$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/tMDuTUh_6OIERjSrrcoDWqzDR94.roa File: tMDuTUh_6OIERjSrrcoDWqzDR94.roa (raw, json) Hash identifier: AKyEeu0uSK0f8URBvMTr0UCBqbOKuRx4dG+2Dt5O+io= Subject key identifier: B4:C0:EE:4D:48:7F:E8:E2:04:46:34:AB:AD:CA:03:5A:AC:C3:47:DE Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1367 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/tMDuTUh_6OIERjSrrcoDWqzDR94.roa Signing time: Mon 26 Aug 2024 05:25:32 +0000 ROA not before: Mon 26 Aug 2024 05:25:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 202525 IP address blocks: 2403:aac0::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4967 (0x1367) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Aug 26 05:25:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B4C0EE4D487FE8E2044634ABADCA035AACC347DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:34:09:9c:12:8b:94:e3:8f:21:09:41:cb:b5: 22:0e:ec:ed:b9:f3:b3:3a:53:a4:98:e0:3a:5c:78: 11:e6:ef:bd:09:5a:ac:7b:c7:1f:54:a1:4c:0e:69: 61:49:fb:c4:47:d7:f5:37:08:92:3a:8f:1f:87:4f: 12:60:29:2b:d9:0b:12:3b:fd:2b:63:0e:b3:74:9f: 0e:2d:44:ac:db:c4:fe:a0:7c:6c:31:c1:e9:2a:8f: 0d:9d:ff:b0:ee:34:76:06:12:91:0a:fa:ce:6f:95: bc:31:54:97:c9:87:4b:ac:a5:26:e9:8a:c0:50:97: b7:f6:36:fb:82:c6:3e:17:69:ac:56:a2:89:c7:7a: f8:ed:74:be:4a:51:fc:39:fc:7c:47:df:af:e5:81: 2c:e0:38:82:08:58:a5:c6:f1:39:7d:3b:8a:68:7f: e7:b3:20:62:e7:d0:39:ca:67:45:64:0d:e7:04:24: 7e:48:21:8b:1e:e3:ff:74:08:05:21:03:f4:f2:62: ce:dc:8a:b4:18:16:ae:35:b3:43:96:b0:a5:bd:fe: e7:d6:07:93:dc:1c:fd:3e:76:b7:38:99:2c:4d:02: 21:07:5d:92:fc:66:6a:54:02:34:cd:99:b9:fb:8d: 82:8d:4e:22:bd:92:57:ca:b2:9c:24:ce:97:af:94: 42:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:C0:EE:4D:48:7F:E8:E2:04:46:34:AB:AD:CA:03:5A:AC:C3:47:DE X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/tMDuTUh_6OIERjSrrcoDWqzDR94.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:aac0::/64 Signature Algorithm: sha256WithRSAEncryption 5b:18:5c:f5:6b:77:a9:c3:c8:46:21:f1:80:86:57:43:af:c4: df:55:d6:76:79:25:48:d3:03:10:87:20:b6:87:c1:36:97:46: 7f:fb:99:df:1a:0e:40:37:67:dd:48:d5:99:0a:c3:eb:8a:8c: f1:0e:72:99:ea:2f:2e:21:ad:27:d5:68:f0:5e:ec:d1:9b:d5: ff:bb:d9:de:ae:b0:78:f0:70:c1:ee:f8:f1:4d:0d:ee:b2:f1: 37:ae:a9:72:f8:24:4b:00:6f:db:de:90:ec:9f:3e:b3:09:55: 05:a1:5c:6b:dc:32:fa:55:cb:46:a1:ed:a2:47:24:52:d3:1f: 90:c7:17:db:b5:8d:b6:ec:d7:c1:04:55:a6:22:93:8a:16:af: f3:4d:11:f6:6f:40:90:3b:77:53:66:90:7c:c0:ba:f1:79:8a: 5e:51:2e:f9:6e:38:b0:8b:72:ce:cc:76:26:2e:ca:53:6d:4f: bb:e5:36:b2:bb:b7:d0:8b:50:e6:2a:f6:19:81:73:5d:f6:a9: 86:99:20:06:0d:93:35:52:be:3c:2d:ce:3b:63:66:a9:36:e3: 3d:b3:ef:87:40:db:2f:ad:05:a6:84:42:2b:b4:d5:62:e4:21: 1b:a6:3f:64:8a:da:e3:45:32:ad:c1:15:e2:4c:ed:8f:86:46: 34:f0:fd:9e -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICE2cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA4MjYw NTI1MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI0QzBFRTRENDg3RkU4 RTIwNDQ2MzRBQkFEQ0EwMzVBQUNDMzQ3REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFNAmcEouU448hCUHLtSIO7O2587M6U6SY4DpceBHm770JWqx7 xx9UoUwOaWFJ+8RH1/U3CJI6jx+HTxJgKSvZCxI7/StjDrN0nw4tRKzbxP6gfGwx wekqjw2d/7DuNHYGEpEK+s5vlbwxVJfJh0uspSbpisBQl7f2NvuCxj4XaaxWoonH evjtdL5KUfw5/HxH36/lgSzgOIIIWKXG8Tl9O4pof+ezIGLn0DnKZ0VkDecEJH5I IYse4/90CAUhA/TyYs7cirQYFq41s0OWsKW9/ufWB5PcHP0+drc4mSxNAiEHXZL8 ZmpUAjTNmbn7jYKNTiK9klfKspwkzpevlEIlAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUtMDuTUh/6OIERjSrrcoDWqzDR94wHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC90TUR1VFVoXzZPSUVSalNycmNv RFdxekRSOTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAJAOq wAAAAAAwDQYJKoZIhvcNAQELBQADggEBAFsYXPVrd6nDyEYh8YCGV0OvxN9V1nZ5 JUjTAxCHILaHwTaXRn/7md8aDkA3Z91I1ZkKw+uKjPEOcpnqLy4hrSfVaPBe7NGb 1f+72d6usHjwcMHu+PFNDe6y8TeuqXL4JEsAb9vekOyfPrMJVQWhXGvcMvpVy0ah 7aJHJFLTH5DHF9u1jbbs18EEVaYik4oWr/NNEfZvQJA7d1NmkHzAuvF5il5RLvlu OLCLcs7MdiYuylNtT7vlNrK7t9CLUOYq9hmBc132qYaZIAYNkzVSvjwtzjtjZqk2 4z2z74dA2y+tBaaEQiu01WLkIRumP2SK2uNFMq3BFeJM7Y+GRjTw/Z4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org