$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NSSIT/_Xu8zJFF3IFFbz3b0Z1Bl14XiWM.roa File: _Xu8zJFF3IFFbz3b0Z1Bl14XiWM.roa (raw, json) Hash identifier: CiKy19f+vBdClkZop0o7Srl8fNiTVhWfu+czGbn/V2o= Subject key identifier: FD:7B:BC:CC:91:45:DC:81:45:6F:3D:DB:D1:9D:41:97:5E:17:89:63 Certificate issuer: /CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Certificate serial: 097D Authority key identifier: AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/_Xu8zJFF3IFFbz3b0Z1Bl14XiWM.roa Signing time: Mon 26 Aug 2024 05:23:22 +0000 ROA not before: Mon 26 Aug 2024 05:23:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131626 IP address blocks: 2405:63c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2429 (0x97d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA11250A67BB9825B6EA1FA9A124A1FEC96701DA Validity Not Before: Aug 26 05:23:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FD7BBCCC9145DC81456F3DDBD19D41975E178963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6f:c9:11:fc:1d:a1:f9:87:43:99:04:70:47: 30:16:73:ae:5d:4b:2d:42:85:45:c1:bc:c4:d6:be: f8:65:2c:70:c7:d4:f9:c6:ae:0a:b8:34:16:08:b5: 24:d6:95:95:e2:51:3a:47:63:ac:44:d0:83:70:b9: 22:d6:4d:41:41:68:17:18:66:bb:d0:02:2b:33:38: e6:60:35:c6:ff:ce:74:02:62:e8:57:52:4b:da:c1: a1:a0:e8:21:60:2c:78:32:ba:f9:ca:ba:13:75:5c: b7:71:d6:7e:b2:62:5f:39:e4:58:e7:96:69:a7:73: 6d:33:11:c4:2a:9a:f0:0b:ab:b3:0b:54:d8:c4:b2: 24:88:17:72:bf:70:8d:48:54:a0:93:c5:07:5e:44: 15:cf:44:11:e3:62:78:4f:b8:06:b2:c6:a4:7d:60: f7:5e:cc:6f:65:44:1c:0c:73:99:99:a5:5f:be:9f: 61:6e:60:24:64:df:47:46:47:09:a0:51:66:a0:74: 6d:2e:06:f4:52:8c:40:52:b6:d5:b2:f5:d3:80:97: 04:5e:69:c6:16:84:99:75:be:51:6a:50:34:ed:71: ac:ca:4c:0d:8f:0f:29:64:33:66:56:a7:b6:09:3e: 1b:bb:5e:c6:d7:c6:e3:b4:8c:c9:94:56:19:6f:4f: 21:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:7B:BC:CC:91:45:DC:81:45:6F:3D:DB:D1:9D:41:97:5E:17:89:63 X509v3 Authority Key Identifier: keyid:AA:11:25:0A:67:BB:98:25:B6:EA:1F:A9:A1:24:A1:FE:C9:67:01:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/qhElCme7mCW26h-poSSh_slnAdo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/qhElCme7mCW26h-poSSh_slnAdo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NSSIT/_Xu8zJFF3IFFbz3b0Z1Bl14XiWM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:63c0::/32 Signature Algorithm: sha256WithRSAEncryption 8f:4f:3f:98:97:1b:b0:cc:d6:37:79:a1:ce:eb:50:8a:85:23: c6:75:93:49:49:4d:98:f0:38:e0:22:17:66:c8:84:b0:47:87: 36:de:62:88:9f:d3:0c:5c:8e:7a:54:e4:88:48:49:24:89:a6: 19:fa:0e:c1:bf:4b:fb:c5:c0:78:e8:f9:42:dd:a1:6b:e8:8a: a5:b6:95:9a:ef:4d:ab:89:4c:49:f4:ef:12:14:ce:ed:1b:56: 7c:d4:53:67:eb:89:90:3d:41:2b:e9:54:b9:4d:69:89:7f:7c: 5c:9e:a5:3f:97:08:4a:dc:17:f9:eb:6a:e9:c1:de:7c:8f:10: b3:e1:e6:3c:c1:dd:f3:72:68:ba:b3:56:db:aa:90:9a:82:13: 6c:c0:06:df:c1:4e:e2:ad:ae:66:b1:83:21:f2:4e:6b:31:37: 41:37:c8:9b:70:ea:95:ed:1d:76:bf:be:33:d1:67:05:c7:e8: 32:f0:98:8d:d4:63:d0:1c:ba:e8:56:6d:7d:7e:ec:2a:1a:f6: 7f:ed:96:70:8e:94:32:b7:6b:5f:c6:52:c4:c2:d2:04:73:d9: 27:a2:b2:1c:03:4d:7b:0a:eb:58:e5:35:95:29:b0:2d:a7:51: ef:5c:5f:31:1e:04:98:16:b5:a5:d6:11:49:32:f9:79:7c:f2: 24:3c:0c:f3 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUEx MTI1MEE2N0JCOTgyNUI2RUExRkE5QTEyNEExRkVDOTY3MDFEQTAeFw0yNDA4MjYw NTIzMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZEN0JCQ0NDOTE0NURD ODE0NTZGM0REQkQxOUQ0MTk3NUUxNzg5NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCb8kR/B2h+YdDmQRwRzAWc65dSy1ChUXBvMTWvvhlLHDH1PnG rgq4NBYItSTWlZXiUTpHY6xE0INwuSLWTUFBaBcYZrvQAiszOOZgNcb/znQCYuhX UkvawaGg6CFgLHgyuvnKuhN1XLdx1n6yYl855Fjnlmmnc20zEcQqmvALq7MLVNjE siSIF3K/cI1IVKCTxQdeRBXPRBHjYnhPuAayxqR9YPdezG9lRBwMc5mZpV++n2Fu YCRk30dGRwmgUWagdG0uBvRSjEBSttWy9dOAlwReacYWhJl1vlFqUDTtcazKTA2P DylkM2ZWp7YJPhu7XsbXxuO0jMmUVhlvTyExAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU/Xu8zJFF3IFFbz3b0Z1Bl14XiWMwHwYDVR0jBBgwFoAUqhElCme7mCW26h+p oSSh/slnAdowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlNTSVQv cWhFbENtZTdtQ1cyNmgtcG9TU2hfc2xuQWRvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9xaEVsQ21lN21DVzI2aC1wb1NTaF9zbG5BZG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9OU1NJVC9fWHU4ekpGRjNJRkZiejNiMFox QmwxNFhpV00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAVj wDANBgkqhkiG9w0BAQsFAAOCAQEAj08/mJcbsMzWN3mhzutQioUjxnWTSUlNmPA4 4CIXZsiEsEeHNt5iiJ/TDFyOelTkiEhJJImmGfoOwb9L+8XAeOj5Qt2ha+iKpbaV mu9Nq4lMSfTvEhTO7RtWfNRTZ+uJkD1BK+lUuU1piX98XJ6lP5cIStwX+etq6cHe fI8Qs+HmPMHd83JourNW26qQmoITbMAG38FO4q2uZrGDIfJOazE3QTfIm3Dqle0d dr++M9FnBcfoMvCYjdRj0By66FZtfX7sKhr2f+2WcI6UMrdrX8ZSxMLSBHPZJ6Ky HANNewrrWOU1lSmwLadR71xfMR4EmBa1pdYRSTL5eXzyJDwM8w== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org