$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSN/SKuEd0awYury_ccJM1eoG-gLrcA.roa File: SKuEd0awYury_ccJM1eoG-gLrcA.roa (raw, json) Hash identifier: iKt4GclS8lwRMLSRJfATAjOGngIbtnIL4wic45TAbGQ= Subject key identifier: 48:AB:84:77:46:B0:62:EA:F2:FD:C7:09:33:57:A8:1B:E8:0B:AD:C0 Certificate issuer: /CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Certificate serial: 0C93 Authority key identifier: 75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/SKuEd0awYury_ccJM1eoG-gLrcA.roa Signing time: Mon 26 Aug 2024 05:17:12 +0000 ROA not before: Mon 26 Aug 2024 05:17:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 2001:4420::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3219 (0xc93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75FE53C611B4FD56B3F68319EECA6289F3F0F2A9 Validity Not Before: Aug 26 05:17:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=48AB847746B062EAF2FDC7093357A81BE80BADC0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:dd:6e:8e:c4:0c:1e:d4:45:c1:c5:13:75:35: b1:4b:73:b9:f8:5e:86:22:03:f9:87:f2:ac:8f:7a: 57:39:b0:55:56:99:44:8e:db:aa:3d:fa:a4:ad:64: 13:86:ea:cf:33:34:62:c1:7a:b4:3d:6c:b0:1e:81: f2:dc:ee:19:52:84:03:16:8d:c6:33:3d:15:d7:03: 5c:04:7c:cc:ac:72:a7:c3:f1:08:c1:f9:f0:a5:46: 44:4f:a5:6c:17:23:c1:21:b1:66:cd:f2:e5:9c:3c: a8:0f:b9:e0:ae:d6:9a:c8:e8:56:7b:9b:da:29:c2: 15:97:1f:c6:68:17:ae:52:03:b9:5b:f0:63:d3:6b: 5c:78:09:eb:c6:80:f0:0f:2b:95:9c:32:c1:62:76: 41:ba:fc:f4:87:c0:a2:94:38:03:e4:e5:c0:7d:cf: f2:6c:a8:04:c7:78:b0:d8:8e:ef:85:4f:dc:52:fa: fd:58:97:bf:d6:15:81:15:88:ef:87:12:39:27:92: 4e:0a:fb:5a:18:82:8d:de:d1:ad:b3:cf:35:78:80: ff:33:03:9c:bd:fb:48:64:3e:48:c8:07:66:c5:14: bc:94:48:77:ee:22:0a:93:90:63:8f:50:91:d1:07: 71:15:5d:ec:05:fd:5f:61:51:de:d2:eb:e4:68:92: 11:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:AB:84:77:46:B0:62:EA:F2:FD:C7:09:33:57:A8:1B:E8:0B:AD:C0 X509v3 Authority Key Identifier: keyid:75:FE:53:C6:11:B4:FD:56:B3:F6:83:19:EE:CA:62:89:F3:F0:F2:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/df5TxhG0_Vaz9oMZ7spiifPw8qk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/df5TxhG0_Vaz9oMZ7spiifPw8qk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSN/SKuEd0awYury_ccJM1eoG-gLrcA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4420::/32 Signature Algorithm: sha256WithRSAEncryption 42:de:38:64:7a:7e:27:c2:75:e3:0a:68:9c:44:49:7c:b9:93: 1e:69:01:ff:ee:30:f6:7b:81:0b:26:6b:93:38:4a:7d:f4:0d: df:b7:28:f9:5a:70:3e:15:c8:3b:74:ba:4f:c9:b7:cb:ca:d9: f2:56:7a:8b:68:d9:76:58:c3:e9:b0:ea:b6:f7:ec:e1:04:be: 16:3e:e1:9d:43:1b:e9:d5:96:83:d9:26:fe:59:c9:ad:f8:49: d4:67:e2:14:61:ec:b9:9c:a1:9d:bb:47:be:d5:42:49:f4:84: 19:fd:65:c3:9f:7b:67:c3:44:f0:4d:3d:d4:38:da:05:81:0a: f6:ef:66:9c:6b:3d:57:b9:29:5b:2d:34:de:2c:85:01:42:2a: 3d:d6:f3:2f:9f:33:37:c0:b1:74:8b:f3:37:fd:e2:98:3f:75: d4:0b:2d:29:13:3b:c3:3d:bc:3e:86:ff:5d:ba:cd:0d:e2:70: 3c:be:48:b9:26:ae:b9:98:eb:89:6b:97:15:81:92:aa:3b:18: f7:95:65:7b:b5:17:08:4c:f7:16:4f:80:46:f5:78:05:10:2b: 73:30:35:57:6a:11:5a:4a:46:40:34:5d:cd:88:b7:a2:0e:cc: e2:12:11:76:22:e7:b6:21:b8:88:e8:b1:10:f0:b7:de:23:9a: 2a:75:dc:0b -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICDJMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzVG RTUzQzYxMUI0RkQ1NkIzRjY4MzE5RUVDQTYyODlGM0YwRjJBOTAeFw0yNDA4MjYw NTE3MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4QUI4NDc3NDZCMDYy RUFGMkZEQzcwOTMzNTdBODFCRTgwQkFEQzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ3W6OxAwe1EXBxRN1NbFLc7n4XoYiA/mH8qyPelc5sFVWmUSO 26o9+qStZBOG6s8zNGLBerQ9bLAegfLc7hlShAMWjcYzPRXXA1wEfMyscqfD8QjB +fClRkRPpWwXI8EhsWbN8uWcPKgPueCu1prI6FZ7m9opwhWXH8ZoF65SA7lb8GPT a1x4CevGgPAPK5WcMsFidkG6/PSHwKKUOAPk5cB9z/JsqATHeLDYju+FT9xS+v1Y l7/WFYEViO+HEjknkk4K+1oYgo3e0a2zzzV4gP8zA5y9+0hkPkjIB2bFFLyUSHfu IgqTkGOPUJHRB3EVXewF/V9hUd7S6+RokhF9AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUSKuEd0awYury/ccJM1eoG+gLrcAwHwYDVR0jBBgwFoAUdf5TxhG0/Vaz9oMZ 7spiifPw8qkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL2Rm NVR4aEcwX1ZhejlvTVo3c3BpaWZQdzhxay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZGY1VHhoRzBfVmF6OW9NWjdzcGlpZlB3OHFrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvR1NOL1NLdUVkMGF3WXVyeV9jY0pNMWVvRy1n THJjQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAgAUQgMA0G CSqGSIb3DQEBCwUAA4IBAQBC3jhken4nwnXjCmicREl8uZMeaQH/7jD2e4ELJmuT OEp99A3ftyj5WnA+Fcg7dLpPybfLytnyVnqLaNl2WMPpsOq29+zhBL4WPuGdQxvp 1ZaD2Sb+Wcmt+EnUZ+IUYey5nKGdu0e+1UJJ9IQZ/WXDn3tnw0TwTT3UONoFgQr2 72acaz1XuSlbLTTeLIUBQio91vMvnzM3wLF0i/M3/eKYP3XUCy0pEzvDPbw+hv9d us0N4nA8vki5Jq65mOuJa5cVgZKqOxj3lWV7tRcITPcWT4BG9XgFECtzMDVXahFa SkZANF3NiLeiDsziEhF2Iue2IbiI6LEQ8LfeI5oqddwL -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:06 2024 by rpki-client on console-ams.rpki-client.org