$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/J50eW8xPG7vxjW9nEdSPq0D95MQ.roa File: J50eW8xPG7vxjW9nEdSPq0D95MQ.roa (raw, json) Hash identifier: oc3NJIwQ4KIcVv6hwF/wmbpxdcn4nmEPAHLLA6/xDug= Subject key identifier: 27:9D:1E:5B:CC:4F:1B:BB:F1:8D:6F:67:11:D4:8F:AB:40:FD:E4:C4 Certificate issuer: /CN=53AB025E558614A6AC89DCA0302DD23BD596A256 Certificate serial: F0 Authority key identifier: 53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/J50eW8xPG7vxjW9nEdSPq0D95MQ.roa Signing time: Wed 04 Sep 2024 09:16:40 +0000 ROA not before: Wed 04 Sep 2024 09:16:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 2401:3960::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53AB025E558614A6AC89DCA0302DD23BD596A256 Validity Not Before: Sep 4 09:16:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=279D1E5BCC4F1BBBF18D6F6711D48FAB40FDE4C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:96:85:c2:59:72:25:bf:77:37:7b:da:39:b8: 96:11:ce:7d:f9:63:01:cc:ab:37:76:21:5e:e3:f8: 84:c2:2f:14:ef:b0:37:44:ba:6c:d8:0b:d3:56:40: 14:24:f4:82:7b:11:f1:87:ad:01:e8:7b:9c:25:51: 29:e6:61:7e:f2:40:c0:f6:41:8a:42:cc:af:47:64: 26:11:9e:1f:05:20:f7:79:09:98:84:cb:7f:bf:5b: 66:31:d1:b7:e4:34:7b:f1:30:29:03:4d:2e:d6:42: fb:98:34:48:ba:7c:d7:9a:de:62:97:f0:7a:fa:2d: 1b:31:0d:1c:0f:89:c9:3a:36:7a:ed:50:f5:be:02: a5:84:72:69:98:c7:2c:85:36:44:84:77:63:4b:52: 31:7c:cd:89:61:a9:2e:57:cd:ef:81:6a:7b:11:94: 94:41:f0:7c:83:10:18:11:95:74:e3:db:8e:11:0a: 6c:87:ed:9c:96:8b:de:1c:58:a9:fa:9f:f0:07:e6: a9:c9:bb:64:d0:61:a1:af:d4:2e:3b:2b:dd:14:d6: 61:47:a6:d7:e8:ec:a2:50:1b:34:57:62:38:d7:53: 4f:2b:2e:2c:00:00:b0:f3:5c:5c:97:49:7e:64:ef: 39:4c:b6:5f:54:e2:89:d8:91:41:37:38:c0:09:b1: 05:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:9D:1E:5B:CC:4F:1B:BB:F1:8D:6F:67:11:D4:8F:AB:40:FD:E4:C4 X509v3 Authority Key Identifier: keyid:53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/J50eW8xPG7vxjW9nEdSPq0D95MQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:3960::/32 Signature Algorithm: sha256WithRSAEncryption 95:91:82:4c:4b:3b:55:a7:55:b2:21:4c:a9:d0:9c:f8:ca:c6: 70:e0:89:c4:b4:74:94:5f:fe:5f:74:0a:d4:d6:d6:0d:82:ae: e1:72:e1:25:19:da:7d:5a:8d:8a:68:da:3c:19:09:fd:8a:ea: 1b:6c:80:25:eb:5a:64:06:ae:d4:20:49:e4:4c:e9:e4:1a:91: 37:a8:b3:8b:4c:d7:be:63:9f:19:3b:31:9d:ed:33:31:0c:5d: e9:2a:c3:9c:68:fe:5a:07:cb:44:58:04:a4:6b:d9:39:34:a2: 5d:a4:d8:0a:34:11:56:7a:a5:56:9b:39:67:70:f1:c5:90:92: 40:7c:7a:ea:82:41:e0:41:a7:5d:3c:47:b3:4f:7b:45:94:1f: 9d:03:b3:72:57:70:5a:46:4a:d9:29:f1:78:c9:e7:d1:b5:15: 1f:ec:30:98:24:ca:55:1e:b4:81:bf:0d:6b:36:9d:42:7b:66: 44:db:ea:55:b5:52:8d:13:23:bc:8c:08:97:52:32:4a:80:34: 9a:4f:7e:6e:1d:7c:4b:9e:1f:23:e1:1e:b1:36:e3:3b:dd:29: be:0b:6e:ff:16:05:46:16:39:e0:93:34:bd:69:fd:4d:c3:2b: 0a:1f:a5:f5:b9:1e:db:e7:da:d1:7e:07:79:58:46:fd:6b:71: 92:1d:11:e8 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTNB QjAyNUU1NTg2MTRBNkFDODlEQ0EwMzAyREQyM0JENTk2QTI1NjAeFw0yNDA5MDQw OTE2NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI3OUQxRTVCQ0M0RjFC QkJGMThENkY2NzExRDQ4RkFCNDBGREU0QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOloXCWXIlv3c3e9o5uJYRzn35YwHMqzd2IV7j+ITCLxTvsDdE umzYC9NWQBQk9IJ7EfGHrQHoe5wlUSnmYX7yQMD2QYpCzK9HZCYRnh8FIPd5CZiE y3+/W2Yx0bfkNHvxMCkDTS7WQvuYNEi6fNea3mKX8Hr6LRsxDRwPick6NnrtUPW+ AqWEcmmYxyyFNkSEd2NLUjF8zYlhqS5Xze+BansRlJRB8HyDEBgRlXTj244RCmyH 7ZyWi94cWKn6n/AH5qnJu2TQYaGv1C47K90U1mFHptfo7KJQGzRXYjjXU08rLiwA ALDzXFyXSX5k7zlMtl9U4onYkUE3OMAJsQXxAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUJ50eW8xPG7vxjW9nEdSPq0D95MQwHwYDVR0jBBgwFoAUU6sCXlWGFKasidyg MC3SO9WWolYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVJQ0hB TkcvVTZzQ1hsV0dGS2FzaWR5Z01DM1NPOVdXb2xZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9VNnNDWGxXR0ZLYXNpZHlnTUMzU085V1dvbFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUlDSEFORy9KNTBlVzh4UEc3dnhq VzluRWRTUHEwRDk1TVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAE5YDANBgkqhkiG9w0BAQsFAAOCAQEAlZGCTEs7VadVsiFMqdCc+MrGcOCJ xLR0lF/+X3QK1NbWDYKu4XLhJRnafVqNimjaPBkJ/YrqG2yAJetaZAau1CBJ5Ezp 5BqRN6izi0zXvmOfGTsxne0zMQxd6SrDnGj+WgfLRFgEpGvZOTSiXaTYCjQRVnql Vps5Z3DxxZCSQHx66oJB4EGnXTxHs097RZQfnQOzcldwWkZK2SnxeMnn0bUVH+ww mCTKVR60gb8NazadQntmRNvqVbVSjRMjvIwIl1IySoA0mk9+bh18S54fI+EesTbj O90pvgtu/xYFRhY54JM0vWn9TcMrCh+l9bke2+fa0X4HeVhG/Wtxkh0R6A== -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:43 2024 by rpki-client on console-ams.rpki-client.org