$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/2J6y7QQyUuPDuThPxITvhchhvGw.roa File: 2J6y7QQyUuPDuThPxITvhchhvGw.roa (raw, json) Hash identifier: cquIH1YoewPPhtc+UC5q2xjer+XJFiF9X9ar/1bNark= Subject key identifier: D8:9E:B2:ED:04:32:52:E3:C3:B9:38:4F:C4:84:EF:85:C8:61:BC:6C Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CDD Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/2J6y7QQyUuPDuThPxITvhchhvGw.roa Signing time: Mon 26 Aug 2024 05:26:18 +0000 ROA not before: Mon 26 Aug 2024 05:26:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 150.129.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D89EB2ED043252E3C3B9384FC484EF85C861BC6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:cc:38:9b:5a:03:07:f2:5e:91:e2:ca:89:c4: 38:e0:0c:6c:44:50:98:a5:24:f4:07:4a:7a:64:d8: 1c:0f:99:4d:3f:b6:61:3a:3c:95:a0:33:92:3b:24: c2:6c:2b:9d:95:fd:5f:37:eb:ac:8d:6c:c1:5f:4f: 2d:dc:a5:72:eb:1e:1f:3f:b7:db:cf:32:2c:98:ce: e1:34:19:82:a9:c4:3a:a8:e1:f1:9c:25:9c:57:76: bf:2a:80:e3:2e:44:e5:d9:93:1f:21:68:35:d7:b1: 16:87:8a:e9:32:20:70:7e:b0:85:fb:9f:8e:68:e1: ff:60:7a:8b:e2:5b:c8:20:ed:af:48:fc:be:da:b1: b9:df:d0:53:42:e9:0b:86:f3:2c:7d:56:5c:10:17: 3d:b2:ad:c0:4c:c6:67:da:d5:8c:4a:5f:bf:1d:91: 2a:e5:5b:c5:43:3d:fc:7f:7e:1d:fa:34:a8:30:cb: a0:c1:de:e6:85:7d:15:31:38:1c:53:c9:5f:07:47: 37:c1:9a:14:c9:6f:03:d6:8e:e1:a6:9b:a1:75:cd: b5:0c:6e:55:eb:38:3d:de:62:8a:fd:0f:28:c6:13: a7:0a:07:f9:8d:29:46:0d:74:7e:77:b5:ee:bc:c9: ee:97:63:ad:fa:ad:c8:7f:3f:f1:70:26:8a:d6:45: 49:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:9E:B2:ED:04:32:52:E3:C3:B9:38:4F:C4:84:EF:85:C8:61:BC:6C X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/2J6y7QQyUuPDuThPxITvhchhvGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.129.228.0/22 Signature Algorithm: sha256WithRSAEncryption 67:f8:c7:64:a9:c0:a0:b3:20:2d:20:50:fe:2f:5f:68:2c:fb: 13:10:3a:35:e0:7c:db:56:56:a6:a6:88:d0:76:af:5e:4c:8e: 94:b6:b7:79:2c:47:1c:05:14:59:fd:cb:4f:6a:61:74:78:7c: 07:0b:34:32:09:59:a6:10:bf:e1:4f:31:a7:13:8c:a6:6e:8f: c3:92:73:da:f4:8e:e0:9f:1f:6c:8b:18:78:a3:9f:35:96:fd: 5b:b6:32:89:38:d2:88:57:71:b0:ac:fd:7c:ee:c8:87:b4:18: c2:34:30:b9:11:e4:f6:55:7a:fb:23:1a:87:8f:05:04:07:2d: 22:9b:e4:c6:81:87:29:28:5d:1f:98:0c:56:a6:74:63:4d:53: 8e:a5:f1:3c:a8:20:16:27:5a:e9:a5:09:86:c0:fe:85:33:8a: b6:e2:f9:ed:f5:a2:8c:3b:0f:83:f9:4a:3b:25:6a:67:a4:87: 13:ea:e1:7b:d7:bc:13:82:dc:ec:63:57:9c:43:e0:c3:cf:b8: ca:d1:3f:e2:99:13:5d:7e:35:b9:41:a6:28:15:10:31:54:7d: 2a:b7:ac:0a:f4:8a:51:bf:e4:ed:1b:c0:c4:ad:01:46:33:a0: c3:be:d5:91:1f:8b:0e:ea:18:ac:ec:bd:24:a6:9a:26:cc:5e: 06:8a:a2:68 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4OUVCMkVEMDQzMjUy RTNDM0I5Mzg0RkM0ODRFRjg1Qzg2MUJDNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtzDibWgMH8l6R4sqJxDjgDGxEUJilJPQHSnpk2BwPmU0/tmE6 PJWgM5I7JMJsK52V/V8366yNbMFfTy3cpXLrHh8/t9vPMiyYzuE0GYKpxDqo4fGc JZxXdr8qgOMuROXZkx8haDXXsRaHiukyIHB+sIX7n45o4f9geoviW8gg7a9I/L7a sbnf0FNC6QuG8yx9VlwQFz2yrcBMxmfa1YxKX78dkSrlW8VDPfx/fh36NKgwy6DB 3uaFfRUxOBxTyV8HRzfBmhTJbwPWjuGmm6F1zbUMblXrOD3eYor9DyjGE6cKB/mN KUYNdH53te68ye6XY636rch/P/FwJorWRUmfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU2J6y7QQyUuPDuThPxITvhchhvGwwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS8ySjZ5N1FReVV1UER1VGhQeElU dmhjaGh2R3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCloHk MA0GCSqGSIb3DQEBCwUAA4IBAQBn+MdkqcCgsyAtIFD+L19oLPsTEDo14HzbVlam pojQdq9eTI6Utrd5LEccBRRZ/ctPamF0eHwHCzQyCVmmEL/hTzGnE4ymbo/DknPa 9I7gnx9sixh4o581lv1btjKJONKIV3GwrP187siHtBjCNDC5EeT2VXr7IxqHjwUE By0im+TGgYcpKF0fmAxWpnRjTVOOpfE8qCAWJ1rppQmGwP6FM4q24vnt9aKMOw+D +Uo7JWpnpIcT6uF717wTgtzsY1ecQ+DDz7jK0T/imRNdfjW5QaYoFRAxVH0qt6wK 9IpRv+TtG8DErQFGM6DDvtWRH4sO6his7L0kppomzF4GiqJo -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:34 2024 by rpki-client on console-fra.rpki-client.org