$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/rkTGaXVn7aEH8UUWnndxhIodQoc.roa File: rkTGaXVn7aEH8UUWnndxhIodQoc.roa (raw, json) Hash identifier: CRKQeEFtQjPPxZlSMmo5w1ZRaj4TyyTDOjCj4I0HfgA= Subject key identifier: AE:44:C6:69:75:67:ED:A1:07:F1:45:16:9E:77:71:84:8A:1D:42:87 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FDE Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/rkTGaXVn7aEH8UUWnndxhIodQoc.roa Signing time: Mon 26 Aug 2024 05:15:49 +0000 ROA not before: Mon 26 Aug 2024 05:15:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 203.79.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4062 (0xfde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE44C6697567EDA107F145169E7771848A1D4287 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2d:6a:a5:f2:00:09:c7:f9:47:9b:18:0d:88: 67:a9:a6:a0:04:b8:41:39:e4:4a:68:ae:40:bd:b2: a3:1e:63:47:46:46:b0:17:17:0a:73:18:1e:2b:1c: e2:ef:81:b1:d3:ef:d5:a9:b2:46:16:37:4a:e1:da: 43:7a:52:2a:ca:80:1a:92:5f:55:3e:b6:9f:0b:ab: 22:cf:94:1e:26:45:3f:30:fa:86:46:6c:77:8e:f2: aa:e3:c7:d8:75:93:c4:21:a2:6a:79:61:c5:9f:ba: 8f:cf:35:37:fe:b7:f4:d5:da:43:ec:91:95:19:97: fa:13:b7:54:a8:69:2f:c5:26:19:2f:b4:bc:5d:80: 37:28:a3:83:49:33:79:93:46:5b:a9:2f:84:8d:ae: ee:e5:df:dd:52:27:03:97:2e:97:e9:30:b2:19:f9: 26:18:85:25:6e:13:e4:33:9d:e5:87:3f:39:f9:61: a2:90:8f:36:91:2e:dd:75:46:6c:1d:c5:1a:72:98: 72:df:b3:36:d6:7f:e9:ce:44:dd:63:ef:e8:e0:50: f9:58:3a:ab:be:e4:79:5c:c4:62:9c:df:ef:d2:5a: 0a:b3:3b:a2:61:a2:ae:87:71:cb:cd:fd:69:e4:ca: 05:8c:e5:6c:04:be:34:fe:ae:d9:2e:87:16:79:e1: 54:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:44:C6:69:75:67:ED:A1:07:F1:45:16:9E:77:71:84:8A:1D:42:87 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/rkTGaXVn7aEH8UUWnndxhIodQoc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.79.128.0/17 Signature Algorithm: sha256WithRSAEncryption 14:7d:58:d9:79:40:e7:92:1a:92:d3:09:2b:9e:e4:5d:e4:e1: 96:85:9f:bb:90:6c:af:2f:29:83:32:49:67:41:37:92:55:4b: 3a:82:25:62:7b:82:cf:24:ab:30:17:50:fc:67:25:7e:0c:f8: 4e:7c:31:19:48:a0:97:f9:bc:b6:3e:d8:bb:67:d4:b9:c6:9e: 4a:d0:ba:f6:d6:e4:2b:0a:48:a3:e7:22:29:70:85:e4:8c:09: b7:fb:8f:a8:01:5b:b6:ca:8d:68:7f:44:09:69:48:d9:46:22: 3b:a1:ab:eb:d2:bc:99:fb:8a:51:06:e2:85:4a:d5:56:71:29: 75:6a:89:59:a6:bc:84:5e:dc:43:ac:8b:86:9c:f2:31:dc:6b: 76:a3:4e:93:51:0d:89:ca:2d:5f:72:94:04:ec:c1:5b:f6:9f: cb:40:f7:fc:7a:a6:6e:b2:80:54:b7:42:81:84:3f:c4:a5:af: d5:f6:b7:71:82:d6:5c:e5:c1:5e:70:7d:cb:d8:ef:0c:76:86: 34:2b:1f:cf:3d:4e:f0:2d:30:47:38:63:c1:de:4a:62:f6:d5: 87:f6:4b:2a:09:a5:ef:a6:c2:af:9e:93:e9:33:ff:f3:54:d3: 01:73:2d:51:c4:b7:2a:66:0d:57:0e:91:76:1b:8e:36:d9:5d: 18:34:97:82 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD94wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFNDRDNjY5NzU2N0VE QTEwN0YxNDUxNjlFNzc3MTg0OEExRDQyODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlLWql8gAJx/lHmxgNiGeppqAEuEE55EporkC9sqMeY0dGRrAX FwpzGB4rHOLvgbHT79WpskYWN0rh2kN6UirKgBqSX1U+tp8LqyLPlB4mRT8w+oZG bHeO8qrjx9h1k8Qhomp5YcWfuo/PNTf+t/TV2kPskZUZl/oTt1SoaS/FJhkvtLxd gDcoo4NJM3mTRlupL4SNru7l391SJwOXLpfpMLIZ+SYYhSVuE+QzneWHPzn5YaKQ jzaRLt11RmwdxRpymHLfszbWf+nORN1j7+jgUPlYOqu+5HlcxGKc3+/SWgqzO6Jh oq6HccvN/WnkygWM5WwEvjT+rtkuhxZ54VSZAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUrkTGaXVn7aEH8UUWnndxhIodQocwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3JrVEdhWFZuN2FFSDhVVVdubmR4aElv ZFFvYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAfLT4AwDQYJ KoZIhvcNAQELBQADggEBABR9WNl5QOeSGpLTCSue5F3k4ZaFn7uQbK8vKYMySWdB N5JVSzqCJWJ7gs8kqzAXUPxnJX4M+E58MRlIoJf5vLY+2Ltn1LnGnkrQuvbW5CsK SKPnIilwheSMCbf7j6gBW7bKjWh/RAlpSNlGIjuhq+vSvJn7ilEG4oVK1VZxKXVq iVmmvIRe3EOsi4ac8jHca3ajTpNRDYnKLV9ylATswVv2n8tA9/x6pm6ygFS3QoGE P8Slr9X2t3GC1lzlwV5wfcvY7wx2hjQrH889TvAtMEc4Y8HeSmL21Yf2SyoJpe+m wq+ek+kz//NU0wFzLVHEtypmDVcOkXYbjjbZXRg0l4I= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org