$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/4S0Rf3yknLIek5qO167x0s13tY8.roa File: 4S0Rf3yknLIek5qO167x0s13tY8.roa (raw, json) Hash identifier: 5dHW9CQZn66PKSQKZxKegP0pjT+B4S4GvFAby2Ng9AY= Subject key identifier: E1:2D:11:7F:7C:A4:9C:B2:1E:93:9A:8E:D7:AE:F1:D2:CD:77:B5:8F Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CD9 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/4S0Rf3yknLIek5qO167x0s13tY8.roa Signing time: Mon 26 Aug 2024 05:26:17 +0000 ROA not before: Mon 26 Aug 2024 05:26:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.60.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3289 (0xcd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E12D117F7CA49CB21E939A8ED7AEF1D2CD77B58F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d2:a7:13:f5:08:7e:79:7e:29:5f:89:99:14: 49:36:b2:63:cc:de:07:ac:9e:9c:68:fc:e8:a5:cf: a2:38:ff:64:43:26:d2:a2:f9:23:44:bf:87:5e:11: 76:ba:69:a4:82:3a:79:93:d5:84:14:f6:2b:8c:e6: 64:d9:96:36:b6:26:ab:88:2a:88:fa:24:0f:55:c9: 42:3d:e3:d3:3a:0f:16:d0:a5:d4:e2:67:95:ee:6b: 4a:fc:aa:53:4e:a9:28:4f:50:57:12:91:7c:75:9a: 12:a2:de:4b:f3:5f:82:c5:a4:7b:2a:02:66:f7:a1: 65:9b:90:09:4f:81:14:ba:a3:73:29:0f:0c:9d:bf: 3e:16:c8:02:2a:9f:71:8f:12:8b:07:64:6c:3f:ca: 63:07:e4:74:49:33:a5:4d:e0:eb:12:d9:3e:17:d2: 60:81:51:43:1b:bf:38:58:a7:94:74:cb:76:a4:67: 0c:b3:c3:2c:31:f2:5a:0f:be:23:90:a9:36:e8:c4: 23:31:79:59:b6:fa:97:b2:48:04:cb:dd:97:0c:ed: cb:ae:c8:a0:6d:b5:ea:2c:3b:2a:a9:13:7d:06:c8: a2:0a:37:50:96:3f:dd:57:99:92:2d:c3:78:8b:2c: bb:91:c4:f4:73:0d:ae:0d:80:b1:bd:61:47:6e:1d: 2c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:2D:11:7F:7C:A4:9C:B2:1E:93:9A:8E:D7:AE:F1:D2:CD:77:B5:8F X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/4S0Rf3yknLIek5qO167x0s13tY8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.192.0/20 Signature Algorithm: sha256WithRSAEncryption 23:8e:3b:b6:93:fa:1f:19:98:64:f8:e7:82:11:4b:84:16:e7: b9:b1:8f:64:a7:96:91:84:ec:80:5b:27:6b:f1:18:e5:f4:50: 77:7c:71:2e:a1:1d:63:94:91:96:6b:47:b2:02:3f:1a:2f:e4: 59:24:65:09:4c:02:91:1e:25:81:68:f4:a4:37:85:5a:49:30: eb:9a:2a:67:92:e7:02:7c:48:0f:57:4e:81:a8:5c:3b:43:b1: 32:7a:31:0e:24:39:2d:96:67:03:1a:72:6b:e3:cb:db:d4:e0: 1d:f3:be:46:05:6e:73:5a:c5:dd:e9:fb:fc:d8:bf:d8:31:b1: 78:5c:f8:16:99:c4:01:ba:95:1d:6d:af:d7:53:5b:45:79:30: 7c:54:e4:8f:58:dc:e6:22:19:50:77:ad:cb:dd:9d:10:20:0e: 6e:53:83:ef:f2:8e:d9:c7:bf:28:88:ee:36:0a:ad:17:44:c7: 85:a8:f7:0e:65:73:27:fc:07:d0:1d:35:58:1f:b5:34:cf:84: 92:21:9e:0f:39:20:c1:92:ca:bb:91:69:c9:48:0c:0f:8e:a8: 6a:d3:4c:7b:cc:35:4b:76:b0:29:ad:a6:1b:12:57:bb:b9:c7: d2:9d:10:19:9c:31:e5:0f:22:1d:7e:8e:92:ea:f0:14:d8:ed: e3:a6:d1:f9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUxMkQxMTdGN0NBNDlD QjIxRTkzOUE4RUQ3QUVGMUQyQ0Q3N0I1OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCY0qcT9Qh+eX4pX4mZFEk2smPM3gesnpxo/Oilz6I4/2RDJtKi +SNEv4deEXa6aaSCOnmT1YQU9iuM5mTZlja2JquIKoj6JA9VyUI949M6DxbQpdTi Z5Xua0r8qlNOqShPUFcSkXx1mhKi3kvzX4LFpHsqAmb3oWWbkAlPgRS6o3MpDwyd vz4WyAIqn3GPEosHZGw/ymMH5HRJM6VN4OsS2T4X0mCBUUMbvzhYp5R0y3akZwyz wywx8loPviOQqTboxCMxeVm2+peySATL3ZcM7cuuyKBtteosOyqpE30GyKIKN1CW P91XmZItw3iLLLuRxPRzDa4NgLG9YUduHSy1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU4S0Rf3yknLIek5qO167x0s13tY8wHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS80UzBSZjN5a25MSWVrNXFPMTY3 eDBzMTN0WTgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTzA MA0GCSqGSIb3DQEBCwUAA4IBAQAjjju2k/ofGZhk+OeCEUuEFue5sY9kp5aRhOyA Wydr8Rjl9FB3fHEuoR1jlJGWa0eyAj8aL+RZJGUJTAKRHiWBaPSkN4VaSTDrmipn kucCfEgPV06BqFw7Q7EyejEOJDktlmcDGnJr48vb1OAd875GBW5zWsXd6fv82L/Y MbF4XPgWmcQBupUdba/XU1tFeTB8VOSPWNzmIhlQd63L3Z0QIA5uU4Pv8o7Zx78o iO42Cq0XRMeFqPcOZXMn/AfQHTVYH7U0z4SSIZ4POSDBksq7kWnJSAwPjqhq00x7 zDVLdrApraYbEle7ucfSnRAZnDHlDyIdfo6S6vAU2O3jptH5 -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:13 2024 by rpki-client on console-fra.rpki-client.org