$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/9W83V8_w75SJSq3Z-ymOyORxq9A.roa File: 9W83V8_w75SJSq3Z-ymOyORxq9A.roa (raw, json) Hash identifier: 6G3zNsMFUmbfE4wNKbsy9Hq3+yEZGkKH5imTmJ0xBh8= Subject key identifier: F5:6F:37:57:CF:F0:EF:94:89:4A:AD:D9:FB:29:8E:C8:E4:71:AB:D0 Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Certificate serial: 03 Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/9W83V8_w75SJSq3Z-ymOyORxq9A.roa Signing time: Mon 21 Oct 2024 09:18:14 +0000 ROA not before: Mon 21 Oct 2024 09:18:14 +0000 ROA not after: Tue 14 Oct 2025 15:30:32 +0000 asID: 152616 IP address blocks: 160.191.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:53:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Validity Not Before: Oct 21 09:18:14 2024 GMT Not After : Oct 14 15:30:32 2025 GMT Subject: CN=F56F3757CFF0EF94894AADD9FB298EC8E471ABD0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b5:28:d8:4f:8b:3b:b0:7b:f4:93:46:cb:39: 88:56:f6:c5:00:3a:f8:a8:41:ad:d2:75:d8:c7:6e: a4:b2:84:2b:16:ce:fd:23:63:e9:ce:69:f6:fb:16: ce:3e:08:3c:c0:55:ae:0c:57:0e:a0:83:be:c8:ee: 8d:9b:fa:66:e9:ff:2b:14:63:06:79:4a:9f:aa:a9: 7f:3a:29:26:fc:0e:7a:ae:c7:09:a3:93:f1:f4:97: 31:0e:f0:26:d4:a5:49:19:fd:2e:11:e4:fa:d9:43: b6:07:a6:5f:81:87:06:ce:7b:44:b9:54:84:e1:42: 8c:8c:9e:f9:a9:06:dd:f7:89:ff:48:b8:04:20:6e: 07:d8:88:3f:35:cd:00:62:ec:d4:25:2d:9d:65:59: 8e:a8:d9:4e:8f:8b:37:b6:83:2a:46:9c:55:fe:53: 13:3f:e7:2b:dd:e4:ce:db:da:bf:96:fa:d5:70:1e: b8:3d:d3:c4:b6:7e:19:d6:6a:c9:00:d2:5c:42:3b: a5:59:32:f2:5c:c2:4e:b6:bc:db:8e:73:01:98:32: 70:4e:a2:03:bf:94:10:82:ec:86:44:af:fb:9f:ef: 5f:81:5b:d2:a7:f7:36:20:23:99:dc:8d:74:b3:e4: 47:27:95:a3:47:26:c2:f1:a8:ba:32:0f:b4:b5:ba: 7e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:6F:37:57:CF:F0:EF:94:89:4A:AD:D9:FB:29:8E:C8:E4:71:AB:D0 X509v3 Authority Key Identifier: keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/9W83V8_w75SJSq3Z-ymOyORxq9A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.6.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:ae:f9:21:c1:ef:3d:94:18:39:84:88:fb:75:18:1b:2d:7e: 9b:c3:ed:68:05:fd:80:47:31:83:1f:26:b9:33:41:dc:92:14: 3a:15:9c:2c:bc:fc:23:dd:56:dc:cd:d8:0e:d1:e9:d6:09:67: 44:64:aa:0b:d0:52:a1:13:e0:36:36:d3:ad:80:68:c0:36:7a: 14:fb:5b:7b:2e:62:90:7b:8e:08:67:a6:de:0e:4c:ea:f6:9f: 92:aa:da:52:03:3e:2f:ed:76:1a:e6:ca:25:a6:59:da:ba:52: 54:64:58:0f:f5:f8:50:7c:01:20:f3:6d:c8:56:45:3a:33:21: 12:60:8a:a8:32:dc:05:2f:2a:fa:cf:0b:cb:3b:7c:1c:8f:3a: 44:a7:35:9c:b6:38:ef:b7:d7:2b:a4:a3:c8:18:c8:c0:3d:94: 3e:35:93:f2:31:5a:cc:64:f0:4a:8c:9f:cf:30:6a:65:0d:54: 9f:3e:95:78:a4:f1:e9:e3:8c:5d:11:6b:93:c8:96:e0:23:12: 33:50:19:86:1b:29:79:52:eb:44:ec:3e:db:f0:ee:e7:d1:3b: 15:73:02:3c:03:c0:73:36:51:2d:45:f0:4a:cd:03:b2:f1:39: 29:5f:01:5f:3a:c4:34:e8:ca:88:a1:a0:72:37:61:87:58:5e: e6:df:9b:47 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MzIy RTYxQUU4QzhERDg5NTNFMUU2QkRDOTZBRTQ4MjdBRkNGOTkwMB4XDTI0MTAyMTA5 MTgxNFoXDTI1MTAxNDE1MzAzMlowMzExMC8GA1UEAxMoRjU2RjM3NTdDRkYwRUY5 NDg5NEFBREQ5RkIyOThFQzhFNDcxQUJEMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAKi1KNhPizuwe/STRss5iFb2xQA6+KhBrdJ12MdupLKEKxbO/SNj 6c5p9vsWzj4IPMBVrgxXDqCDvsjujZv6Zun/KxRjBnlKn6qpfzopJvwOeq7HCaOT 8fSXMQ7wJtSlSRn9LhHk+tlDtgemX4GHBs57RLlUhOFCjIye+akG3feJ/0i4BCBu B9iIPzXNAGLs1CUtnWVZjqjZTo+LN7aDKkacVf5TEz/nK93kztvav5b61XAeuD3T xLZ+GdZqyQDSXEI7pVky8lzCTra8245zAZgycE6iA7+UEILshkSv+5/vX4Fb0qf3 NiAjmdyNdLPkRyeVo0cmwvGoujIPtLW6fhkCAwEAAaOCAewwggHoMB0GA1UdDgQW BBT1bzdXz/DvlIlKrdn7KY7I5HGr0DAfBgNVHSMEGDAWgBRTIuYa6MjdiVPh5r3J auSCevz5kDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9V eUxtR3VqSTNZbFQ0ZWE5eVdya2ducjgtWkEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1V5TG1HdWpJM1lsVDRlYTl5V3JrZ25yOC1aQS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xFWVVOLzlXODNWOF93NzVTSlNxM1oteW1P eU9SeHE5QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgvwYw DQYJKoZIhvcNAQELBQADggEBAF2u+SHB7z2UGDmEiPt1GBstfpvD7WgF/YBHMYMf JrkzQdySFDoVnCy8/CPdVtzN2A7R6dYJZ0RkqgvQUqET4DY2062AaMA2ehT7W3su YpB7jghnpt4OTOr2n5Kq2lIDPi/tdhrmyiWmWdq6UlRkWA/1+FB8ASDzbchWRToz IRJgiqgy3AUvKvrPC8s7fByPOkSnNZy2OO+31yuko8gYyMA9lD41k/IxWsxk8EqM n88wamUNVJ8+lXik8enjjF0Ra5PIluAjEjNQGYYbKXlS60TsPtvw7ufROxVzAjwD wHM2US1F8ErNA7LxOSlfAV86xDToyoihoHI3YYdYXubfm0c= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org