$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/D-hrPXKsNfFePpz5pD1eS9bZDMs.roa File: D-hrPXKsNfFePpz5pD1eS9bZDMs.roa (raw, json) Hash identifier: YbHwtx0aWoTj8bXGAvwknmeyBqq4fq1p3bqCBGe3Aks= Subject key identifier: 0F:E8:6B:3D:72:AC:35:F1:5E:3E:9C:F9:A4:3D:5E:4B:D6:D9:0C:CB Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Certificate serial: 0314 Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/D-hrPXKsNfFePpz5pD1eS9bZDMs.roa Signing time: Mon 26 Aug 2024 05:23:53 +0000 ROA not before: Mon 26 Aug 2024 05:23:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38853 IP address blocks: 103.169.46.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 788 (0x314) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Validity Not Before: Aug 26 05:23:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0FE86B3D72AC35F15E3E9CF9A43D5E4BD6D90CCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e6:68:09:77:00:52:7e:3d:43:f9:81:65:d9: 16:5c:e2:b3:94:0f:65:c5:13:61:09:d7:36:23:52: 20:26:7c:e5:c4:d5:92:d3:08:d8:09:b4:06:b6:b8: 77:03:42:8d:cd:c4:79:fe:8f:59:cd:47:d6:c2:ba: 86:80:30:82:9e:72:29:32:ec:65:97:b9:03:d9:3b: f9:85:4d:f5:1f:bd:3e:a4:7b:06:9f:8c:e7:c9:0e: c0:8a:d0:4f:6a:c1:cb:de:5a:28:da:56:25:28:49: 4b:f0:ad:9c:51:16:34:7d:a0:62:94:0f:87:83:53: 8e:99:cd:a0:dc:f9:1f:30:c3:b8:70:20:9d:4c:ee: cd:c4:21:5a:1f:d1:08:63:24:23:97:c6:23:81:36: a3:4f:25:86:bc:9d:a6:2f:27:46:4a:77:6c:30:8a: 11:51:4d:6f:fb:e2:e0:7c:45:fe:88:dc:0e:64:3a: e2:22:1c:5d:8e:19:53:11:69:43:91:48:3d:b3:89: 77:d1:fa:7c:b7:ea:af:2d:e7:c1:86:d2:86:7d:f8: 2e:5c:51:fa:a2:f5:7b:28:13:8c:a3:f4:90:3d:ef: b9:88:65:7d:eb:c4:8f:00:9a:a5:5c:a3:f3:10:bf: ac:14:9f:39:5d:3d:c4:58:8c:cf:17:7b:b8:03:bd: ed:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:E8:6B:3D:72:AC:35:F1:5E:3E:9C:F9:A4:3D:5E:4B:D6:D9:0C:CB X509v3 Authority Key Identifier: keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/D-hrPXKsNfFePpz5pD1eS9bZDMs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.169.46.0/23 Signature Algorithm: sha256WithRSAEncryption ad:95:6f:39:02:9a:73:7d:a4:41:d2:e3:b7:c8:9f:7f:f2:9d: 6e:4a:5e:74:20:29:4b:cd:96:9a:cf:80:54:85:0d:9d:4c:4a: 71:18:58:27:57:27:fa:8e:19:c4:e4:1e:d1:4c:10:8e:ea:73: f9:4c:3b:9e:e9:77:4d:d1:be:76:d4:9d:b4:59:0d:a7:49:ac: 13:05:01:06:81:73:92:5b:7f:9c:b5:12:bb:a5:ec:54:8c:8f: c3:91:3b:0d:f9:57:ea:c9:90:43:fa:60:22:fd:fc:c8:fd:cb: 70:f5:19:fe:cf:56:b8:84:bb:11:24:cb:2c:3d:d1:c5:a6:6e: 66:7d:1c:8e:95:d5:2a:c4:60:de:ea:7f:cd:b7:36:9a:a8:01: 09:a0:87:7a:92:9e:fd:c6:75:0b:69:3d:b8:a2:4c:41:a2:a1: 26:ad:79:10:c4:ac:32:f7:1c:39:da:75:91:a8:93:a1:4e:c6: a8:23:fe:74:d1:f4:e3:9e:dc:01:67:2e:a0:dd:60:bb:94:b4: 85:84:d2:27:b7:6f:2a:f2:73:fb:4b:60:56:d0:ae:1f:a5:44: ad:c8:01:03:77:89:70:4c:4b:9d:48:0f:62:cf:73:0a:3c:3f: e4:8d:3c:76:56:bb:58:61:9d:68:ab:39:72:27:57:f4:e8:7e: 12:12:3c:7e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAxQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0I4 MjU3RkZEQzdDRDFDQjQxOTYxMjlDRDQwNDkzMzUyQkM4M0JCOTAeFw0yNDA4MjYw NTIzNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGRTg2QjNENzJBQzM1 RjE1RTNFOUNGOUE0M0Q1RTRCRDZEOTBDQ0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO5mgJdwBSfj1D+YFl2RZc4rOUD2XFE2EJ1zYjUiAmfOXE1ZLT CNgJtAa2uHcDQo3NxHn+j1nNR9bCuoaAMIKeciky7GWXuQPZO/mFTfUfvT6kewaf jOfJDsCK0E9qwcveWijaViUoSUvwrZxRFjR9oGKUD4eDU46ZzaDc+R8ww7hwIJ1M 7s3EIVof0QhjJCOXxiOBNqNPJYa8naYvJ0ZKd2wwihFRTW/74uB8Rf6I3A5kOuIi HF2OGVMRaUORSD2ziXfR+ny36q8t58GG0oZ9+C5cUfqi9XsoE4yj9JA977mIZX3r xI8AmqVco/MQv6wUnzldPcRYjM8Xe7gDve1tAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUD+hrPXKsNfFePpz5pD1eS9bZDMswHwYDVR0jBBgwFoAUe4JX/9x80ctBlhKc 1ASTNSvIO7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFSQU1J VEEvZTRKWF85eDgwY3RCbGhLYzFBU1ROU3ZJTzdrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lNEpYXzl4ODBjdEJsaEtjMUFTVE5TdklPN2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQVJBTUlUQS9ELWhyUFhLc05mRmVQ cHo1cEQxZVM5YlpETXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ6kuMA0GCSqGSIb3DQEBCwUAA4IBAQCtlW85AppzfaRB0uO3yJ9/8p1uSl50 IClLzZaaz4BUhQ2dTEpxGFgnVyf6jhnE5B7RTBCO6nP5TDue6XdN0b521J20WQ2n SawTBQEGgXOSW3+ctRK7pexUjI/DkTsN+VfqyZBD+mAi/fzI/ctw9Rn+z1a4hLsR JMssPdHFpm5mfRyOldUqxGDe6n/NtzaaqAEJoId6kp79xnULaT24okxBoqEmrXkQ xKwy9xw52nWRqJOhTsaoI/500fTjntwBZy6g3WC7lLSFhNInt28q8nP7S2BW0K4f pUStyAEDd4lwTEudSA9iz3MKPD/kjTx2VrtYYZ1oqzlyJ1f06H4SEjx+ -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org