$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKPC/tkEOGGEE5fzHPEvrw5xNkRU4iao.roa File: tkEOGGEE5fzHPEvrw5xNkRU4iao.roa (raw, json) Hash identifier: FqOeHydW3/D+A/Isptz3pCBf0DZnmWfskUclyIH3rVg= Subject key identifier: B6:41:0E:18:61:04:E5:FC:C7:3C:4B:EB:C3:9C:4D:91:15:38:89:AA Certificate issuer: /CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B Certificate serial: 0DAD Authority key identifier: CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/tkEOGGEE5fzHPEvrw5xNkRU4iao.roa Signing time: Mon 26 Aug 2024 05:20:00 +0000 ROA not before: Mon 26 Aug 2024 05:20:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131645 IP address blocks: 2405:14c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3501 (0xdad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE37D7C99185A3D9AC611718DA78559B6E99A31B Validity Not Before: Aug 26 05:20:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B6410E186104E5FCC73C4BEBC39C4D91153889AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:e5:1c:e4:e8:8f:b4:9d:ff:e4:d3:ba:9f:91: bb:b4:dc:c1:ff:37:c2:ab:65:3d:f7:01:99:9c:f3: cc:97:b0:34:81:48:0a:3c:62:3e:6b:65:f8:42:96: 07:c7:b4:53:42:b5:20:01:f9:a6:cd:8e:9c:0c:39: ef:81:28:1c:4e:51:44:fd:03:f4:c7:c1:20:bd:e2: a3:d2:ff:02:c5:35:a1:c2:66:d5:f7:59:c3:51:ef: dc:e1:36:cd:0a:37:6f:0a:19:3e:e2:6a:b3:81:d9: cb:a1:b5:50:97:82:cb:5e:6f:1e:7d:e0:12:d9:cd: ca:6d:3b:a0:4f:6b:b3:36:ff:d8:d4:c6:f4:2c:df: f5:f9:0d:7d:d4:88:d5:99:0e:34:e6:de:a7:18:50: 1f:78:b8:e9:b2:eb:7d:1a:38:f0:9e:67:d7:f1:6d: df:6c:b5:6d:b3:e5:a3:3a:36:01:87:e9:7c:a1:36: 76:1d:f9:39:1b:2b:bb:40:55:11:b4:dd:58:bf:9f: f7:13:c0:f0:7a:e0:52:29:6d:0b:84:a7:93:b2:0c: 8f:ea:88:02:3a:66:a6:82:40:fb:45:f2:a7:88:cd: 97:94:09:73:aa:f2:e0:a0:91:54:35:ff:02:b7:d0: 02:cf:b6:2f:fe:05:07:87:80:d3:4b:94:d0:bd:1a: ec:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:41:0E:18:61:04:E5:FC:C7:3C:4B:EB:C3:9C:4D:91:15:38:89:AA X509v3 Authority Key Identifier: keyid:CE:37:D7:C9:91:85:A3:D9:AC:61:17:18:DA:78:55:9B:6E:99:A3:1B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/zjfXyZGFo9msYRcY2nhVm26Zoxs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zjfXyZGFo9msYRcY2nhVm26Zoxs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKPC/tkEOGGEE5fzHPEvrw5xNkRU4iao.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:14c0::/32 Signature Algorithm: sha256WithRSAEncryption 68:14:c4:37:45:1d:05:ff:71:f4:e3:95:cd:6d:04:76:ba:2a: d2:19:3a:78:f1:58:9f:2d:0b:b1:8f:cc:d3:f1:dd:90:b0:2c: 8b:3c:9e:9c:68:56:27:31:1c:a6:06:d6:11:23:37:1c:24:38: 61:1a:8b:e2:78:04:ee:bb:05:6a:81:1b:48:17:c3:db:86:e7: b7:97:63:79:79:6e:75:e4:04:3e:95:af:a0:a9:91:0f:8d:d3: 89:7a:a0:27:87:87:e8:39:7f:80:0f:64:fd:36:a7:09:7b:22: 76:ea:29:7f:a0:95:be:0a:5f:f8:c5:03:12:86:66:75:a8:03: 74:85:35:29:2e:80:c9:f5:6a:5e:09:ad:e3:1d:38:15:35:12: 0b:4b:8b:1a:79:ff:76:d2:0e:87:10:29:ae:ae:02:80:be:7c: 15:bf:30:ce:df:fd:33:89:cc:63:79:d5:b8:c7:fe:a7:64:81: 01:73:79:2b:f6:16:29:c1:fb:d1:a6:72:e6:34:f1:d3:29:9a: 7b:04:fb:f4:95:40:62:30:53:7f:c2:ae:28:c5:5c:ca:73:ff: 98:f5:3b:50:77:af:53:15:c3:a3:f8:e7:ab:bc:24:fa:eb:f1: 30:2b:80:20:d3:b2:e8:37:06:f7:d5:8a:b7:b4:65:4e:f8:cc: 62:5a:55:6c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDa0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Uz N0Q3Qzk5MTg1QTNEOUFDNjExNzE4REE3ODU1OUI2RTk5QTMxQjAeFw0yNDA4MjYw NTIwMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2NDEwRTE4NjEwNEU1 RkNDNzNDNEJFQkMzOUM0RDkxMTUzODg5QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs5Rzk6I+0nf/k07qfkbu03MH/N8KrZT33AZmc88yXsDSBSAo8 Yj5rZfhClgfHtFNCtSAB+abNjpwMOe+BKBxOUUT9A/THwSC94qPS/wLFNaHCZtX3 WcNR79zhNs0KN28KGT7iarOB2cuhtVCXgstebx594BLZzcptO6BPa7M2/9jUxvQs 3/X5DX3UiNWZDjTm3qcYUB94uOmy630aOPCeZ9fxbd9stW2z5aM6NgGH6XyhNnYd +TkbK7tAVRG03Vi/n/cTwPB64FIpbQuEp5OyDI/qiAI6ZqaCQPtF8qeIzZeUCXOq 8uCgkVQ1/wK30ALPti/+BQeHgNNLlNC9Gux/AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUtkEOGGEE5fzHPEvrw5xNkRU4iaowHwYDVR0jBBgwFoAUzjfXyZGFo9msYRcY 2nhVm26ZoxswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tQQy96 amZYeVpHRm85bXNZUmNZMm5oVm0yNlpveHMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3pqZlh5WkdGbzltc1lSY1kybmhWbTI2Wm94cy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLUEMvdGtFT0dHRUU1ZnpIUEV2cnc1eE5r UlU0aWFvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQFFMAw DQYJKoZIhvcNAQELBQADggEBAGgUxDdFHQX/cfTjlc1tBHa6KtIZOnjxWJ8tC7GP zNPx3ZCwLIs8npxoVicxHKYG1hEjNxwkOGEai+J4BO67BWqBG0gXw9uG57eXY3l5 bnXkBD6Vr6CpkQ+N04l6oCeHh+g5f4APZP02pwl7InbqKX+glb4KX/jFAxKGZnWo A3SFNSkugMn1al4JreMdOBU1EgtLixp5/3bSDocQKa6uAoC+fBW/MM7f/TOJzGN5 1bjH/qdkgQFzeSv2FinB+9GmcuY08dMpmnsE+/SVQGIwU3/CrijFXMpz/5j1O1B3 r1MVw6P456u8JPrr8TArgCDTsug3BvfVire0ZU74zGJaVWw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org