$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/JVerigVF4n_XwzXVKHNPQ8rw7w0.roa File: JVerigVF4n_XwzXVKHNPQ8rw7w0.roa (raw, json) Hash identifier: BYbkN7jhQmiiK3uq6LDzPTuVQnZpX9lZlZP+utw9I9w= Subject key identifier: 25:57:AB:8A:05:45:E2:7F:D7:C3:35:D5:28:73:4F:43:CA:F0:EF:0D Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CDB Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/JVerigVF4n_XwzXVKHNPQ8rw7w0.roa Signing time: Mon 26 Aug 2024 05:26:18 +0000 ROA not before: Mon 26 Aug 2024 05:26:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 61.60.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3291 (0xcdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2557AB8A0545E27FD7C335D528734F43CAF0EF0D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:41:96:e2:15:56:c6:04:bd:95:12:30:1c:de: c3:85:14:39:0a:24:df:85:4d:9b:e3:d0:89:c7:ec: a4:37:a4:d6:98:6f:73:f3:17:8e:49:83:5e:52:14: 02:62:e6:66:e3:87:46:ef:be:76:a1:eb:49:b0:d0: 78:d0:ec:71:81:5b:b0:89:1f:9d:da:93:58:47:24: 59:56:11:02:15:72:6e:83:32:57:47:87:c7:68:94: 82:91:e2:51:37:79:88:1e:47:71:45:6d:7e:b2:80: 46:de:1c:71:43:95:e6:25:53:45:03:06:08:4a:af: 3b:b4:f3:cc:a4:a5:c7:75:67:1f:8f:b9:e2:e3:d2: 8a:7d:48:d5:32:7f:83:4c:44:4c:c8:8b:79:f8:d5: 30:03:ce:c7:35:d4:97:31:da:70:15:5a:3a:cf:75: 0a:6a:e5:4e:d8:a2:b4:78:48:80:db:80:81:23:06: 55:8f:04:d9:71:cc:ad:85:fc:ee:a8:2a:3a:8a:be: ea:46:14:69:b5:50:cc:ba:0d:f6:a4:ad:17:68:e2: 90:06:c0:ed:95:34:99:f5:e2:39:f2:f2:3a:cc:8a: 0f:97:6d:89:c3:db:4f:35:32:e5:09:f1:19:71:2f: 33:a0:bc:1a:c7:b4:b2:a5:44:7c:4c:97:84:bf:fa: 28:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:57:AB:8A:05:45:E2:7F:D7:C3:35:D5:28:73:4F:43:CA:F0:EF:0D X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/JVerigVF4n_XwzXVKHNPQ8rw7w0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.192.0/20 Signature Algorithm: sha256WithRSAEncryption 7c:dd:46:64:1a:6a:a7:46:0b:ab:49:2b:44:30:33:f6:5c:a1: 78:2b:a3:54:1b:5e:4e:bc:c8:d2:02:14:50:d1:2b:5a:50:f0: 76:f5:91:fd:c6:97:8d:c6:be:ec:5a:f8:9d:7b:c2:bb:e4:7c: 77:e3:ee:bc:92:39:c4:fa:50:04:cf:77:09:57:49:1d:53:35: 6e:f1:d1:9c:c2:a3:c0:e5:99:46:50:3c:b7:e5:d6:6b:5a:89: 2b:0e:36:24:c6:56:df:53:50:8e:6c:93:75:af:8c:59:3d:d0: 99:62:8a:31:d7:ed:b5:bd:6d:30:c1:91:39:98:cf:c8:00:66: af:3e:c0:2d:b5:39:3d:8d:a6:ec:46:bc:e4:59:e9:f7:3e:8c: 0f:b4:71:90:07:20:92:ef:5a:09:36:a8:77:3b:3c:8a:ea:85: f0:11:01:4b:6c:e1:60:54:70:b3:11:fc:fe:fe:0c:d1:9e:82: 15:2b:2d:a5:26:25:53:1b:5c:2a:ff:03:68:3a:9e:7e:98:90: 38:70:fe:bc:9a:b0:bd:5d:cc:5d:70:cb:89:85:11:92:15:29: 94:6f:f1:2e:9c:b2:7b:d0:8d:16:ee:83:31:ef:03:25:78:0c: f3:cf:43:5b:63:d4:8c:00:73:53:ad:cf:3a:fa:42:46:ba:1d: 76:16:e2:ee -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI1NTdBQjhBMDU0NUUy N0ZEN0MzMzVENTI4NzM0RjQzQ0FGMEVGMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWQZbiFVbGBL2VEjAc3sOFFDkKJN+FTZvj0InH7KQ3pNaYb3Pz F45Jg15SFAJi5mbjh0bvvnah60mw0HjQ7HGBW7CJH53ak1hHJFlWEQIVcm6DMldH h8dolIKR4lE3eYgeR3FFbX6ygEbeHHFDleYlU0UDBghKrzu088ykpcd1Zx+PueLj 0op9SNUyf4NMREzIi3n41TADzsc11Jcx2nAVWjrPdQpq5U7YorR4SIDbgIEjBlWP BNlxzK2F/O6oKjqKvupGFGm1UMy6DfakrRdo4pAGwO2VNJn14jny8jrMig+XbYnD 2081MuUJ8RlxLzOgvBrHtLKlRHxMl4S/+ij1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJVerigVF4n/XwzXVKHNPQ8rw7w0wHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9KVmVyaWdWRjRuX1h3elhWS0hO UFE4cnc3dzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTzA MA0GCSqGSIb3DQEBCwUAA4IBAQB83UZkGmqnRgurSStEMDP2XKF4K6NUG15OvMjS AhRQ0StaUPB29ZH9xpeNxr7sWvide8K75Hx34+68kjnE+lAEz3cJV0kdUzVu8dGc wqPA5ZlGUDy35dZrWokrDjYkxlbfU1CObJN1r4xZPdCZYoox1+21vW0wwZE5mM/I AGavPsAttTk9jabsRrzkWen3PowPtHGQByCS71oJNqh3OzyK6oXwEQFLbOFgVHCz Efz+/gzRnoIVKy2lJiVTG1wq/wNoOp5+mJA4cP68mrC9XcxdcMuJhRGSFSmUb/Eu nLJ70I0W7oMx7wMleAzzz0NbY9SMAHNTrc86+kJGuh12FuLu -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org