$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/YHWxxGO1lsqncr8D3hcInxCkITM.roa File: YHWxxGO1lsqncr8D3hcInxCkITM.roa (raw, json) Hash identifier: lsTy/NQwwYTFAfaUYLb2krsY7STQrUn6iKmUjuN61Uc= Subject key identifier: 60:75:B1:C4:63:B5:96:CA:A7:72:BF:03:DE:17:08:9F:10:A4:21:33 Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Certificate serial: 0508 Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/YHWxxGO1lsqncr8D3hcInxCkITM.roa Signing time: Mon 26 Aug 2024 05:19:04 +0000 ROA not before: Mon 26 Aug 2024 05:19:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131677 IP address blocks: 2406:3a40::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 23 Nov 2024 04:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1288 (0x508) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Validity Not Before: Aug 26 05:19:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6075B1C463B596CAA772BF03DE17089F10A42133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:14:b8:05:04:93:89:5a:0a:61:a1:c7:8d:95: a5:5e:58:63:a1:18:92:20:f0:a2:77:70:9a:0a:d8: 41:c6:ae:1f:ac:58:0c:1e:a3:ec:d1:e7:74:37:76: af:43:1d:27:a5:ec:f6:4d:c2:2f:40:2f:f8:1c:46: 47:22:e4:c8:4c:17:34:4f:90:39:e7:83:5a:ca:d9: 01:b8:73:01:75:65:40:1c:4b:84:00:62:02:6f:9d: ed:13:aa:86:ed:5f:a7:c2:0a:9e:e3:1f:2b:90:2f: 32:c5:4b:47:9b:e3:56:7b:7c:77:1e:bd:69:4c:e4: d9:94:0a:0a:9f:6f:d8:ee:6f:6a:57:1b:fc:da:ed: eb:23:37:86:5f:89:2b:24:ea:2e:7c:da:4b:9f:a3: d7:35:64:c8:aa:9b:6a:a4:a1:0f:36:58:f9:9b:73: 0f:5c:14:d7:ea:2c:11:a2:1d:e6:6c:7c:88:8a:76: 11:d7:00:4e:ba:66:bd:00:d6:bd:a5:ea:9e:76:21: b4:cb:c2:b2:ba:6b:f4:9e:cd:b2:08:59:13:94:2d: 45:51:4c:ce:7b:a8:a4:d5:7a:3d:73:6d:12:6e:db: fb:6b:20:b0:f7:32:16:97:b3:c5:b6:1e:bc:df:7d: 85:24:69:e3:dc:71:3b:1b:a8:91:fe:f2:03:9e:42: 39:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:75:B1:C4:63:B5:96:CA:A7:72:BF:03:DE:17:08:9F:10:A4:21:33 X509v3 Authority Key Identifier: keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/YHWxxGO1lsqncr8D3hcInxCkITM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3a40::/32 Signature Algorithm: sha256WithRSAEncryption 55:32:32:7f:22:e7:12:2b:3a:87:f7:0d:d7:33:50:4e:c6:32: af:36:0f:aa:0b:19:c6:b3:cf:4c:7b:08:97:9d:48:49:97:e2: b9:b8:10:65:bd:b3:8b:4f:13:ad:31:22:68:05:53:08:fd:a4: 0b:9a:09:d9:ed:bc:99:d4:93:4b:60:9d:20:d2:5a:f6:c5:33: c1:d8:fd:35:0b:36:e0:a2:7b:46:a3:80:59:a5:83:ff:d0:e3: 8d:7c:6b:50:8f:d1:6e:35:ab:12:4c:3d:f1:1f:f9:f8:61:86: 1b:3e:7c:72:98:d2:08:96:f3:cf:01:b5:71:02:13:7f:73:f5: 7d:0a:aa:22:5e:08:ec:4e:95:08:da:85:78:92:51:0b:f2:f4: 27:4b:6e:bb:2a:d8:7a:d6:77:e6:47:36:e2:de:39:c3:2f:50: 01:48:e9:8c:6d:70:77:67:ec:e0:58:16:e0:e7:50:81:23:a5: eb:d9:41:fd:24:f6:5a:8e:fb:cb:35:e4:3c:6b:81:97:cd:18: 8b:6d:b1:5d:d9:19:7b:f5:c2:ea:41:fc:86:84:ea:03:b7:8e: a2:3d:13:f8:22:65:f1:5c:3a:a8:2d:bd:c7:1d:e3:18:61:79: 7d:5f:45:67:21:84:e7:9c:c2:58:98:57:f9:7d:52:62:e4:f9: 82:cf:5f:43 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICBQgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5 N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yNDA4MjYw NTE5MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwNzVCMUM0NjNCNTk2 Q0FBNzcyQkYwM0RFMTcwODlGMTBBNDIxMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5FLgFBJOJWgphoceNlaVeWGOhGJIg8KJ3cJoK2EHGrh+sWAwe o+zR53Q3dq9DHSel7PZNwi9AL/gcRkci5MhMFzRPkDnng1rK2QG4cwF1ZUAcS4QA YgJvne0TqobtX6fCCp7jHyuQLzLFS0eb41Z7fHcevWlM5NmUCgqfb9jub2pXG/za 7esjN4ZfiSsk6i582kufo9c1ZMiqm2qkoQ82WPmbcw9cFNfqLBGiHeZsfIiKdhHX AE66Zr0A1r2l6p52IbTLwrK6a/SezbIIWROULUVRTM57qKTVej1zbRJu2/trILD3 MhaXs8W2HrzffYUkaePccTsbqJH+8gOeQjnxAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUYHWxxGO1lsqncr8D3hcInxCkITMwHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC9ZSFd4eEdPMWxzcW5j cjhEM2hjSW54Q2tJVE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAY6QDANBgkqhkiG9w0BAQsFAAOCAQEAVTIyfyLnEis6h/cN1zNQTsYyrzYP qgsZxrPPTHsIl51ISZfiubgQZb2zi08TrTEiaAVTCP2kC5oJ2e28mdSTS2CdINJa 9sUzwdj9NQs24KJ7RqOAWaWD/9DjjXxrUI/RbjWrEkw98R/5+GGGGz58cpjSCJbz zwG1cQITf3P1fQqqIl4I7E6VCNqFeJJRC/L0J0tuuyrYetZ35kc24t45wy9QAUjp jG1wd2fs4FgW4OdQgSOl69lB/ST2Wo77yzXkPGuBl80Yi22xXdkZe/XC6kH8hoTq A7eOoj0T+CJl8Vw6qC29xx3jGGF5fV9FZyGE55zCWJhX+X1SYuT5gs9fQw== -----END CERTIFICATE-----Generated at Fri Nov 22 23:42:58 2024 by rpki-client on console-fra.rpki-client.org