$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/ZTqOcEILRqvwIJ9sAYqPaYjOkJA.roa File: ZTqOcEILRqvwIJ9sAYqPaYjOkJA.roa (raw, json) Hash identifier: cu9KPVw++Wb+F8T0O6bS/1Nal014D1P56sN7MGNOV9o= Subject key identifier: 65:3A:8E:70:42:0B:46:AB:F0:20:9F:6C:01:8A:8F:69:88:CE:90:90 Certificate issuer: /CN=AC2A31F0F4BD74E743E22FEA3304D5C3508207BC Certificate serial: 15 Authority key identifier: AC:2A:31:F0:F4:BD:74:E7:43:E2:2F:EA:33:04:D5:C3:50:82:07:BC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rCox8PS9dOdD4i_qMwTVw1CCB7w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/ZTqOcEILRqvwIJ9sAYqPaYjOkJA.roa Signing time: Wed 10 Jul 2024 10:46:57 +0000 ROA not before: Wed 10 Jul 2024 10:46:57 +0000 ROA not after: Wed 14 May 2025 15:30:25 +0000 asID: 152610 IP address blocks: 2401:9e60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/rCox8PS9dOdD4i_qMwTVw1CCB7w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/rCox8PS9dOdD4i_qMwTVw1CCB7w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rCox8PS9dOdD4i_qMwTVw1CCB7w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Sep 2024 01:49:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AC2A31F0F4BD74E743E22FEA3304D5C3508207BC Validity Not Before: Jul 10 10:46:57 2024 GMT Not After : May 14 15:30:25 2025 GMT Subject: CN=653A8E70420B46ABF0209F6C018A8F6988CE9090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:65:8e:76:68:2e:73:95:c1:e1:71:10:57:4c: da:c7:87:6e:77:f2:20:42:1a:2b:17:1e:e8:f5:73: 96:16:15:aa:96:a2:47:ec:97:39:bf:20:48:d6:ae: 41:b9:cc:97:ea:f5:e0:44:6b:01:b9:71:fd:fb:dc: 4d:dc:73:0b:5d:f1:a0:c6:0f:f3:7c:92:72:35:b7: 90:83:76:bc:74:ff:9d:fd:df:5b:73:91:14:d8:02: c1:c2:90:27:b3:22:89:3c:13:9c:3b:ed:f6:a2:7a: 6b:77:7d:f9:08:99:35:8b:42:81:ff:95:05:a8:24: 92:a2:8c:bf:7e:8f:58:21:5a:d1:43:8e:dc:89:51: ba:74:45:75:c0:38:66:7a:c4:ee:d8:20:d0:52:ee: cc:ac:17:d6:a0:5d:e5:45:97:f9:74:46:ba:a5:85: 21:99:35:f1:fd:9d:f3:20:9a:bd:ba:62:10:1e:ae: de:57:7b:2a:09:33:45:3a:7c:be:dc:12:65:a1:24: 14:2e:18:62:11:82:be:f6:a4:38:97:a0:d9:1d:89: 6a:00:50:2a:b9:f5:33:25:1f:4c:24:e3:94:4d:5a: 89:fb:3c:85:25:91:14:00:9e:e4:04:be:01:a5:98: 53:59:ce:a1:1e:28:dd:f4:32:aa:c5:a7:7a:ec:f0: ef:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:3A:8E:70:42:0B:46:AB:F0:20:9F:6C:01:8A:8F:69:88:CE:90:90 X509v3 Authority Key Identifier: keyid:AC:2A:31:F0:F4:BD:74:E7:43:E2:2F:EA:33:04:D5:C3:50:82:07:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/rCox8PS9dOdD4i_qMwTVw1CCB7w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rCox8PS9dOdD4i_qMwTVw1CCB7w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/ZTqOcEILRqvwIJ9sAYqPaYjOkJA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:9e60::/32 Signature Algorithm: sha256WithRSAEncryption 45:1a:c9:c5:93:75:cb:59:15:77:ee:2a:35:bc:ed:fc:22:d5: 6e:f8:77:1d:84:4e:0d:f0:df:18:b1:f3:09:1f:f6:de:71:95: f3:7a:89:cb:03:b6:58:56:94:f5:39:77:0e:81:ec:10:15:77: 0f:68:c0:89:29:44:4b:e7:60:51:d2:cf:69:f6:38:01:b1:f9: a0:fd:5c:72:87:1a:f5:d2:5a:72:1d:30:18:7a:6e:34:a8:e1: 22:7c:83:ae:5d:2d:1f:8f:fb:03:6c:63:7f:2b:49:eb:0a:09: 32:7f:2d:d4:a6:14:62:87:68:16:c2:40:f5:0d:76:05:2f:3e: 49:e1:bb:c1:f1:d5:d1:20:48:17:15:b0:03:05:de:84:d6:ea: 54:9a:3c:c3:9b:3a:b7:4e:38:3f:c8:ba:12:68:72:5b:08:9a: 80:30:f1:e3:de:b6:50:0d:9d:de:50:f0:a2:46:8a:55:d9:d9: fb:24:24:32:53:d2:9c:7c:e3:dc:65:8b:f5:75:80:fd:3c:65: 92:37:0e:45:5e:ec:f8:7d:32:65:a9:67:9e:2a:6c:57:84:0a: 17:c8:f3:90:47:e3:35:bf:c9:0b:82:07:87:7f:54:89:44:26: 29:a9:79:e0:68:dd:b7:88:b2:e4:b0:c3:bd:dd:b9:ba:f8:d5: 34:3b:19:0f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgIBFTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBQzJB MzFGMEY0QkQ3NEU3NDNFMjJGRUEzMzA0RDVDMzUwODIwN0JDMB4XDTI0MDcxMDEw NDY1N1oXDTI1MDUxNDE1MzAyNVowMzExMC8GA1UEAxMoNjUzQThFNzA0MjBCNDZB QkYwMjA5RjZDMDE4QThGNjk4OENFOTA5MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMlljnZoLnOVweFxEFdM2seHbnfyIEIaKxce6PVzlhYVqpaiR+yX Ob8gSNauQbnMl+r14ERrAblx/fvcTdxzC13xoMYP83yScjW3kIN2vHT/nf3fW3OR FNgCwcKQJ7MiiTwTnDvt9qJ6a3d9+QiZNYtCgf+VBagkkqKMv36PWCFa0UOO3IlR unRFdcA4ZnrE7tgg0FLuzKwX1qBd5UWX+XRGuqWFIZk18f2d8yCavbpiEB6u3ld7 KgkzRTp8vtwSZaEkFC4YYhGCvvakOJeg2R2JagBQKrn1MyUfTCTjlE1aifs8hSWR FACe5AS+AaWYU1nOoR4o3fQyqsWneuzw73kCAwEAAaOCAe0wggHpMB0GA1UdDgQW BBRlOo5wQgtGq/Agn2wBio9piM6QkDAfBgNVHSMEGDAWgBSsKjHw9L1050PiL+oz BNXDUIIHvDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9y Q294OFBTOWRPZEQ0aV9xTXdUVncxQ0NCN3cuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3JDb3g4UFM5ZE9kRDRpX3FNd1RWdzFDQ0I3dy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NBRUxXL1pUcU9jRUlMUnF2d0lKOXNBWXFQ YVlqT2tKQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAZ5g MA0GCSqGSIb3DQEBCwUAA4IBAQBFGsnFk3XLWRV37io1vO38ItVu+HcdhE4N8N8Y sfMJH/becZXzeonLA7ZYVpT1OXcOgewQFXcPaMCJKURL52BR0s9p9jgBsfmg/Vxy hxr10lpyHTAYem40qOEifIOuXS0fj/sDbGN/K0nrCgkyfy3UphRih2gWwkD1DXYF Lz5J4bvB8dXRIEgXFbADBd6E1upUmjzDmzq3Tjg/yLoSaHJbCJqAMPHj3rZQDZ3e UPCiRopV2dn7JCQyU9KcfOPcZYv1dYD9PGWSNw5FXuz4fTJlqWeeKmxXhAoXyPOQ R+M1v8kLggeHf1SJRCYpqXngaN23iLLksMO93bm6+NU0OxkP -----END CERTIFICATE-----Generated at Thu Sep 19 00:03:07 2024 by rpki-client on console-fra.rpki-client.org