$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NARL/CgtUc-nq2ppy-doZ7gjijCZKOm4.roa File: CgtUc-nq2ppy-doZ7gjijCZKOm4.roa (raw, json) Hash identifier: ofGfZOHZYB3uDvvZsnRHUZwBrLIZR3L8rR7XSqPUC1I= Subject key identifier: 0A:0B:54:73:E9:EA:DA:9A:72:F9:DA:19:EE:08:E2:8C:26:4A:3A:6E Certificate issuer: /CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Certificate serial: 0C3D Authority key identifier: 45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/CgtUc-nq2ppy-doZ7gjijCZKOm4.roa Signing time: Mon 26 Aug 2024 05:21:22 +0000 ROA not before: Mon 26 Aug 2024 05:21:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7539 IP address blocks: 2001:4500:1000::/40 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3133 (0xc3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=451EF9359A984F6A4CF91FE9004EAEB089A984C0 Validity Not Before: Aug 26 05:21:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0A0B5473E9EADA9A72F9DA19EE08E28C264A3A6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:2e:69:ec:76:d1:56:6c:60:09:8c:50:af: 10:06:8e:ed:18:ef:ca:9e:99:d2:af:81:c5:32:a5: 64:24:10:a6:05:70:2e:d7:86:a7:3b:2c:57:7e:23: fa:df:7e:5b:6e:b0:97:c8:72:94:26:98:1d:9a:59: fc:04:45:60:db:d0:29:aa:d3:f3:03:87:df:9e:32: c2:ae:4f:d5:81:19:78:13:6d:ac:89:8b:e9:bf:af: e7:3d:7e:64:cd:9d:bc:63:89:55:b2:51:e6:79:62: 36:a4:06:f6:de:72:a2:6a:48:04:0f:bb:2d:2e:7a: 1c:30:04:cb:d6:90:82:fa:80:11:26:11:2c:6d:77: 6c:3b:9e:90:5d:ef:6a:ae:ae:31:7f:5f:df:25:79: 06:b0:5e:4a:ad:e2:ea:d5:af:bf:12:77:97:cb:5e: 0c:74:ff:29:1b:66:a3:e6:c7:c9:ae:56:cf:70:5e: 27:a9:ff:ec:0a:4c:5b:e1:9f:e8:56:36:cc:6b:2a: bb:59:07:88:e2:d5:9d:de:ed:0b:b8:7a:b3:8b:63: e8:48:e5:37:0e:9a:2d:83:f9:de:61:b5:9b:6e:24: 18:6a:0e:ab:32:cc:3c:f8:8d:cd:74:01:a3:4e:df: eb:42:b0:1a:73:03:7a:f7:5c:c6:ac:80:c5:b9:a6: f9:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0B:54:73:E9:EA:DA:9A:72:F9:DA:19:EE:08:E2:8C:26:4A:3A:6E X509v3 Authority Key Identifier: keyid:45:1E:F9:35:9A:98:4F:6A:4C:F9:1F:E9:00:4E:AE:B0:89:A9:84:C0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/RR75NZqYT2pM-R_pAE6usImphMA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RR75NZqYT2pM-R_pAE6usImphMA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NARL/CgtUc-nq2ppy-doZ7gjijCZKOm4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:4500:1000::/40 Signature Algorithm: sha256WithRSAEncryption 61:ae:8c:97:34:46:98:9a:76:86:c0:0d:05:44:12:4d:1b:43: 8d:59:a0:63:24:b5:11:e9:4a:21:8b:d0:18:2a:62:90:ad:2d: ce:13:c3:ac:90:78:33:ca:88:80:de:66:34:3a:69:90:8a:c1: e0:23:a9:22:93:a2:4f:32:69:8a:93:b7:b7:b9:02:c0:8d:15: 44:96:fe:23:0a:a2:bf:3d:c8:04:4d:b3:b4:d3:19:3a:72:94: 5a:3f:eb:3c:b7:5a:dc:57:20:6d:f9:a2:25:94:d3:78:dd:4c: 54:ec:7e:e7:b4:7c:f7:25:13:f6:10:9b:51:d2:67:ad:e5:fd: c2:e7:e5:65:86:e4:5c:fd:e1:49:58:d1:26:95:8a:bb:e7:b3: df:11:eb:0f:55:63:d3:3b:de:e5:7b:c9:a1:ca:20:01:69:9a: b1:58:06:0d:f0:ab:cd:c1:0d:1f:07:8b:58:17:4f:8c:f1:67: 97:67:e8:62:4e:8f:05:56:22:66:a3:70:86:d6:3a:5c:d9:fa: ee:44:ae:24:00:3f:e6:8d:cd:5c:43:57:8e:92:03:71:12:b0: 53:73:c9:45:6c:0b:51:eb:90:b2:24:b0:b3:0e:65:cf:2c:ba: 04:d9:b4:0e:f9:ac:2b:e6:06:53:c4:7b:86:02:40:ff:d5:32: ef:d9:48:f7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDD0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDUx RUY5MzU5QTk4NEY2QTRDRjkxRkU5MDA0RUFFQjA4OUE5ODRDMDAeFw0yNDA4MjYw NTIxMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBBMEI1NDczRTlFQURB OUE3MkY5REExOUVFMDhFMjhDMjY0QTNBNkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+9i5p7HbRVmxgCYxQrxAGju0Y78qemdKvgcUypWQkEKYFcC7X hqc7LFd+I/rffltusJfIcpQmmB2aWfwERWDb0Cmq0/MDh9+eMsKuT9WBGXgTbayJ i+m/r+c9fmTNnbxjiVWyUeZ5YjakBvbecqJqSAQPuy0uehwwBMvWkIL6gBEmESxt d2w7npBd72qurjF/X98leQawXkqt4urVr78Sd5fLXgx0/ykbZqPmx8muVs9wXiep /+wKTFvhn+hWNsxrKrtZB4ji1Z3e7Qu4erOLY+hI5TcOmi2D+d5htZtuJBhqDqsy zDz4jc10AaNO3+tCsBpzA3r3XMasgMW5pvkbAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUCgtUc+nq2ppy+doZ7gjijCZKOm4wHwYDVR0jBBgwFoAURR75NZqYT2pM+R/p AE6usImphMAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkFSTC9S Ujc1TlpxWVQycE0tUl9wQUU2dXNJbXBoTUEuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1JSNzVOWnFZVDJwTS1SX3BBRTZ1c0ltcGhNQS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05BUkwvQ2d0VWMtbnEycHB5LWRvWjdnamlq Q1pLT200LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIwCAMGACABRQAQ MA0GCSqGSIb3DQEBCwUAA4IBAQBhroyXNEaYmnaGwA0FRBJNG0ONWaBjJLUR6Uoh i9AYKmKQrS3OE8OskHgzyoiA3mY0OmmQisHgI6kik6JPMmmKk7e3uQLAjRVElv4j CqK/PcgETbO00xk6cpRaP+s8t1rcVyBt+aIllNN43UxU7H7ntHz3JRP2EJtR0met 5f3C5+VlhuRc/eFJWNEmlYq757PfEesPVWPTO97le8mhyiABaZqxWAYN8KvNwQ0f B4tYF0+M8WeXZ+hiTo8FViJmo3CG1jpc2fruRK4kAD/mjc1cQ1eOkgNxErBTc8lF bAtR65CyJLCzDmXPLLoE2bQO+awr5gZTxHuGAkD/1TLv2Uj3 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:09 2024 by rpki-client on console-ams.rpki-client.org