$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/wgNinQNt7vlcAPWRe8-uPa-JdNQ.roa File: wgNinQNt7vlcAPWRe8-uPa-JdNQ.roa (raw, json) Hash identifier: zDxg5h6V6KgePYVoC1t5sWv7TGYqWtCWGZ9ymCs/D9Y= Subject key identifier: C2:03:62:9D:03:6D:EE:F9:5C:00:F5:91:7B:CF:AE:3D:AF:89:74:D4 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1050 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wgNinQNt7vlcAPWRe8-uPa-JdNQ.roa Signing time: Mon 26 Aug 2024 05:16:18 +0000 ROA not before: Mon 26 Aug 2024 05:16:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 219.91.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4176 (0x1050) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C203629D036DEEF95C00F5917BCFAE3DAF8974D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ae:49:c7:49:62:93:d3:8d:a0:c3:d8:b7:f1: 1a:30:46:23:04:38:16:a0:b1:86:f7:c0:5c:21:cd: 31:d3:88:25:57:a7:5b:26:5b:da:c4:a1:61:27:3b: d2:44:46:4a:f5:3f:f0:4c:e5:28:be:cb:0c:58:6f: 54:ac:88:a6:21:08:16:8a:30:9e:7c:50:37:2a:a7: 39:dd:22:d8:7a:74:18:e2:8c:a6:ed:88:a2:5d:b6: 52:00:79:cf:af:17:4e:1b:7a:06:0f:33:bf:fe:e4: b0:c3:dd:7c:89:37:e1:07:c2:61:64:e1:2d:ba:91: f1:ae:95:c9:cb:2a:02:77:c5:b5:59:70:bd:c9:da: a8:e3:f3:90:a5:c3:36:b0:d2:58:82:8a:06:be:f1: fa:a0:eb:b8:fe:72:7c:a8:db:ac:03:5f:6e:2e:e3: 90:f6:74:77:f7:2a:89:2a:5a:75:1d:36:de:16:97: 11:fb:54:32:cb:4a:6e:75:4f:9d:f9:96:75:af:d6: e9:8e:64:e5:38:c7:3a:93:d7:92:fe:44:43:11:fd: 4b:77:89:52:0a:8a:08:53:a2:3b:84:0b:e2:73:6f: 18:f9:32:30:a4:82:c0:c8:fb:51:e8:41:c4:ce:9a: 11:b4:47:13:c3:8b:99:8d:00:84:11:63:e3:77:43: 97:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:03:62:9D:03:6D:EE:F9:5C:00:F5:91:7B:CF:AE:3D:AF:89:74:D4 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/wgNinQNt7vlcAPWRe8-uPa-JdNQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.91.64.0/18 Signature Algorithm: sha256WithRSAEncryption 0e:b3:80:76:41:cf:f2:b1:7a:1d:6a:71:4a:8b:4f:5a:0b:43: cf:f4:45:6b:e3:29:0f:a2:1a:29:e1:83:b2:5a:89:20:19:90: ff:09:4c:a4:13:38:72:09:2a:30:00:dc:0e:37:14:db:c4:d4: 79:2f:81:48:fd:eb:5d:ca:b2:de:ce:29:26:83:db:b2:ec:2d: 10:a7:26:50:d9:ff:50:1b:87:fa:d4:e3:0f:e8:d0:7e:23:42: 12:50:1a:fb:9d:31:ba:2a:61:70:1e:ef:d7:51:98:40:50:77: 33:03:bc:70:46:fd:13:52:40:7d:00:74:14:86:08:23:b4:f5: e5:d0:a6:68:49:63:ea:a3:38:ba:0a:e6:b0:1a:2c:10:b9:b7: d2:fa:94:58:1e:db:0a:af:da:a0:35:0f:d2:89:7b:4c:03:0f: 46:46:48:4b:e4:e3:ed:3b:a1:51:ec:74:35:cd:28:80:fb:2d: 4b:93:72:54:7a:21:43:b6:4b:c1:92:a8:1d:7f:9b:e2:71:f0: 7a:05:ef:10:78:17:9a:77:70:b9:13:2e:1c:42:f9:f7:59:ca: d7:d1:29:5f:e8:ed:58:71:36:a1:fd:62:7b:74:75:a3:bc:a0: 55:f3:a5:66:8c:f6:3c:53:b1:76:7b:2c:6a:ec:ce:c8:20:3a: cf:dc:71:46 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEFAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyMDM2MjlEMDM2REVF Rjk1QzAwRjU5MTdCQ0ZBRTNEQUY4OTc0RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6rknHSWKT042gw9i38RowRiMEOBagsYb3wFwhzTHTiCVXp1sm W9rEoWEnO9JERkr1P/BM5Si+ywxYb1SsiKYhCBaKMJ58UDcqpzndIth6dBjijKbt iKJdtlIAec+vF04begYPM7/+5LDD3XyJN+EHwmFk4S26kfGulcnLKgJ3xbVZcL3J 2qjj85Clwzaw0liCiga+8fqg67j+cnyo26wDX24u45D2dHf3KokqWnUdNt4WlxH7 VDLLSm51T535lnWv1umOZOU4xzqT15L+REMR/Ut3iVIKighTojuEC+Jzbxj5MjCk gsDI+1HoQcTOmhG0RxPDi5mNAIQRY+N3Q5ffAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUwgNinQNt7vlcAPWRe8+uPa+JdNQwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3dnTmluUU50N3ZsY0FQV1JlOC11UGEt SmROUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbbW0AwDQYJ KoZIhvcNAQELBQADggEBAA6zgHZBz/Kxeh1qcUqLT1oLQ8/0RWvjKQ+iGinhg7Ja iSAZkP8JTKQTOHIJKjAA3A43FNvE1HkvgUj9613Kst7OKSaD27LsLRCnJlDZ/1Ab h/rU4w/o0H4jQhJQGvudMboqYXAe79dRmEBQdzMDvHBG/RNSQH0AdBSGCCO09eXQ pmhJY+qjOLoK5rAaLBC5t9L6lFge2wqv2qA1D9KJe0wDD0ZGSEvk4+07oVHsdDXN KID7LUuTclR6IUO2S8GSqB1/m+Jx8HoF7xB4F5p3cLkTLhxC+fdZytfRKV/o7Vhx NqH9Ynt0daO8oFXzpWaM9jxTsXZ7LGrszsggOs/ccUY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org