$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/xHoCBhWfrKfryOMM-VHf5BBfkXc.roa File: xHoCBhWfrKfryOMM-VHf5BBfkXc.roa (raw, json) Hash identifier: dwoT/GXDAkv7EryV+bo5Nrpne0F7mzyz62MUQw0tOn0= Subject key identifier: C4:7A:02:06:15:9F:AC:A7:EB:C8:E3:0C:F9:51:DF:E4:10:5F:91:77 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 05 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/xHoCBhWfrKfryOMM-VHf5BBfkXc.roa Signing time: Wed 12 Jun 2024 06:29:41 +0000 ROA not before: Wed 12 Jun 2024 06:29:41 +0000 ROA not after: Wed 14 May 2025 15:30:25 +0000 asID: 152610 IP address blocks: 160.19.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Jun 12 06:29:41 2024 GMT Not After : May 14 15:30:25 2025 GMT Subject: CN=C47A0206159FACA7EBC8E30CF951DFE4105F9177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f7:d0:17:d9:fd:ea:ca:29:fa:4a:4d:b0:6c: 74:39:43:b8:c0:de:8d:d7:71:a2:7e:63:4e:25:25: fe:6f:c6:f2:b2:1e:db:0c:be:a2:00:f9:51:15:c2: da:c0:12:c9:0b:8d:ce:25:aa:8f:6a:cb:85:ac:87: fa:80:d7:df:bd:1b:00:a4:dd:97:ca:eb:8c:3d:19: f0:e8:94:bd:dc:d9:3e:3f:85:03:50:fd:e2:03:8c: c5:57:16:d6:ee:59:e4:60:83:e9:88:51:92:30:14: 8a:48:5d:7d:1d:bc:a0:6c:09:fd:32:e2:af:28:4e: 8e:1b:95:f8:b9:a3:1f:e4:4e:33:37:78:8e:d0:3d: 54:f9:d8:d3:00:c2:ae:a6:87:3d:92:92:22:db:77: 62:6e:ee:4e:2b:9b:d2:1f:ef:70:14:f4:a6:01:14: e6:61:be:e5:00:ec:62:bb:da:5b:64:6a:b3:0b:6a: b8:94:33:e3:00:84:5c:9e:2f:13:76:2f:95:94:5d: 92:d9:56:0b:2a:95:96:5a:9e:ed:c4:de:02:15:da: ce:da:79:31:73:24:84:50:85:b7:2d:aa:4b:dc:1d: 0c:47:59:57:6f:1d:6b:2e:7d:cc:06:3d:b9:89:ef: 7e:ff:be:2e:dd:f2:c0:87:28:35:4d:4d:a1:12:33: 34:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7A:02:06:15:9F:AC:A7:EB:C8:E3:0C:F9:51:DF:E4:10:5F:91:77 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/xHoCBhWfrKfryOMM-VHf5BBfkXc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.19.91.0/24 Signature Algorithm: sha256WithRSAEncryption 62:0c:05:2d:5a:fe:80:95:bd:df:94:b9:41:eb:32:db:80:b4: 27:78:24:62:e0:68:df:21:c0:fb:f5:27:71:f5:f7:ee:6b:aa: ed:c7:15:7b:1a:be:82:c9:5b:1b:a9:24:f5:c9:9f:5d:33:a6: d8:b3:ae:1e:70:3a:d8:44:7f:d5:8f:16:80:37:7d:56:25:31: 83:46:59:ef:09:f8:67:5a:e9:f1:70:72:4c:5f:4f:08:21:1a: 6a:a8:94:8e:2e:77:c2:61:e8:16:13:86:01:6a:98:d5:0c:4f: c3:f6:9e:14:50:d7:96:8b:2a:ec:61:dc:11:8d:31:cb:a5:9b: 2c:48:cb:ca:fd:a0:64:63:70:73:9d:1e:a7:1d:4f:c7:19:50: d7:58:a0:bc:46:b3:da:54:0a:4a:e8:fe:31:89:1a:88:e5:a7: 6e:ca:ed:27:7e:3d:3f:59:fd:5c:e9:1b:aa:c0:f7:d4:6b:7f: 27:fc:be:d9:82:21:27:ae:ab:31:5c:4f:f8:45:98:db:08:71: 96:9d:d1:6b:32:ae:d7:35:21:03:f4:04:6b:91:47:ba:9e:95: 6c:f3:20:02:de:8d:55:06:45:19:45:26:ca:a8:00:b3:6b:14: 63:2f:92:7f:67:26:55:c1:5a:e6:38:a6:cb:22:05:95:b8:97: 21:22:ab:35 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0M0VC RDM5RkI1MThCNTVEQTAwNzQyQUVFQzdCMERBNkFBQkE2MUY3MB4XDTI0MDYxMjA2 Mjk0MVoXDTI1MDUxNDE1MzAyNVowMzExMC8GA1UEAxMoQzQ3QTAyMDYxNTlGQUNB N0VCQzhFMzBDRjk1MURGRTQxMDVGOTE3NzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOP30BfZ/erKKfpKTbBsdDlDuMDejddxon5jTiUl/m/G8rIe2wy+ ogD5URXC2sASyQuNziWqj2rLhayH+oDX370bAKTdl8rrjD0Z8OiUvdzZPj+FA1D9 4gOMxVcW1u5Z5GCD6YhRkjAUikhdfR28oGwJ/TLiryhOjhuV+LmjH+ROMzd4jtA9 VPnY0wDCrqaHPZKSItt3Ym7uTiub0h/vcBT0pgEU5mG+5QDsYrvaW2RqswtquJQz 4wCEXJ4vE3YvlZRdktlWCyqVllqe7cTeAhXaztp5MXMkhFCFty2qS9wdDEdZV28d ay59zAY9uYnvfv++Lt3ywIcoNU1NoRIzNDUCAwEAAaOCAewwggHoMB0GA1UdDgQW BBTEegIGFZ+sp+vI4wz5Ud/kEF+RdzAfBgNVHSMEGDAWgBRD69OftRi1XaAHQq7s ew2mqrph9zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9R LXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1EtdlRuN1VZdFYyZ0IwS3U3SHNOcHFxNllmYy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NBRUxXL3hIb0NCaFdmcktmcnlPTU0tVkhm NUJCZmtYYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBACgE1sw DQYJKoZIhvcNAQELBQADggEBAGIMBS1a/oCVvd+UuUHrMtuAtCd4JGLgaN8hwPv1 J3H19+5rqu3HFXsavoLJWxupJPXJn10zptizrh5wOthEf9WPFoA3fVYlMYNGWe8J +Gda6fFwckxfTwghGmqolI4ud8Jh6BYThgFqmNUMT8P2nhRQ15aLKuxh3BGNMcul myxIy8r9oGRjcHOdHqcdT8cZUNdYoLxGs9pUCkro/jGJGojlp27K7Sd+PT9Z/Vzp G6rA99Rrfyf8vtmCISeuqzFcT/hFmNsIcZad0Wsyrtc1IQP0BGuRR7qelWzzIALe jVUGRRlFJsqoALNrFGMvkn9nJlXBWuY4pssiBZW4lyEiqzU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org