$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/pTv5j_Y1dnqi8BoDSagWEy4_MRw.roa File: pTv5j_Y1dnqi8BoDSagWEy4_MRw.roa (raw, json) Hash identifier: 3jdyekOITbLKcEUnKOs7OpxI6N2Yonh7906ehFz6uZM= Subject key identifier: A5:3B:F9:8F:F6:35:76:7A:A2:F0:1A:03:49:A8:16:13:2E:3F:31:1C Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1009 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/pTv5j_Y1dnqi8BoDSagWEy4_MRw.roa Signing time: Mon 26 Aug 2024 05:15:59 +0000 ROA not before: Mon 26 Aug 2024 05:15:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.203.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4105 (0x1009) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A53BF98FF635767AA2F01A0349A816132E3F311C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f8:94:8c:3b:7d:d4:0c:03:e9:a9:b9:4f:33: d9:a5:7d:3f:9e:05:38:e6:39:b9:4c:c3:f0:11:56: 25:e0:33:5b:eb:0d:8b:d4:5c:17:4a:cf:9b:a7:df: 26:0a:42:e4:15:28:50:6c:fa:9a:73:44:ba:f9:36: 0e:1e:02:d9:0f:c4:28:33:6c:b6:dc:94:d9:d8:79: 56:ad:e8:83:0e:25:b2:1a:aa:ab:73:f2:50:ee:c7: d0:4a:27:df:9e:0e:d4:a1:d4:0e:ce:a1:85:e7:ae: 2f:bd:1d:b6:c6:ef:7a:8f:b2:4e:be:64:97:58:91: 02:43:03:dc:2d:0b:fe:a1:6d:d9:c5:fe:67:f7:f2: c3:03:5d:fb:80:bf:18:e8:51:49:db:44:27:ab:9b: 59:b9:5c:67:51:88:fc:81:f1:c2:ef:b3:67:d1:69: 5b:dd:be:a3:61:ff:4b:fb:e9:50:12:d2:a7:04:6d: e5:1b:72:83:92:35:87:e8:18:ec:d6:66:2a:89:f9: b8:bb:db:64:ca:01:ec:bc:36:75:52:de:e4:0a:65: 93:c7:36:80:7e:a2:36:99:7d:f2:6c:d0:d1:13:87: 31:43:fa:9f:79:e8:1c:de:80:b0:bd:30:e2:36:18: 69:09:71:56:66:b9:a7:71:1d:d5:99:ba:61:5d:60: 74:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3B:F9:8F:F6:35:76:7A:A2:F0:1A:03:49:A8:16:13:2E:3F:31:1C X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/pTv5j_Y1dnqi8BoDSagWEy4_MRw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.0.0/17 Signature Algorithm: sha256WithRSAEncryption 75:95:80:5f:19:0c:ea:0c:2d:87:5a:54:47:6a:ee:58:0a:1a: 7a:c5:b2:e8:af:4b:4d:67:02:2c:32:41:fe:14:58:c3:e4:e3: 7c:a7:7c:d5:2c:a3:43:8e:69:81:db:11:2d:6e:84:9f:f2:24: e1:7a:7c:f2:50:ce:13:99:3e:2a:e7:bf:e8:89:1e:21:0c:72: cd:86:11:54:6f:98:f9:92:c2:89:de:59:79:3d:d8:e1:7c:55: 44:8e:1c:dd:53:43:c8:81:04:ff:03:b7:45:01:31:3b:b8:a0: 39:59:50:a2:1f:36:2c:df:47:4a:b3:39:d6:75:0e:1a:79:f3: d3:60:b6:94:22:ed:2a:e8:58:d6:09:c5:12:ca:7d:80:37:e3: b4:2c:be:b1:a9:5d:18:ba:5b:7e:6e:3b:23:3c:ad:3c:c0:99: d4:6f:7c:4e:0e:b4:f5:60:35:8e:67:f7:e9:b9:f0:74:c8:47: f6:93:3d:31:86:28:fa:4f:82:db:c6:59:c1:fa:d7:6e:de:92: 7a:9f:d1:8f:27:02:96:a9:60:39:41:29:7c:00:a7:af:7e:03: be:d6:99:7a:81:76:cf:b6:c4:9b:32:f6:cb:36:25:08:c8:ef: 91:fe:bc:ac:08:0d:eb:0f:cd:bb:e7:ea:5e:6c:c2:d0:50:95: 94:2a:2a:15 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEAkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1M0JGOThGRjYzNTc2 N0FBMkYwMUEwMzQ5QTgxNjEzMkUzRjMxMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5+JSMO33UDAPpqblPM9mlfT+eBTjmOblMw/ARViXgM1vrDYvU XBdKz5un3yYKQuQVKFBs+ppzRLr5Ng4eAtkPxCgzbLbclNnYeVat6IMOJbIaqqtz 8lDux9BKJ9+eDtSh1A7OoYXnri+9HbbG73qPsk6+ZJdYkQJDA9wtC/6hbdnF/mf3 8sMDXfuAvxjoUUnbRCerm1m5XGdRiPyB8cLvs2fRaVvdvqNh/0v76VAS0qcEbeUb coOSNYfoGOzWZiqJ+bi722TKAey8NnVS3uQKZZPHNoB+ojaZffJs0NEThzFD+p95 6BzegLC9MOI2GGkJcVZmuadxHdWZumFdYHTnAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUpTv5j/Y1dnqi8BoDSagWEy4/MRwwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3BUdjVqX1kxZG5xaThCb0RTYWdXRXk0 X01Sdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfSywAwDQYJ KoZIhvcNAQELBQADggEBAHWVgF8ZDOoMLYdaVEdq7lgKGnrFsuivS01nAiwyQf4U WMPk43ynfNUso0OOaYHbES1uhJ/yJOF6fPJQzhOZPirnv+iJHiEMcs2GEVRvmPmS woneWXk92OF8VUSOHN1TQ8iBBP8Dt0UBMTu4oDlZUKIfNizfR0qzOdZ1Dhp589Ng tpQi7SroWNYJxRLKfYA347QsvrGpXRi6W35uOyM8rTzAmdRvfE4OtPVgNY5n9+m5 8HTIR/aTPTGGKPpPgtvGWcH6127eknqf0Y8nApapYDlBKXwAp69+A77WmXqBds+2 xJsy9ss2JQjI75H+vKwIDesPzbvn6l5swtBQlZQqKhU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org