$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/7jcBwDkpg6nNmFQzX-eg5MJ7GIk.roa File: 7jcBwDkpg6nNmFQzX-eg5MJ7GIk.roa (raw, json) Hash identifier: 6TSrG8v1H9ckz/94oFDtolXryvfNwpRs+eqXRBXyno4= Subject key identifier: EE:37:01:C0:39:29:83:A9:CD:98:54:33:5F:E7:A0:E4:C2:7B:18:89 Certificate issuer: /CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Certificate serial: F2 Authority key identifier: 55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/7jcBwDkpg6nNmFQzX-eg5MJ7GIk.roa Signing time: Wed 04 Sep 2024 09:17:19 +0000 ROA not before: Wed 04 Sep 2024 09:17:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 2401:3920::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Validity Not Before: Sep 4 09:17:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE3701C0392983A9CD9854335FE7A0E4C27B1889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9b:e0:ea:96:9a:2d:a7:65:a7:90:a7:84:2b: 2a:f0:86:8d:fa:86:7e:35:8f:23:df:dc:be:8b:9b: 0f:a0:f6:fd:b9:a1:5a:a9:10:e2:a4:4d:8b:39:c8: 90:cf:6f:f4:b2:dd:c4:16:ae:b6:81:45:83:1a:aa: 3a:d9:9c:df:7e:eb:0c:7e:68:b9:1e:36:2a:f8:e9: dc:d8:bf:13:e8:03:05:eb:7f:89:ea:ff:58:ef:1d: f2:82:31:7b:58:c9:95:69:39:69:a3:40:61:3a:8c: f7:1f:d5:19:54:75:9f:fa:e8:a2:2d:1c:37:15:6b: 4d:0d:e1:a9:16:49:5e:62:80:4d:4b:4f:bf:2d:10: f7:01:3b:dc:de:01:4a:2f:d1:ae:0c:a7:78:06:f1: 43:e8:9d:94:77:3d:39:a9:c8:43:79:1f:52:65:35: 34:a9:2f:0b:22:31:eb:56:65:a8:cf:8a:31:76:7f: a4:ed:e3:1f:5e:e0:fa:f3:d8:f1:e2:62:36:97:54: f7:23:74:ba:e7:6b:ad:0b:6d:7f:3d:77:47:7a:09: 72:1b:cc:48:cb:79:56:5e:fa:30:df:3f:4b:55:d6: 7c:8e:87:43:ed:c2:d5:65:47:88:a8:df:d0:f6:9d: 1e:c0:d6:f1:c9:76:ec:ee:47:bb:a7:c0:61:a9:ba: ab:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:37:01:C0:39:29:83:A9:CD:98:54:33:5F:E7:A0:E4:C2:7B:18:89 X509v3 Authority Key Identifier: keyid:55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/7jcBwDkpg6nNmFQzX-eg5MJ7GIk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:3920::/32 Signature Algorithm: sha256WithRSAEncryption 29:d0:17:d2:6b:7a:2d:a8:f5:6f:ec:d6:21:03:cf:c4:5e:58: 6a:6c:fd:23:29:34:5d:16:46:b8:6c:e9:f8:5d:a8:c0:8b:14: 8d:fd:77:42:eb:7e:c8:11:e2:84:69:1e:f5:f7:37:7e:30:f5: e0:c3:35:bb:83:d9:e1:83:bb:43:f5:b7:30:0c:c8:7f:06:75: 95:48:54:e5:1e:f2:3d:73:fc:47:0b:ac:29:d5:10:91:5d:d1: 43:46:d0:88:24:f0:7c:7d:f0:d8:18:4f:5f:18:7f:a4:e9:6c: 6a:11:5a:06:04:a2:f4:60:40:6f:e1:4e:df:b7:87:41:8b:22: 29:fe:9c:0a:61:a3:ca:3c:73:1c:66:5d:2b:c5:24:ad:b7:1a: c2:1c:02:a0:66:c1:1f:04:14:1f:ee:4f:c8:e5:bb:8c:a1:64: 61:89:52:21:93:d5:1a:04:3d:5d:04:70:b2:f3:f7:7e:48:8a: 99:b2:c3:a8:e1:68:05:b8:bf:35:eb:6d:4d:52:9e:88:1c:c3: b2:de:ed:da:c0:71:fe:57:ae:32:c0:6a:20:9e:48:ca:52:df: 9d:e2:8b:e4:5f:11:d8:a8:f6:7f:b4:54:c8:e5:8d:a9:5b:60: fd:85:0f:3a:69:90:8d:69:dd:91:34:33:16:66:1f:c9:a7:48: 3f:c4:9c:f8 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUw MUZFMEMzMDU2RjYxMTI2MUFDMUMwRURDNjdFMjM0NEQ3OTkzQTAeFw0yNDA5MDQw OTE3MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFMzcwMUMwMzkyOTgz QTlDRDk4NTQzMzVGRTdBMEU0QzI3QjE4ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCm+Dqlpotp2WnkKeEKyrwho36hn41jyPf3L6Lmw+g9v25oVqp EOKkTYs5yJDPb/Sy3cQWrraBRYMaqjrZnN9+6wx+aLkeNir46dzYvxPoAwXrf4nq /1jvHfKCMXtYyZVpOWmjQGE6jPcf1RlUdZ/66KItHDcVa00N4akWSV5igE1LT78t EPcBO9zeAUov0a4Mp3gG8UPonZR3PTmpyEN5H1JlNTSpLwsiMetWZajPijF2f6Tt 4x9e4Prz2PHiYjaXVPcjdLrna60LbX89d0d6CXIbzEjLeVZe+jDfP0tV1nyOh0Pt wtVlR4io39D2nR7A1vHJduzuR7unwGGpuqvlAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU7jcBwDkpg6nNmFQzX+eg5MJ7GIkwHwYDVR0jBBgwFoAUVQH+DDBW9hEmGsHA 7cZ+I0TXmTowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElBTkdD QUkvVlFILUREQlc5aEVtR3NIQTdjWi1JMFRYbVRvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9WUUgtRERCVzloRW1Hc0hBN2NaLUkwVFhtVG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSUFOR0NBSS83amNCd0RrcGc2bk5t RlF6WC1lZzVNSjdHSWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAE5IDANBgkqhkiG9w0BAQsFAAOCAQEAKdAX0mt6Laj1b+zWIQPPxF5Yamz9 Iyk0XRZGuGzp+F2owIsUjf13Qut+yBHihGke9fc3fjD14MM1u4PZ4YO7Q/W3MAzI fwZ1lUhU5R7yPXP8RwusKdUQkV3RQ0bQiCTwfH3w2BhPXxh/pOlsahFaBgSi9GBA b+FO37eHQYsiKf6cCmGjyjxzHGZdK8UkrbcawhwCoGbBHwQUH+5PyOW7jKFkYYlS IZPVGgQ9XQRwsvP3fkiKmbLDqOFoBbi/NettTVKeiBzDst7t2sBx/leuMsBqIJ5I ylLfneKL5F8R2Kj2f7RUyOWNqVtg/YUPOmmQjWndkTQzFmYfyadIP8Sc+A== -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:42 2024 by rpki-client on console-ams.rpki-client.org