$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/zVFUBcDowLhv9zVNgQzAPhJP1Bg.roa File: zVFUBcDowLhv9zVNgQzAPhJP1Bg.roa (raw, json) Hash identifier: Or6bCuG3a6xPHMPGpN6suajm4vTAtkwGlRRo2Na57m4= Subject key identifier: CD:51:54:05:C0:E8:C0:B8:6F:F7:35:4D:81:0C:C0:3E:12:4F:D4:18 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 1004 Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/zVFUBcDowLhv9zVNgQzAPhJP1Bg.roa Signing time: Mon 26 Aug 2024 05:15:58 +0000 ROA not before: Mon 26 Aug 2024 05:15:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 222.157.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4100 (0x1004) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CD515405C0E8C0B86FF7354D810CC03E124FD418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:28:d7:ca:ce:48:5a:42:8c:81:5b:40:6c:73: 38:62:1c:b5:68:d0:4c:61:04:8d:36:18:d0:38:05: 27:55:5c:50:a7:25:34:e0:61:df:2e:86:f3:4e:be: b9:23:1e:41:e1:06:de:a7:6a:37:7a:a1:e4:70:08: 2d:6a:37:a5:a2:ed:4f:a3:3e:27:d9:41:8a:44:89: a7:51:74:50:bb:ea:46:8e:fc:ce:e5:e7:69:65:f4: 9f:ef:23:0e:e4:cb:e0:eb:4c:f6:29:03:70:68:75: d7:a1:25:50:be:b9:a7:36:ec:22:90:89:10:fe:d4: ea:ee:c7:2d:2e:0c:50:2e:46:ba:5f:ce:21:cb:e2: 2b:f2:77:55:e1:2d:4e:32:50:35:d2:ed:17:c1:0d: 97:a0:ec:24:3f:8f:81:28:e7:71:97:81:fe:24:21: ba:af:f4:a8:31:b1:24:61:c0:22:33:d3:98:fc:e0: 8e:84:be:a0:1e:6c:bc:71:5a:c0:19:4d:eb:0a:ae: 03:c0:77:f3:b8:ba:9d:3e:12:e8:4f:63:50:f0:f3: b8:9d:7c:13:e3:47:fb:f6:27:c8:4b:74:d6:8a:f2: 35:50:cb:64:9f:5d:ea:74:7b:de:20:f6:34:77:3f: 09:6a:63:e6:50:91:d1:dd:64:be:20:f7:7e:11:d3: 5d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:51:54:05:C0:E8:C0:B8:6F:F7:35:4D:81:0C:C0:3E:12:4F:D4:18 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/zVFUBcDowLhv9zVNgQzAPhJP1Bg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.157.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:3e:82:05:9f:5d:a4:7c:0b:72:fc:2e:10:48:bf:66:8a:ad: 9d:1c:d2:fb:2f:a6:b9:4f:f4:0d:d3:26:2f:09:9e:29:7e:e3: a7:cd:9f:e6:61:cf:7d:7c:22:58:85:a0:51:73:51:c1:7b:a8: d4:63:6f:ea:20:17:63:26:cc:be:62:30:a3:a1:c7:81:37:8d: 5f:2d:70:5a:87:6f:65:b8:b2:c6:d6:f8:eb:7c:e3:cb:f6:77: 40:94:dd:fc:3c:38:67:05:c9:e9:80:61:a3:96:87:e8:2d:72: 2e:41:0b:2f:a3:94:e9:20:81:29:07:aa:98:76:e4:d4:b4:ce: e2:d0:fc:96:fa:12:57:d7:e7:21:60:5c:c3:ee:40:d4:1e:32: 69:a7:2a:50:1d:0c:ae:bf:5e:30:9f:2f:f5:8c:7c:43:3b:33: f1:66:e9:8e:b8:50:47:6b:1e:c4:bc:38:7d:fb:c7:a9:f8:ce: d9:47:8d:d4:c7:ed:18:c1:00:b0:0e:21:7e:b4:d3:67:34:82: 8d:6a:a1:ae:16:b0:85:b7:ed:cf:a2:e0:49:a7:15:d7:83:3a: 5d:6b:af:13:22:aa:25:75:cb:80:64:2d:7c:60:9a:6d:5d:b0: 75:5e:58:9a:a9:53:1e:2e:ec:6b:11:7a:25:69:97:a8:62:cc: b7:28:4a:8c -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICEAQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENENTE1NDA1QzBFOEMw Qjg2RkY3MzU0RDgxMENDMDNFMTI0RkQ0MTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGKNfKzkhaQoyBW0BsczhiHLVo0ExhBI02GNA4BSdVXFCnJTTg Yd8uhvNOvrkjHkHhBt6najd6oeRwCC1qN6Wi7U+jPifZQYpEiadRdFC76kaO/M7l 52ll9J/vIw7ky+DrTPYpA3BoddehJVC+uac27CKQiRD+1Oruxy0uDFAuRrpfziHL 4ivyd1XhLU4yUDXS7RfBDZeg7CQ/j4Eo53GXgf4kIbqv9KgxsSRhwCIz05j84I6E vqAebLxxWsAZTesKrgPAd/O4up0+EuhPY1Dw87idfBPjR/v2J8hLdNaK8jVQy2Sf Xep0e94g9jR3PwlqY+ZQkdHdZL4g934R013xAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQUzVFUBcDowLhv9zVNgQzAPhJP1BgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3pWRlVCY0Rvd0xodjl6Vk5nUXpBUGhK UDFCZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwDenTANBgkq hkiG9w0BAQsFAAOCAQEAUj6CBZ9dpHwLcvwuEEi/ZoqtnRzS+y+muU/0DdMmLwme KX7jp82f5mHPfXwiWIWgUXNRwXuo1GNv6iAXYybMvmIwo6HHgTeNXy1wWodvZbiy xtb463zjy/Z3QJTd/Dw4ZwXJ6YBho5aH6C1yLkELL6OU6SCBKQeqmHbk1LTO4tD8 lvoSV9fnIWBcw+5A1B4yaacqUB0Mrr9eMJ8v9Yx8Qzsz8WbpjrhQR2sexLw4ffvH qfjO2UeN1MftGMEAsA4hfrTTZzSCjWqhrhawhbftz6LgSacV14M6XWuvEyKqJXXL gGQtfGCabV2wdV5YmqlTHi7saxF6JWmXqGLMtyhKjA== -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:28 2024 by rpki-client on console-fra.rpki-client.org