$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/GtXcyR395XF5WfELYNEAeazNkHo.roa File: GtXcyR395XF5WfELYNEAeazNkHo.roa (raw, json) Hash identifier: 0RUgMNwJhir+FEAmjIh/PG/ag6hg/hpt5Db8DkX2iM0= Subject key identifier: 1A:D5:DC:C9:1D:FD:E5:71:79:59:F1:0B:60:D1:00:79:AC:CD:90:7A Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Certificate serial: 05 Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/GtXcyR395XF5WfELYNEAeazNkHo.roa Signing time: Wed 16 Aug 2023 07:43:09 +0000 ROA not before: Wed 16 Aug 2023 07:43:09 +0000 ROA not after: Wed 14 Aug 2024 15:30:16 +0000 asID: 131642 IP address blocks: 2401:26a0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Validity Not Before: Aug 16 07:43:09 2023 GMT Not After : Aug 14 15:30:16 2024 GMT Subject: CN=1AD5DCC91DFDE5717959F10B60D10079ACCD907A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:34:bd:42:b5:09:68:93:f5:be:43:c8:22:79: a5:33:58:c7:59:de:93:17:43:5c:d0:c7:96:b3:63: 1c:a7:90:10:7f:5a:43:d0:0e:c0:91:3b:e1:00:35: 21:c2:55:4c:c7:c9:f4:cf:40:1e:4c:03:03:22:43: b7:00:c9:71:44:28:f3:5b:be:39:af:6f:19:3a:91: a2:ad:87:26:d5:48:4e:fe:50:bb:bf:45:e5:7a:56: ed:61:9f:5a:28:6c:45:1f:85:ff:1a:c1:8a:fc:f7: 07:da:4a:73:35:06:e4:bf:01:ce:9e:72:da:4d:16: a1:99:a8:8e:2a:dd:f4:67:87:3c:02:f3:56:11:9e: bd:66:d7:03:08:0a:d6:b3:f3:f1:ba:7b:bc:dc:cb: 68:c3:0b:ba:70:10:df:d8:67:de:0d:41:75:d9:5a: 16:8f:22:f5:78:76:a0:ab:93:c7:88:3f:f6:35:6b: 0e:9c:8c:36:ce:aa:fa:80:92:83:30:c5:6e:05:69: b9:dc:16:83:2f:0a:70:10:14:f5:8e:f1:0b:9a:0e: a1:e2:12:f5:6e:c1:5c:72:fa:d3:1f:0a:a2:24:ad: 4e:56:1e:26:c7:cc:57:73:ca:de:a5:ad:ea:ce:b8: 75:d8:60:46:d9:3b:ea:ee:94:c1:19:ce:1b:f3:ee: 4f:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D5:DC:C9:1D:FD:E5:71:79:59:F1:0B:60:D1:00:79:AC:CD:90:7A X509v3 Authority Key Identifier: keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/GtXcyR395XF5WfELYNEAeazNkHo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:26a0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:41:a1:aa:62:db:ab:00:1c:12:9b:7d:f7:af:a9:9a:71:c6: 18:88:22:38:c9:4a:8c:80:5f:29:ca:29:f3:6a:b2:70:ae:ef: f9:81:f6:cf:ce:99:aa:5a:5b:23:41:c4:f9:04:dc:85:0f:c2: d6:e7:9f:e7:a1:7b:44:62:9a:cf:55:68:e9:f2:9b:65:ff:22: 0d:56:f1:9d:e2:50:e9:18:9d:bc:b2:c6:1e:1e:be:ce:22:e4: 4b:69:07:8a:ab:f0:9a:8d:1a:91:01:f4:01:43:1e:e9:3a:11: ed:87:0b:86:72:1a:a4:36:33:07:ec:1e:dc:28:4b:ed:9a:95: eb:31:ba:00:56:05:5b:ca:5b:0b:9a:99:8e:79:dc:cf:95:65: fd:ce:f7:0b:a6:f5:da:5a:45:ce:29:fb:a4:9d:6a:2e:7a:48: a6:ee:12:73:7e:dc:7f:4c:68:39:c2:2d:82:ad:86:a1:7b:bf: da:62:59:e6:bc:fb:1b:55:dc:68:52:9a:78:6c:3a:0f:42:54: 41:83:4d:e5:7b:2e:52:b8:a3:fc:0e:d7:24:75:e7:1d:39:a8: 13:d3:44:eb:09:8b:eb:5d:9e:97:d3:85:f1:85:c3:f2:33:83: fc:02:bf:7b:94:b8:1a:f0:75:b5:56:ac:98:d0:f6:4c:94:67: c5:47:56:f3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg4M0FD RkM0NjYwOUMxNjQ5QUI0NjE2RDIwRDY0QzlEMTVEODM0QzY0MB4XDTIzMDgxNjA3 NDMwOVoXDTI0MDgxNDE1MzAxNlowMzExMC8GA1UEAxMoMUFENURDQzkxREZERTU3 MTc5NTlGMTBCNjBEMTAwNzlBQ0NEOTA3QTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOI0vUK1CWiT9b5DyCJ5pTNYx1nekxdDXNDHlrNjHKeQEH9aQ9AO wJE74QA1IcJVTMfJ9M9AHkwDAyJDtwDJcUQo81u+Oa9vGTqRoq2HJtVITv5Qu79F 5XpW7WGfWihsRR+F/xrBivz3B9pKczUG5L8Bzp5y2k0WoZmojird9GeHPALzVhGe vWbXAwgK1rPz8bp7vNzLaMMLunAQ39hn3g1BddlaFo8i9Xh2oKuTx4g/9jVrDpyM Ns6q+oCSgzDFbgVpudwWgy8KcBAU9Y7xC5oOoeIS9W7BXHL60x8KoiStTlYeJsfM V3PK3qWt6s64ddhgRtk76u6UwRnOG/PuTzcCAwEAAaOCAekwggHlMB0GA1UdDgQW BBQa1dzJHf3lcXlZ8Qtg0QB5rM2QejAfBgNVHSMEGDAWgBSDrPxGYJwWSatGFtIN ZMnRXYNMZDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGA1UdHwRSMFAwTqBM oEqGSHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KQ0EvZzZ6 OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNybDBgBggrBgEFBQcBAQRUMFIwUAYI KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9n Nno4Um1DY0ZrbXJSaGJTRFdUSjBWMkRUR1EuY2VyMA4GA1UdDwEB/wQEAwIHgDCB mQYIKwYBBQUHAQsEgYwwgYkwVAYIKwYBBQUHMAuGSHJzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS9KQ0EvR3RYY3lSMzk1WEY1V2ZFTFlORUFlYXpO a0hvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQBJqAwDQYJ KoZIhvcNAQELBQADggEBABtBoapi26sAHBKbffevqZpxxhiIIjjJSoyAXynKKfNq snCu7/mB9s/OmapaWyNBxPkE3IUPwtbnn+ehe0Rims9VaOnym2X/Ig1W8Z3iUOkY nbyyxh4evs4i5EtpB4qr8JqNGpEB9AFDHuk6Ee2HC4ZyGqQ2MwfsHtwoS+2alesx ugBWBVvKWwuamY553M+VZf3O9wum9dpaRc4p+6Sdai56SKbuEnN+3H9MaDnCLYKt hqF7v9piWea8+xtV3GhSmnhsOg9CVEGDTeV7LlK4o/wO1yR15x05qBPTROsJi+td npfThfGFw/Izg/wCv3uUuBrwdbVWrJjQ9kyUZ8VHVvM= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org