$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uRO4Ieam_nXavSxl2W4GFkFVKG8.roa File: uRO4Ieam_nXavSxl2W4GFkFVKG8.roa (raw, json) Hash identifier: ktcsBgw/faJCe3Aw2fIJwu2m0hlOMkRZgXlSnIB1UYk= Subject key identifier: B9:13:B8:21:E6:A6:FE:75:DA:BD:2C:65:D9:6E:06:16:41:55:28:6F Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1060 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uRO4Ieam_nXavSxl2W4GFkFVKG8.roa Signing time: Mon 26 Aug 2024 05:16:21 +0000 ROA not before: Mon 26 Aug 2024 05:16:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.201.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4192 (0x1060) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B913B821E6A6FE75DABD2C65D96E06164155286F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:32:18:b2:b8:5d:c5:e3:98:1f:e2:d8:5d: 8e:16:03:39:11:a9:2c:45:1d:c1:94:f1:5a:a3:e0: 41:84:90:b6:1c:3c:b4:36:8a:be:15:7d:fb:35:e8: 49:e7:5a:8d:85:7e:14:fe:7e:cd:d0:70:26:cc:45: f1:9e:12:52:a9:58:89:f8:ad:75:0b:90:56:85:6a: fe:4d:fd:2f:6a:3f:6a:bf:9a:68:07:47:95:12:a9: 6a:3c:f3:56:d1:bb:13:dc:c0:30:7c:d0:9a:f3:03: 74:a0:14:f4:be:03:f7:b2:1b:2a:5a:95:2d:b4:25: 9e:b7:0f:16:81:09:ec:aa:23:4e:ef:af:c6:7c:dd: 84:db:86:5a:46:5d:90:fc:e6:23:a6:fc:2d:8a:01: 09:05:6f:8e:cb:eb:81:88:da:1b:86:1d:de:b4:bf: 4f:8e:75:59:26:e1:76:ee:e9:34:09:58:6c:06:3a: c7:a2:24:d8:ba:6f:56:f5:10:37:b2:43:b4:98:f0: bb:28:7e:70:91:b6:a3:ff:69:f7:2b:3d:6e:d0:7c: 39:c1:40:b0:56:53:10:d0:1b:1c:aa:bc:41:45:c6: 35:38:fd:89:9a:ac:6b:74:4e:ae:61:43:d8:29:86: 82:6c:1a:ed:d4:f7:dd:94:f9:5d:0f:8c:b2:ea:d0: 78:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:13:B8:21:E6:A6:FE:75:DA:BD:2C:65:D9:6E:06:16:41:55:28:6F X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uRO4Ieam_nXavSxl2W4GFkFVKG8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.72.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:62:25:72:47:79:b5:18:d6:b7:a9:6d:12:f1:93:93:a7:06: 13:88:8a:58:79:30:2d:81:11:be:74:75:c7:1f:9b:a5:87:5a: 35:fb:20:be:18:a7:e6:b7:27:6f:54:21:80:8c:4f:cc:e4:06: 8c:f4:37:1e:ed:36:04:f1:ec:39:5b:54:f6:13:c7:30:0c:37: 02:ef:75:1e:94:e2:73:7d:bd:eb:2f:3f:56:d3:6d:5e:4e:a6: d3:3f:12:14:6e:74:25:a3:f9:74:9f:fd:2b:08:cb:16:ae:ba: 7a:ea:28:02:37:e9:97:d4:26:25:6b:7f:6e:c6:52:22:26:5f: 07:95:c5:ef:9d:0f:03:cd:15:bf:af:f0:3a:28:76:92:0a:a0: 5b:0f:3c:37:14:a8:66:5a:7d:e9:79:f7:83:3b:c2:56:67:97: cc:5b:ca:6c:28:63:12:5b:ad:09:3c:76:a9:c0:15:5e:a4:d9: 11:b8:e6:5b:7f:6a:c4:dd:e2:02:24:28:3b:1b:1b:cc:e2:bf: ba:ae:66:1a:35:c2:dd:bd:44:82:8a:dd:6f:30:24:ae:f5:b3: 6c:2b:33:72:f7:a7:7c:4c:d5:b7:74:16:3c:5e:46:0c:60:54: 05:1c:b9:3c:af:46:13:de:51:b0:f8:a3:24:75:65:19:e8:25: 3c:1e:0f:2a -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEGAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI5MTNCODIxRTZBNkZF NzVEQUJEMkM2NUQ5NkUwNjE2NDE1NTI4NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9HzIYsrhdxeOYH+LYXY4WAzkRqSxFHcGU8Vqj4EGEkLYcPLQ2 ir4Vffs16EnnWo2FfhT+fs3QcCbMRfGeElKpWIn4rXULkFaFav5N/S9qP2q/mmgH R5USqWo881bRuxPcwDB80JrzA3SgFPS+A/eyGypalS20JZ63DxaBCeyqI07vr8Z8 3YTbhlpGXZD85iOm/C2KAQkFb47L64GI2huGHd60v0+OdVkm4Xbu6TQJWGwGOsei JNi6b1b1EDeyQ7SY8LsofnCRtqP/afcrPW7QfDnBQLBWUxDQGxyqvEFFxjU4/Yma rGt0Tq5hQ9gphoJsGu3U992U+V0PjLLq0HinAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUuRO4Ieam/nXavSxl2W4GFkFVKG8wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3VSTzRJZWFtX25YYXZTeGwyVzRHRmtG VktHOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADSyUgwDQYJ KoZIhvcNAQELBQADggEBAFtiJXJHebUY1repbRLxk5OnBhOIilh5MC2BEb50dccf m6WHWjX7IL4Yp+a3J29UIYCMT8zkBoz0Nx7tNgTx7DlbVPYTxzAMNwLvdR6U4nN9 vesvP1bTbV5OptM/EhRudCWj+XSf/SsIyxauunrqKAI36ZfUJiVrf27GUiImXweV xe+dDwPNFb+v8DoodpIKoFsPPDcUqGZafel594M7wlZnl8xbymwoYxJbrQk8dqnA FV6k2RG45lt/asTd4gIkKDsbG8ziv7quZho1wt29RIKK3W8wJK71s2wrM3L3p3xM 1bd0FjxeRgxgVAUcuTyvRhPeUbD4oyR1ZRnoJTweDyo= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:05 2024 by rpki-client on console-ams.rpki-client.org