$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/Zd0mSL8U7Du-RZBF13Re_g-TU_I.roa File: Zd0mSL8U7Du-RZBF13Re_g-TU_I.roa (raw, json) Hash identifier: tAaY2HO0yC8lY21u5TQd74Fqa1J4fgk2OC8bpaABrT0= Subject key identifier: 65:DD:26:48:BF:14:EC:3B:BE:45:90:45:D7:74:5E:FE:0F:93:53:F2 Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 015D Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/Zd0mSL8U7Du-RZBF13Re_g-TU_I.roa Signing time: Mon 26 Aug 2024 05:23:38 +0000 ROA not before: Mon 26 Aug 2024 05:23:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 8075 IP address blocks: 2400:f520::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 349 (0x15d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Aug 26 05:23:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=65DD2648BF14EC3BBE459045D7745EFE0F9353F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:41:8f:f3:82:41:7f:12:cd:99:7f:0d:86:30: 9c:d5:c2:4e:b6:90:75:da:c5:0a:8a:4b:12:5f:b9: 0a:3f:1f:8a:1e:0e:29:9a:93:4a:e9:21:ae:c6:d6: bc:a5:63:fa:52:4b:76:e5:8d:07:af:ca:a9:25:9e: 69:31:b3:0e:22:9b:79:e7:0a:3f:31:79:53:74:4a: 96:79:8b:ca:20:cf:1b:5a:83:b9:ce:ba:74:5a:4a: ab:bd:4a:1b:be:e3:b6:f3:3b:69:09:df:2e:5c:68: 65:b3:92:f9:20:e2:c6:36:f6:ad:46:62:6f:29:56: 24:69:1a:b5:67:a4:09:cf:2e:72:f5:70:88:7f:db: 9a:d0:b0:94:17:76:f2:bc:5e:fe:a1:71:81:b1:77: ef:ac:79:e0:c5:21:c0:6d:de:15:8b:0f:7b:41:80: b4:14:dd:6e:eb:34:80:49:eb:0a:d3:d7:6a:0a:6e: 69:bf:96:66:d8:bc:d6:e3:a0:19:9a:07:68:00:87: bb:51:66:7b:79:ff:31:d2:b4:c2:51:ae:ef:4b:51: 15:f3:eb:5a:d9:50:9d:50:0d:ec:3c:3b:0b:43:ff: 99:44:5d:80:0a:b8:1f:7d:39:ad:5c:fa:6e:a3:f8: 65:28:fa:78:4a:93:54:f8:dc:a1:c3:fe:70:40:f9: f8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DD:26:48:BF:14:EC:3B:BE:45:90:45:D7:74:5E:FE:0F:93:53:F2 X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/Zd0mSL8U7Du-RZBF13Re_g-TU_I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:f520::/32 Signature Algorithm: sha256WithRSAEncryption 85:97:e7:a4:1c:8c:bb:ae:8a:58:f2:4f:48:0a:36:53:34:9f: 52:ef:f6:5d:97:1f:5e:8a:16:6b:64:45:f6:67:4a:34:9b:a8: aa:9e:9f:00:9d:3c:34:33:c2:a8:86:a0:4a:c4:80:53:36:1e: 3f:98:b4:fa:c9:86:55:53:bd:b2:26:31:e2:15:dd:7f:49:89: fd:5b:29:8f:b2:17:0c:16:d4:e0:07:43:ba:c7:84:17:bb:53: 01:c7:0d:fa:07:70:c6:2f:21:39:8f:f4:79:3b:6a:25:43:44: 77:b1:34:d6:db:53:b1:08:e7:31:70:ca:9a:b6:06:00:f2:16: 0c:76:62:ae:7e:71:45:78:d8:bc:b3:4f:dd:80:3b:ad:cf:e8: 34:6f:38:71:e7:0d:81:b5:89:6c:f5:af:45:13:be:99:90:77: 08:43:16:0c:6c:b8:ec:bd:da:65:09:d1:d0:29:03:eb:e7:7e: 1c:89:0f:ef:c1:6e:a6:02:75:16:91:51:0e:86:71:82:5e:69: 9c:0f:3b:10:70:02:0c:48:b1:4e:9b:6a:af:6d:23:6f:61:07: 7e:e7:c4:2a:42:0e:4d:2e:31:72:c3:a7:9d:b6:db:e2:c6:60: 46:87:32:96:0e:77:a6:c4:7e:c0:b1:8e:e5:a2:c4:86:16:2e: 0b:44:cc:0b -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNDA4MjYw NTIzMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1REQyNjQ4QkYxNEVD M0JCRTQ1OTA0NUQ3NzQ1RUZFMEY5MzUzRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+QY/zgkF/Es2Zfw2GMJzVwk62kHXaxQqKSxJfuQo/H4oeDima k0rpIa7G1rylY/pSS3bljQevyqklnmkxsw4im3nnCj8xeVN0SpZ5i8ogzxtag7nO unRaSqu9Shu+47bzO2kJ3y5caGWzkvkg4sY29q1GYm8pViRpGrVnpAnPLnL1cIh/ 25rQsJQXdvK8Xv6hcYGxd++seeDFIcBt3hWLD3tBgLQU3W7rNIBJ6wrT12oKbmm/ lmbYvNbjoBmaB2gAh7tRZnt5/zHStMJRru9LURXz61rZUJ1QDew8OwtD/5lEXYAK uB99Oa1c+m6j+GUo+nhKk1T43KHD/nBA+fgJAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUZd0mSL8U7Du+RZBF13Re/g+TU/IwHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFL1pkMG1TTDhVN0R1 LVJaQkYxM1JlX2ctVFVfSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAPUgMA0GCSqGSIb3DQEBCwUAA4IBAQCFl+ekHIy7ropY8k9ICjZTNJ9S 7/Zdlx9eihZrZEX2Z0o0m6iqnp8AnTw0M8KohqBKxIBTNh4/mLT6yYZVU72yJjHi Fd1/SYn9WymPshcMFtTgB0O6x4QXu1MBxw36B3DGLyE5j/R5O2olQ0R3sTTW21Ox COcxcMqatgYA8hYMdmKufnFFeNi8s0/dgDutz+g0bzhx5w2BtYls9a9FE76ZkHcI QxYMbLjsvdplCdHQKQPr534ciQ/vwW6mAnUWkVEOhnGCXmmcDzsQcAIMSLFOm2qv bSNvYQd+58QqQg5NLjFyw6edttvixmBGhzKWDnemxH7AsY7losSGFi4LRMwL -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:16 2024 by rpki-client on console-ams.rpki-client.org