$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/xFR5FWIB33zjbmYbNPfovIMOJyU.roa File: xFR5FWIB33zjbmYbNPfovIMOJyU.roa (raw, json) Hash identifier: bPT8weZdaRrUXlXujlFMntk9UkrRrjCi7az2uFWlA7g= Subject key identifier: C4:54:79:15:62:01:DF:7C:E3:6E:66:1B:34:F7:E8:BC:83:0E:27:25 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FDD Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xFR5FWIB33zjbmYbNPfovIMOJyU.roa Signing time: Mon 26 Aug 2024 05:15:49 +0000 ROA not before: Mon 26 Aug 2024 05:15:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 218.184.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4061 (0xfdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C45479156201DF7CE36E661B34F7E8BC830E2725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5f:3d:97:d4:0c:6c:e9:a7:bc:e6:00:a0:c9: f7:85:3b:46:87:12:e6:c6:92:73:d4:6c:2a:15:73: d9:5f:0f:f0:1e:1b:ff:84:e0:66:0b:55:ca:80:ff: cb:39:d4:b9:86:e8:fb:1d:6c:a7:f9:dd:3f:9e:fb: f8:90:44:57:b2:15:1d:75:7a:83:e7:cf:24:64:78: 83:a2:bb:f2:b8:ca:93:39:72:25:02:9d:7f:31:90: d8:56:ab:3d:83:9e:b5:0f:61:46:9a:e2:63:af:d0: fb:83:4a:66:f0:9b:f2:60:d0:81:5f:4a:d8:25:6b: 22:9b:4a:45:c1:66:a9:4a:88:3d:28:58:d7:58:50: f2:01:1d:8d:ff:3e:22:f3:bf:1b:a4:d7:7b:4f:fe: fc:70:0b:0d:5d:aa:ba:b7:bc:de:91:04:d0:18:9a: b9:a5:52:3a:46:3c:bf:a7:ec:b4:8e:35:b5:f2:f3: 51:92:34:a0:ea:32:20:9f:b6:32:47:6e:d5:e9:99: 7d:f5:b6:e2:68:bc:3b:2c:4b:2a:6c:04:dd:70:cc: 1e:19:fb:63:6e:43:2b:62:7a:2e:d3:1a:96:ad:c7: bf:5c:81:36:48:4a:b3:5a:b3:7c:1a:6e:a6:20:2f: a4:75:e4:39:f2:a0:95:e2:6e:da:74:0f:92:79:a2: 33:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:54:79:15:62:01:DF:7C:E3:6E:66:1B:34:F7:E8:BC:83:0E:27:25 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xFR5FWIB33zjbmYbNPfovIMOJyU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption 77:f5:00:1e:72:a4:d3:14:8d:fc:0c:02:ac:38:b3:b4:96:31: 05:c8:8b:48:e5:c4:19:dd:a3:9d:76:d0:da:3a:0d:71:a8:e7: d2:65:45:6c:3d:75:31:3f:9a:5f:2a:fc:2f:d8:1e:d9:5c:41: 9f:5a:36:0d:47:54:66:5c:97:0e:e4:95:5b:1e:62:3c:2e:fa: 47:d9:2c:e4:ec:55:32:57:13:8e:8a:9f:d0:d7:49:a8:ed:d4: ae:a6:38:dc:a3:d2:44:89:7f:b2:f2:69:02:c2:c0:62:60:7b: b5:6c:74:70:23:b1:ba:67:b0:74:84:fa:33:98:f1:63:60:d0: ed:3d:6e:86:83:8e:8b:1d:2b:3f:2c:ff:e8:97:a9:79:7f:39: e4:1f:84:d3:f0:a4:a8:44:d6:76:ff:aa:b5:7e:32:48:52:7f: cc:cf:f6:22:48:e2:2a:35:95:5d:26:cc:88:6c:e7:d4:57:74: 65:5a:de:09:ac:0a:d6:16:5f:6a:3f:89:a1:21:16:8d:d3:40: 88:6f:72:45:9a:86:d5:f0:75:66:02:99:5a:24:52:5d:2c:27: f2:c3:16:0b:46:b2:4d:b0:e2:c8:c7:f5:5e:ed:f2:f3:8b:ce: df:56:ba:ae:57:15:fa:c0:a2:23:5a:77:55:5d:8f:80:24:c0: 04:3e:87:51 -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICD90wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM0NTQ3OTE1NjIwMURG N0NFMzZFNjYxQjM0RjdFOEJDODMwRTI3MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAXz2X1Axs6ae85gCgyfeFO0aHEubGknPUbCoVc9lfD/AeG/+E 4GYLVcqA/8s51LmG6PsdbKf53T+e+/iQRFeyFR11eoPnzyRkeIOiu/K4ypM5ciUC nX8xkNhWqz2DnrUPYUaa4mOv0PuDSmbwm/Jg0IFfStglayKbSkXBZqlKiD0oWNdY UPIBHY3/PiLzvxuk13tP/vxwCw1dqrq3vN6RBNAYmrmlUjpGPL+n7LSONbXy81GS NKDqMiCftjJHbtXpmX31tuJovDssSypsBN1wzB4Z+2NuQytiei7TGpatx79cgTZI SrNas3wabqYgL6R15DnyoJXibtp0D5J5ojMNAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUxFR5FWIB33zjbmYbNPfovIMOJyUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3hGUjVGV0lCMzN6amJtWWJOUGZvdklN T0p5VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDauDANBgkq hkiG9w0BAQsFAAOCAQEAd/UAHnKk0xSN/AwCrDiztJYxBciLSOXEGd2jnXbQ2joN cajn0mVFbD11MT+aXyr8L9ge2VxBn1o2DUdUZlyXDuSVWx5iPC76R9ks5OxVMlcT joqf0NdJqO3UrqY43KPSRIl/svJpAsLAYmB7tWx0cCOxumewdIT6M5jxY2DQ7T1u hoOOix0rPyz/6JepeX855B+E0/CkqETWdv+qtX4ySFJ/zM/2IkjiKjWVXSbMiGzn 1Fd0ZVreCawK1hZfaj+JoSEWjdNAiG9yRZqG1fB1ZgKZWiRSXSwn8sMWC0ayTbDi yMf1Xu3y84vO31a6rlcV+sCiI1p3VV2PgCTABD6HUQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org