$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/-8oNsnl0ou9P4132nVLoyujfFJk.roa File: -8oNsnl0ou9P4132nVLoyujfFJk.roa (raw, json) Hash identifier: sDNeISvSTXyoUYlLSlbmz5X5QoKJSsquh2izLB6oMjc= Subject key identifier: FB:CA:0D:B2:79:74:A2:EF:4F:E3:5D:F6:9D:52:E8:CA:E8:DF:14:99 Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Certificate serial: 12FB Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/-8oNsnl0ou9P4132nVLoyujfFJk.roa Signing time: Mon 26 Aug 2024 05:23:11 +0000 ROA not before: Mon 26 Aug 2024 05:23:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 2403:b340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4859 (0x12fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Validity Not Before: Aug 26 05:23:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FBCA0DB27974A2EF4FE35DF69D52E8CAE8DF1499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:64:94:4c:7e:96:a3:7b:48:5c:40:e8:22:7e: 97:f3:ff:b6:d4:e2:38:f1:af:40:14:10:cf:7f:a8: c9:24:65:7c:73:73:db:32:a0:33:8b:c0:24:13:28: 64:5b:3f:08:75:8d:58:02:81:f8:cf:2c:5e:f5:40: 28:0f:f3:d2:67:db:ee:41:bc:5d:ee:80:f5:09:6d: b0:19:22:9b:ae:1b:2d:2e:94:32:00:33:e2:ad:d4: bd:b2:2a:34:03:07:43:83:c0:9c:91:4e:f9:25:4d: f3:9d:3c:0b:14:f1:74:cb:ba:b1:0a:ac:dd:fa:3a: 8c:27:14:42:3c:50:0b:d2:e5:7f:0b:9c:9a:3a:67: 05:5e:7f:9d:f9:84:75:31:a9:85:fb:53:c0:8a:a8: 42:ba:c9:4f:d2:b0:2f:f2:6f:33:64:a5:f0:db:9b: 55:d1:ed:99:1a:3a:ad:a5:c1:2b:7e:b5:b2:ae:8d: c0:24:94:ce:0e:99:33:f7:94:48:2e:ad:db:1f:a8: d4:cd:fb:17:1d:86:bd:08:53:75:6b:40:6e:91:f5: 09:92:ed:11:18:55:1e:56:b7:d3:fe:89:3a:e1:5e: e3:74:61:75:df:ab:d0:65:05:03:4e:12:bd:23:bf: c4:85:c5:a5:ab:e3:b2:6b:6c:5f:81:fa:c2:13:58: 27:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:CA:0D:B2:79:74:A2:EF:4F:E3:5D:F6:9D:52:E8:CA:E8:DF:14:99 X509v3 Authority Key Identifier: keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/-8oNsnl0ou9P4132nVLoyujfFJk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:b340::/32 Signature Algorithm: sha256WithRSAEncryption 7e:df:f2:5c:11:ce:c6:69:11:03:43:e9:d4:3f:4e:5b:ec:8d: da:16:4e:6a:cf:f0:ab:16:43:46:a7:7b:36:fc:3b:c4:99:60: c7:7c:e4:85:42:f3:bf:75:28:69:ff:8a:b6:15:32:48:87:fc: 5b:19:0a:b3:79:8e:63:fc:75:06:4e:eb:77:28:b1:d1:72:f8: bb:18:99:7b:37:62:f2:7c:79:60:91:a5:51:28:39:44:fe:c4: 22:bf:cb:12:fb:64:6a:ee:b1:e1:c4:88:5c:7e:25:ba:d7:10: 42:c9:00:8f:ff:9d:46:d7:e3:63:cc:aa:fe:3c:ba:a5:02:c9: 45:ea:b0:09:3e:13:1e:cc:0e:26:60:9c:fc:17:1d:ed:6e:44: 55:19:97:4e:55:7b:4b:ea:db:60:01:c3:7e:81:0f:7c:57:96: db:f5:2c:f1:a8:5d:1a:17:51:60:a0:ee:41:87:bf:4e:1d:7d: 59:02:01:68:03:d2:01:cd:cf:14:37:19:7d:dd:f3:44:32:28: 77:a9:01:07:c3:de:6d:b3:5f:3c:7d:0b:4f:e2:5d:28:a0:6a: b7:fb:1e:50:b0:56:88:be:57:60:11:17:6b:1b:ac:84:e8:4a: 7a:fc:b1:18:fd:9c:b3:d8:85:d4:4e:89:0b:51:ae:6c:34:84: 6f:34:ec:9f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEvswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODA1 MUYyRUNFRkMyNDJFOUFGOUYxRTQ1NEE0RkI3OTY1OTFCOERBQjAeFw0yNDA4MjYw NTIzMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCQ0EwREIyNzk3NEEy RUY0RkUzNURGNjlENTJFOENBRThERjE0OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtZJRMfpaje0hcQOgifpfz/7bU4jjxr0AUEM9/qMkkZXxzc9sy oDOLwCQTKGRbPwh1jVgCgfjPLF71QCgP89Jn2+5BvF3ugPUJbbAZIpuuGy0ulDIA M+Kt1L2yKjQDB0ODwJyRTvklTfOdPAsU8XTLurEKrN36OownFEI8UAvS5X8LnJo6 ZwVef535hHUxqYX7U8CKqEK6yU/SsC/ybzNkpfDbm1XR7ZkaOq2lwSt+tbKujcAk lM4OmTP3lEgurdsfqNTN+xcdhr0IU3VrQG6R9QmS7REYVR5Wt9P+iTrhXuN0YXXf q9BlBQNOEr0jv8SFxaWr47JrbF+B+sITWCf3AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU+8oNsnl0ou9P4132nVLoyujfFJkwHwYDVR0jBBgwFoAUgFHy7O/CQumvnx5F Sk+3llkbjaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVU L2dGSHk3T19DUXVtdm54NUZTay0zbGxrYmphcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZ0ZIeTdPX0NRdW12bng1RlNrLTNsbGtiamFzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVULy04b05zbmwwb3U5UDQxMzJu VkxveXVqZkZKay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk A7NAMA0GCSqGSIb3DQEBCwUAA4IBAQB+3/JcEc7GaREDQ+nUP05b7I3aFk5qz/Cr FkNGp3s2/DvEmWDHfOSFQvO/dShp/4q2FTJIh/xbGQqzeY5j/HUGTut3KLHRcvi7 GJl7N2LyfHlgkaVRKDlE/sQiv8sS+2Rq7rHhxIhcfiW61xBCyQCP/51G1+NjzKr+ PLqlAslF6rAJPhMezA4mYJz8Fx3tbkRVGZdOVXtL6ttgAcN+gQ98V5bb9SzxqF0a F1FgoO5Bh79OHX1ZAgFoA9IBzc8UNxl93fNEMih3qQEHw95ts188fQtP4l0ooGq3 +x5QsFaIvldgERdrG6yE6Ep6/LEY/Zyz2IXUTokLUa5sNIRvNOyf -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org