$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/XxJK887BOHIJIwA6eZ2rnOarjuk.roa File: XxJK887BOHIJIwA6eZ2rnOarjuk.roa (raw, json) Hash identifier: m0xXePOqfOy9rg5kCz1NKDydvjBYOxs1zLtKprUuGy0= Subject key identifier: 5F:12:4A:F3:CE:C1:38:72:09:23:00:3A:79:9D:AB:9C:E6:AB:8E:E9 Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0C0C Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/XxJK887BOHIJIwA6eZ2rnOarjuk.roa Signing time: Mon 26 Aug 2024 05:25:16 +0000 ROA not before: Mon 26 Aug 2024 05:25:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131633 IP address blocks: 2403:86c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3084 (0xc0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Aug 26 05:25:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5F124AF3CEC138720923003A799DAB9CE6AB8EE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:cb:8f:85:bd:7a:c5:c6:87:57:da:d6:ff:b7: 07:9d:88:5e:44:cc:b6:9f:59:2b:36:1e:35:4e:59: d0:f7:f4:e5:16:c7:c2:b1:b2:11:43:b5:51:11:a3: d4:ad:1b:a3:f2:ba:a3:4d:7e:72:0b:16:8c:75:61: f9:81:c9:e6:b2:4d:a7:2b:8e:0e:e3:2c:57:65:2d: c7:57:11:0a:a5:b9:c7:ad:2c:ee:c7:5c:4c:9d:fe: e7:2f:96:da:9d:f5:69:63:e4:44:0b:f1:60:4a:fc: 95:ac:88:52:4d:c6:be:bb:db:d1:2a:28:b5:e0:ff: 06:c1:e2:50:6d:71:6b:af:50:56:00:09:f1:0f:be: 5f:5f:bd:71:0b:3a:fa:1e:e8:da:d2:16:56:41:79: f3:d7:02:e2:8c:b1:43:f8:2f:d0:d2:f9:47:8a:e5: d0:3e:88:fb:5f:5c:4e:d1:c5:a5:a0:16:f0:f8:6b: 61:88:26:45:34:fb:6a:d5:65:e0:74:3f:c6:b6:bb: e6:51:b5:08:d7:63:e2:ec:59:02:0a:21:8b:59:f1: 36:de:84:8f:99:ca:db:67:da:fb:04:b5:79:df:b7: db:53:44:ad:04:55:d8:aa:87:d7:69:12:19:68:bb: 15:9e:2c:f8:89:08:8e:f6:fa:8d:21:a7:69:b5:28: 2a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:12:4A:F3:CE:C1:38:72:09:23:00:3A:79:9D:AB:9C:E6:AB:8E:E9 X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/XxJK887BOHIJIwA6eZ2rnOarjuk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:86c0::/32 Signature Algorithm: sha256WithRSAEncryption 57:4c:f3:cc:81:0b:1f:cf:db:3b:ad:32:e4:0f:b9:a3:d2:73: 5a:86:8b:ad:f2:01:02:59:dd:0b:02:cc:3a:3b:77:49:af:86: 2c:da:b2:41:a1:b2:82:0d:7d:36:e5:13:69:e5:79:50:ad:23: d3:f8:62:2c:e5:d2:e8:f8:80:37:3c:87:0e:6a:d0:1d:84:cc: 41:1a:eb:d6:42:9b:7e:83:a3:c3:4c:26:bf:ac:f0:35:7b:be: f2:9a:26:80:46:7a:a0:a0:d3:71:39:ab:39:77:4c:1d:47:14: 79:81:63:d8:7c:fd:24:75:22:ba:4d:de:b9:37:3b:62:bc:24: ec:7d:3f:db:41:95:38:53:59:3c:aa:2f:df:72:d4:1c:b8:2d: 38:c8:5c:8e:66:24:04:0a:05:b2:dc:e4:dd:0f:5f:f9:c8:8c: c6:db:ff:83:e8:15:1f:28:1f:90:22:15:9a:7c:05:63:ea:81: da:b4:7d:38:19:c9:de:8c:7e:b1:28:b5:58:83:96:9d:92:12: 9a:d8:2c:60:76:b2:5a:af:81:2a:81:9e:d8:ad:8b:1c:a0:05: ce:a5:16:77:aa:d0:ed:f6:c4:a0:e7:22:20:f5:18:58:e4:7b: 65:d3:39:2c:41:34:4c:6e:80:bf:7c:8c:ba:26:76:ce:c1:b9: cc:e7:40:3e -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNDA4MjYw NTI1MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVGMTI0QUYzQ0VDMTM4 NzIwOTIzMDAzQTc5OURBQjlDRTZBQjhFRTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXy4+FvXrFxodX2tb/twediF5EzLafWSs2HjVOWdD39OUWx8Kx shFDtVERo9StG6PyuqNNfnILFox1YfmByeayTacrjg7jLFdlLcdXEQqlucetLO7H XEyd/ucvltqd9Wlj5EQL8WBK/JWsiFJNxr6729EqKLXg/wbB4lBtcWuvUFYACfEP vl9fvXELOvoe6NrSFlZBefPXAuKMsUP4L9DS+UeK5dA+iPtfXE7RxaWgFvD4a2GI JkU0+2rVZeB0P8a2u+ZRtQjXY+LsWQIKIYtZ8TbehI+Zyttn2vsEtXnft9tTRK0E Vdiqh9dpEhlouxWeLPiJCI72+o0hp2m1KCpFAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUXxJK887BOHIJIwA6eZ2rnOarjukwHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvWHhKSzg4N0JP SElKSXdBNmVaMnJuT2FyanVrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQDhsAwDQYJKoZIhvcNAQELBQADggEBAFdM88yBCx/P2zutMuQPuaPS c1qGi63yAQJZ3QsCzDo7d0mvhizaskGhsoINfTblE2nleVCtI9P4Yizl0uj4gDc8 hw5q0B2EzEEa69ZCm36Do8NMJr+s8DV7vvKaJoBGeqCg03E5qzl3TB1HFHmBY9h8 /SR1IrpN3rk3O2K8JOx9P9tBlThTWTyqL99y1By4LTjIXI5mJAQKBbLc5N0PX/nI jMbb/4PoFR8oH5AiFZp8BWPqgdq0fTgZyd6MfrEotViDlp2SEprYLGB2slqvgSqB ntitixygBc6lFneq0O32xKDnIiD1GFjke2XTOSxBNExugL98jLomds7BucznQD4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org