$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ayHkt3mtTWx33a2gGfdwSuNPqE0.roa File: ayHkt3mtTWx33a2gGfdwSuNPqE0.roa (raw, json) Hash identifier: AeAKx32NXK9HdEt+tGyHf67pkPv9djpMZd3GDevnyUk= Subject key identifier: 6B:21:E4:B7:79:AD:4D:6C:77:DD:AD:A0:19:F7:70:4A:E3:4F:A8:4D Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CD5 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ayHkt3mtTWx33a2gGfdwSuNPqE0.roa Signing time: Mon 26 Aug 2024 05:26:16 +0000 ROA not before: Mon 26 Aug 2024 05:26:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 203.121.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3285 (0xcd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6B21E4B779AD4D6C77DDADA019F7704AE34FA84D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5e:1d:da:80:3a:ca:11:4b:21:15:e6:a8:06: 27:29:30:50:ca:0d:9a:54:8b:75:d0:d6:7a:9c:23: 1a:a3:18:29:63:b3:f5:d0:56:51:50:b4:51:c7:ef: f7:a1:c9:6f:10:5a:98:b5:38:29:56:95:48:35:1f: 86:b0:75:dd:b1:db:b9:1d:4b:f1:b1:27:af:bf:26: 80:f7:b5:6d:5a:b3:c5:54:e5:4b:26:30:ad:e4:31: 5e:19:ae:74:b1:d9:c5:f3:21:a4:6b:75:bd:d7:a6: 27:05:c9:98:07:a2:5e:da:8b:33:4c:56:57:e7:0f: c4:18:e3:b4:f2:8f:91:52:7e:f5:d9:8b:e2:83:20: 59:2c:f1:a1:42:cb:ae:c8:9d:7b:88:73:1c:f1:7b: bd:5c:8f:34:e8:11:35:d5:00:73:b2:4a:2e:ac:7d: 19:8b:85:60:dd:67:58:e2:93:b1:d5:00:e4:13:9e: 7b:23:cb:44:fe:63:33:d9:48:e1:95:0a:69:f5:ee: cc:b1:fb:b5:4e:87:ce:f2:a9:33:77:82:02:23:76: 76:9b:2c:b3:ae:03:ad:b7:05:39:be:21:c8:e7:df: b6:f0:b1:29:b8:e5:c7:51:83:2e:2c:26:84:06:2f: b7:27:79:b5:8e:4f:2e:74:3e:12:56:6d:ee:1a:65: 85:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:21:E4:B7:79:AD:4D:6C:77:DD:AD:A0:19:F7:70:4A:E3:4F:A8:4D X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/ayHkt3mtTWx33a2gGfdwSuNPqE0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.121.240.0/20 Signature Algorithm: sha256WithRSAEncryption 0b:a3:b4:10:9f:ae:9e:c3:97:a2:6e:91:b1:40:3a:ee:02:34: 2d:6a:00:60:6d:d1:07:6f:dc:17:e8:8b:2f:0e:69:38:e0:b3: 0e:44:f8:43:25:f5:a0:3e:32:5b:34:94:9f:79:a9:ab:bb:2f: 51:d9:53:2d:de:23:ae:16:c8:bb:6f:af:8e:de:4b:18:6b:79: 92:fc:78:9e:05:52:28:c1:89:24:17:25:71:3e:07:7a:7a:4d: 07:55:53:d2:1c:b3:34:3f:38:21:6e:e6:08:67:7d:29:cc:8c: a2:28:22:65:c5:39:e1:7c:a4:27:19:67:02:f7:45:17:99:ba: 3b:de:5a:73:3d:f8:cd:f0:57:d3:e5:eb:3a:3b:3b:21:15:07: 7d:bf:3b:ef:f9:b5:3f:16:24:be:a5:ba:19:c0:c7:80:c6:b6: e8:83:0d:28:7d:3f:90:17:20:9a:75:ad:55:16:5b:37:50:7c: 52:6b:45:45:62:61:0c:30:11:32:55:03:f8:5c:2d:98:98:4f: eb:f8:bb:0a:1c:bb:e1:ef:b9:32:f0:54:ef:48:26:4d:8e:14: 32:41:22:34:c2:23:18:d3:65:7d:1a:a1:7f:95:73:c5:c5:2e: 45:d6:ba:53:19:e9:33:5e:32:59:43:fc:a5:e2:5e:89:f0:31: bd:b8:75:a3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCMjFFNEI3NzlBRDRE NkM3N0REQURBMDE5Rjc3MDRBRTM0RkE4NEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvXh3agDrKEUshFeaoBicpMFDKDZpUi3XQ1nqcIxqjGCljs/XQ VlFQtFHH7/ehyW8QWpi1OClWlUg1H4awdd2x27kdS/GxJ6+/JoD3tW1as8VU5Usm MK3kMV4ZrnSx2cXzIaRrdb3XpicFyZgHol7aizNMVlfnD8QY47Tyj5FSfvXZi+KD IFks8aFCy67InXuIcxzxe71cjzToETXVAHOySi6sfRmLhWDdZ1jik7HVAOQTnnsj y0T+YzPZSOGVCmn17syx+7VOh87yqTN3ggIjdnabLLOuA623BTm+Icjn37bwsSm4 5cdRgy4sJoQGL7cnebWOTy50PhJWbe4aZYULAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUayHkt3mtTWx33a2gGfdwSuNPqE0wHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9heUhrdDNtdFRXeDMzYTJnR2Zk d1N1TlBxRTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy3nw MA0GCSqGSIb3DQEBCwUAA4IBAQALo7QQn66ew5eibpGxQDruAjQtagBgbdEHb9wX 6IsvDmk44LMORPhDJfWgPjJbNJSfeamruy9R2VMt3iOuFsi7b6+O3ksYa3mS/Hie BVIowYkkFyVxPgd6ek0HVVPSHLM0PzghbuYIZ30pzIyiKCJlxTnhfKQnGWcC90UX mbo73lpzPfjN8FfT5es6OzshFQd9vzvv+bU/FiS+pboZwMeAxrbogw0ofT+QFyCa da1VFls3UHxSa0VFYmEMMBEyVQP4XC2YmE/r+LsKHLvh77ky8FTvSCZNjhQyQSI0 wiMY02V9GqF/lXPFxS5F1rpTGekzXjJZQ/yl4l6J8DG9uHWj -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org