$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/uWP76vrwz6kFqqipDJTICxOBhRE.roa File: uWP76vrwz6kFqqipDJTICxOBhRE.roa (raw, json) Hash identifier: dWHAvTGF2rW4CT6JOchUWo8ZUegupZPYpceka3JOgDo= Subject key identifier: B9:63:FB:EA:FA:F0:CF:A9:05:AA:A8:A9:0C:94:C8:0B:13:81:85:11 Certificate issuer: /CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Certificate serial: 0125 Authority key identifier: 6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/uWP76vrwz6kFqqipDJTICxOBhRE.roa Signing time: Sun 17 Nov 2024 13:33:13 +0000 ROA not before: Sun 17 Nov 2024 13:33:13 +0000 ROA not after: Tue 23 Sep 2025 15:30:20 +0000 asID: 152179 IP address blocks: 160.187.100.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A2B1396C142DA6711518875E90C4AEC90B0F5C4 Validity Not Before: Nov 17 13:33:13 2024 GMT Not After : Sep 23 15:30:20 2025 GMT Subject: CN=B963FBEAFAF0CFA905AAA8A90C94C80B13818511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0f:36:bd:eb:37:f0:05:b2:62:70:38:78:c0: 5e:c9:e5:f5:7e:f3:ca:44:28:b7:6a:8c:fd:4b:0d: e2:1f:cb:62:c4:50:6d:8c:5f:45:79:fb:91:e4:b8: 50:a5:5d:59:f9:88:92:61:bf:5a:8c:77:89:ce:f0: 70:83:7b:7e:7a:20:0e:d3:44:32:c0:3e:12:5d:91: 42:fa:d0:df:ab:5e:c6:7f:fc:86:d8:7b:3e:6f:c4: 61:eb:2c:c8:e2:79:62:0e:b5:48:3d:1d:eb:5c:88: 8a:4e:28:e7:75:72:a6:9a:54:cc:32:01:27:a1:29: bf:19:b5:60:a5:a0:2a:5a:88:4b:a7:f7:96:eb:9b: b9:11:9f:e9:cc:85:a6:45:54:6b:56:de:d9:94:63: 6a:84:77:0a:bb:fd:7c:f8:22:ef:c0:98:2e:ab:2c: db:46:a4:ce:72:4a:ad:50:51:ae:e9:17:3c:87:94: f7:f7:ff:33:0a:f9:59:2c:e9:45:73:a8:12:70:d9: b6:5d:5d:37:ce:e8:84:70:be:81:a4:ae:8d:58:39: 4c:10:57:dd:09:3e:9a:16:39:ce:3e:12:3c:8c:24: 81:70:69:e6:53:4b:4e:fe:22:1a:79:fb:6f:d7:c0: 75:c6:f5:a4:0a:e9:33:9c:f3:98:c4:0f:f7:c4:eb: bb:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:63:FB:EA:FA:F0:CF:A9:05:AA:A8:A9:0C:94:C8:0B:13:81:85:11 X509v3 Authority Key Identifier: keyid:6A:2B:13:96:C1:42:DA:67:11:51:88:75:E9:0C:4A:EC:90:B0:F5:C4 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/aisTlsFC2mcRUYh16QxK7JCw9cQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aisTlsFC2mcRUYh16QxK7JCw9cQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NOT_TFN_CO/uWP76vrwz6kFqqipDJTICxOBhRE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.100.0/23 Signature Algorithm: sha256WithRSAEncryption 71:15:2d:50:7f:e3:f4:6e:36:ec:ce:da:40:24:0f:e0:ed:3d: ed:a1:9b:41:31:eb:1a:25:49:af:81:20:b5:7d:4f:43:7b:8f: 94:c1:dd:f6:9d:a6:2d:0a:48:ea:71:2d:b9:d5:35:a6:89:91: 42:4c:7d:a7:ea:41:d5:4d:e1:a1:86:a4:e7:f2:66:d8:3f:d0: fc:a3:ee:95:62:18:46:f5:6b:22:96:fa:7b:03:9b:ae:e8:7b: 7d:57:55:94:f3:d1:8d:54:f6:7c:b6:61:00:30:90:09:e1:78: 24:e5:db:a3:0b:b1:c9:48:9f:ee:f0:38:44:34:39:db:cc:58: be:fb:12:d2:b1:50:3b:1a:a4:94:41:17:e0:4a:5e:b4:01:26: db:f7:e8:f4:4c:d9:ee:06:db:8e:29:d1:21:08:5b:1e:29:ec: e2:06:95:6a:62:14:4d:2d:b6:81:9f:c4:b7:bf:2e:58:1f:88: 9d:2d:0b:5d:b5:2e:f6:29:7c:31:90:50:95:ed:5f:c5:5e:f8: d6:e5:f9:5f:2b:ab:3c:cc:c5:3d:4e:5a:7e:1d:63:c4:36:62: 0b:6e:96:09:72:ca:0d:64:7e:8b:68:9b:f6:a5:3f:9e:68:3a: 27:57:09:2e:1e:64:f0:b3:bd:c1:42:28:fb:7b:b6:e0:8b:31: 03:d5:4f:d7 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEy QjEzOTZDMTQyREE2NzExNTE4ODc1RTkwQzRBRUM5MEIwRjVDNDAeFw0yNDExMTcx MzMzMTNaFw0yNTA5MjMxNTMwMjBaMDMxMTAvBgNVBAMTKEI5NjNGQkVBRkFGMENG QTkwNUFBQThBOTBDOTRDODBCMTM4MTg1MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaDza96zfwBbJicDh4wF7J5fV+88pEKLdqjP1LDeIfy2LEUG2M X0V5+5HkuFClXVn5iJJhv1qMd4nO8HCDe356IA7TRDLAPhJdkUL60N+rXsZ//IbY ez5vxGHrLMjieWIOtUg9HetciIpOKOd1cqaaVMwyASehKb8ZtWCloCpaiEun95br m7kRn+nMhaZFVGtW3tmUY2qEdwq7/Xz4Iu/AmC6rLNtGpM5ySq1QUa7pFzyHlPf3 /zMK+Vks6UVzqBJw2bZdXTfO6IRwvoGkro1YOUwQV90JPpoWOc4+EjyMJIFwaeZT S07+Ihp5+2/XwHXG9aQK6TOc85jED/fE67v9AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUuWP76vrwz6kFqqipDJTICxOBhREwHwYDVR0jBBgwFoAUaisTlsFC2mcRUYh1 6QxK7JCw9cQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9UX1RG Tl9DTy9haXNUbHNGQzJtY1JVWWgxNlF4SzdKQ3c5Y1EuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2Fpc1Rsc0ZDMm1jUlVZaDE2UXhLN0pDdzljUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PVF9URk5fQ08vdVdQNzZ2cnd6 NmtGcXFpcERKVElDeE9CaFJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAaC7ZDANBgkqhkiG9w0BAQsFAAOCAQEAcRUtUH/j9G427M7aQCQP4O09 7aGbQTHrGiVJr4EgtX1PQ3uPlMHd9p2mLQpI6nEtudU1pomRQkx9p+pB1U3hoYak 5/Jm2D/Q/KPulWIYRvVrIpb6ewObruh7fVdVlPPRjVT2fLZhADCQCeF4JOXbowux yUif7vA4RDQ528xYvvsS0rFQOxqklEEX4EpetAEm2/fo9EzZ7gbbjinRIQhbHins 4gaVamIUTS22gZ/Et78uWB+InS0LXbUu9il8MZBQle1fxV741uX5XyurPMzFPU5a fh1jxDZiC26WCXLKDWR+i2ib9qU/nmg6J1cJLh5k8LO9wUIo+3u24IsxA9VP1w== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org