$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m3T8czL5hfiwqlgv7_uCSawg6Zo.roa File: m3T8czL5hfiwqlgv7_uCSawg6Zo.roa (raw, json) Hash identifier: 9lSVzsjyKnMFhabRTDECrO03QpWpygadi0KwP1Y5amE= Subject key identifier: 9B:74:FC:73:32:F9:85:F8:B0:AA:58:2F:EF:FB:82:49:AC:20:E9:9A Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CCC Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m3T8czL5hfiwqlgv7_uCSawg6Zo.roa Signing time: Mon 26 Aug 2024 05:26:14 +0000 ROA not before: Mon 26 Aug 2024 05:26:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 203.121.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3276 (0xccc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9B74FC7332F985F8B0AA582FEFFB8249AC20E99A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ed:db:a7:87:98:37:15:86:6f:cf:af:25:1f: 82:5a:a9:e2:28:0a:a8:c2:6b:1e:a6:e8:e4:f8:22: 6a:58:9b:b0:e4:a2:8d:f4:e2:75:ad:4d:9f:91:af: d4:0f:c2:4b:ec:84:c3:ae:c2:fd:b4:42:37:e3:02: 48:42:29:51:56:62:03:fa:5b:0b:bd:0d:1d:ba:45: 09:3e:95:57:11:98:24:f2:2d:16:db:4b:fe:28:e1: 6e:23:29:9c:eb:7a:4a:e7:5c:14:6c:9e:63:9e:9f: 59:49:2e:d3:d6:22:89:9a:df:1c:97:26:52:da:c3: 71:e8:7c:d4:80:a4:10:e7:b9:64:74:66:dc:93:b3: 24:cd:3f:53:bf:97:ef:3f:67:82:29:25:98:29:40: 2c:3b:6e:7a:00:dd:9f:e5:fa:89:d0:0b:1c:20:05: f8:ed:8a:c5:0d:26:87:ca:0a:5c:f8:2c:66:7e:56: 17:e2:8f:18:7a:49:2d:34:81:ea:6c:28:24:a7:0b: d6:b6:84:85:28:14:c5:3d:e5:07:07:f7:0f:d7:9e: 35:79:43:d2:b6:17:da:3a:1a:38:8e:e4:8f:c0:3f: c6:73:f6:1f:5e:b7:a2:77:bf:6e:aa:8f:f8:36:3b: 97:f2:01:d9:c9:7c:5a:f9:b6:1e:0c:c5:31:63:4f: 8b:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:74:FC:73:32:F9:85:F8:B0:AA:58:2F:EF:FB:82:49:AC:20:E9:9A X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/m3T8czL5hfiwqlgv7_uCSawg6Zo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.121.224.0/20 Signature Algorithm: sha256WithRSAEncryption 06:4e:db:06:7c:23:6e:f9:6c:d8:37:8a:03:6a:41:b8:af:41: 30:98:54:74:fd:31:42:ef:50:38:31:0a:96:37:71:40:d9:9a: 32:aa:be:27:70:99:eb:8e:74:02:7f:63:d3:bd:1f:b2:79:e2: 3d:e2:2b:e6:f5:41:b5:61:d5:f1:66:38:c2:26:d1:18:ca:a9: e4:29:6e:01:bc:cf:ec:87:6d:e5:3a:38:7f:5b:40:45:35:f1: 42:3f:93:47:7c:71:c8:1f:c4:01:52:f9:ee:7d:d4:e4:e3:f5: 73:ed:20:2f:7b:71:b4:46:31:6f:79:b8:bb:0e:98:fb:c2:fe: f9:37:72:7b:a8:d3:d3:85:f3:b5:15:10:8d:1a:63:24:9a:b3: ae:3b:13:c4:50:19:95:b5:43:c6:05:23:12:97:be:0c:88:fd: df:ce:38:7f:85:50:e7:99:47:a3:5e:c9:4c:aa:c9:30:87:68: dc:04:86:80:8d:57:bc:d7:eb:f3:07:e7:07:72:d7:32:38:fe: e0:d2:22:02:ae:b3:d5:7d:0b:b2:45:f1:06:4d:33:e8:54:96: 22:f5:06:7a:2c:4c:be:85:d1:cf:44:7b:36:f0:a9:6c:2a:35: b5:e6:af:d9:eb:70:d0:d5:ab:24:f8:cf:d1:cd:f8:83:47:cf: 6c:f8:26:74 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCNzRGQzczMzJGOTg1 RjhCMEFBNTgyRkVGRkI4MjQ5QUMyMEU5OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC27dunh5g3FYZvz68lH4JaqeIoCqjCax6m6OT4ImpYm7Dkoo30 4nWtTZ+Rr9QPwkvshMOuwv20QjfjAkhCKVFWYgP6Wwu9DR26RQk+lVcRmCTyLRbb S/4o4W4jKZzrekrnXBRsnmOen1lJLtPWIoma3xyXJlLaw3HofNSApBDnuWR0ZtyT syTNP1O/l+8/Z4IpJZgpQCw7bnoA3Z/l+onQCxwgBfjtisUNJofKClz4LGZ+Vhfi jxh6SS00gepsKCSnC9a2hIUoFMU95QcH9w/XnjV5Q9K2F9o6GjiO5I/AP8Zz9h9e t6J3v26qj/g2O5fyAdnJfFr5th4MxTFjT4tpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUm3T8czL5hfiwqlgv7/uCSawg6ZowHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9tM1Q4Y3pMNWhmaXdxbGd2N191 Q1Nhd2c2Wm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEy3ng MA0GCSqGSIb3DQEBCwUAA4IBAQAGTtsGfCNu+WzYN4oDakG4r0EwmFR0/TFC71A4 MQqWN3FA2Zoyqr4ncJnrjnQCf2PTvR+yeeI94ivm9UG1YdXxZjjCJtEYyqnkKW4B vM/sh23lOjh/W0BFNfFCP5NHfHHIH8QBUvnufdTk4/Vz7SAve3G0RjFvebi7Dpj7 wv75N3J7qNPThfO1FRCNGmMkmrOuOxPEUBmVtUPGBSMSl74MiP3fzjh/hVDnmUej XslMqskwh2jcBIaAjVe81+vzB+cHctcyOP7g0iICrrPVfQuyRfEGTTPoVJYi9QZ6 LEy+hdHPRHs28KlsKjW15q/Z63DQ1ask+M/RzfiDR89s+CZ0 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org