$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/DSOVLKJoCtcbhDbpbTWYQDig15E.roa File: DSOVLKJoCtcbhDbpbTWYQDig15E.roa (raw, json) Hash identifier: Hz5y6OmH4bKsNoVq/FT0vA5D3yxT7pm/ENCwce4sNEI= Subject key identifier: 0D:23:95:2C:A2:68:0A:D7:1B:84:36:E9:6D:35:98:40:38:A0:D7:91 Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Certificate serial: 0C32 Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/DSOVLKJoCtcbhDbpbTWYQDig15E.roa Signing time: Mon 26 Aug 2024 05:16:55 +0000 ROA not before: Mon 26 Aug 2024 05:16:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131588 IP address blocks: 2400:e480::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3122 (0xc32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Validity Not Before: Aug 26 05:16:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0D23952CA2680AD71B8436E96D35984038A0D791 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c5:b0:2b:79:95:6e:24:c9:8b:bf:67:2e:e9: d9:96:3b:7a:34:2f:70:eb:a3:69:1f:36:72:eb:04: d5:ee:75:b4:37:98:02:4b:79:54:ed:3a:f2:b1:96: c2:e1:c4:d3:40:e1:65:9b:9d:e3:e0:6b:a4:69:e1: 0d:38:4c:ab:85:d3:c2:9e:17:2a:36:35:79:9c:a9: 5c:cf:96:80:43:69:cb:ec:e7:5c:1d:bc:49:56:fc: 80:32:51:16:fd:67:0c:40:79:46:12:e7:4b:00:5f: 4d:00:ee:21:cd:c7:9a:08:95:da:d9:e6:a3:91:b0: 15:6c:d5:ea:0b:fe:ba:bb:be:ea:68:c8:ef:e1:29: ef:eb:85:08:bb:50:88:dc:2a:b0:19:82:f3:03:67: 97:22:ca:2d:54:c9:55:55:28:63:8f:29:87:0f:33: 49:e0:96:eb:b8:50:3c:fd:f4:9c:f1:01:d7:30:ae: 6e:5d:8f:43:3c:64:03:2b:53:a4:51:88:3b:e2:a4: fe:ef:c7:5f:6c:7c:9a:4d:77:ba:58:b6:da:89:ad: c3:67:03:26:37:fc:59:91:08:0e:5b:51:22:83:71: b6:68:2f:7f:5e:8a:5c:94:c1:85:e3:be:2e:87:6e: b9:2e:21:5a:24:74:b3:b1:47:90:21:25:2a:86:18: a6:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:23:95:2C:A2:68:0A:D7:1B:84:36:E9:6D:35:98:40:38:A0:D7:91 X509v3 Authority Key Identifier: keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/DSOVLKJoCtcbhDbpbTWYQDig15E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:e480::/32 Signature Algorithm: sha256WithRSAEncryption 11:2d:a8:9c:75:86:fa:84:5a:c6:ee:58:0e:77:8f:21:be:c8: ca:08:a0:18:f6:6c:0b:cd:19:33:d3:ca:c0:78:ae:70:54:3d: 41:35:be:25:cb:59:a7:ba:74:68:67:c2:ae:46:01:f7:4a:27: 67:ee:83:c6:ed:74:1c:0c:cc:fb:59:4a:24:f3:f0:ef:f6:9c: f1:38:27:74:16:27:f7:c7:e9:8d:02:ea:e0:8a:de:08:ef:14: f6:c8:2c:86:54:ef:f9:9c:53:8c:de:5a:90:21:79:a0:71:13: e2:f7:fb:c0:1f:8c:01:3c:52:eb:61:a2:4b:be:4b:a5:68:59: 1a:16:dc:8d:f8:e2:aa:15:5c:7d:c5:75:0a:74:c3:1e:4b:7f: ed:ed:c5:14:ce:cd:62:28:72:71:38:ba:30:78:74:28:b5:b6: 14:0e:82:cb:8c:16:38:c8:07:e5:51:e7:51:0e:a1:05:e9:a8: 4d:85:35:2f:32:0c:cf:be:74:b0:45:56:ab:db:fd:d2:49:10: b4:57:c4:f0:bd:64:1f:95:60:43:d2:d1:9a:a9:0f:13:d1:7c: ef:52:02:c4:c5:54:57:ed:43:d7:2e:be:24:b8:74:b4:89:a4: c7:b9:ff:79:0c:8a:a2:96:33:c6:e4:79:a3:f0:87:c8:37:e4: 29:83:04:97 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDDIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjBD RTEwQkQ3QzJCMzlBMDNBNzBDMzAyQkEyQjA4NjUyQzA4MDdEMjAeFw0yNDA4MjYw NTE2NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBEMjM5NTJDQTI2ODBB RDcxQjg0MzZFOTZEMzU5ODQwMzhBMEQ3OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGxbAreZVuJMmLv2cu6dmWO3o0L3Dro2kfNnLrBNXudbQ3mAJL eVTtOvKxlsLhxNNA4WWbnePga6Rp4Q04TKuF08KeFyo2NXmcqVzPloBDacvs51wd vElW/IAyURb9ZwxAeUYS50sAX00A7iHNx5oIldrZ5qORsBVs1eoL/rq7vupoyO/h Ke/rhQi7UIjcKrAZgvMDZ5ciyi1UyVVVKGOPKYcPM0ngluu4UDz99JzxAdcwrm5d j0M8ZAMrU6RRiDvipP7vx19sfJpNd7pYttqJrcNnAyY3/FmRCA5bUSKDcbZoL39e ilyUwYXjvi6HbrkuIVokdLOxR5AhJSqGGKbJAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUDSOVLKJoCtcbhDbpbTWYQDig15EwHwYDVR0jBBgwFoAU8M4QvXwrOaA6cMMC uisIZSwIB9IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRklTQy84 TTRRdlh3ck9hQTZjTU1DdWlzSVpTd0lCOUkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzhNNFF2WHdyT2FBNmNNTUN1aXNJWlN3SUI5SS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZJU0MvRFNPVkxLSm9DdGNiaERicGJUV1lR RGlnMTVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQA5IAw DQYJKoZIhvcNAQELBQADggEBABEtqJx1hvqEWsbuWA53jyG+yMoIoBj2bAvNGTPT ysB4rnBUPUE1viXLWae6dGhnwq5GAfdKJ2fug8btdBwMzPtZSiTz8O/2nPE4J3QW J/fH6Y0C6uCK3gjvFPbILIZU7/mcU4zeWpAheaBxE+L3+8AfjAE8Uuthoku+S6Vo WRoW3I344qoVXH3FdQp0wx5Lf+3txRTOzWIocnE4ujB4dCi1thQOgsuMFjjIB+VR 51EOoQXpqE2FNS8yDM++dLBFVqvb/dJJELRXxPC9ZB+VYEPS0ZqpDxPRfO9SAsTF VFftQ9cuviS4dLSJpMe5/3kMiqKWM8bkeaPwh8g35CmDBJc= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:38 2024 by rpki-client on console-fra.rpki-client.org