$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/p8gyGCLIG47MNNIsm3_HehXXvZo.roa File: p8gyGCLIG47MNNIsm3_HehXXvZo.roa (raw, json) Hash identifier: uBIGnRSEZDkvJM+PqAFupYeEZaxspVGkyRgq+2bR9sE= Subject key identifier: A7:C8:32:18:22:C8:1B:8E:CC:34:D2:2C:9B:7F:C7:7A:15:D7:BD:9A Certificate issuer: /CN=53AB025E558614A6AC89DCA0302DD23BD596A256 Certificate serial: 0103 Authority key identifier: 53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/p8gyGCLIG47MNNIsm3_HehXXvZo.roa Signing time: Mon 23 Sep 2024 05:15:57 +0000 ROA not before: Mon 23 Sep 2024 05:15:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 2401:3960::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53AB025E558614A6AC89DCA0302DD23BD596A256 Validity Not Before: Sep 23 05:15:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A7C8321822C81B8ECC34D22C9B7FC77A15D7BD9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:49:12:4c:35:be:05:dc:a1:f1:d3:9c:53: a4:97:61:89:54:e6:18:e6:4c:a2:cd:f5:40:ea:ad: fc:23:2d:da:27:85:80:8b:7a:b0:c9:13:f7:b3:ff: 5c:d2:c5:09:06:84:3b:dd:bc:e9:b0:ae:8f:09:d7: 03:f2:3e:ee:ba:81:12:11:3b:41:be:1d:72:c0:9f: b8:a6:72:f9:1c:ec:b8:47:8f:cf:4f:2a:0b:20:5e: 7b:47:08:88:8f:43:30:1f:3f:ff:74:a9:74:68:ac: 47:c2:34:d5:fe:08:3e:3c:9f:47:ce:dd:ff:d6:9d: b9:31:b7:aa:95:34:b8:5f:43:ba:8d:b6:21:02:6c: 5c:aa:b1:4b:e8:f6:fb:ec:46:57:e7:d4:11:ed:a4: 93:79:e9:f5:5d:38:8f:4f:9e:b2:4b:c8:f0:d9:a3: 4b:05:ff:7b:0c:03:72:e3:84:ba:ef:92:2a:bc:ad: 3a:6a:39:96:09:0e:84:a7:15:9a:1c:bc:26:a2:c5: 29:1c:aa:e6:e0:68:c4:c4:49:2b:15:15:e7:c4:07: bc:50:a7:2b:ae:0e:af:31:17:c3:4f:3b:7c:52:39: f4:2b:3c:d3:10:84:28:d6:2a:ec:81:03:f4:7d:54: 9c:43:d3:e1:33:4e:99:c0:8d:3d:71:f3:4f:b7:b7: 0c:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C8:32:18:22:C8:1B:8E:CC:34:D2:2C:9B:7F:C7:7A:15:D7:BD:9A X509v3 Authority Key Identifier: keyid:53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/p8gyGCLIG47MNNIsm3_HehXXvZo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:3960::/32 Signature Algorithm: sha256WithRSAEncryption 42:50:dd:68:55:e7:e8:54:d4:24:20:4e:62:b3:f8:49:ce:f0: 36:91:4d:60:0f:85:5d:50:e5:81:99:02:b5:eb:91:6b:90:d2: bb:a8:8d:06:21:1b:4a:e2:31:99:9a:29:15:4b:70:05:bd:43: 8c:f7:e0:1c:40:71:c7:71:48:f9:2d:e7:19:eb:b0:d5:c8:00: 23:fd:b4:d3:86:8e:76:23:6d:b8:68:c9:40:17:67:5c:49:e5: cf:15:a3:84:15:12:90:c3:1f:58:1f:e7:94:52:dd:a4:b8:89: 92:b5:ec:41:df:34:c7:b8:20:ae:2c:8c:4f:4f:8b:30:16:26: a2:dc:8c:5b:a2:0a:68:c0:73:ed:98:fe:c9:a3:73:c8:34:dc: 50:1d:c1:31:09:da:f2:42:03:be:2a:8e:30:17:05:82:24:c7: 26:d5:36:01:4a:15:79:35:bf:30:e1:df:f2:b0:ff:19:3c:a5: 90:53:42:a1:a1:11:68:b6:01:25:c2:70:44:6b:68:4c:7b:79: a5:62:75:d2:77:1d:a7:37:59:9e:61:b3:69:fc:eb:95:0a:a8: 3b:3a:97:5d:a3:26:05:00:25:6e:48:84:08:5f:b0:62:62:46: ca:75:55:70:9a:df:1e:b4:40:80:bd:c1:24:2f:a7:3c:b5:13: 82:40:f8:16 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTNB QjAyNUU1NTg2MTRBNkFDODlEQ0EwMzAyREQyM0JENTk2QTI1NjAeFw0yNDA5MjMw NTE1NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3QzgzMjE4MjJDODFC OEVDQzM0RDIyQzlCN0ZDNzdBMTVEN0JEOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9HEkSTDW+Bdyh8dOcU6SXYYlU5hjmTKLN9UDqrfwjLdonhYCL erDJE/ez/1zSxQkGhDvdvOmwro8J1wPyPu66gRIRO0G+HXLAn7imcvkc7LhHj89P KgsgXntHCIiPQzAfP/90qXRorEfCNNX+CD48n0fO3f/Wnbkxt6qVNLhfQ7qNtiEC bFyqsUvo9vvsRlfn1BHtpJN56fVdOI9PnrJLyPDZo0sF/3sMA3LjhLrvkiq8rTpq OZYJDoSnFZocvCaixSkcqubgaMTESSsVFefEB7xQpyuuDq8xF8NPO3xSOfQrPNMQ hCjWKuyBA/R9VJxD0+EzTpnAjT1x80+3twzJAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUp8gyGCLIG47MNNIsm3/HehXXvZowHwYDVR0jBBgwFoAUU6sCXlWGFKasidyg MC3SO9WWolYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVJQ0hB TkcvVTZzQ1hsV0dGS2FzaWR5Z01DM1NPOVdXb2xZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9VNnNDWGxXR0ZLYXNpZHlnTUMzU085V1dvbFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUlDSEFORy9wOGd5R0NMSUc0N01O TklzbTNfSGVoWFh2Wm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAE5YDANBgkqhkiG9w0BAQsFAAOCAQEAQlDdaFXn6FTUJCBOYrP4Sc7wNpFN YA+FXVDlgZkCteuRa5DSu6iNBiEbSuIxmZopFUtwBb1DjPfgHEBxx3FI+S3nGeuw 1cgAI/2004aOdiNtuGjJQBdnXEnlzxWjhBUSkMMfWB/nlFLdpLiJkrXsQd80x7gg riyMT0+LMBYmotyMW6IKaMBz7Zj+yaNzyDTcUB3BMQna8kIDviqOMBcFgiTHJtU2 AUoVeTW/MOHf8rD/GTylkFNCoaERaLYBJcJwRGtoTHt5pWJ10ncdpzdZnmGzafzr lQqoOzqXXaMmBQAlbkiECF+wYmJGynVVcJrfHrRAgL3BJC+nPLUTgkD4Fg== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org