$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa File: r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa (raw, json) Hash identifier: q2z52afLq/exul3/oqFzlT+ZSuHqcuIOuiqWD+OeGao= Subject key identifier: AF:CA:74:C2:C5:CF:62:E5:30:62:95:12:08:61:FF:18:34:63:E2:81 Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908 Certificate serial: 0986 Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa Signing time: Mon 26 Aug 2024 05:18:43 +0000 ROA not before: Mon 26 Aug 2024 05:18:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131666 IP address blocks: 2405:6440::/32 maxlen: 38 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2438 (0x986) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908 Validity Not Before: Aug 26 05:18:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AFCA74C2C5CF62E5306295120861FF183463E281 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e2:81:9e:49:c2:f4:41:0a:32:67:7f:ee:12: b3:33:93:f3:c6:d6:3e:fb:73:ae:53:1c:d8:5c:44: 28:57:f4:94:55:a0:39:e5:e2:7e:b1:8c:b3:35:7b: 0c:48:4c:1b:75:93:ea:22:ab:d3:44:a2:58:c3:60: 69:b3:ad:ec:7f:66:0d:d0:6e:7d:af:2e:2c:bd:74: 0b:20:ec:46:90:ad:f7:40:e9:ca:bf:22:4e:7e:b3: 44:d9:78:f6:07:98:67:83:6c:86:65:30:df:d9:d5: a0:ba:0d:a5:f7:bb:40:ae:5b:5b:2d:b8:a0:8e:63: be:07:66:ec:1e:5a:f2:ed:4e:e9:d3:ba:bc:b5:01: f9:02:6e:48:c0:05:f1:0b:14:b4:b8:81:3e:eb:f4: 3e:bc:c9:8c:e1:65:ee:5c:17:13:b7:31:b8:39:58: 8b:f3:93:96:aa:78:4c:57:e7:ee:96:9b:91:85:e4: a1:80:9e:2b:84:11:ba:9a:a4:47:af:d7:6b:5e:57: 0f:cb:39:b6:d0:40:41:f9:40:7b:19:db:0b:e3:11: cd:eb:fe:43:ef:65:03:d7:d4:a5:41:de:8e:ec:21: a8:58:64:89:c4:b5:26:96:0b:99:f4:8a:3e:94:7e: 78:52:54:af:16:eb:87:6f:bb:fd:75:9e:e4:0d:ca: 54:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:CA:74:C2:C5:CF:62:E5:30:62:95:12:08:61:FF:18:34:63:E2:81 X509v3 Authority Key Identifier: keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/r8p0wsXPYuUwYpUSCGH_GDRj4oE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:6440::/32 Signature Algorithm: sha256WithRSAEncryption 60:eb:d0:00:89:55:13:a7:6f:35:42:77:48:64:1b:54:bb:27: 78:b3:36:db:6a:d6:c8:ac:42:35:2b:fe:2a:ae:b7:51:17:59: 05:a1:d4:1c:d2:67:a9:d4:82:bd:06:ec:73:37:50:53:56:db: b2:57:af:72:dd:ab:35:d8:86:1a:d8:ec:7f:9d:59:93:6f:3a: 0c:38:8a:20:6d:c1:fc:f8:3c:24:80:9e:e2:8a:29:ae:4d:4a: e0:20:67:7b:7d:ee:9c:67:98:27:05:91:de:9a:85:11:2b:25: cb:39:74:07:1b:8e:16:e8:23:b1:fa:f2:6e:db:c3:8f:11:60: 7d:01:19:57:c7:1a:6f:e1:4e:52:9a:d3:a4:a0:5f:c7:5c:d2: 02:bf:58:b8:e6:52:4c:37:df:8d:14:5f:f6:ae:a3:4f:f5:95: 65:86:a4:ad:e2:d1:40:26:fc:1d:f9:bd:7a:d7:64:dd:36:e6: db:a2:57:6f:6e:2e:39:04:6c:79:3e:3a:43:66:ce:73:be:fd: 28:51:d4:e5:04:54:2f:a7:ba:81:42:aa:0a:33:1b:57:c1:e5: 75:2a:cc:71:c1:d8:7c:4c:49:3d:18:bf:8b:30:6f:53:55:a2: 7c:c5:d3:11:ff:63:9d:0f:00:6d:0c:07:1b:13:c2:10:29:04: a7:81:71:56 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICCYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yNDA4MjYw NTE4NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGQ0E3NEMyQzVDRjYy RTUzMDYyOTUxMjA4NjFGRjE4MzQ2M0UyODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJ4oGeScL0QQoyZ3/uErMzk/PG1j77c65THNhcRChX9JRVoDnl 4n6xjLM1ewxITBt1k+oiq9NEoljDYGmzrex/Zg3Qbn2vLiy9dAsg7EaQrfdA6cq/ Ik5+s0TZePYHmGeDbIZlMN/Z1aC6DaX3u0CuW1stuKCOY74HZuweWvLtTunTury1 AfkCbkjABfELFLS4gT7r9D68yYzhZe5cFxO3Mbg5WIvzk5aqeExX5+6Wm5GF5KGA niuEEbqapEev12teVw/LObbQQEH5QHsZ2wvjEc3r/kPvZQPX1KVB3o7sIahYZInE tSaWC5n0ij6UfnhSVK8W64dvu/11nuQNylSbAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUr8p0wsXPYuUwYpUSCGH/GDRj4oEwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1 OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6 MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL3I4cDB3c1hQWXVVd1lwVVNDR0hfR0RS ajRvRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBWRAMA0G CSqGSIb3DQEBCwUAA4IBAQBg69AAiVUTp281QndIZBtUuyd4szbbatbIrEI1K/4q rrdRF1kFodQc0mep1IK9BuxzN1BTVtuyV69y3as12IYa2Ox/nVmTbzoMOIogbcH8 +DwkgJ7iiimuTUrgIGd7fe6cZ5gnBZHemoURKyXLOXQHG44W6COx+vJu28OPEWB9 ARlXxxpv4U5SmtOkoF/HXNICv1i45lJMN9+NFF/2rqNP9ZVlhqSt4tFAJvwd+b16 12TdNubboldvbi45BGx5PjpDZs5zvv0oUdTlBFQvp7qBQqoKMxtXweV1Ksxxwdh8 TEk9GL+LMG9TVaJ8xdMR/2OdDwBtDAcbE8IQKQSngXFW -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org