$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/xwl6MbiN7mFa-ANvPUI5SJn1T9w.roa File: xwl6MbiN7mFa-ANvPUI5SJn1T9w.roa (raw, json) Hash identifier: c/w1/9jIDFc8OCe5ZnCqLBqm6YFUxZ/I6W9uMjfRSlk= Subject key identifier: C7:09:7A:31:B8:8D:EE:61:5A:F8:03:6F:3D:42:39:48:99:F5:4F:DC Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 10D5 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xwl6MbiN7mFa-ANvPUI5SJn1T9w.roa Signing time: Mon 26 Aug 2024 05:16:49 +0000 ROA not before: Mon 26 Aug 2024 05:16:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 16625 IP address blocks: 210.203.8.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4309 (0x10d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C7097A31B88DEE615AF8036F3D42394899F54FDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:80:8a:8a:bc:7c:32:ba:ca:82:17:5f:38:60: 18:74:35:1f:7e:97:f1:23:0f:b7:dc:92:05:51:17: bd:14:24:7c:26:07:4f:f6:5f:71:b7:3b:8d:a4:f5: b3:fb:04:a9:ca:87:d2:11:9f:8c:58:2c:32:8f:ec: 80:ab:09:02:f1:0c:74:31:80:1d:32:31:65:6f:b4: 77:20:70:e8:a3:2f:20:e6:31:23:c7:73:26:44:9a: e2:0f:a1:cb:7d:4b:b4:3b:4d:9b:bd:16:c8:7a:b1: b4:4d:e9:2d:2f:a1:5a:3b:5e:aa:7b:39:5d:01:29: fc:d1:8a:56:80:96:03:46:32:21:da:92:75:28:55: fd:79:d5:49:81:18:dd:a1:66:82:88:42:b9:1f:05: ae:03:a3:4c:4c:58:02:b6:24:11:18:7a:7b:e3:23: fc:35:91:85:fb:61:85:f6:25:14:83:01:0b:04:5c: 51:68:09:27:c0:3a:84:8a:38:b7:1f:1c:24:07:b6: f3:03:2e:78:71:00:65:b8:b1:30:77:79:66:03:1c: 58:52:67:9d:d5:99:b8:af:17:6e:90:77:28:39:90: ae:9c:34:ee:4b:9f:af:07:9c:c0:56:5b:5c:07:db: 23:75:55:d7:fa:5e:a6:fc:ac:7c:a9:04:6f:c1:35: 8f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:09:7A:31:B8:8D:EE:61:5A:F8:03:6F:3D:42:39:48:99:F5:4F:DC X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xwl6MbiN7mFa-ANvPUI5SJn1T9w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.203.8.0/21 Signature Algorithm: sha256WithRSAEncryption 3b:d0:2d:7a:59:22:c6:95:40:28:c4:08:58:8a:9e:ea:24:91: a7:4b:70:a8:1e:26:06:5a:dc:c8:4e:0d:37:a4:00:e4:03:89: 5a:16:21:82:a9:51:ff:1a:21:fa:b8:c9:02:6c:37:ca:9f:8f: 65:7b:c0:7a:1d:b4:b2:a8:86:d8:ea:e3:4c:73:6a:c3:7a:10: cd:27:81:4f:29:5e:9f:14:f5:46:6d:0b:12:75:de:e9:95:e7: 1e:61:e8:60:b8:93:30:c9:97:0d:f6:b2:e5:b0:8b:80:bc:ba: 30:55:ed:b2:08:84:86:7c:35:7b:77:33:6e:b3:6e:51:ac:d6: 75:7b:d1:38:a8:f5:64:2d:2e:11:e7:fb:b0:b4:71:8c:87:c9: 68:8a:74:e3:c9:9a:a2:1f:66:21:41:c7:2b:2b:93:ed:2e:65: ab:04:c9:5a:31:56:d9:8f:2b:7c:0d:42:70:5b:fb:43:90:13: 9d:76:79:12:1e:da:4f:ee:73:1c:86:aa:10:78:4f:b8:66:8b: ae:a8:87:0e:44:df:79:3a:49:f1:bf:23:30:d3:15:b3:49:72: f7:0a:f9:41:54:f4:44:0b:dd:e8:93:e2:de:96:40:2c:5c:45: 67:12:3f:bd:45:68:d5:4e:f9:6b:71:18:3f:46:c2:50:c2:4e: af:12:fb:58 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICENUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM3MDk3QTMxQjg4REVF NjE1QUY4MDM2RjNENDIzOTQ4OTlGNTRGREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbgIqKvHwyusqCF184YBh0NR9+l/EjD7fckgVRF70UJHwmB0/2 X3G3O42k9bP7BKnKh9IRn4xYLDKP7ICrCQLxDHQxgB0yMWVvtHcgcOijLyDmMSPH cyZEmuIPoct9S7Q7TZu9Fsh6sbRN6S0voVo7Xqp7OV0BKfzRilaAlgNGMiHaknUo Vf151UmBGN2hZoKIQrkfBa4Do0xMWAK2JBEYenvjI/w1kYX7YYX2JRSDAQsEXFFo CSfAOoSKOLcfHCQHtvMDLnhxAGW4sTB3eWYDHFhSZ53VmbivF26Qdyg5kK6cNO5L n68HnMBWW1wH2yN1Vdf6Xqb8rHypBG/BNY8XAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUxwl6MbiN7mFa+ANvPUI5SJn1T9wwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3h3bDZNYmlON21GYS1BTnZQVUk1U0pu MVQ5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPSywgwDQYJ KoZIhvcNAQELBQADggEBADvQLXpZIsaVQCjECFiKnuokkadLcKgeJgZa3MhODTek AOQDiVoWIYKpUf8aIfq4yQJsN8qfj2V7wHodtLKohtjq40xzasN6EM0ngU8pXp8U 9UZtCxJ13umV5x5h6GC4kzDJlw32suWwi4C8ujBV7bIIhIZ8NXt3M26zblGs1nV7 0Tio9WQtLhHn+7C0cYyHyWiKdOPJmqIfZiFBxysrk+0uZasEyVoxVtmPK3wNQnBb +0OQE512eRIe2k/ucxyGqhB4T7hmi66ohw5E33k6SfG/IzDTFbNJcvcK+UFU9EQL 3eiT4t6WQCxcRWcSP71FaNVO+WtxGD9GwlDCTq8S+1g= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org