$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/WTxXE1MmZ2u-MJis_7oxKPXt3i4.roa File: WTxXE1MmZ2u-MJis_7oxKPXt3i4.roa (raw, json) Hash identifier: BolTMolh6z3Y5+z7LqHVzZCxyst6hA/Whfm7Yo64kUY= Subject key identifier: 59:3C:57:13:53:26:67:6B:BE:30:98:AC:FF:BA:31:28:F5:ED:DE:2E Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0C4A Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/WTxXE1MmZ2u-MJis_7oxKPXt3i4.roa Signing time: Mon 26 Aug 2024 05:23:50 +0000 ROA not before: Mon 26 Aug 2024 05:23:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17420 IP address blocks: 2403:9f00::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3146 (0xc4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 26 05:23:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=593C57135326676BBE3098ACFFBA3128F5EDDE2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8c:68:89:e8:72:60:73:5e:51:15:f8:33:0e: 68:ee:a4:92:11:3a:89:92:a5:53:bf:ef:5e:37:68: 75:d7:11:64:0f:2f:17:38:b9:28:f5:12:72:79:80: 70:81:1f:d2:df:24:14:0b:4b:b7:da:62:75:06:b1: c7:e6:bb:c5:66:1a:50:f0:3d:1d:5b:43:5d:d2:64: 50:3c:59:16:03:eb:ff:93:8b:c5:36:f5:b2:85:0c: 3d:e5:03:1d:1c:82:f1:ca:e0:da:92:a4:2a:0d:ea: bc:d8:31:1b:58:ab:2f:24:1c:30:12:98:8d:d2:f8: d2:3a:3e:8c:c2:26:b2:c1:ec:cd:c9:a5:82:b9:48: e4:9f:7d:38:0e:5b:54:53:95:83:42:84:f1:5a:38: c9:74:a0:0b:60:2a:ae:0c:d4:ef:47:85:bd:11:a4: 04:8e:a0:e0:cc:62:b3:53:13:74:05:c4:92:76:eb: fc:b6:6b:1d:6e:ba:06:54:04:54:95:41:1d:d1:3f: fd:ad:e5:9f:1f:9f:03:b5:59:95:9e:8a:28:b2:2f: 9d:83:cf:c2:bb:40:ec:de:11:01:1d:cc:ce:e4:f2: c8:d8:74:31:30:94:3e:9c:f7:03:72:d1:5b:ed:27: 06:2b:ad:ef:fc:d9:18:b1:35:6e:3a:40:6f:9e:9d: c6:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:3C:57:13:53:26:67:6B:BE:30:98:AC:FF:BA:31:28:F5:ED:DE:2E X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/WTxXE1MmZ2u-MJis_7oxKPXt3i4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 2b:ad:b4:bf:8a:5b:a0:44:d9:60:9b:eb:6e:6a:eb:9d:6b:c4: 66:ad:b6:1c:f9:c6:e6:91:44:aa:0a:f6:62:67:e8:10:12:03: cf:03:c3:3b:92:6d:8f:30:d3:1e:9c:44:1c:3d:9b:70:05:7e: fa:19:22:aa:51:ee:41:2f:11:76:22:fb:99:3c:a2:a2:01:5a: c3:a0:a4:02:f9:10:9c:ad:03:fd:d6:8a:1c:0f:69:3e:1c:26: f7:85:37:0e:e0:43:b5:70:5b:3d:fc:2b:d4:1a:28:08:e8:ec: e4:2c:bc:81:1b:21:5a:71:93:1c:62:ef:6a:51:cd:59:0d:8c: 23:a0:34:92:44:4c:07:2b:93:15:58:ee:f1:1a:f2:de:3a:97: de:29:af:1a:d7:b2:aa:b7:36:c5:9b:ce:d0:4c:73:58:9b:8c: 08:9f:31:eb:9d:95:67:a6:62:3e:0c:68:99:2e:c9:02:25:be: dc:09:30:8c:14:c9:1d:b5:75:5f:b4:20:7a:12:b4:e6:ec:75: 1c:37:b0:01:7a:a3:6d:4a:42:e5:eb:23:95:05:50:aa:c6:2b: f6:2a:c0:9e:77:6a:88:8c:db:f8:14:f0:0e:82:d1:9b:5e:95: 91:e7:82:76:67:67:ed:93:2a:98:91:4b:79:23:2a:38:7e:5a: 85:10:74:e7 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDEowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNDA4MjYw NTIzNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5M0M1NzEzNTMyNjY3 NkJCRTMwOThBQ0ZGQkEzMTI4RjVFRERFMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2jGiJ6HJgc15RFfgzDmjupJIROomSpVO/7143aHXXEWQPLxc4 uSj1EnJ5gHCBH9LfJBQLS7faYnUGscfmu8VmGlDwPR1bQ13SZFA8WRYD6/+Ti8U2 9bKFDD3lAx0cgvHK4NqSpCoN6rzYMRtYqy8kHDASmI3S+NI6PozCJrLB7M3JpYK5 SOSffTgOW1RTlYNChPFaOMl0oAtgKq4M1O9Hhb0RpASOoODMYrNTE3QFxJJ26/y2 ax1uugZUBFSVQR3RP/2t5Z8fnwO1WZWeiiiyL52Dz8K7QOzeEQEdzM7k8sjYdDEw lD6c9wNy0VvtJwYrre/82RixNW46QG+encaHAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUWTxXE1MmZ2u+MJis/7oxKPXt3i4wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9XVHhYRTFNbVoydS1NSmlzXzdv eEtQWHQzaTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOf ADANBgkqhkiG9w0BAQsFAAOCAQEAK620v4pboETZYJvrbmrrnWvEZq22HPnG5pFE qgr2YmfoEBIDzwPDO5JtjzDTHpxEHD2bcAV++hkiqlHuQS8RdiL7mTyiogFaw6Ck AvkQnK0D/daKHA9pPhwm94U3DuBDtXBbPfwr1BooCOjs5Cy8gRshWnGTHGLvalHN WQ2MI6A0kkRMByuTFVju8Rry3jqX3imvGteyqrc2xZvO0ExzWJuMCJ8x652VZ6Zi PgxomS7JAiW+3AkwjBTJHbV1X7QgehK05ux1HDewAXqjbUpC5esjlQVQqsYr9irA nndqiIzb+BTwDoLRm16VkeeCdmdn7ZMqmJFLeSMqOH5ahRB05w== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org