$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/4RNPUtYUvqdW_sNTspTkYcqa678.roa File: 4RNPUtYUvqdW_sNTspTkYcqa678.roa (raw, json) Hash identifier: O8WEs41SSDvAutDOcQqSoxFvnssJHs1+MIUHG/sr2Hw= Subject key identifier: E1:13:4F:52:D6:14:BE:A7:56:FE:C3:53:B2:94:E4:61:CA:9A:EB:BF Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Certificate serial: 099D Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/4RNPUtYUvqdW_sNTspTkYcqa678.roa Signing time: Mon 26 Aug 2024 05:23:44 +0000 ROA not before: Mon 26 Aug 2024 05:23:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131674 IP address blocks: 2405:b8c0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2461 (0x99d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Validity Not Before: Aug 26 05:23:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E1134F52D614BEA756FEC353B294E461CA9AEBBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f4:b5:40:d2:5b:25:62:7f:93:ef:b5:33:6a: 02:9f:24:65:4f:18:ad:80:d4:e9:f7:78:5a:be:31: 82:0c:40:6c:c3:7d:94:34:1d:0e:36:3f:bb:c9:13: 14:7b:1f:5b:fa:ac:21:0c:f8:5f:d3:14:95:97:fb: 4b:9d:59:94:e7:b0:5f:49:03:ed:a7:ab:d1:a9:6b: a5:37:30:92:5e:ff:e0:51:ac:61:0e:51:8f:4a:41: df:aa:f9:49:51:d0:75:18:8e:0c:92:aa:ef:b7:f6: 8a:16:c6:bd:28:21:10:9d:d4:60:09:85:c3:aa:4c: cc:dd:67:1e:a1:df:66:b5:56:90:79:72:83:1c:6e: fd:19:0f:85:64:10:d7:b2:d8:89:c7:9e:a2:02:3a: 80:e1:78:b9:1a:ff:88:fb:84:94:3f:57:ec:41:80: 98:e3:2b:82:16:6c:33:ef:b3:0f:fc:76:d7:b6:2e: 75:f8:29:78:cf:c9:44:e8:1b:26:63:2c:f7:33:77: a2:ee:7b:1f:cb:e9:3b:0d:33:25:b7:21:99:3a:b4: c1:b9:b8:ef:13:26:4b:eb:b5:b1:ea:96:14:77:4d: 6b:50:a7:c5:62:43:59:2f:40:8d:b1:a3:9d:42:36: 45:e2:0a:25:91:2a:11:3a:32:00:be:0d:b0:c0:4d: 24:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:13:4F:52:D6:14:BE:A7:56:FE:C3:53:B2:94:E4:61:CA:9A:EB:BF X509v3 Authority Key Identifier: keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/4RNPUtYUvqdW_sNTspTkYcqa678.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:b8c0::/32 Signature Algorithm: sha256WithRSAEncryption 58:c2:7f:a6:18:98:a7:76:29:fd:fa:f3:c2:03:6d:02:b5:16: f9:85:20:7c:36:e4:c0:1a:fa:4f:58:52:3d:47:cd:00:f4:ca: 98:b3:c2:42:d6:c2:56:7e:ba:91:85:63:40:e8:c5:db:3c:c1: ea:aa:93:b2:9f:7c:e4:11:38:7b:ac:a8:b5:c5:04:e6:d1:d0: ab:9b:e2:28:0b:2f:f7:af:e0:83:83:23:31:d4:9b:ee:70:d6: ee:d9:74:4a:b3:45:9f:41:51:b7:61:a1:9f:ec:15:af:7e:8a: 8c:22:5f:f2:91:3c:71:36:9c:1b:0f:00:6f:63:95:b7:44:3e: 1a:3e:86:6d:ac:0d:d3:6f:cd:a4:f7:07:0f:a4:1b:70:28:35: 63:de:3e:ff:97:b3:a9:1c:b5:83:32:30:7b:f1:8a:8b:0a:db: e7:68:30:85:5a:eb:a5:fc:75:0a:69:9c:be:fd:5a:06:35:d1: e5:ac:02:dd:2a:d0:6e:b2:ee:98:33:b9:43:ca:11:c0:fe:a4: 2b:f8:52:fa:e1:50:5c:53:fa:9f:14:fb:60:82:77:e6:13:fb: 31:0a:ff:27:fb:72:9e:b6:12:c5:e0:3a:57:71:bc:cc:ca:f6: ca:0c:fc:f2:4a:47:b1:01:9e:21:31:ee:e2:bb:c5:3c:e5:b6: 75:9a:ca:fe -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICCZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUz OThDNTJDQzJBMDc5REE5MDE0ODIxMEFDODUzMjhDMTFCQkU5NjAeFw0yNDA4MjYw NTIzNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUxMTM0RjUyRDYxNEJF QTc1NkZFQzM1M0IyOTRFNDYxQ0E5QUVCQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC69LVA0lslYn+T77UzagKfJGVPGK2A1On3eFq+MYIMQGzDfZQ0 HQ42P7vJExR7H1v6rCEM+F/TFJWX+0udWZTnsF9JA+2nq9Gpa6U3MJJe/+BRrGEO UY9KQd+q+UlR0HUYjgySqu+39ooWxr0oIRCd1GAJhcOqTMzdZx6h32a1VpB5coMc bv0ZD4VkENey2InHnqICOoDheLka/4j7hJQ/V+xBgJjjK4IWbDPvsw/8dte2LnX4 KXjPyUToGyZjLPczd6Luex/L6TsNMyW3IZk6tMG5uO8TJkvrtbHqlhR3TWtQp8Vi Q1kvQI2xo51CNkXiCiWRKhE6MgC+DbDATSSDAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU4RNPUtYUvqdW/sNTspTkYcqa678wHwYDVR0jBBgwFoAUbjmMUswqB52pAUgh CshTKMEbvpYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTlJJ Q0gvYmptTVVzd3FCNTJwQVVnaENzaFRLTUVidnBZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9iam1NVXN3cUI1MnBBVWdoQ3NoVEtNRWJ2cFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9PUEVOUklDSC80Uk5QVXRZVXZxZFdf c05Uc3BUa1ljcWE2Nzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAW4wDANBgkqhkiG9w0BAQsFAAOCAQEAWMJ/phiYp3Yp/frzwgNtArUW+YUg fDbkwBr6T1hSPUfNAPTKmLPCQtbCVn66kYVjQOjF2zzB6qqTsp985BE4e6yotcUE 5tHQq5viKAsv96/gg4MjMdSb7nDW7tl0SrNFn0FRt2Ghn+wVr36KjCJf8pE8cTac Gw8Ab2OVt0Q+Gj6GbawN02/NpPcHD6QbcCg1Y94+/5ezqRy1gzIwe/GKiwrb52gw hVrrpfx1Cmmcvv1aBjXR5awC3SrQbrLumDO5Q8oRwP6kK/hS+uFQXFP6nxT7YIJ3 5hP7MQr/J/tynrYSxeA6V3G8zMr2ygz88kpHsQGeITHu4rvFPOW2dZrK/g== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org