$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/RpRHX7JODkCsRhoeb6Zlrseictg.roa File: RpRHX7JODkCsRhoeb6Zlrseictg.roa (raw, json) Hash identifier: VD+Q/rLHS6EIwp0nV5DWfBoo7swtsYPBgh8bUcVXg7o= Subject key identifier: 46:94:47:5F:B2:4E:0E:40:AC:46:1A:1E:6F:A6:65:AE:C7:A2:72:D8 Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0CC2 Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/RpRHX7JODkCsRhoeb6Zlrseictg.roa Signing time: Mon 26 Aug 2024 05:25:55 +0000 ROA not before: Mon 26 Aug 2024 05:25:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:eeee::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3266 (0xcc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Aug 26 05:25:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4694475FB24E0E40AC461A1E6FA665AEC7A272D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f0:3f:29:5e:30:b0:16:25:87:c6:15:74:30: 08:30:7f:fd:6d:a6:a6:78:8d:28:80:2f:64:ad:4d: 20:a9:ba:41:1e:a3:e2:03:d4:76:58:bb:d3:f6:a9: d0:bc:96:36:68:f8:3a:3f:b1:f1:ea:10:61:69:d7: 6a:f1:ab:a3:33:0f:67:f8:70:61:16:2c:df:e4:80: db:d8:cf:45:b5:2b:17:2e:ff:82:38:a9:41:53:ff: e1:69:5d:2d:18:fe:9d:7b:c9:a8:6f:93:32:3c:7b: 0e:e3:eb:f1:0e:c8:59:0f:64:22:64:75:10:d9:5f: cf:71:bb:a8:c1:06:5f:f6:cb:06:7c:5e:cc:5b:1a: 0a:2e:87:f5:7d:67:48:35:82:a2:bf:d2:96:dd:3b: d6:1b:71:c9:72:01:80:5c:93:37:59:eb:48:1d:e3: 52:12:9c:f8:57:24:93:61:3d:e8:d0:8b:ee:47:a3: d7:2f:4f:b0:43:20:1b:fe:54:8f:ae:7f:e1:78:f8: d1:b0:0f:d7:08:7b:9f:b1:d9:14:e8:7a:ce:56:c1: 70:f3:d1:d1:eb:21:53:4c:2a:1f:85:c0:e1:e8:a7: 05:da:59:86:38:68:f1:a2:35:31:9a:b4:9b:a0:20: 12:32:db:b7:54:6a:5a:80:62:f6:3b:b6:73:92:53: 75:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:94:47:5F:B2:4E:0E:40:AC:46:1A:1E:6F:A6:65:AE:C7:A2:72:D8 X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/RpRHX7JODkCsRhoeb6Zlrseictg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:eeee::/48 Signature Algorithm: sha256WithRSAEncryption 04:3e:b2:06:a0:c7:b9:12:bd:83:94:84:84:d0:28:01:ec:41: 48:85:99:7d:6c:61:d4:72:ae:65:ee:3d:62:40:cb:a1:2c:9c: 91:c8:7b:51:db:b8:47:97:ef:0d:6f:9f:15:a4:0d:47:44:79: eb:b1:47:ef:8e:c3:f1:0c:90:41:78:ac:25:fe:d2:dc:c0:a9: 78:8b:92:4c:b4:2d:20:b2:c6:14:ab:74:27:66:c6:55:d8:1d: 80:69:a2:f1:07:4c:80:74:06:17:ea:ef:22:af:52:a4:85:f3: e2:9a:d3:05:f6:db:7d:8c:ca:c3:ec:f9:b4:bc:ee:7d:df:e2: f6:a0:43:5d:46:76:e1:d5:e6:84:37:1d:1d:c8:6f:3a:df:09: 94:14:f3:90:49:fd:b5:b9:f7:03:00:d2:c3:17:b7:dc:d5:15: e0:24:a8:ed:03:58:88:01:01:92:b5:89:f9:5e:f5:16:14:1d: 0b:8c:64:e7:cf:b2:ce:cc:f4:41:0a:9c:68:62:1c:51:7f:21: 41:33:c3:c1:7b:1a:b9:1b:d7:d4:e1:ac:7a:b0:96:5e:3b:8d: 87:8f:77:f5:f1:a0:b2:e9:d0:4b:5a:5c:76:55:88:49:e1:e0: e1:af:a3:ca:51:63:9c:01:d9:05:bb:8d:be:b8:6b:e5:6b:7d: 26:c0:a6:f3 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDMIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNDA4MjYw NTI1NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2OTQ0NzVGQjI0RTBF NDBBQzQ2MUExRTZGQTY2NUFFQzdBMjcyRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL8D8pXjCwFiWHxhV0MAgwf/1tpqZ4jSiAL2StTSCpukEeo+ID 1HZYu9P2qdC8ljZo+Do/sfHqEGFp12rxq6MzD2f4cGEWLN/kgNvYz0W1Kxcu/4I4 qUFT/+FpXS0Y/p17yahvkzI8ew7j6/EOyFkPZCJkdRDZX89xu6jBBl/2ywZ8Xsxb Ggouh/V9Z0g1gqK/0pbdO9YbcclyAYBckzdZ60gd41ISnPhXJJNhPejQi+5Ho9cv T7BDIBv+VI+uf+F4+NGwD9cIe5+x2RToes5WwXDz0dHrIVNMKh+FwOHopwXaWYY4 aPGiNTGatJugIBIy27dUalqAYvY7tnOSU3V9AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQURpRHX7JODkCsRhoeb6ZlrseictgwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL1JwUkhYN0pPRGtD c1Job2ViNlpscnNlaWN0Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNA7u4wDQYJKoZIhvcNAQELBQADggEBAAQ+sgagx7kSvYOUhITQKAHs QUiFmX1sYdRyrmXuPWJAy6EsnJHIe1HbuEeX7w1vnxWkDUdEeeuxR++Ow/EMkEF4 rCX+0tzAqXiLkky0LSCyxhSrdCdmxlXYHYBpovEHTIB0Bhfq7yKvUqSF8+Ka0wX2 232MysPs+bS87n3f4vagQ11GduHV5oQ3HR3IbzrfCZQU85BJ/bW59wMA0sMXt9zV FeAkqO0DWIgBAZK1ifle9RYUHQuMZOfPss7M9EEKnGhiHFF/IUEzw8F7Grkb19Th rHqwll47jYePd/XxoLLp0EtaXHZViEnh4OGvo8pRY5wB2QW7jb64a+VrfSbApvM= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org