$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/eIk0eIpUwPz5A0uNFvdei7hDIko.roa File: eIk0eIpUwPz5A0uNFvdei7hDIko.roa (raw, json) Hash identifier: LHGrvkXnAbuD6ZJFqUW4KqUi8dtsETg6fBglFrJ68sk= Subject key identifier: 78:89:34:78:8A:54:C0:FC:F9:03:4B:8D:16:F7:5E:8B:B8:43:22:4A Certificate issuer: /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Certificate serial: 0313 Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/eIk0eIpUwPz5A0uNFvdei7hDIko.roa Signing time: Mon 26 Aug 2024 05:23:53 +0000 ROA not before: Mon 26 Aug 2024 05:23:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38853 IP address blocks: 2407:9a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9 Validity Not Before: Aug 26 05:23:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=788934788A54C0FCF9034B8D16F75E8BB843224A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e7:55:13:19:93:e2:e2:9b:13:36:39:b3:36: d7:fc:ee:7e:10:21:72:93:1b:e2:c1:21:9f:9c:81: f1:4d:4f:26:b0:32:d4:be:05:70:4e:8d:47:bf:43: 28:16:44:dc:ce:df:58:75:bd:8c:8b:db:37:28:58: 85:19:0f:b6:49:5e:51:54:99:24:83:6a:2c:bf:73: c9:46:54:45:f1:4b:75:c7:e3:94:c7:c1:40:49:ed: bf:56:50:35:f6:83:b4:a4:7b:32:88:9c:53:6c:1c: 90:66:2c:65:93:15:a0:a2:f8:e8:d7:5a:cd:36:41: 6b:96:93:6d:65:dd:90:22:24:6e:54:45:a1:15:0f: ba:96:d4:0f:05:97:70:4f:b4:6a:0b:10:79:95:04: 86:b5:64:c3:68:2c:8c:40:78:1d:09:25:61:2b:e6: e2:56:fa:b8:b0:46:39:f5:b4:f3:81:d9:01:96:4e: 66:9a:90:b5:69:ec:5e:c5:78:a4:b6:40:ff:dc:42: 8e:47:14:2f:f3:58:4f:24:69:7b:45:8f:92:28:67: 50:de:4d:8c:40:c4:28:02:7b:a8:b7:6b:bc:a5:59: 84:8a:b7:6c:d8:d7:35:05:c9:97:98:3a:c7:ab:f0: ed:24:86:5e:48:49:ad:ea:1f:ac:cf:45:09:13:9e: d0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:89:34:78:8A:54:C0:FC:F9:03:4B:8D:16:F7:5E:8B:B8:43:22:4A X509v3 Authority Key Identifier: keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/eIk0eIpUwPz5A0uNFvdei7hDIko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:9a40::/32 Signature Algorithm: sha256WithRSAEncryption 5e:00:a0:be:f2:27:79:13:b8:cc:a9:69:20:33:14:a8:3f:37: e7:8e:ab:f8:0f:dd:2d:dd:9c:65:e1:b6:fd:75:5d:a2:d8:b5: 23:a2:29:d1:54:45:12:07:ee:8d:be:f9:57:23:d4:4a:07:e9: 83:36:a0:3b:ed:f2:32:3e:df:19:16:1c:43:3c:a0:0d:d2:44: 0c:00:3b:7d:8e:b7:01:dd:26:77:ee:ca:18:e3:aa:d1:b0:34: 4e:fb:5f:d1:95:71:8b:fb:ca:6d:dc:c3:3e:c1:f6:50:7b:22: f4:77:7d:4c:4b:45:a0:f9:b4:df:0a:9f:f2:68:89:11:e8:9d: 03:d8:63:c3:c4:c2:99:c5:2d:23:38:ac:a1:e3:01:e9:6d:81: 34:b0:be:97:62:00:93:b6:2c:80:ec:6e:cf:5a:f9:1b:5b:ac: 49:90:7e:b9:7a:79:84:da:2d:90:4a:7d:eb:85:f1:b4:97:cf: c8:91:6f:3e:08:38:e3:b1:63:35:16:6c:48:94:23:a5:fb:56: e7:3d:e0:f0:03:7c:4b:4a:75:6e:23:3b:19:a5:7d:a9:4d:ec: 24:30:0f:ed:6e:92:e4:05:9b:36:d9:3f:7e:e7:e6:7b:15:f5: f0:bd:c3:b4:bc:3e:c4:4e:39:e9:e0:ba:32:b7:a0:c4:9e:ce: 54:f0:80:e2 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0I4 MjU3RkZEQzdDRDFDQjQxOTYxMjlDRDQwNDkzMzUyQkM4M0JCOTAeFw0yNDA4MjYw NTIzNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4ODkzNDc4OEE1NEMw RkNGOTAzNEI4RDE2Rjc1RThCQjg0MzIyNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG51UTGZPi4psTNjmzNtf87n4QIXKTG+LBIZ+cgfFNTyawMtS+ BXBOjUe/QygWRNzO31h1vYyL2zcoWIUZD7ZJXlFUmSSDaiy/c8lGVEXxS3XH45TH wUBJ7b9WUDX2g7SkezKInFNsHJBmLGWTFaCi+OjXWs02QWuWk21l3ZAiJG5URaEV D7qW1A8Fl3BPtGoLEHmVBIa1ZMNoLIxAeB0JJWEr5uJW+riwRjn1tPOB2QGWTmaa kLVp7F7FeKS2QP/cQo5HFC/zWE8kaXtFj5IoZ1DeTYxAxCgCe6i3a7ylWYSKt2zY 1zUFyZeYOser8O0khl5ISa3qH6zPRQkTntCrAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUeIk0eIpUwPz5A0uNFvdei7hDIkowHwYDVR0jBBgwFoAUe4JX/9x80ctBlhKc 1ASTNSvIO7kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFSQU1J VEEvZTRKWF85eDgwY3RCbGhLYzFBU1ROU3ZJTzdrLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lNEpYXzl4ODBjdEJsaEtjMUFTVE5TdklPN2suY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQVJBTUlUQS9lSWswZUlwVXdQejVB MHVORnZkZWk3aERJa28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAeaQDANBgkqhkiG9w0BAQsFAAOCAQEAXgCgvvIneRO4zKlpIDMUqD83546r +A/dLd2cZeG2/XVdoti1I6Ip0VRFEgfujb75VyPUSgfpgzagO+3yMj7fGRYcQzyg DdJEDAA7fY63Ad0md+7KGOOq0bA0Tvtf0ZVxi/vKbdzDPsH2UHsi9Hd9TEtFoPm0 3wqf8miJEeidA9hjw8TCmcUtIzisoeMB6W2BNLC+l2IAk7YsgOxuz1r5G1usSZB+ uXp5hNotkEp964XxtJfPyJFvPgg447FjNRZsSJQjpftW5z3g8AN8S0p1biM7GaV9 qU3sJDAP7W6S5AWbNtk/fufmexX18L3DtLw+xE456eC6MregxJ7OVPCA4g== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:12 2024 by rpki-client on console-ams.rpki-client.org