$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QUEWU/2oZTs3z608k0lzxVU6E4j7Y6iOk.roa File: 2oZTs3z608k0lzxVU6E4j7Y6iOk.roa (raw, json) Hash identifier: ev3lSDzSg+8zyUHLtjEGK6Ygt3cNUTUyejxVIe1XKTM= Subject key identifier: DA:86:53:B3:7C:FA:D3:C9:34:97:3C:55:53:A1:38:8F:B6:3A:88:E9 Certificate issuer: /CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Certificate serial: F6 Authority key identifier: 9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/2oZTs3z608k0lzxVU6E4j7Y6iOk.roa Signing time: Mon 26 Aug 2024 05:25:10 +0000 ROA not before: Mon 26 Aug 2024 05:25:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 2401:30a0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Validity Not Before: Aug 26 05:25:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DA8653B37CFAD3C934973C5553A1388FB63A88E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fd:7f:dd:9a:1d:eb:e9:1e:2e:ac:16:86:04: a5:7d:c2:f2:70:18:b2:97:7a:c1:a3:2d:77:9e:27: a8:27:88:3a:90:ef:d2:68:89:b4:0d:85:44:c6:18: 25:db:52:90:17:06:c8:7b:f2:4a:ea:97:a2:f0:b8: db:51:ae:ed:28:60:01:15:27:43:7e:95:42:be:46: f8:86:9e:51:a2:b0:b1:f3:2a:dc:b2:f2:9c:d8:92: 55:0a:2d:09:1d:b3:4d:87:33:9f:4a:a4:7c:7a:f5: 6e:6f:34:0f:ec:df:1a:02:bb:30:e4:49:c6:dd:c9: d5:f0:13:ed:81:6e:4d:58:c4:ac:e2:a8:b9:7e:94: e0:5c:c1:85:f7:df:03:2d:b1:15:17:36:96:bb:d0: 52:7c:f6:3b:d7:d7:6a:77:53:ac:29:9c:e3:9a:2a: 28:05:76:c0:bd:9d:ff:57:e2:d1:d9:8e:65:d9:0d: cf:72:b9:1d:bd:d2:4e:c2:20:0a:ae:79:8f:c0:d5: fc:6c:ae:ac:06:56:6a:88:ba:7b:a7:03:95:8a:25: 18:5e:a8:e1:83:e7:6b:48:af:78:b0:05:34:32:6c: bb:ac:1b:68:b8:1f:17:de:e1:1d:09:6b:1f:d1:cb: 8b:a0:08:cf:0b:6a:7f:8e:b0:4f:4c:7b:34:af:de: 35:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:86:53:B3:7C:FA:D3:C9:34:97:3C:55:53:A1:38:8F:B6:3A:88:E9 X509v3 Authority Key Identifier: keyid:9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/2oZTs3z608k0lzxVU6E4j7Y6iOk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:30a0::/32 Signature Algorithm: sha256WithRSAEncryption 85:79:65:09:d1:84:61:d6:fb:61:d2:b0:ed:ab:56:5c:81:f4: aa:8b:46:a7:ee:56:e2:60:a6:dc:6d:7e:c0:37:72:75:35:06: 4e:cd:a3:f8:b1:dd:62:24:0e:4e:55:3c:b6:67:3b:c0:55:85: cc:79:3d:60:6f:48:59:01:7b:14:3d:ae:a0:93:c2:44:e1:b5: 9a:e1:82:09:f6:97:f7:53:5e:38:0d:04:7d:86:72:71:79:7b: 90:e5:cd:e7:62:65:d0:75:38:71:f3:bb:e4:db:e6:0c:6d:97: a9:3f:fe:8f:28:0f:c0:d4:e7:cd:84:84:ae:4c:d5:66:b6:7b: 15:8f:a8:3f:9b:ca:84:c5:87:90:07:22:71:ed:27:7b:9a:7a: bb:f6:35:ad:30:77:6b:0f:d2:4e:4c:bf:91:f2:57:e1:b8:ce: 7c:2d:c9:db:b4:a6:7e:a1:04:21:32:05:c3:b5:86:e3:bd:a0: fb:e1:f9:3a:fc:22:55:25:3d:83:c9:80:ec:45:ff:b5:b0:c9: a6:54:53:9e:f9:9b:c8:a6:ec:6d:a3:03:07:0f:e7:4b:bf:99: 9c:f0:17:9d:7d:73:c4:b7:e2:c5:90:bb:d1:93:b6:9c:91:e0: f9:67:91:d3:1b:a0:5b:ce:2b:05:df:dc:24:f8:82:bc:3b:48: a2:75:a3:8f -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQz RjY4QzcyNkY1OUIyODg2MzFBRkYzN0VBNEVENzZCQzJBOUVDNzAeFw0yNDA4MjYw NTI1MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERBODY1M0IzN0NGQUQz QzkzNDk3M0M1NTUzQTEzODhGQjYzQTg4RTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB/X/dmh3r6R4urBaGBKV9wvJwGLKXesGjLXeeJ6gniDqQ79Jo ibQNhUTGGCXbUpAXBsh78krql6LwuNtRru0oYAEVJ0N+lUK+RviGnlGisLHzKtyy 8pzYklUKLQkds02HM59KpHx69W5vNA/s3xoCuzDkScbdydXwE+2Bbk1YxKziqLl+ lOBcwYX33wMtsRUXNpa70FJ89jvX12p3U6wpnOOaKigFdsC9nf9X4tHZjmXZDc9y uR290k7CIAqueY/A1fxsrqwGVmqIununA5WKJRheqOGD52tIr3iwBTQybLusG2i4 Hxfe4R0Jax/Ry4ugCM8Lan+OsE9MezSv3jVxAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU2oZTs3z608k0lzxVU6E4j7Y6iOkwHwYDVR0jBBgwFoAUnT9oxyb1myiGMa/z fqTtdrwqnscwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUVVFV1Uv blQ5b3h5YjFteWlHTWFfemZxVHRkcndxbnNjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uVDlveHliMW15aUdNYV96ZnFUdGRyd3Fuc2MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9RVUVXVS8yb1pUczN6NjA4azBsenhWVTZF NGo3WTZpT2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAEw oDANBgkqhkiG9w0BAQsFAAOCAQEAhXllCdGEYdb7YdKw7atWXIH0qotGp+5W4mCm 3G1+wDdydTUGTs2j+LHdYiQOTlU8tmc7wFWFzHk9YG9IWQF7FD2uoJPCROG1muGC CfaX91NeOA0EfYZycXl7kOXN52Jl0HU4cfO75NvmDG2XqT/+jygPwNTnzYSErkzV ZrZ7FY+oP5vKhMWHkAcice0ne5p6u/Y1rTB3aw/STky/kfJX4bjOfC3J27SmfqEE ITIFw7WG472g++H5OvwiVSU9g8mA7EX/tbDJplRTnvmbyKbsbaMDBw/nS7+ZnPAX nX1zxLfixZC70ZO2nJHg+WeR0xugW84rBd/cJPiCvDtIonWjjw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org