$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/POpCFFOVISLapTh6fsZP3Jc2j5Y.roa File: POpCFFOVISLapTh6fsZP3Jc2j5Y.roa (raw, json) Hash identifier: uoP12m5aIArDURMg1/56l6aaY6mxeW4+hNDRDWfZim8= Subject key identifier: 3C:EA:42:14:53:95:21:22:DA:A5:38:7A:7E:C6:4F:DC:97:36:8F:96 Certificate issuer: /CN=B329DA9268FCFD54D9F38A01ED0CF7092BB6900C Certificate serial: 4E Authority key identifier: B3:29:DA:92:68:FC:FD:54:D9:F3:8A:01:ED:0C:F7:09:2B:B6:90:0C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/synakmj8_VTZ84oB7Qz3CSu2kAw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/POpCFFOVISLapTh6fsZP3Jc2j5Y.roa Signing time: Mon 26 Aug 2024 05:23:19 +0000 ROA not before: Mon 26 Aug 2024 05:23:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63898 IP address blocks: 2406:b4c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/synakmj8_VTZ84oB7Qz3CSu2kAw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/synakmj8_VTZ84oB7Qz3CSu2kAw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/synakmj8_VTZ84oB7Qz3CSu2kAw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78 (0x4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B329DA9268FCFD54D9F38A01ED0CF7092BB6900C Validity Not Before: Aug 26 05:23:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CEA421453952122DAA5387A7EC64FDC97368F96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:01:2d:fb:36:8c:9c:b8:ab:08:fd:b7:70:e6: 80:ca:55:e9:2b:11:df:06:f3:f3:17:76:e4:a1:b1: 49:aa:78:9f:db:93:39:74:95:da:c2:9e:41:f1:c0: 0f:98:1f:b3:e5:69:6f:39:bd:bf:a8:1f:66:63:e0: 42:f3:da:53:3c:61:d1:c2:0d:7e:8c:95:db:3f:63: 3c:9e:aa:20:4e:bf:68:f3:18:f4:97:df:49:05:6e: 57:d6:08:6e:68:f6:47:73:08:e8:c0:51:19:45:1e: d4:06:6b:7d:17:a8:c0:53:c6:57:9c:c9:a7:84:77: 38:95:a9:c2:f2:67:69:b1:8d:77:b6:08:17:74:1d: 0f:2f:dd:e0:fb:84:59:85:22:84:42:aa:c8:0d:59: e6:e3:ed:d6:32:2c:70:8b:c0:93:ff:c4:6f:12:c9: 6e:ba:29:9f:2b:a0:5b:e5:63:75:66:9a:a9:6b:87: 56:fb:34:89:f8:db:a9:2c:ce:ad:90:41:85:db:43: 79:4f:e8:3c:9b:4f:c0:97:75:c7:c2:d4:b3:9e:27: d9:28:dc:90:35:2a:bd:7c:27:01:a8:6f:fd:d7:31: 30:2c:81:07:ba:db:13:ec:e4:52:25:3a:dd:be:aa: 6f:11:1d:9a:fc:fb:79:fe:63:27:7e:73:ab:01:6d: 24:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:EA:42:14:53:95:21:22:DA:A5:38:7A:7E:C6:4F:DC:97:36:8F:96 X509v3 Authority Key Identifier: keyid:B3:29:DA:92:68:FC:FD:54:D9:F3:8A:01:ED:0C:F7:09:2B:B6:90:0C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/synakmj8_VTZ84oB7Qz3CSu2kAw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/synakmj8_VTZ84oB7Qz3CSu2kAw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSCYBER/POpCFFOVISLapTh6fsZP3Jc2j5Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:b4c0::/32 Signature Algorithm: sha256WithRSAEncryption d3:d6:11:e0:00:d6:e2:4b:bf:50:95:96:d6:94:61:f5:65:36: ab:d9:99:e2:03:86:d6:cc:f8:1c:a7:40:f1:24:d1:e7:7c:54: cc:e6:4f:9b:d6:2f:a4:16:fe:5a:d3:19:b2:ae:42:62:d6:b0: e8:1d:10:f3:f1:79:23:fb:fd:f8:a4:c4:88:43:e5:53:f7:be: f0:fd:a0:a1:d2:57:b2:0c:f9:8f:70:ff:2b:73:f8:d3:85:f6: a2:46:fe:33:60:77:b7:0a:ea:02:8c:c0:cf:79:f6:c5:ed:98: e3:fe:da:e5:d2:f8:d9:d2:2a:f4:53:7a:32:be:b1:f8:82:61: cd:d6:15:b8:f5:2f:d7:14:c9:df:15:05:43:cf:68:f6:90:78: bf:c6:c6:2f:a2:82:87:cb:62:5b:89:3f:dd:d5:0d:f5:d9:98: 43:98:b0:e8:96:36:4c:b1:c0:08:64:62:8b:fa:98:c9:04:b4: c1:c4:e3:7a:7e:d2:6f:4a:3a:82:9c:c8:22:9f:e7:96:5f:1f: 0b:9f:82:ee:c2:ed:9c:cf:4b:62:11:db:a6:88:9b:61:77:7e: 71:80:12:78:25:11:a1:4d:7a:4f:8f:25:b6:12:8d:da:e3:5e: c7:77:5f:8d:fe:e5:21:a2:59:14:1c:48:8c:56:f6:df:36:4b: 9c:e3:0e:c2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIBTjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzI5 REE5MjY4RkNGRDU0RDlGMzhBMDFFRDBDRjcwOTJCQjY5MDBDMB4XDTI0MDgyNjA1 MjMxOVoXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoM0NFQTQyMTQ1Mzk1MjEy MkRBQTUzODdBN0VDNjRGREM5NzM2OEY5NjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANkBLfs2jJy4qwj9t3DmgMpV6SsR3wbz8xd25KGxSap4n9uTOXSV 2sKeQfHAD5gfs+Vpbzm9v6gfZmPgQvPaUzxh0cINfoyV2z9jPJ6qIE6/aPMY9Jff SQVuV9YIbmj2R3MI6MBRGUUe1AZrfReowFPGV5zJp4R3OJWpwvJnabGNd7YIF3Qd Dy/d4PuEWYUihEKqyA1Z5uPt1jIscIvAk//EbxLJbropnyugW+VjdWaaqWuHVvs0 ifjbqSzOrZBBhdtDeU/oPJtPwJd1x8LUs54n2SjckDUqvXwnAahv/dcxMCyBB7rb E+zkUiU63b6qbxEdmvz7ef5jJ35zqwFtJMUCAwEAAaOCAfMwggHvMB0GA1UdDgQW BBQ86kIUU5UhItqlOHp+xk/clzaPljAfBgNVHSMEGDAWgBSzKdqSaPz9VNnzigHt DPcJK7aQDDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF4GA1UdHwRXMFUwU6BR oE+GTXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OU1NDWUJF Ui9zeW5ha21qOF9WVFo4NG9CN1F6M0NTdTJrQXcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3N5bmFrbWo4X1ZUWjg0b0I3UXozQ1N1MmtBdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGeBggrBgEFBQcBCwSBkTCBjjBZBggrBgEFBQcwC4ZNcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05TU0NZQkVSL1BPcENGRk9WSVNMYXBU aDZmc1pQM0pjMmo1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25p Yy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkBrTAMA0GCSqGSIb3DQEBCwUAA4IBAQDT1hHgANbiS79QlZbWlGH1ZTar2Zni A4bWzPgcp0DxJNHnfFTM5k+b1i+kFv5a0xmyrkJi1rDoHRDz8Xkj+/34pMSIQ+VT 977w/aCh0leyDPmPcP8rc/jThfaiRv4zYHe3CuoCjMDPefbF7Zjj/trl0vjZ0ir0 U3oyvrH4gmHN1hW49S/XFMnfFQVDz2j2kHi/xsYvooKHy2JbiT/d1Q312ZhDmLDo ljZMscAIZGKL+pjJBLTBxON6ftJvSjqCnMgin+eWXx8Ln4Luwu2cz0tiEdumiJth d35xgBJ4JRGhTXpPjyW2Eo3a417Hd1+N/uUholkUHEiMVvbfNkuc4w7C -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org