5:47:bc: 21:31:88:4b:c6:5a:c4:c9:d9:5e:ab:49:06:0c:18: 19:7b:04:13:5e:96:e9:d4:51:34:ed:b7:a7:7d:c7: 08:b6:1f:e9:d6:13:45:64:77:36:48:2b:3e:89:56: cd:1f:7a:cf:f5:c0:a8:c6:c3:ce:ac:2d:b0:ca:33: 49:e5:fa:24:6d:c5:5a:d4:5a:6b:ba:25:aa:5a:54: c3:40:52:b6:69:db:d3:64:94:3f:be:c9:9f:81:4a: 20:9d:a7:a4:27:61:97:e4:5c:d1:81:49:9a:ad:66: 6d:9f:47:8a:84:fd:69:02:7d:13:c7:fd:3d:32:52: 24:71:47:3f:3e:6f:05:d3:ae:f4:87:2a:bf:06:b3: a0:06:5c:aa:a2:a6:b8:e9:b4:cd:33:a8:10:6c:93: a5:a6:25:59:d6:17:b4:76:3b:7c:5e:7e:16:15:63: a5:83:89:e3:29:15:dc:80:66:66:50:ab:42:be:59: 96:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E2:A6:8C:37:F2:D5:24:AB:4B:1F:E5:6B:ED:FA:9F:2A:A6:01:88 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/oOKmjDfy1SSrSx_la-36nyqmAYg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.64.0/18 Signature Algorithm: sha256WithRSAEncryption 85:75:1a:83:3b:4c:27:ec:b7:62:d8:41:03:78:ac:65:5e:ed: c9:50:fe:f6:58:ec:42:8f:0c:4d:75:4e:8d:6e:31:e1:19:56: e2:6b:4b:04:1c:ab:2b:bb:f7:43:b1:b9:bd:ed:b7:c3:11:02: 8d:d5:af:45:58:0f:7a:f9:1b:e8:b3:95:e1:c3:a2:f1:d5:77: 33:3c:31:a0:39:c4:97:f9:c8:d3:43:70:17:af:0c:59:ea:f2: 9c:88:1d:dd:e0:16:05:ac:16:af:80:70:e9:e4:65:a4:f7:cd: 0a:ca:b7:67:ac:5e:78:62:10:14:90:00:71:59:8e:63:25:76: 58:42:8b:48:51:70:c1:fa:56:24:07:b0:49:59:2d:89:5d:5d: 79:4f:fa:f3:23:f6:4f:04:c0:a5:32:d0:37:68:82:78:ef:01: e6:91:e6:8a:0d:b4:61:fd:98:b8:74:3b:f1:e8:05:21:73:d2: 50:aa:29:6b:e6:c5:b2:50:4b:de:bf:52:26:ec:68:6d:4a:cf: fe:1d:c2:5f:b8:aa:34:00:53:76:f0:83:57:1a:04:26:64:55: e9:56:80:58:47:4c:d1:0d:26:52:b8:f9:70:48:66:b2:8b:ea: ab:d0:88:b3:b2:40:1b:ab:e3:0a:21:85:36:50:2e:c1:5d:07: f9:f0:66:0b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICENQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEwRTJBNjhDMzdGMkQ1 MjRBQjRCMUZFNTZCRURGQTlGMkFBNjAxODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC20k7iguEkQR+YB3LMHdACK3nB9vfoa1SNZ5RwOZCyimMNj9r1 /zPSFCN4wOnhmsA0DQd4e6NPpPY6enz2Pa2xLx1/cpEdRrVHvCExiEvGWsTJ2V6r SQYMGBl7BBNelunUUTTtt6d9xwi2H+nWE0VkdzZIKz6JVs0fes/1wKjGw86sLbDK M0nl+iRtxVrUWmu6JapaVMNAUrZp29NklD++yZ+BSiCdp6QnYZfkXNGBSZqtZm2f R4qE/WkCfRPH/T0yUiRxRz8+bwXTrvSHKr8Gs6AGXKqiprjptM0zqBBsk6WmJVnW F7R2O3xefhYVY6WDieMpFdyAZmZQq0K+WZZbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUoOKmjDfy1SSrSx/la+36nyqmAYgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL29PS21qRGZ5MVNTclN4X2xhLTM2bnlx bUFZZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSykAwDQYJ KoZIhvcNAQELBQADggEBAIV1GoM7TCfst2LYQQN4rGVe7clQ/vZY7EKPDE11To1u MeEZVuJrSwQcqyu790Oxub3tt8MRAo3Vr0VYD3r5G+izleHDovHVdzM8MaA5xJf5 yNNDcBevDFnq8pyIHd3gFgWsFq+AcOnkZaT3zQrKt2esXnhiEBSQAHFZjmMldlhC i0hRcMH6ViQHsElZLYldXXlP+vMj9k8EwKUy0DdognjvAeaR5ooNtGH9mLh0O/Ho BSFz0lCqKWvmxbJQS96/UibsaG1Kz/4dwl+4qjQAU3bwg1caBCZkVelWgFhHTNEN JlK4+XBIZrKL6qvQiLOyQBur4wohhTZQLsFdB/nwZgs= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org