$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/RoABESor802f47E1xqsidZ45Qs8.roa File: RoABESor802f47E1xqsidZ45Qs8.roa (raw, json) Hash identifier: rcWItJEMbQEItU94w369XtOi0tzzgBvBCRBb1+Yqo8U= Subject key identifier: 46:80:01:11:2A:2B:F3:4D:9F:E3:B1:35:C6:AB:22:75:9E:39:42:CF Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB Certificate serial: 0832 Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/RoABESor802f47E1xqsidZ45Qs8.roa Signing time: Mon 26 Aug 2024 05:23:41 +0000 ROA not before: Mon 26 Aug 2024 05:23:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131677 IP address blocks: 2405:e4c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2098 (0x832) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB Validity Not Before: Aug 26 05:23:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=468001112A2BF34D9FE3B135C6AB22759E3942CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:59:3f:0f:7d:df:7e:f6:7e:1c:c7:3a:0d:1a: f6:18:58:14:51:1b:f1:40:58:63:3f:b7:25:f2:66: e4:72:00:e0:46:34:77:89:5e:b7:e7:19:b3:c6:f4: 9e:ea:cf:eb:29:ae:4d:8c:4d:24:c7:b6:0e:d8:bc: f5:7f:ad:b4:13:e5:bf:08:f1:97:9a:be:36:1a:ee: ce:0a:60:a5:bb:50:ba:8a:86:69:ad:90:5d:41:25: 7b:95:11:d8:c3:c7:22:9c:d1:24:9e:29:19:5a:84: b4:5f:8e:3d:73:bb:8f:74:cf:41:06:86:8e:99:20: 49:ab:6d:60:48:1a:94:f5:d7:03:00:30:e5:3f:94: d5:d8:b8:6f:21:ca:57:0b:c7:7f:10:88:80:2d:f1: a5:29:15:2c:9b:d5:5c:67:cd:b2:34:6a:8b:83:36: ba:f1:24:01:cf:f5:e5:7c:6e:36:68:04:b1:f9:61: 64:b5:1d:26:a1:1a:60:3e:a3:5a:24:d3:a0:ca:39: 47:50:d8:0f:ca:50:57:66:56:f4:0e:00:64:71:2a: 2a:02:84:9c:bc:f7:f9:bf:40:88:cc:22:8b:9c:48: f2:ee:b8:b4:c3:c5:1a:0c:8a:2c:8b:a0:4a:3f:7a: 0c:3c:5b:02:ca:1d:a0:1c:70:4c:c4:8d:07:c6:ca: 6a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:80:01:11:2A:2B:F3:4D:9F:E3:B1:35:C6:AB:22:75:9E:39:42:CF X509v3 Authority Key Identifier: keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/RoABESor802f47E1xqsidZ45Qs8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:e4c0::/32 Signature Algorithm: sha256WithRSAEncryption 3c:15:b3:a9:15:7f:e6:6f:a4:79:19:4a:e7:7f:bf:19:e8:20: bd:0a:dc:d9:c1:75:70:a4:e7:93:77:c4:d6:b8:9c:68:77:78: 9f:ce:e5:97:28:7d:bb:31:10:38:d4:cd:ca:96:c4:d6:cb:d7: 20:f2:3e:33:07:2c:ae:38:d1:ae:13:f2:69:23:4a:f7:e6:00: 02:a8:77:4d:61:41:0f:3a:71:d1:47:3a:ed:c8:cc:cd:3c:1c: f4:4e:40:48:de:3c:e1:7c:7b:90:b2:a7:41:fc:bb:67:d4:8b: 82:5e:75:aa:dc:d1:7c:75:dc:b8:af:a9:20:ea:74:1a:13:2b: 0c:10:d7:47:0a:9f:63:cd:ca:21:08:9f:bd:df:dd:aa:e4:cd: 02:a2:43:21:66:0e:a2:0e:c4:36:5c:22:d2:da:3d:6f:46:c3: 8b:36:2d:65:fc:df:2d:45:f1:ef:12:cb:a3:7b:d0:1f:0b:d9: 9c:3d:22:96:01:70:b0:05:90:3f:16:a4:a8:60:04:dd:48:7b: 11:7e:19:1b:42:a7:d6:18:ea:d2:df:23:d2:ba:cd:d4:ed:ed: 47:5f:98:60:ce:76:d3:5b:9a:6a:24:6f:58:22:d2:be:ef:ea: 57:78:83:cb:f7:44:64:35:59:d0:77:14:a4:b9:4d:78:28:a8: a9:68:ed:98 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICCDIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRF RjJCM0MzQTlBMUI1M0MxNkMxQzcwRTU1MTFBRDU5MDMyODRGQjAeFw0yNDA4MjYw NTIzNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2ODAwMTExMkEyQkYz NEQ5RkUzQjEzNUM2QUIyMjc1OUUzOTQyQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHWT8Pfd9+9n4cxzoNGvYYWBRRG/FAWGM/tyXyZuRyAOBGNHeJ XrfnGbPG9J7qz+sprk2MTSTHtg7YvPV/rbQT5b8I8ZeavjYa7s4KYKW7ULqKhmmt kF1BJXuVEdjDxyKc0SSeKRlahLRfjj1zu490z0EGho6ZIEmrbWBIGpT11wMAMOU/ lNXYuG8hylcLx38QiIAt8aUpFSyb1VxnzbI0aouDNrrxJAHP9eV8bjZoBLH5YWS1 HSahGmA+o1ok06DKOUdQ2A/KUFdmVvQOAGRxKioChJy89/m/QIjMIoucSPLuuLTD xRoMiiyLoEo/egw8WwLKHaAccEzEjQfGymrzAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQURoABESor802f47E1xqsidZ45Qs8wHwYDVR0jBBgwFoAULe8rPDqaG1PBbBxw 5VEa1ZAyhPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTkZP Ui9MZThyUERxYUcxUEJiQnh3NVZFYTFaQXloUHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0xlOHJQRHFhRzFQQmJCeHc1VkVhMVpBeWhQcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL09QRU5GT1IvUm9BQkVTb3I4MDJmNDdF MXhxc2lkWjQ1UXM4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQF5MAwDQYJKoZIhvcNAQELBQADggEBADwVs6kVf+ZvpHkZSud/vxnoIL0K3NnB dXCk55N3xNa4nGh3eJ/O5ZcofbsxEDjUzcqWxNbL1yDyPjMHLK440a4T8mkjSvfm AAKod01hQQ86cdFHOu3IzM08HPROQEjePOF8e5Cyp0H8u2fUi4Jedarc0Xx13Liv qSDqdBoTKwwQ10cKn2PNyiEIn73f3arkzQKiQyFmDqIOxDZcItLaPW9Gw4s2LWX8 3y1F8e8Sy6N70B8L2Zw9IpYBcLAFkD8WpKhgBN1IexF+GRtCp9YY6tLfI9K6zdTt 7UdfmGDOdtNbmmokb1gi0r7v6ld4g8v3RGQ1WdB3FKS5TXgoqKlo7Zg= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org