$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/sXYO4nZnBWDaFKQV23X-SVTZB08.roa File: sXYO4nZnBWDaFKQV23X-SVTZB08.roa (raw, json) Hash identifier: W4xc6oGXD0YfUS04wgxAzyfGHQfVxbMsyqnr9dSM9BM= Subject key identifier: B1:76:0E:E2:76:67:05:60:DA:14:A4:15:DB:75:FE:49:54:D9:07:4F Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 12E5 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/sXYO4nZnBWDaFKQV23X-SVTZB08.roa Signing time: Tue 30 Apr 2024 12:49:28 +0000 ROA not before: Tue 30 Apr 2024 12:49:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 215913 IP address blocks: 2403:aac0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 01:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4837 (0x12e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Apr 30 12:49:28 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B1760EE276670560DA14A415DB75FE4954D9074F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:87:8e:99:64:e5:4b:98:de:d9:90:b5:fa:8e: bc:15:8c:77:e9:4b:4c:08:62:56:1f:6b:08:4d:71: 77:67:5a:ab:d7:cb:04:0f:74:c3:b3:e6:b9:0f:67: 42:30:26:c0:09:13:59:2d:80:2e:6c:f0:e0:19:ba: 70:2e:c3:af:48:df:78:e5:26:15:f1:35:27:21:64: 16:a1:05:24:11:00:ea:e0:24:26:e2:1e:dc:0f:cd: b2:85:63:ac:04:56:9e:11:a5:6d:87:39:ad:0c:56: 48:e8:05:e3:65:1c:fe:e3:e0:3d:b4:ee:20:18:41: d0:17:a2:19:eb:e8:48:d5:d9:80:b9:c9:76:2b:5f: 1b:05:b5:2a:66:26:56:bc:3c:a7:8d:c4:44:cf:5b: 5f:a4:15:11:13:e6:0a:2b:3e:92:2b:bb:7a:8b:ef: 24:96:0c:14:e5:91:2a:d4:28:29:f6:41:b2:41:75: 34:bd:e7:1b:78:1a:6b:2c:a4:10:2f:53:01:47:c1: 1c:33:94:49:5e:4c:50:e1:7c:cd:c2:6a:e1:ff:ba: bf:fc:19:23:97:d9:26:d3:e9:94:82:23:87:33:09: 25:9a:3e:44:f8:c6:41:73:4a:b4:65:be:bd:ed:37: 58:49:53:bb:19:42:63:63:03:53:c1:d2:c5:bb:ca: a2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:76:0E:E2:76:67:05:60:DA:14:A4:15:DB:75:FE:49:54:D9:07:4F X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/sXYO4nZnBWDaFKQV23X-SVTZB08.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:aac0::/32 Signature Algorithm: sha256WithRSAEncryption dd:f2:97:9b:7f:75:8d:b1:8d:ee:c8:25:03:ff:d3:f4:60:85: 30:95:94:98:80:95:12:15:ed:08:d7:2e:5c:5f:68:e4:f8:24: 8c:5d:d8:44:d1:30:e6:a8:c7:08:7b:d8:fa:d8:0c:d6:c5:4e: a9:99:c3:32:d1:ed:75:a2:3e:61:91:bb:97:62:c4:e7:06:70: ee:0b:78:c4:18:8a:b1:0a:90:0f:a0:5a:73:cc:cc:78:19:fb: 34:1f:fb:78:c1:c9:5b:10:4f:af:0e:50:c9:d9:95:3f:2f:da: a1:18:7d:cd:d2:c2:d0:79:c4:80:11:96:2d:81:ee:ce:f4:ad: 59:41:2e:5d:06:19:8c:4f:4e:c0:86:2a:be:c6:3c:6d:cd:68: 4f:8b:5c:cd:69:a4:78:c4:9d:a9:3c:39:3c:a8:77:da:38:f6: a7:60:ba:10:86:af:82:99:14:e2:ba:2f:65:f1:48:dc:5e:86: 10:b6:ac:1b:16:72:44:ad:2d:2f:49:bc:ec:49:4f:e3:f5:38: 6e:94:8c:08:75:f8:94:1e:91:63:d9:80:30:12:04:75:b3:cf: b7:13:a5:a4:e6:85:e7:c3:9e:14:28:13:39:54:47:bd:bc:95: e6:f4:f0:58:2b:61:43:d0:bf:86:a4:67:3e:4a:f8:5a:e9:b2: ab:b5:1c:e0 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA0MzAx MjQ5MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIxNzYwRUUyNzY2NzA1 NjBEQTE0QTQxNURCNzVGRTQ5NTREOTA3NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCh46ZZOVLmN7ZkLX6jrwVjHfpS0wIYlYfawhNcXdnWqvXywQP dMOz5rkPZ0IwJsAJE1ktgC5s8OAZunAuw69I33jlJhXxNSchZBahBSQRAOrgJCbi HtwPzbKFY6wEVp4RpW2HOa0MVkjoBeNlHP7j4D207iAYQdAXohnr6EjV2YC5yXYr XxsFtSpmJla8PKeNxETPW1+kFRET5gorPpIru3qL7ySWDBTlkSrUKCn2QbJBdTS9 5xt4GmsspBAvUwFHwRwzlEleTFDhfM3CauH/ur/8GSOX2SbT6ZSCI4czCSWaPkT4 xkFzSrRlvr3tN1hJU7sZQmNjA1PB0sW7yqKrAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUsXYO4nZnBWDaFKQV23X+SVTZB08wHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9zWFlPNG5abkJXRGFGS1FWMjNY LVNWVFpCMDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAOq wDANBgkqhkiG9w0BAQsFAAOCAQEA3fKXm391jbGN7sglA//T9GCFMJWUmICVEhXt CNcuXF9o5PgkjF3YRNEw5qjHCHvY+tgM1sVOqZnDMtHtdaI+YZG7l2LE5wZw7gt4 xBiKsQqQD6Bac8zMeBn7NB/7eMHJWxBPrw5QydmVPy/aoRh9zdLC0HnEgBGWLYHu zvStWUEuXQYZjE9OwIYqvsY8bc1oT4tczWmkeMSdqTw5PKh32jj2p2C6EIavgpkU 4rovZfFI3F6GELasGxZyRK0tL0m87ElP4/U4bpSMCHX4lB6RY9mAMBIEdbPPtxOl pOaF58OeFCgTOVRHvbyV5vTwWCthQ9C/hqRnPkr4Wumyq7Uc4A== -----END CERTIFICATE-----Generated at Sat Jun 8 07:13:32 2024 by rpki-client on console-fra.rpki-client.org