$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/8yha5ijSmBvlYbaTPp3UNY_IUsc.roa File: 8yha5ijSmBvlYbaTPp3UNY_IUsc.roa (raw, json) Hash identifier: qltx/RwoJfXMbqloTDE2iruPt5Ve3xGWSPySdt8fhHU= Subject key identifier: F3:28:5A:E6:28:D2:98:1B:E5:61:B6:93:3E:9D:D4:35:8F:C8:52:C7 Certificate issuer: /CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A Certificate serial: 0101 Authority key identifier: 8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/8yha5ijSmBvlYbaTPp3UNY_IUsc.roa Signing time: Mon 26 Aug 2024 05:20:25 +0000 ROA not before: Mon 26 Aug 2024 05:20:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 2401:2b60::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A Validity Not Before: Aug 26 05:20:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F3285AE628D2981BE561B6933E9DD4358FC852C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2d:fd:f8:1f:17:2d:25:7d:06:96:48:94:fe: 10:b8:79:a3:95:28:36:26:4a:f9:6f:d5:b2:21:93: 56:68:56:19:6d:83:19:68:55:c5:9d:21:cd:2f:32: 7f:ac:a4:21:7b:44:94:93:7a:a1:d0:2b:2a:41:0a: e4:41:da:1e:49:91:9a:90:17:18:15:93:51:f3:87: 79:0a:3f:ab:4c:60:d5:a6:d0:b5:c1:99:c1:8f:24: 14:86:9b:f6:d6:51:03:45:72:8e:55:cf:46:99:0c: 63:d4:75:46:6c:31:3a:b9:40:25:a2:ab:1e:e9:1a: e5:75:85:2b:25:a2:fe:1b:84:aa:06:17:0e:c8:25: 79:2a:b0:08:91:ca:71:02:fc:04:57:6e:b4:ed:20: 00:5e:d2:f6:5d:23:06:bb:c8:29:6a:73:db:85:3a: 68:80:52:1c:d8:96:44:a3:8f:d8:50:e0:b4:7d:e4: 81:4c:9c:01:dc:9b:f8:a4:23:ba:14:14:35:c0:d5: de:b1:e2:9b:de:78:f1:91:dd:6b:4b:05:dc:38:70: 41:62:c1:3d:bb:8e:13:3b:1d:cb:40:5b:54:a2:a5: ad:3a:8b:54:c5:c5:9b:91:99:87:cf:14:16:6f:78: b1:02:6e:4f:48:43:59:e2:a2:fd:fa:4d:8e:90:ba: 10:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:28:5A:E6:28:D2:98:1B:E5:61:B6:93:3E:9D:D4:35:8F:C8:52:C7 X509v3 Authority Key Identifier: keyid:8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/8yha5ijSmBvlYbaTPp3UNY_IUsc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:2b60::/32 Signature Algorithm: sha256WithRSAEncryption 4f:2a:c0:11:90:36:e8:51:30:1b:30:fc:74:e1:43:16:1e:af: 71:12:a1:27:8a:45:32:04:4c:b5:e7:9c:db:59:5f:e2:6c:39: 81:aa:92:3e:bb:bd:e0:3c:d0:ad:d9:ff:21:ac:8e:4a:96:64: e7:5d:8e:df:36:ec:4e:d0:1e:c8:fa:79:27:9d:13:81:5a:ac: f7:12:eb:2e:ad:4e:6f:78:fb:40:2d:df:5e:c7:9d:7c:ac:90: cf:b6:72:a0:53:22:d2:48:8e:78:a1:96:ca:3f:cf:d4:9b:a5: dd:68:bd:06:91:71:92:8b:71:09:58:11:98:f8:db:b0:f3:51: a1:4f:aa:52:38:47:ac:1b:5c:21:3a:73:0e:a8:8f:f7:67:cb: 37:37:9e:62:6b:32:4c:6c:4a:38:ab:26:76:78:be:9f:bf:c4: a3:7e:6e:24:3f:a0:62:1d:ec:2b:0b:89:4c:3e:f2:4f:4b:ee: 7a:70:cd:a1:3a:d8:da:3c:b2:04:fe:70:de:ae:8d:90:2c:47: b8:17:04:1f:f7:9b:d5:fe:7f:8e:b1:2a:9d:f1:81:9c:b2:4c: 9a:f5:f8:79:fc:39:f1:8a:7f:ab:0b:c1:56:16:05:86:d3:e9: 9d:f1:c6:1c:83:e1:8c:38:48:de:28:72:3f:e8:81:15:80:52: 91:1d:4c:06 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFC OTlFQzkwNjA3Qjk2MDE5NTE2RUNBNjA0QzdCN0ZGMjQ3NEE5QTAeFw0yNDA4MjYw NTIwMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzMjg1QUU2MjhEMjk4 MUJFNTYxQjY5MzNFOURENDM1OEZDODUyQzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8Lf34HxctJX0GlkiU/hC4eaOVKDYmSvlv1bIhk1ZoVhltgxlo VcWdIc0vMn+spCF7RJSTeqHQKypBCuRB2h5JkZqQFxgVk1Hzh3kKP6tMYNWm0LXB mcGPJBSGm/bWUQNFco5Vz0aZDGPUdUZsMTq5QCWiqx7pGuV1hSslov4bhKoGFw7I JXkqsAiRynEC/ARXbrTtIABe0vZdIwa7yClqc9uFOmiAUhzYlkSjj9hQ4LR95IFM nAHcm/ikI7oUFDXA1d6x4pveePGR3WtLBdw4cEFiwT27jhM7HctAW1Sipa06i1TF xZuRmYfPFBZveLECbk9IQ1niov36TY6QuhBXAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU8yha5ijSmBvlYbaTPp3UNY/IUscwHwYDVR0jBBgwFoAUirmeyQYHuWAZUW7K YEx7f/JHSpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElOR0NB SS9pcm1leVFZSHVXQVpVVzdLWUV4N2ZfSkhTcG8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2lybWV5UVlIdVdBWlVXN0tZRXg3Zl9KSFNwby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xJTkdDQUkvOHloYTVpalNtQnZsWWJh VFBwM1VOWV9JVXNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQBK2AwDQYJKoZIhvcNAQELBQADggEBAE8qwBGQNuhRMBsw/HThQxYer3ESoSeK RTIETLXnnNtZX+JsOYGqkj67veA80K3Z/yGsjkqWZOddjt827E7QHsj6eSedE4Fa rPcS6y6tTm94+0At317HnXyskM+2cqBTItJIjnihlso/z9Sbpd1ovQaRcZKLcQlY EZj427DzUaFPqlI4R6wbXCE6cw6oj/dnyzc3nmJrMkxsSjirJnZ4vp+/xKN+biQ/ oGId7CsLiUw+8k9L7npwzaE62No8sgT+cN6ujZAsR7gXBB/3m9X+f46xKp3xgZyy TJr1+Hn8OfGKf6sLwVYWBYbT6Z3xxhyD4Yw4SN4ocj/ogRWAUpEdTAY= -----END CERTIFICATE-----Generated at Fri Sep 20 08:12:13 2024 by rpki-client on console-fra.rpki-client.org