$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/oki2-Bgp_rSPr7884cpWdYFnzs8.roa File: oki2-Bgp_rSPr7884cpWdYFnzs8.roa (raw, json) Hash identifier: AlBzRn5pnjdB8iWHmPMsjyegVQPceKIKeNFGAw2F94I= Subject key identifier: A2:48:B6:F8:18:29:FE:B4:8F:AF:BF:3C:E1:CA:56:75:81:67:CE:CF Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1043 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/oki2-Bgp_rSPr7884cpWdYFnzs8.roa Signing time: Mon 26 Aug 2024 05:16:13 +0000 ROA not before: Mon 26 Aug 2024 05:16:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18412 IP address blocks: 2401:e180:8c00::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4163 (0x1043) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A248B6F81829FEB48FAFBF3CE1CA56758167CECF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f7:e8:4c:ef:07:f4:73:6c:b6:20:6a:90:cd: 75:58:33:5c:2d:22:4b:e7:36:2c:28:22:c6:10:b8: a1:0d:04:33:35:ca:01:98:10:5f:30:1d:c3:a8:82: 8e:0e:3d:19:2e:e8:ec:d0:85:bc:21:13:56:5f:19: d3:36:36:67:cb:59:c8:1a:bf:fc:72:31:76:77:ac: 62:ee:9b:56:14:88:71:43:ac:4d:91:23:cd:6f:3e: 8e:48:ba:cc:70:c6:7d:1c:33:4b:ed:b5:43:10:39: bd:f9:c1:b5:a6:4b:1a:9f:c2:42:76:36:fa:72:7a: 84:cb:de:09:5e:49:94:81:c0:7f:3a:94:2d:a1:0d: 5c:9c:95:88:43:8e:7d:20:ce:ad:77:6c:57:14:e2: a9:7b:65:53:20:be:a3:73:19:6f:df:cf:e5:ef:e1: e2:3f:7c:57:8a:cf:d2:4e:73:73:c2:3e:fe:a0:5b: b1:17:d0:03:bb:cc:46:d4:db:7d:f0:3f:74:4c:be: c3:16:56:b6:3a:ab:0c:9c:92:39:b1:7e:7b:74:38: 77:58:f5:81:0d:2b:d2:76:5a:20:04:54:5d:28:80: 85:42:a6:da:c9:6b:b1:4e:78:39:a0:f3:c8:54:10: 3b:69:b8:b0:08:d7:a0:1c:01:90:5e:0b:08:05:c6: 24:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:48:B6:F8:18:29:FE:B4:8F:AF:BF:3C:E1:CA:56:75:81:67:CE:CF X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/oki2-Bgp_rSPr7884cpWdYFnzs8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:e180:8c00::/44 Signature Algorithm: sha256WithRSAEncryption 5f:95:ae:3f:cb:bb:3f:22:27:ae:64:a7:18:94:36:96:06:f9: 88:8b:6a:cc:8e:10:a9:9d:60:55:29:bc:62:45:25:d4:38:74: eb:8d:6c:d0:54:72:2d:63:46:59:7a:62:35:0d:0d:dc:f3:52: 33:19:51:fb:f9:7f:06:75:40:c2:26:46:4d:d5:51:f5:53:cc: 7b:05:c1:48:2e:8d:4b:a7:3e:c8:59:4e:b0:1c:a3:0d:53:62: bb:fa:5f:82:07:12:d1:2b:4a:72:10:af:50:2b:1e:57:60:b0: 65:63:0e:8e:0f:44:78:77:12:2c:9f:3a:0d:6c:bf:1b:ad:44: 1d:87:66:ca:4f:73:3a:2b:bb:d7:f5:e4:2f:4a:28:e1:ee:11: 06:ad:09:ac:6f:47:d6:ae:78:96:fc:68:9a:53:02:b6:8b:0c: 04:d1:69:78:dc:95:8d:e8:54:8a:3b:8e:68:f4:b3:ff:fc:31: 69:90:26:80:09:af:f0:f7:36:d7:ff:e4:b0:04:be:36:4b:e9: 04:44:03:92:fb:92:a7:fa:cc:9c:d0:ae:10:db:a0:d5:4d:99: 71:57:7c:6f:36:c0:d9:cf:84:bf:3a:fb:86:65:26:3b:3a:ab: 21:73:39:5c:42:6e:5c:e1:c6:98:22:76:31:4f:8b:fc:60:33: ab:c6:b7:8e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEEMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEyNDhCNkY4MTgyOUZF QjQ4RkFGQkYzQ0UxQ0E1Njc1ODE2N0NFQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu9+hM7wf0c2y2IGqQzXVYM1wtIkvnNiwoIsYQuKENBDM1ygGY EF8wHcOogo4OPRku6OzQhbwhE1ZfGdM2NmfLWcgav/xyMXZ3rGLum1YUiHFDrE2R I81vPo5Iusxwxn0cM0vttUMQOb35wbWmSxqfwkJ2NvpyeoTL3gleSZSBwH86lC2h DVyclYhDjn0gzq13bFcU4ql7ZVMgvqNzGW/fz+Xv4eI/fFeKz9JOc3PCPv6gW7EX 0AO7zEbU233wP3RMvsMWVrY6qwyckjmxfnt0OHdY9YENK9J2WiAEVF0ogIVCptrJ a7FOeDmg88hUEDtpuLAI16AcAZBeCwgFxiQNAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUoki2+Bgp/rSPr7884cpWdYFnzs8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL29raTItQmdwX3JTUHI3ODg0Y3BXZFlG bnpzOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQkAeGAjAAw DQYJKoZIhvcNAQELBQADggEBAF+Vrj/Luz8iJ65kpxiUNpYG+YiLasyOEKmdYFUp vGJFJdQ4dOuNbNBUci1jRll6YjUNDdzzUjMZUfv5fwZ1QMImRk3VUfVTzHsFwUgu jUunPshZTrAcow1TYrv6X4IHEtErSnIQr1ArHldgsGVjDo4PRHh3EiyfOg1svxut RB2HZspPczoru9f15C9KKOHuEQatCaxvR9aueJb8aJpTAraLDATRaXjclY3oVIo7 jmj0s//8MWmQJoAJr/D3Ntf/5LAEvjZL6QREA5L7kqf6zJzQrhDboNVNmXFXfG82 wNnPhL86+4ZlJjs6qyFzOVxCblzhxpgidjFPi/xgM6vGt44= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org