$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/vA__8qlZRAO4iHqimRP2y-e3OG4.roa File: vA__8qlZRAO4iHqimRP2y-e3OG4.roa (raw, json) Hash identifier: IYZXu5Q6iiABVH4fEEkZ1JIo6OjT5nUJexTl5uE4LAo= Subject key identifier: BC:0F:FF:F2:A9:59:44:03:B8:88:7A:A2:99:13:F6:CB:E7:B7:38:6E Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1025 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vA__8qlZRAO4iHqimRP2y-e3OG4.roa Signing time: Mon 26 Aug 2024 05:16:07 +0000 ROA not before: Mon 26 Aug 2024 05:16:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 223.22.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4133 (0x1025) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BC0FFFF2A9594403B8887AA29913F6CBE7B7386E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c4:aa:92:1f:63:54:a8:2d:dc:22:4f:a1:8c: 6f:10:34:2e:e0:d4:fd:8a:94:ab:15:f3:72:b4:69: 14:d0:a0:ea:75:96:64:2c:95:d6:45:11:b7:d3:eb: fb:40:d7:ad:4c:a6:1c:b8:8b:1e:86:3c:cd:6f:f8: dd:47:d1:79:a6:dc:e7:fd:15:ca:1f:36:1e:02:99: 26:6a:e6:51:3f:6e:2a:10:09:cf:4a:8b:3b:55:c9: 07:7e:c9:0e:f7:b6:95:3e:4c:60:5b:7e:84:2d:ff: 55:f3:b4:ec:ab:dd:6f:74:7f:73:72:7e:6f:17:45: dc:e8:49:fc:45:c2:7b:3b:f5:56:d4:39:81:c2:f6: b8:f1:80:a2:81:44:17:38:80:1a:f7:12:31:02:dd: 4c:ce:49:3d:95:26:eb:76:03:03:3c:d6:54:57:21: a0:01:2a:59:21:9e:c0:b0:89:ea:75:b0:67:ea:dd: 5d:3f:78:af:1f:0d:f2:53:98:63:18:db:0c:c3:b9: fd:0f:cd:8d:d3:63:41:06:1e:14:02:38:a1:5a:99: 80:59:3b:e8:5f:c6:13:15:9c:c2:e4:4a:b8:71:ab: 79:79:e0:72:65:4e:4e:ae:e3:20:42:b1:ff:57:f0: 87:94:26:4d:2e:3d:1e:03:ff:6d:ae:06:77:e7:13: eb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:0F:FF:F2:A9:59:44:03:B8:88:7A:A2:99:13:F6:CB:E7:B7:38:6E X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vA__8qlZRAO4iHqimRP2y-e3OG4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.22.0.0/18 Signature Algorithm: sha256WithRSAEncryption 0b:b0:64:18:5b:46:28:46:be:d2:17:9b:10:46:07:38:1f:cc: 0f:2a:26:9c:0c:cd:ea:d1:ea:08:aa:31:e7:85:82:88:26:2a: 9f:48:b9:5e:04:43:8b:57:c5:e0:af:fc:3d:69:ed:45:bf:df: c6:4d:3e:30:80:e3:21:69:62:bd:a5:a8:d1:50:9c:76:99:dc: 34:a3:b6:6a:f7:70:4d:64:06:cf:d2:4d:16:bb:62:97:79:e2: a1:48:03:bb:c9:4a:48:e2:f0:65:f0:43:7e:57:03:64:fd:81: 61:fc:d3:c3:49:ea:ef:00:05:57:41:4b:2c:31:35:c2:ee:85: 8f:b6:ad:ac:04:2f:9b:06:4d:b3:8b:84:13:8d:eb:0b:2d:be: 37:a7:e0:a4:2c:1b:f3:2d:81:ee:8f:06:ad:dc:4e:d8:f9:a3: ef:4b:a0:6b:a1:77:80:f8:50:1c:ea:79:06:9f:21:73:0a:32: f9:04:a0:d7:74:5d:2a:29:a1:19:00:b5:a1:51:a8:c8:42:55: 2b:3f:5b:d0:86:39:81:f4:ac:52:c0:5a:c3:91:6e:6c:b4:85: 37:b6:99:8c:1f:6b:0e:d8:cb:79:89:d5:ec:2c:6a:5c:66:8d: f8:5a:e1:da:9a:fa:68:bf:bc:64:6f:56:a0:76:49:ab:05:54: 8d:0f:10:ab -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICECUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDMEZGRkYyQTk1OTQ0 MDNCODg4N0FBMjk5MTNGNkNCRTdCNzM4NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpxKqSH2NUqC3cIk+hjG8QNC7g1P2KlKsV83K0aRTQoOp1lmQs ldZFEbfT6/tA161Mphy4ix6GPM1v+N1H0Xmm3Of9FcofNh4CmSZq5lE/bioQCc9K iztVyQd+yQ73tpU+TGBbfoQt/1XztOyr3W90f3Nyfm8XRdzoSfxFwns79VbUOYHC 9rjxgKKBRBc4gBr3EjEC3UzOST2VJut2AwM81lRXIaABKlkhnsCwiep1sGfq3V0/ eK8fDfJTmGMY2wzDuf0PzY3TY0EGHhQCOKFamYBZO+hfxhMVnMLkSrhxq3l54HJl Tk6u4yBCsf9X8IeUJk0uPR4D/22uBnfnE+vHAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUvA//8qlZRAO4iHqimRP2y+e3OG4wHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3ZBX184cWxaUkFPNGlIcWltUlAyeS1l M09HNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbfFgAwDQYJ KoZIhvcNAQELBQADggEBAAuwZBhbRihGvtIXmxBGBzgfzA8qJpwMzerR6giqMeeF gogmKp9IuV4EQ4tXxeCv/D1p7UW/38ZNPjCA4yFpYr2lqNFQnHaZ3DSjtmr3cE1k Bs/STRa7Ypd54qFIA7vJSkji8GXwQ35XA2T9gWH808NJ6u8ABVdBSywxNcLuhY+2 rawEL5sGTbOLhBON6wstvjen4KQsG/Mtge6PBq3cTtj5o+9LoGuhd4D4UBzqeQaf IXMKMvkEoNd0XSopoRkAtaFRqMhCVSs/W9CGOYH0rFLAWsORbmy0hTe2mYwfaw7Y y3mJ1ewsalxmjfha4dqa+mi/vGRvVqB2SasFVI0PEKs= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:28 2024 by rpki-client on console-fra.rpki-client.org