$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/I1qDXlu_iHvMGV5xuVR3j8rzRVs.roa File: I1qDXlu_iHvMGV5xuVR3j8rzRVs.roa (raw, json) Hash identifier: cmFLGS1MWW2CLldra4pqS95C11bUcdHF4af0UBFIiP8= Subject key identifier: 23:5A:83:5E:5B:BF:88:7B:CC:19:5E:71:B9:54:77:8F:CA:F3:45:5B Certificate issuer: /CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9 Certificate serial: 06 Authority key identifier: F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/I1qDXlu_iHvMGV5xuVR3j8rzRVs.roa Signing time: Thu 16 Nov 2023 08:11:15 +0000 ROA not before: Thu 16 Nov 2023 08:11:15 +0000 ROA not after: Wed 13 Nov 2024 15:30:20 +0000 asID: 131642 IP address blocks: 2401:4f20::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9 Validity Not Before: Nov 16 08:11:15 2023 GMT Not After : Nov 13 15:30:20 2024 GMT Subject: CN=235A835E5BBF887BCC195E71B954778FCAF3455B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b7:2e:63:d8:ea:1b:d3:ba:4b:1d:69:f0:59: a0:d0:71:3a:fa:c1:d5:cb:b4:f9:fb:1f:a6:d8:70: c3:79:81:3c:33:18:6d:36:94:ed:2e:17:57:46:84: ae:09:93:66:75:4c:e5:c4:d6:57:f1:05:68:bf:83: 38:11:48:38:cf:c6:df:7c:19:35:0f:37:28:04:c0: 3d:c9:64:f9:05:d2:5a:c2:a1:f8:27:02:c2:0c:fe: df:c2:e1:14:b9:65:6f:32:fb:38:6c:7d:57:fa:4d: 78:10:ac:66:6a:2b:98:9a:76:22:0e:0b:11:7e:a6: 6f:68:01:43:ee:63:e7:ab:b3:db:6d:17:42:03:e1: 38:14:2a:34:c4:98:84:18:68:93:37:2d:36:cf:8b: ed:6b:d5:4a:11:10:5f:78:2e:a2:e6:6c:24:6b:a7: e3:dd:32:c7:ac:71:80:89:43:ef:a6:c3:5e:91:22: 18:ab:a4:9e:07:5e:7e:e6:e9:7f:30:ea:5e:1d:c6: 37:79:8a:f4:a6:0a:8a:71:a9:0f:63:f6:87:89:b3: 91:a2:f6:33:ee:13:ed:8f:a7:9f:70:a0:b5:ab:f7: 8f:b8:53:ac:e9:08:f3:9b:4a:83:49:53:41:99:e4: d5:88:bb:e6:26:eb:ce:2b:01:15:ee:3f:6d:28:4c: 6c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:5A:83:5E:5B:BF:88:7B:CC:19:5E:71:B9:54:77:8F:CA:F3:45:5B X509v3 Authority Key Identifier: keyid:F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/I1qDXlu_iHvMGV5xuVR3j8rzRVs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:4f20::/32 Signature Algorithm: sha256WithRSAEncryption 20:63:2f:25:49:c1:b0:9b:a9:72:bd:06:0a:d7:74:51:13:d2: b2:2d:7a:29:ff:2b:1b:6c:a5:88:44:2b:29:3a:42:b2:f8:ea: 0f:ff:2e:88:55:2e:55:f6:29:a2:29:df:16:c7:8a:39:3b:e8: 49:fa:11:82:6c:5a:95:fb:67:83:d9:01:79:ba:c4:3f:0c:7a: 56:66:83:b5:fd:80:c0:31:25:6d:26:87:31:ed:d5:b2:e1:ec: be:b2:3f:3b:9b:f8:cb:c3:4b:2a:0f:94:39:d5:93:d8:b6:18: 97:a8:3d:2f:dd:c0:19:f8:f0:41:67:3b:7d:48:66:c6:b4:25: 62:6f:8f:7a:4a:03:f3:8f:aa:02:c2:1e:d1:f8:79:98:d8:98: 49:91:8b:c4:db:1e:25:bf:77:70:bb:3c:8b:1e:80:4f:3d:62: ec:cf:f7:2c:25:8e:98:23:3d:08:cc:11:a5:ef:35:3d:b2:85: a6:b8:16:fb:8b:09:3a:b3:d6:e8:65:0b:51:34:05:22:6c:d3: a3:0a:7b:c5:b0:13:74:d1:3d:e8:d9:a7:2b:2d:12:55:31:b2: c9:08:5f:4f:39:ea:fe:fa:34:6f:d2:71:86:b2:81:a4:d2:77: 50:5e:89:57:78:48:11:78:07:39:7d:92:14:5d:c3:29:0a:f7: 79:a7:05:58 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgIBBjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOTVG MEFBNEVFRTM0NkYwNzdBMENFRUM4RDA2Q0M0OThGOUIxQUI5MB4XDTIzMTExNjA4 MTExNVoXDTI0MTExMzE1MzAyMFowMzExMC8GA1UEAxMoMjM1QTgzNUU1QkJGODg3 QkNDMTk1RTcxQjk1NDc3OEZDQUYzNDU1QjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANS3LmPY6hvTuksdafBZoNBxOvrB1cu0+fsfpthww3mBPDMYbTaU 7S4XV0aErgmTZnVM5cTWV/EFaL+DOBFIOM/G33wZNQ83KATAPclk+QXSWsKh+CcC wgz+38LhFLllbzL7OGx9V/pNeBCsZmormJp2Ig4LEX6mb2gBQ+5j56uz220XQgPh OBQqNMSYhBhokzctNs+L7WvVShEQX3guouZsJGun490yx6xxgIlD76bDXpEiGKuk ngdefubpfzDqXh3GN3mK9KYKinGpD2P2h4mzkaL2M+4T7Y+nn3Cgtav3j7hTrOkI 85tKg0lTQZnk1Yi75ibrzisBFe4/bShMbP0CAwEAAaOCAe8wggHrMB0GA1UdDgQW BBQjWoNeW7+Ie8wZXnG5VHePyvNFWzAfBgNVHSMEGDAWgBT5Xwqk7uNG8HegzuyN BsxJj5sauTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LQUlXRUkv LVY4S3BPN2pSdkIzb003c2pRYk1TWS1iR3JrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8tVjhLcE83alJ2QjNvTTdzalFiTVNZLWJHcmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LQUlXRUkvSTFxRFhsdV9pSHZNR1Y1eHVW UjNqOHJ6UlZzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQB TyAwDQYJKoZIhvcNAQELBQADggEBACBjLyVJwbCbqXK9BgrXdFET0rItein/Kxts pYhEKyk6QrL46g//LohVLlX2KaIp3xbHijk76En6EYJsWpX7Z4PZAXm6xD8MelZm g7X9gMAxJW0mhzHt1bLh7L6yPzub+MvDSyoPlDnVk9i2GJeoPS/dwBn48EFnO31I Zsa0JWJvj3pKA/OPqgLCHtH4eZjYmEmRi8TbHiW/d3C7PIsegE89YuzP9ywljpgj PQjMEaXvNT2yhaa4FvuLCTqz1uhlC1E0BSJs06MKe8WwE3TRPejZpystElUxsskI X0856v76NG/ScYaygaTSd1BeiVd4SBF4Bzl9khRdwykK93mnBVg= -----END CERTIFICATE-----Generated at Fri Sep 20 08:12:13 2024 by rpki-client on console-fra.rpki-client.org