$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/WVwGrkQP0fc7dSQoOvtICwe4wjQ.roa File: WVwGrkQP0fc7dSQoOvtICwe4wjQ.roa (raw, json) Hash identifier: 8TtfoUUKfvL8h5qXf6BacUasKkVVmDdJosl5w45qINA= Subject key identifier: 59:5C:06:AE:44:0F:D1:F7:3B:75:24:28:3A:FB:48:0B:07:B8:C2:34 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0C49 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/WVwGrkQP0fc7dSQoOvtICwe4wjQ.roa Signing time: Mon 26 Aug 2024 05:23:50 +0000 ROA not before: Mon 26 Aug 2024 05:23:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4781 IP address blocks: 210.63.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 26 05:23:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=595C06AE440FD1F73B7524283AFB480B07B8C234 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:4a:68:85:b8:5e:1a:4d:63:7c:08:14:88:87: 13:ea:e6:c8:20:e2:6c:77:7f:59:a3:de:4e:5e:9f: 8c:e5:8e:33:41:08:5e:6f:91:19:9f:f4:db:18:de: e6:45:7f:cc:8b:2e:42:6b:48:9b:74:eb:71:c5:95: 8b:9c:ee:70:67:ba:f9:5c:93:7b:e1:80:81:17:89: 6a:fc:78:08:37:8c:eb:4f:2d:83:6b:a5:dc:1e:4e: d7:53:42:ff:5d:1f:e4:95:ee:93:ed:34:87:ed:f6: 3c:bf:f0:4a:60:33:ff:97:8e:3c:82:6b:dd:2b:8c: 00:c5:4f:69:46:30:53:df:79:26:da:bc:57:c2:2c: fa:ca:ca:4b:9b:da:55:63:78:e3:75:2a:b8:23:cd: e8:60:b1:b8:94:1c:50:94:dd:a2:9a:34:2b:e6:95: 3b:82:36:a3:cc:8c:01:9c:2a:d3:e4:87:e2:2d:98: 8a:98:05:93:06:e8:e2:fd:f6:99:d2:d5:6d:cf:48: 63:f8:c6:d7:5b:cb:1f:a2:b7:3f:c9:cb:23:7e:9e: c5:9b:ce:de:fe:d6:e6:f3:82:f0:b4:21:2d:b1:8f: 2b:04:05:94:ea:ef:e5:d9:e1:d8:eb:cf:1f:7d:20: 14:2a:fd:16:42:2c:b9:a6:87:9f:5a:18:49:d4:5d: f5:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:5C:06:AE:44:0F:D1:F7:3B:75:24:28:3A:FB:48:0B:07:B8:C2:34 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/WVwGrkQP0fc7dSQoOvtICwe4wjQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.97.0/24 Signature Algorithm: sha256WithRSAEncryption 60:b3:19:59:2a:e2:30:42:62:ba:49:59:a3:7e:00:08:ab:86: 64:92:26:8d:4a:15:49:e1:3b:91:1e:4a:dc:ae:03:c4:35:e1: a4:09:c1:f0:01:d3:e3:ea:5c:12:fd:c2:4f:df:25:d4:3e:8e: 5b:3a:0f:f3:de:29:df:2b:45:ca:78:ce:eb:03:1c:d4:0d:98: 70:93:b0:65:e8:2e:46:14:23:e1:e7:32:32:64:69:75:a9:74: f2:80:7b:0c:a7:64:8c:fd:6f:ec:47:09:44:8a:7f:5b:2f:29: e6:fe:4d:07:5b:64:3b:51:c6:f4:50:b0:e6:aa:e0:aa:4f:25: 07:a7:bf:65:88:98:22:2b:c9:8b:87:82:f6:73:3e:a9:db:71: f3:1d:3f:71:27:19:6e:90:b9:1f:1e:ef:a0:37:b1:3a:26:8d: 2c:47:1e:3e:6e:5b:ff:45:98:15:1e:8d:09:32:db:52:2e:54: 37:1e:ce:93:23:6f:e9:21:c6:b7:3f:27:9c:85:f1:80:49:03: fd:9c:10:3a:7e:63:8e:ae:1c:08:26:7a:d4:36:8d:eb:a2:c8: b7:b6:66:87:46:39:1a:dd:47:af:76:6d:11:00:9a:bc:8c:2a: 33:4e:11:03:26:15:78:e1:e6:84:7a:44:e4:7e:ba:c6:0c:6e: 0e:65:79:5f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNDA4MjYw NTIzNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU5NUMwNkFFNDQwRkQx RjczQjc1MjQyODNBRkI0ODBCMDdCOEMyMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfSmiFuF4aTWN8CBSIhxPq5sgg4mx3f1mj3k5en4zljjNBCF5v kRmf9NsY3uZFf8yLLkJrSJt063HFlYuc7nBnuvlck3vhgIEXiWr8eAg3jOtPLYNr pdweTtdTQv9dH+SV7pPtNIft9jy/8EpgM/+XjjyCa90rjADFT2lGMFPfeSbavFfC LPrKykub2lVjeON1KrgjzehgsbiUHFCU3aKaNCvmlTuCNqPMjAGcKtPkh+ItmIqY BZMG6OL99pnS1W3PSGP4xtdbyx+itz/JyyN+nsWbzt7+1ubzgvC0IS2xjysEBZTq 7+XZ4djrzx99IBQq/RZCLLmmh59aGEnUXfVhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWVwGrkQP0fc7dSQoOvtICwe4wjQwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9XVndHcmtRUDBmYzdkU1FvT3Z0 SUN3ZTR3alEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9h MA0GCSqGSIb3DQEBCwUAA4IBAQBgsxlZKuIwQmK6SVmjfgAIq4ZkkiaNShVJ4TuR HkrcrgPENeGkCcHwAdPj6lwS/cJP3yXUPo5bOg/z3infK0XKeM7rAxzUDZhwk7Bl 6C5GFCPh5zIyZGl1qXTygHsMp2SM/W/sRwlEin9bLynm/k0HW2Q7Ucb0ULDmquCq TyUHp79liJgiK8mLh4L2cz6p23HzHT9xJxlukLkfHu+gN7E6Jo0sRx4+blv/RZgV Ho0JMttSLlQ3Hs6TI2/pIca3PyechfGASQP9nBA6fmOOrhwIJnrUNo3rosi3tmaH Rjka3Uevdm0RAJq8jCozThEDJhV44eaEekTkfrrGDG4OZXlf -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:12 2024 by rpki-client on console-ams.rpki-client.org