$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/Xw9_MpTC8776su1KoumCxrT3hqQ.roa File: Xw9_MpTC8776su1KoumCxrT3hqQ.roa (raw, json) Hash identifier: B33Pmy2soCFJoorDBLVT2l72uyaBfpeKsmL1bPYccOw= Subject key identifier: 5F:0F:7F:32:94:C2:F3:BE:FA:B2:ED:4A:A2:E9:82:C6:B4:F7:86:A4 Certificate issuer: /CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9 Certificate serial: F5 Authority key identifier: F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/Xw9_MpTC8776su1KoumCxrT3hqQ.roa Signing time: Tue 29 Oct 2024 09:47:14 +0000 ROA not before: Tue 29 Oct 2024 09:47:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 14874 IP address blocks: 2401:4f20::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9 Validity Not Before: Oct 29 09:47:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5F0F7F3294C2F3BEFAB2ED4AA2E982C6B4F786A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e7:9a:8e:45:e4:89:24:b3:19:c7:f8:5d:4a: 1b:aa:bd:bb:50:69:58:32:ea:ee:4b:2b:51:e4:c6: 7e:8c:d9:9f:03:d9:a0:0e:f4:b6:35:a6:a6:8b:eb: 37:8b:c3:1c:6e:c9:02:4c:31:66:a5:99:2f:64:db: fb:3a:ac:1d:52:1e:15:06:2b:bb:9c:ec:41:e3:f2: 2b:24:ed:d0:6e:45:2f:c3:44:5a:39:76:93:21:ab: 75:32:b4:e9:04:f4:a0:46:dd:7b:3c:b2:72:22:83: 7b:da:32:10:30:43:5f:c0:c3:70:f1:c9:41:7f:83: 45:13:dc:80:87:61:2e:b5:47:1b:75:a6:79:e8:79: 98:7d:c9:1c:df:bc:6e:47:12:df:ea:78:82:19:b7: 59:c7:eb:cc:17:ea:85:37:45:45:03:fb:24:0b:07: df:6b:f2:ff:93:c7:fc:ca:15:6d:a4:c7:dd:e5:7c: 99:37:9d:b7:93:ac:69:52:9f:95:6e:3b:4f:b2:47: cd:53:81:b1:dd:b4:a9:33:0d:47:e6:8c:73:98:45: e8:06:32:cf:61:b2:1d:f1:7e:a3:bc:65:4c:b3:85: ea:eb:3e:9c:be:94:fd:53:4c:f3:ec:04:fa:a8:0a: f6:61:b9:aa:70:cb:6c:a2:b5:62:52:cd:5e:00:43: f4:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:0F:7F:32:94:C2:F3:BE:FA:B2:ED:4A:A2:E9:82:C6:B4:F7:86:A4 X509v3 Authority Key Identifier: keyid:F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/Xw9_MpTC8776su1KoumCxrT3hqQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:4f20::/32 Signature Algorithm: sha256WithRSAEncryption 85:31:e8:05:41:a1:4e:46:af:18:e6:8a:4b:45:d9:4d:98:66: 83:06:05:a3:52:56:a2:e7:b8:0e:58:3c:72:d1:d3:dd:f6:f9: e7:aa:a1:13:9d:e5:c0:28:c0:51:68:08:80:26:ac:4d:ca:52: e9:8e:04:77:f5:c0:fb:c3:3a:8c:84:a7:05:a2:7d:45:7f:a4: c3:9b:38:40:2b:9b:9a:9c:fb:26:92:de:a8:ff:e5:20:db:9c: 8a:09:b6:d3:de:89:b8:f8:9d:3c:8e:31:d3:18:91:03:04:39: 33:4b:f6:7d:35:6e:08:5c:6e:b5:de:3c:21:c8:dc:85:b4:d9: 7f:a4:5e:f6:fb:e3:df:3f:37:82:68:6b:d1:d0:8b:24:51:cb: 95:f5:84:e8:a8:93:a1:96:95:ab:8e:c3:a3:1c:3e:18:58:76: 7d:3a:db:4a:10:82:20:ae:6d:56:86:93:e6:f1:78:85:a5:d5: 9b:a2:78:6a:fc:58:c0:44:6d:89:cc:66:6b:e9:a9:9b:64:0d: d0:92:a2:30:c8:56:44:36:76:21:1a:b5:8a:80:38:09:72:ca: f4:cb:69:de:7c:d7:09:9f:88:79:b5:6e:64:73:58:04:b5:0b: 3b:1c:46:44:3f:7f:36:6a:ae:63:bc:77:78:21:92:bb:d4:32: be:16:47:89 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjk1 RjBBQTRFRUUzNDZGMDc3QTBDRUVDOEQwNkNDNDk4RjlCMUFCOTAeFw0yNDEwMjkw OTQ3MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGMEY3RjMyOTRDMkYz QkVGQUIyRUQ0QUEyRTk4MkM2QjRGNzg2QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf55qOReSJJLMZx/hdShuqvbtQaVgy6u5LK1Hkxn6M2Z8D2aAO 9LY1pqaL6zeLwxxuyQJMMWalmS9k2/s6rB1SHhUGK7uc7EHj8isk7dBuRS/DRFo5 dpMhq3UytOkE9KBG3Xs8snIig3vaMhAwQ1/Aw3DxyUF/g0UT3ICHYS61Rxt1pnno eZh9yRzfvG5HEt/qeIIZt1nH68wX6oU3RUUD+yQLB99r8v+Tx/zKFW2kx93lfJk3 nbeTrGlSn5VuO0+yR81TgbHdtKkzDUfmjHOYRegGMs9hsh3xfqO8ZUyzherrPpy+ lP1TTPPsBPqoCvZhuapwy2yitWJSzV4AQ/T7AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUXw9/MpTC8776su1KoumCxrT3hqQwHwYDVR0jBBgwFoAU+V8KpO7jRvB3oM7s jQbMSY+bGrkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0FJV0VJ Ly1WOEtwTzdqUnZCM29NN3NqUWJNU1ktYkdyay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvLVY4S3BPN2pSdkIzb003c2pRYk1TWS1iR3JrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0FJV0VJL1h3OV9NcFRDODc3NnN1MUtv dW1DeHJUM2hxUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk AU8gMA0GCSqGSIb3DQEBCwUAA4IBAQCFMegFQaFORq8Y5opLRdlNmGaDBgWjUlai 57gOWDxy0dPd9vnnqqETneXAKMBRaAiAJqxNylLpjgR39cD7wzqMhKcFon1Ff6TD mzhAK5uanPsmkt6o/+Ug25yKCbbT3om4+J08jjHTGJEDBDkzS/Z9NW4IXG613jwh yNyFtNl/pF72++PfPzeCaGvR0IskUcuV9YToqJOhlpWrjsOjHD4YWHZ9OttKEIIg rm1WhpPm8XiFpdWbonhq/FjARG2JzGZr6ambZA3QkqIwyFZENnYhGrWKgDgJcsr0 y2nefNcJn4h5tW5kc1gEtQs7HEZEP382aq5jvHd4IZK71DK+FkeJ -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org