$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/vjYw-zfCNS111RygMd6w-8T7J8M.roa File: vjYw-zfCNS111RygMd6w-8T7J8M.roa (raw, json) Hash identifier: lWel3wqOsSesp5npgG89lWMydhx/6t3SsBhlkiyJ4m4= Subject key identifier: BE:36:30:FB:37:C2:35:2D:75:D5:1C:A0:31:DE:B0:FB:C4:FB:27:C3 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1093 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vjYw-zfCNS111RygMd6w-8T7J8M.roa Signing time: Mon 26 Aug 2024 05:16:34 +0000 ROA not before: Mon 26 Aug 2024 05:16:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 210.201.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4243 (0x1093) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BE3630FB37C2352D75D51CA031DEB0FBC4FB27C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:37:fa:0a:43:ee:6c:58:6f:25:3c:f6:f4:67: c4:b7:04:01:72:81:0f:9e:ef:7e:04:1a:4c:ee:fb: 4d:fd:28:12:e9:91:3e:cb:7b:1f:03:a5:8c:8e:99: 3f:16:34:54:77:f5:8c:b4:f0:81:46:9d:29:81:27: 9a:9b:5c:b2:3f:6e:66:44:a8:1f:31:df:c8:ba:a8: d6:7d:ca:ae:54:1c:70:d9:3c:77:23:8f:f5:2a:3d: 7e:30:d6:a5:6e:6f:d2:78:92:a1:42:2d:bb:ca:46: d5:d4:7f:39:5e:fb:96:01:14:7c:b9:d4:a3:3f:f1: 72:c6:e0:b5:5b:cd:3a:29:01:c2:55:0c:22:f3:3f: 29:cb:de:d9:44:0e:71:43:81:1d:0b:d2:8c:72:f7: 66:9d:68:8f:e5:96:34:f0:bd:97:34:00:27:84:e5: 56:2d:0d:5b:cc:77:01:1e:ff:ec:d9:3a:3d:9d:f6: 63:f5:ed:98:f0:fc:05:a7:32:5d:5d:e4:a6:90:82: 0d:fe:42:2c:e3:02:13:88:ee:6d:e8:c0:32:31:ed: ad:08:fe:6e:7b:92:f8:85:e1:de:39:49:60:87:87: 00:09:28:72:d5:5e:df:fa:23:d9:fc:f5:ae:8c:dc: 65:fd:5a:49:3e:c8:28:c5:bd:fb:16:58:a2:9d:d4: c4:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:36:30:FB:37:C2:35:2D:75:D5:1C:A0:31:DE:B0:FB:C4:FB:27:C3 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/vjYw-zfCNS111RygMd6w-8T7J8M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.201.72.0/23 Signature Algorithm: sha256WithRSAEncryption a5:5c:22:94:c5:82:d0:71:da:6f:34:a9:4c:e9:47:e5:66:7b: 10:bf:5c:dd:bb:79:21:c4:eb:5f:ac:9e:4f:f6:37:e0:51:40: 4c:91:36:ef:1b:55:a9:92:e6:75:ac:fc:6a:a0:ff:a9:0a:51: fa:bb:bf:87:ac:14:64:3d:a9:0a:6f:c1:af:be:d1:67:ce:fe: cc:1f:c2:27:f4:73:99:30:13:c2:b2:76:51:01:ca:35:f8:7b: 30:58:78:87:59:c6:e8:5d:72:e3:4e:10:25:83:12:de:20:ae: c1:95:bd:e9:7e:00:6d:c2:d6:eb:4f:dd:e9:28:05:80:3d:fd: c0:89:11:19:60:72:13:39:de:11:9d:54:52:17:34:7a:f2:bf: 48:b1:d1:a8:dc:1b:8a:29:f6:c3:83:52:f0:da:b3:45:ee:32: b4:f8:95:ac:31:b8:52:3d:86:97:c4:41:f5:04:ad:e1:ed:f4: 02:f0:09:79:6e:8e:0a:ec:4a:10:77:ee:57:eb:8d:42:c2:60: 05:1c:f5:1b:b9:0d:38:a5:82:42:2c:e8:8d:a5:96:af:72:76: db:d9:32:f8:50:b1:83:36:b3:3a:8b:6a:d1:1e:12:80:12:70: 8d:96:4a:50:46:75:0b:46:97:44:15:65:99:79:25:55:dc:3b: 16:b1:77:a6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJFMzYzMEZCMzdDMjM1 MkQ3NUQ1MUNBMDMxREVCMEZCQzRGQjI3QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMN/oKQ+5sWG8lPPb0Z8S3BAFygQ+e734EGkzu+039KBLpkT7L ex8DpYyOmT8WNFR39Yy08IFGnSmBJ5qbXLI/bmZEqB8x38i6qNZ9yq5UHHDZPHcj j/UqPX4w1qVub9J4kqFCLbvKRtXUfzle+5YBFHy51KM/8XLG4LVbzTopAcJVDCLz PynL3tlEDnFDgR0L0oxy92adaI/lljTwvZc0ACeE5VYtDVvMdwEe/+zZOj2d9mP1 7Zjw/AWnMl1d5KaQgg3+QizjAhOI7m3owDIx7a0I/m57kviF4d45SWCHhwAJKHLV Xt/6I9n89a6M3GX9Wkk+yCjFvfsWWKKd1MRrAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUvjYw+zfCNS111RygMd6w+8T7J8MwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3ZqWXctemZDTlMxMTFSeWdNZDZ3LThU N0o4TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHSyUgwDQYJ KoZIhvcNAQELBQADggEBAKVcIpTFgtBx2m80qUzpR+VmexC/XN27eSHE61+snk/2 N+BRQEyRNu8bVamS5nWs/Gqg/6kKUfq7v4esFGQ9qQpvwa++0WfO/swfwif0c5kw E8KydlEByjX4ezBYeIdZxuhdcuNOECWDEt4grsGVvel+AG3C1utP3ekoBYA9/cCJ ERlgchM53hGdVFIXNHryv0ix0ajcG4op9sODUvDas0XuMrT4lawxuFI9hpfEQfUE reHt9ALwCXlujgrsShB37lfrjULCYAUc9Ru5DTilgkIs6I2llq9ydtvZMvhQsYM2 szqLatEeEoAScI2WSlBGdQtGl0QVZZl5JVXcOxaxd6Y= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org