$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/u3l8RU-Q2itEtKqNoMgiONHM8O8.roa File: u3l8RU-Q2itEtKqNoMgiONHM8O8.roa (raw, json) Hash identifier: 5+Li/eZYlNYMSc+chibsO4uvemLvDl8a7zrV86OYGt0= Subject key identifier: BB:79:7C:45:4F:90:DA:2B:44:B4:AA:8D:A0:C8:22:38:D1:CC:F0:EF Certificate issuer: /CN=1C7073A6066C765842FDF07169E43518A0BB0235 Certificate serial: F1 Authority key identifier: 1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/u3l8RU-Q2itEtKqNoMgiONHM8O8.roa Signing time: Sat 26 Oct 2024 15:48:56 +0000 ROA not before: Sat 26 Oct 2024 15:48:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150755 IP address blocks: 2401:4e60::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1C7073A6066C765842FDF07169E43518A0BB0235 Validity Not Before: Oct 26 15:48:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BB797C454F90DA2B44B4AA8DA0C82238D1CCF0EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c2:fb:e2:01:ea:ef:8a:4b:25:40:0f:d9:b8: e0:98:cf:28:b1:f5:b1:6f:da:db:4b:b3:59:37:5e: be:90:77:21:42:a8:6b:49:a2:31:cb:fc:3d:d7:75: f9:b6:ee:0a:ae:ae:d3:52:2c:8f:84:72:d8:c2:73: 0a:6b:e8:66:e6:9e:06:ae:f9:59:04:77:6f:ae:f1: ab:b8:15:6c:1d:e0:69:a0:fb:49:49:90:98:3d:d9: 7b:68:7a:c1:68:b1:e2:9f:a2:bd:dd:44:33:df:51: fa:ce:f5:3f:4f:4b:d8:13:40:65:b3:19:44:2f:ba: 8e:28:8c:b5:f1:a4:75:ab:9c:f4:eb:9c:d2:72:63: c6:36:78:a0:64:92:41:07:2e:8d:d1:e7:a7:8a:d3: 62:56:47:b1:d4:41:82:b6:bf:c6:62:08:f9:41:f0: 92:ac:ec:96:5d:61:6e:c3:d9:b3:43:da:78:bb:44: aa:30:7d:a6:8b:e9:a1:8d:b7:6c:65:ef:21:80:d2: f4:83:51:62:5c:54:23:3d:ce:ba:ae:b7:7c:ba:53: 0a:15:58:59:8a:87:4e:b0:20:87:72:b3:77:97:b3: e3:28:74:46:b9:8f:f4:7f:99:20:20:05:05:18:c6: 8c:8e:0e:f1:69:da:b2:53:da:cc:21:f0:91:cf:cf: 33:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:79:7C:45:4F:90:DA:2B:44:B4:AA:8D:A0:C8:22:38:D1:CC:F0:EF X509v3 Authority Key Identifier: keyid:1C:70:73:A6:06:6C:76:58:42:FD:F0:71:69:E4:35:18:A0:BB:02:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HHBzpgZsdlhC_fBxaeQ1GKC7AjU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NUNLINE/u3l8RU-Q2itEtKqNoMgiONHM8O8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:4e60::/32 Signature Algorithm: sha256WithRSAEncryption a1:03:0b:41:e5:55:21:03:bd:ac:27:41:10:e6:55:60:62:af: 80:4e:43:63:33:b5:21:64:71:f0:64:22:60:72:49:29:72:95: 53:8a:19:ce:ea:05:40:f7:1f:d1:1e:13:51:c1:a9:52:4b:95: e2:52:c4:96:4d:d3:95:60:11:0f:c2:b8:bd:92:4d:69:dc:58: 9d:e5:ee:8c:19:b5:59:d5:70:cd:b9:0b:90:88:8f:fa:be:73: f9:1a:56:4b:2f:e8:f2:15:96:e3:21:aa:43:43:1a:0a:37:f1: f4:7f:b4:96:de:db:ea:b5:42:60:ae:23:a1:98:81:a2:74:6e: 6f:36:a6:48:8d:5a:a5:3d:be:f9:5f:5e:21:7f:2b:90:e8:55: 57:6b:1a:0e:13:43:35:89:43:e4:31:5d:39:5c:be:b9:7e:89: 64:74:45:6b:60:b1:06:50:6c:8b:19:73:c6:63:83:4a:26:73: 98:e1:31:5a:04:d2:9b:ed:e8:b9:c2:b0:2d:9c:5a:de:93:85: 63:d1:f5:3e:9b:5f:48:a9:55:ea:ec:52:62:00:a8:d5:be:5a: 1b:68:98:aa:6c:4d:71:ea:c9:66:66:e8:37:8b:a4:10:ee:5b: 68:98:aa:1d:03:b1:f6:40:8a:1e:20:a6:9a:89:e7:38:94:9a: 6a:d3:4e:b3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUM3 MDczQTYwNjZDNzY1ODQyRkRGMDcxNjlFNDM1MThBMEJCMDIzNTAeFw0yNDEwMjYx NTQ4NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJCNzk3QzQ1NEY5MERB MkI0NEI0QUE4REEwQzgyMjM4RDFDQ0YwRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2wvviAervikslQA/ZuOCYzyix9bFv2ttLs1k3Xr6QdyFCqGtJ ojHL/D3Xdfm27gqurtNSLI+EctjCcwpr6Gbmngau+VkEd2+u8au4FWwd4Gmg+0lJ kJg92XtoesFoseKfor3dRDPfUfrO9T9PS9gTQGWzGUQvuo4ojLXxpHWrnPTrnNJy Y8Y2eKBkkkEHLo3R56eK02JWR7HUQYK2v8ZiCPlB8JKs7JZdYW7D2bND2ni7RKow faaL6aGNt2xl7yGA0vSDUWJcVCM9zrqut3y6UwoVWFmKh06wIIdys3eXs+ModEa5 j/R/mSAgBQUYxoyODvFp2rJT2swh8JHPzzOBAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUu3l8RU+Q2itEtKqNoMgiONHM8O8wHwYDVR0jBBgwFoAUHHBzpgZsdlhC/fBx aeQ1GKC7AjUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlVOTElO RS9ISEJ6cGdac2RsaENfZkJ4YWVRMUdLQzdBalUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hIQnpwZ1pzZGxoQ19mQnhhZVExR0tDN0FqVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05VTkxJTkUvdTNsOFJVLVEyaXRFdEtx Tm9NZ2lPTkhNOE84LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQBTmAwDQYJKoZIhvcNAQELBQADggEBAKEDC0HlVSEDvawnQRDmVWBir4BOQ2Mz tSFkcfBkImBySSlylVOKGc7qBUD3H9EeE1HBqVJLleJSxJZN05VgEQ/CuL2STWnc WJ3l7owZtVnVcM25C5CIj/q+c/kaVksv6PIVluMhqkNDGgo38fR/tJbe2+q1QmCu I6GYgaJ0bm82pkiNWqU9vvlfXiF/K5DoVVdrGg4TQzWJQ+QxXTlcvrl+iWR0RWtg sQZQbIsZc8Zjg0omc5jhMVoE0pvt6LnCsC2cWt6ThWPR9T6bX0ipVersUmIAqNW+ WhtomKpsTXHqyWZm6DeLpBDuW2iYqh0DsfZAih4gppqJ5ziUmmrTTrM= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org