$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ZccaY02QNDvcEYvS9jfmgWnOixo.roa File: ZccaY02QNDvcEYvS9jfmgWnOixo.roa (raw, json) Hash identifier: H2SQLbXiI2Xed/x2D+KTXPUXWOyhap3QotLx4KNTmj4= Subject key identifier: 65:C7:1A:63:4D:90:34:3B:DC:11:8B:D2:F6:37:E6:81:69:CE:8B:1A Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 0677 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ZccaY02QNDvcEYvS9jfmgWnOixo.roa Signing time: Mon 26 Aug 2024 05:18:40 +0000 ROA not before: Mon 26 Aug 2024 05:18:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134522 IP address blocks: 2401:95c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 26 05:18:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=65C71A634D90343BDC118BD2F637E68169CE8B1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:51:e9:59:82:7f:76:c7:33:81:f6:ae:9d:c7: 06:dd:8d:ce:5e:06:c4:ab:b7:00:9c:34:3a:92:9b: b8:f1:68:20:3b:0f:bf:a5:da:89:25:41:06:c9:da: 1e:69:90:96:d5:2e:4e:5b:b9:d0:1a:1e:fa:e1:5f: 84:2a:46:1d:31:37:97:c3:53:83:c4:92:7c:27:3b: ee:f9:cb:ce:c8:32:0d:64:45:d4:a9:6d:75:3f:86: 28:96:57:3a:94:49:6b:7a:06:3b:fe:f1:fc:82:a2: 6f:70:92:e1:8b:cf:21:cc:8a:a4:89:76:81:a2:dc: 0e:f2:67:a6:75:33:03:ab:29:53:de:4c:d4:18:26: 67:c2:7c:09:46:94:93:bf:64:32:14:fd:59:68:f0: 13:80:4a:d0:2a:09:eb:e1:37:6c:42:d7:73:50:8d: 2d:b3:b8:a6:40:03:d1:a3:8b:85:e3:26:b2:b2:cc: 3a:a9:a4:1e:92:1e:a8:d4:8e:4b:30:23:cb:9e:d0: e3:6e:aa:13:09:e0:40:35:60:e2:f9:bb:8b:6f:d3: 1a:5e:8d:04:b0:36:49:80:f6:04:db:f3:44:43:c2: 5e:7c:33:91:43:7f:ea:a7:ed:ec:c4:d1:1e:65:76: 9c:5a:bb:01:67:9d:8d:b0:c2:d9:29:2f:a7:bd:9b: 53:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C7:1A:63:4D:90:34:3B:DC:11:8B:D2:F6:37:E6:81:69:CE:8B:1A X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ZccaY02QNDvcEYvS9jfmgWnOixo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0::/32 Signature Algorithm: sha256WithRSAEncryption 0c:81:96:0e:1d:5e:f0:64:7d:c4:a2:08:78:ae:78:87:93:2b: f7:fa:a7:bd:eb:2a:90:74:ed:ac:38:00:ad:14:32:f5:5e:4e: 02:9f:f6:6b:07:41:a0:84:a2:5f:eb:1c:dd:78:c4:5d:65:8e: 71:7e:c2:f8:42:f0:3b:d9:a7:43:93:73:35:6c:90:78:ee:0c: b1:49:92:b7:35:5d:e2:3f:9f:18:f1:f3:2c:02:bb:ca:40:3d: 37:a2:3f:cf:44:30:3d:ae:6e:10:58:6c:7e:d4:96:8e:2d:1b: 76:17:eb:a0:47:bf:d1:65:53:b2:73:aa:b1:b8:7f:b8:e1:55: b1:c7:d6:ab:3b:9e:88:36:9d:30:97:d7:81:3f:12:7e:a9:16: 6d:c8:03:ca:bc:1b:1b:6f:08:3f:e4:fd:45:c7:80:2e:c8:04: 3f:1c:73:2f:de:2a:e8:a0:4d:fd:f0:f7:35:e9:d4:bf:95:98: d1:e8:d2:22:c4:1c:f9:c6:58:aa:fb:a1:e5:29:e2:5f:d5:24: ce:89:f7:0b:73:7a:ec:26:87:66:a5:f7:d0:ba:f2:e3:d7:61: c9:70:d5:c1:d2:d8:07:c6:45:35:1b:c8:4d:6c:12:07:ad:dd: 1f:0c:0a:9b:62:4b:7d:fa:50:b0:75:50:f0:d1:30:1c:37:41: 91:05:0e:8e -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICBncwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNDA4MjYw NTE4NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1QzcxQTYzNEQ5MDM0 M0JEQzExOEJEMkY2MzdFNjgxNjlDRThCMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOUelZgn92xzOB9q6dxwbdjc5eBsSrtwCcNDqSm7jxaCA7D7+l 2oklQQbJ2h5pkJbVLk5budAaHvrhX4QqRh0xN5fDU4PEknwnO+75y87IMg1kRdSp bXU/hiiWVzqUSWt6Bjv+8fyCom9wkuGLzyHMiqSJdoGi3A7yZ6Z1MwOrKVPeTNQY JmfCfAlGlJO/ZDIU/Vlo8BOAStAqCevhN2xC13NQjS2zuKZAA9Gji4XjJrKyzDqp pB6SHqjUjkswI8ue0ONuqhMJ4EA1YOL5u4tv0xpejQSwNkmA9gTb80RDwl58M5FD f+qn7ezE0R5ldpxauwFnnY2wwtkpL6e9m1MJAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUZccaY02QNDvcEYvS9jfmgWnOixowHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL1pjY2FZMDJRTkR2Y0VZdlM5 amZtZ1duT2l4by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk AZXAMA0GCSqGSIb3DQEBCwUAA4IBAQAMgZYOHV7wZH3Eogh4rniHkyv3+qe96yqQ dO2sOACtFDL1Xk4Cn/ZrB0GghKJf6xzdeMRdZY5xfsL4QvA72adDk3M1bJB47gyx SZK3NV3iP58Y8fMsArvKQD03oj/PRDA9rm4QWGx+1JaOLRt2F+ugR7/RZVOyc6qx uH+44VWxx9arO56INp0wl9eBPxJ+qRZtyAPKvBsbbwg/5P1Fx4AuyAQ/HHMv3iro oE398Pc16dS/lZjR6NIixBz5xliq+6HlKeJf1STOifcLc3rsJodmpffQuvLj12HJ cNXB0tgHxkU1G8hNbBIHrd0fDAqbYkt9+lCwdVDw0TAcN0GRBQ6O -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org