$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/yFSsDUaxlgZ_xyFY7ehq3v8Doos.roa File: yFSsDUaxlgZ_xyFY7ehq3v8Doos.roa (raw, json) Hash identifier: +bbb3DM8f25fQV3vfuSOjlg9K/IWUZoXqHkPFUc7qNM= Subject key identifier: C8:54:AC:0D:46:B1:96:06:7F:C7:21:58:ED:E8:6A:DE:FF:03:A2:8B Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1056 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yFSsDUaxlgZ_xyFY7ehq3v8Doos.roa Signing time: Mon 26 Aug 2024 05:16:19 +0000 ROA not before: Mon 26 Aug 2024 05:16:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7482 IP address blocks: 210.202.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4182 (0x1056) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C854AC0D46B196067FC72158EDE86ADEFF03A28B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1a:08:5f:13:c1:b3:cf:37:2b:a1:1f:7f:8d: 93:82:fd:ac:c5:22:b7:bb:07:2f:c6:14:38:07:e1: 7b:40:84:5b:7e:50:0f:d9:32:62:9c:6c:a0:b8:7c: cb:35:da:5b:dd:44:84:a0:18:6c:2b:39:6b:ae:88: be:36:0d:95:56:e0:8f:f5:44:46:14:dc:37:61:d3: ff:76:8d:5e:c9:9f:e7:a9:74:f9:d9:11:e5:70:aa: 02:86:e8:24:e3:da:62:b6:9d:f6:59:ee:29:43:9c: 77:be:a9:5f:68:7d:80:7e:a5:6a:2b:2f:98:9e:ac: ba:ad:5e:62:68:57:a7:c2:26:c8:df:4a:bd:98:71: 5e:e9:fd:2b:18:b3:37:dd:bc:a6:ca:d5:72:d9:50: fa:f8:f6:21:9b:17:a6:9a:c6:7e:d0:79:12:ae:8c: e0:92:e8:ce:32:cf:76:e0:92:fb:e3:57:56:21:a6: 9c:75:7e:90:4b:db:d3:e4:ce:87:7b:4b:69:c9:97: 1c:be:c6:8f:1a:e9:0a:ff:a1:73:10:1c:69:24:7c: e1:f9:45:bd:a3:ff:d4:bd:ab:da:97:dd:4f:c0:8c: 72:e5:45:11:dd:02:eb:1d:fe:81:62:8d:61:89:99: 13:ce:23:40:31:0a:9d:e3:1d:ac:01:d9:ef:9a:17: 07:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:54:AC:0D:46:B1:96:06:7F:C7:21:58:ED:E8:6A:DE:FF:03:A2:8B X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yFSsDUaxlgZ_xyFY7ehq3v8Doos.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.202.64.0/18 Signature Algorithm: sha256WithRSAEncryption 20:d6:5c:54:01:6d:59:40:b3:76:5e:0a:fc:b3:72:f5:b8:1a: ca:dc:5a:57:6b:14:66:21:96:9e:22:53:b7:04:c0:b8:2b:d2: 0a:55:65:e9:06:db:6c:09:65:09:f4:01:9a:10:47:79:75:e6: 00:7b:a3:c3:4e:c6:a1:24:b1:2c:25:63:47:f7:9d:6c:ef:f7: e9:83:c5:21:69:91:2e:aa:58:78:22:6a:2b:ab:97:de:c7:47: dc:ea:02:c9:de:c0:31:ce:71:00:4c:44:84:ce:53:ac:f0:65: 5b:06:0d:65:d1:4b:9e:84:e3:05:95:ca:d4:04:52:d8:c8:a2: 53:38:a0:db:70:e9:10:12:41:d2:f2:9d:98:74:6f:64:09:70: e1:7d:c8:b1:f1:ca:b5:2f:1a:14:d6:e3:27:25:e5:8a:a2:1a: 32:46:6b:f2:aa:02:75:25:0c:9d:8c:1c:85:5d:ea:0d:eb:7d: f3:03:ec:54:0c:f8:95:d6:6a:1d:88:b4:31:dc:61:fb:eb:e2: 8a:23:c4:23:52:f9:ff:b1:56:03:48:9e:37:65:07:51:85:0a: 14:1f:db:5d:0d:0b:6f:31:46:f4:21:e6:8d:8a:a5:a2:99:56: f8:1f:5f:30:f8:b7:c8:9b:53:1e:9f:59:14:56:54:f9:a6:b6: 3e:c2:c0:66 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEFYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4NTRBQzBENDZCMTk2 MDY3RkM3MjE1OEVERTg2QURFRkYwM0EyOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwGghfE8GzzzcroR9/jZOC/azFIre7By/GFDgH4XtAhFt+UA/Z MmKcbKC4fMs12lvdRISgGGwrOWuuiL42DZVW4I/1REYU3Ddh0/92jV7Jn+epdPnZ EeVwqgKG6CTj2mK2nfZZ7ilDnHe+qV9ofYB+pWorL5ierLqtXmJoV6fCJsjfSr2Y cV7p/SsYszfdvKbK1XLZUPr49iGbF6aaxn7QeRKujOCS6M4yz3bgkvvjV1Yhppx1 fpBL29Pkzod7S2nJlxy+xo8a6Qr/oXMQHGkkfOH5Rb2j/9S9q9qX3U/AjHLlRRHd Ausd/oFijWGJmRPOI0AxCp3jHawB2e+aFwdRAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUyFSsDUaxlgZ/xyFY7ehq3v8DooswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3lGU3NEVWF4bGdaX3h5Rlk3ZWhxM3Y4 RG9vcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbSykAwDQYJ KoZIhvcNAQELBQADggEBACDWXFQBbVlAs3ZeCvyzcvW4GsrcWldrFGYhlp4iU7cE wLgr0gpVZekG22wJZQn0AZoQR3l15gB7o8NOxqEksSwlY0f3nWzv9+mDxSFpkS6q WHgiaiurl97HR9zqAsnewDHOcQBMRITOU6zwZVsGDWXRS56E4wWVytQEUtjIolM4 oNtw6RASQdLynZh0b2QJcOF9yLHxyrUvGhTW4ycl5YqiGjJGa/KqAnUlDJ2MHIVd 6g3rffMD7FQM+JXWah2ItDHcYfvr4oojxCNS+f+xVgNInjdlB1GFChQf210NC28x RvQh5o2KpaKZVvgfXzD4t8ibUx6fWRRWVPmmtj7CwGY= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:05 2024 by rpki-client on console-ams.rpki-client.org