$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/lfiWbqhCgsAKes-UVw2VPz9jemU.roa File: lfiWbqhCgsAKes-UVw2VPz9jemU.roa (raw, json) Hash identifier: HZTMIkx6bkhkRZfw4OKXmtgE2bhb6wwpYgDEUJyMdbY= Subject key identifier: 95:F8:96:6E:A8:42:82:C0:0A:7A:CF:94:57:0D:95:3F:3F:63:7A:65 Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0CBB Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/lfiWbqhCgsAKes-UVw2VPz9jemU.roa Signing time: Mon 26 Aug 2024 05:25:53 +0000 ROA not before: Mon 26 Aug 2024 05:25:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:e168::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3259 (0xcbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Aug 26 05:25:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=95F8966EA84282C00A7ACF94570D953F3F637A65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3d:a8:5d:d3:04:fd:b6:10:f8:9e:f5:4c:25: 19:c7:bf:fe:0a:e8:cf:10:5e:d1:48:ee:83:f3:66: 09:57:74:eb:c3:74:86:5c:10:84:6d:11:b7:4a:89: 77:82:14:db:94:cf:df:89:a7:40:7e:90:f7:1b:92: 9e:28:af:d3:93:fc:09:31:54:79:fc:ae:3e:a6:b9: 26:1d:03:d9:01:f5:b7:b0:70:a1:c1:20:ff:33:20: d2:9f:ea:11:27:c9:2f:46:65:50:13:bd:40:dd:4d: 92:50:8c:f7:48:59:46:76:ce:bc:03:ee:79:02:58: 46:73:67:f1:1e:fc:e3:1a:bf:c8:51:0f:7b:77:8e: 05:d4:f0:df:a0:78:48:fa:d0:95:ca:65:50:9e:4e: 27:1e:53:4e:77:6c:86:d9:31:9b:86:74:60:98:fe: 40:ff:76:1c:80:18:bf:5c:07:34:f5:48:d5:f9:d4: c2:d4:da:42:df:c0:b1:4b:95:ed:6a:00:7c:c7:51: 8f:bc:30:a8:37:74:90:59:a3:21:fb:eb:a6:dc:56: 57:79:b8:7c:97:af:c4:e1:24:7c:be:64:3e:94:01: 2a:b6:7e:b7:31:26:48:af:03:61:dc:45:02:35:a2: 63:e3:04:e2:a9:1c:df:e6:82:60:68:a3:e7:ae:46: 4a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:F8:96:6E:A8:42:82:C0:0A:7A:CF:94:57:0D:95:3F:3F:63:7A:65 X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/lfiWbqhCgsAKes-UVw2VPz9jemU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:e168::/48 Signature Algorithm: sha256WithRSAEncryption 5e:6a:5e:46:79:8c:1c:36:cc:8b:eb:03:52:c1:ac:b7:5d:77: 3b:8e:cc:15:37:dc:67:56:97:4f:99:61:97:47:58:84:c5:3b: 8f:f3:51:87:e1:dc:2a:96:17:4c:70:be:8c:11:5f:5b:42:db: 31:c9:ea:9e:ff:ec:e6:8d:e6:45:91:62:6e:ae:81:dc:37:53: b6:e0:64:d6:cc:e9:2c:3f:02:af:b4:df:39:60:04:2e:40:38: ef:8a:5a:34:86:12:c6:f2:92:5a:d2:48:de:3d:b4:e7:9e:53: fb:b9:6c:eb:2b:7b:a8:36:2a:02:2c:5a:86:ab:2e:9a:70:5a: 75:61:dc:97:56:0c:d2:c1:27:e9:40:2a:14:fa:ea:b2:89:ee: d6:1f:d6:e8:24:02:c6:6c:06:48:69:76:61:c1:a8:dc:ec:ef: b3:b0:09:dc:84:4b:7e:1d:59:18:7a:ee:8c:17:2f:62:53:28: 13:47:91:ea:6d:a5:78:55:40:5a:e7:42:fa:2d:bf:a4:0b:fb: 0f:a0:88:d9:4c:94:e8:9e:2b:d2:15:ac:22:9e:a3:8b:26:e0: d0:73:a7:3e:bc:a3:9b:64:d7:40:76:a2:74:19:01:9f:56:b3: 0b:1b:45:b6:82:90:12:0d:b3:4d:dc:3e:e2:9e:a3:3d:ff:eb: 4e:61:2b:3d -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDLswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNDA4MjYw NTI1NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1Rjg5NjZFQTg0Mjgy QzAwQTdBQ0Y5NDU3MEQ5NTNGM0Y2MzdBNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjPahd0wT9thD4nvVMJRnHv/4K6M8QXtFI7oPzZglXdOvDdIZc EIRtEbdKiXeCFNuUz9+Jp0B+kPcbkp4or9OT/AkxVHn8rj6muSYdA9kB9bewcKHB IP8zINKf6hEnyS9GZVATvUDdTZJQjPdIWUZ2zrwD7nkCWEZzZ/Ee/OMav8hRD3t3 jgXU8N+geEj60JXKZVCeTiceU053bIbZMZuGdGCY/kD/dhyAGL9cBzT1SNX51MLU 2kLfwLFLle1qAHzHUY+8MKg3dJBZoyH766bcVld5uHyXr8ThJHy+ZD6UASq2frcx JkivA2HcRQI1omPjBOKpHN/mgmBoo+euRkopAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUlfiWbqhCgsAKes+UVw2VPz9jemUwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL2xmaVdicWhDZ3NB S2VzLVVWdzJWUHo5amVtVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNA4WgwDQYJKoZIhvcNAQELBQADggEBAF5qXkZ5jBw2zIvrA1LBrLdd dzuOzBU33GdWl0+ZYZdHWITFO4/zUYfh3CqWF0xwvowRX1tC2zHJ6p7/7OaN5kWR Ym6ugdw3U7bgZNbM6Sw/Aq+03zlgBC5AOO+KWjSGEsbyklrSSN49tOeeU/u5bOsr e6g2KgIsWoarLppwWnVh3JdWDNLBJ+lAKhT66rKJ7tYf1ugkAsZsBkhpdmHBqNzs 77OwCdyES34dWRh67owXL2JTKBNHkeptpXhVQFrnQvotv6QL+w+giNlMlOieK9IV rCKeo4sm4NBzpz68o5tk10B2onQZAZ9WswsbRbaCkBINs03cPuKeoz3/605hKz0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org