$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa File: 0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa (raw, json) Hash identifier: lCvUeOqFD2pUTSaQvD3Nuj//MJQ78KbbLWQrEncG7tY= Subject key identifier: D1:D1:7A:33:1E:66:9D:F2:53:3A:E1:2E:B0:25:51:59:DF:86:F2:CE Certificate issuer: /CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718 Certificate serial: 12 Authority key identifier: EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa Signing time: Tue 27 Aug 2024 13:21:55 +0000 ROA not before: Tue 27 Aug 2024 13:21:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 204844 IP address blocks: 160.30.99.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 07:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718 Validity Not Before: Aug 27 13:21:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D1D17A331E669DF2533AE12EB0255159DF86F2CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a4:b5:59:ac:2c:4a:1e:ad:9e:98:ee:54:6b: 9d:42:82:3c:c9:11:26:c9:02:d3:6a:bd:c0:41:08: 6c:95:e6:51:e8:80:42:27:34:1e:5d:31:81:49:f0: 09:84:0e:af:d4:0c:f6:2b:da:7a:7f:ce:79:ce:c0: 63:c5:05:1a:9f:32:de:06:14:7d:5c:2e:90:25:52: f9:b3:6a:d2:5f:55:21:12:48:93:27:f2:e0:24:86: 81:cf:73:0f:e6:1a:3e:4c:13:10:6b:d1:b6:e7:b5: 4a:ce:20:a6:42:34:11:c5:8d:d1:d8:c8:7a:56:83: 54:04:10:a0:c0:37:11:7a:5d:7e:9e:33:68:c8:99: 51:d9:d8:15:37:29:a4:1c:23:c3:81:e1:1c:d1:df: 4e:4d:df:64:72:63:2d:89:d2:ea:5b:51:79:26:20: 2a:2e:14:f1:44:81:28:6b:fc:66:90:d9:03:19:f4: 69:f2:36:23:75:98:88:9d:1d:90:de:f2:ab:94:9f: a0:fd:8b:20:4c:66:46:11:03:92:d5:71:01:26:b0: ef:6c:b1:67:1d:6a:ae:1b:b2:44:69:72:f6:ed:bb: c1:e9:de:bd:39:f1:27:45:89:17:e8:f9:21:fd:a1: 4d:ef:2d:d3:31:a0:80:a8:b9:75:c9:e9:62:e5:66: d5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:D1:7A:33:1E:66:9D:F2:53:3A:E1:2E:B0:25:51:59:DF:86:F2:CE X509v3 Authority Key Identifier: keyid:EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.99.0/24 Signature Algorithm: sha256WithRSAEncryption 87:e9:21:2e:82:9e:2f:fa:2a:00:0b:56:ad:88:15:05:8d:b8: 34:1e:54:bc:27:ce:cd:26:83:ff:b6:4d:ca:bb:07:e5:66:51: b2:6d:86:23:f4:ae:3a:27:84:c2:79:91:b4:d7:f3:de:e7:42: a9:54:b3:65:90:08:65:65:09:57:a4:94:bc:5b:ec:06:f1:b6: a9:89:78:d1:60:2c:d5:58:da:21:bf:e0:13:2d:bf:e4:05:5a: e2:02:e0:67:c3:53:33:63:9d:ac:4e:8d:8c:bb:f1:39:13:48: 68:69:2c:c9:6a:54:5d:92:a7:05:93:ff:a6:bd:98:7a:db:84: 27:91:ff:af:67:a1:7d:d0:e5:30:20:09:dd:03:8e:5f:ad:27: ac:50:c8:2e:64:08:c9:1f:4b:ed:88:3f:86:75:58:e6:01:41: d5:3f:30:a7:81:7f:61:99:8d:13:d4:19:2a:57:16:36:c9:ed: 6c:6a:8d:c0:74:27:8a:f4:c7:aa:a6:62:3c:22:74:8f:c7:52: 8d:b3:8f:ec:81:ec:79:27:46:e2:20:e7:ba:2b:16:19:a0:e8: 47:8c:30:75:72:1b:cd:10:e8:83:e3:24:c7:92:b1:35:03:76: 69:96:aa:83:de:1a:48:9c:2a:52:6c:07:4a:a8:29:5b:d4:dd: 37:0f:f3:d6 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIBEjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTE5 NDFDMzdCRDFFMkNGMTI1MTJGOThBQjM2NkMyOURBNzlCNzE4MB4XDTI0MDgyNzEz MjE1NVoXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoRDFEMTdBMzMxRTY2OURG MjUzM0FFMTJFQjAyNTUxNTlERjg2RjJDRTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALOktVmsLEoerZ6Y7lRrnUKCPMkRJskC02q9wEEIbJXmUeiAQic0 Hl0xgUnwCYQOr9QM9ivaen/Oec7AY8UFGp8y3gYUfVwukCVS+bNq0l9VIRJIkyfy 4CSGgc9zD+YaPkwTEGvRtue1Ss4gpkI0EcWN0djIelaDVAQQoMA3EXpdfp4zaMiZ UdnYFTcppBwjw4HhHNHfTk3fZHJjLYnS6ltReSYgKi4U8USBKGv8ZpDZAxn0afI2 I3WYiJ0dkN7yq5SfoP2LIExmRhEDktVxASaw72yxZx1qrhuyRGly9u27wenevTnx J0WJF+j5If2hTe8t0zGggKi5dcnpYuVm1Z0CAwEAAaOCAe4wggHqMB0GA1UdDgQW BBTR0XozHmad8lM64S6wJVFZ34byzjAfBgNVHSMEGDAWgBTuGUHDe9HizxJRL5ir Nmwp2nm3GDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSU1QTEUv N2hsQnczdlI0czhTVVMtWXF6WnNLZHA1dHhnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS83aGxCdzN2UjRzOFNVUy1ZcXpac0tkcDV0eGcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSU1QTEUvMGRGNk14NW1uZkpUT3VFdXND VlJXZC1HOHM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAKAe YzANBgkqhkiG9w0BAQsFAAOCAQEAh+khLoKeL/oqAAtWrYgVBY24NB5UvCfOzSaD /7ZNyrsH5WZRsm2GI/SuOieEwnmRtNfz3udCqVSzZZAIZWUJV6SUvFvsBvG2qYl4 0WAs1VjaIb/gEy2/5AVa4gLgZ8NTM2OdrE6NjLvxORNIaGksyWpUXZKnBZP/pr2Y etuEJ5H/r2ehfdDlMCAJ3QOOX60nrFDILmQIyR9L7Yg/hnVY5gFB1T8wp4F/YZmN E9QZKlcWNsntbGqNwHQnivTHqqZiPCJ0j8dSjbOP7IHseSdG4iDnuisWGaDoR4ww dXIbzRDog+Mkx5KxNQN2aZaqg94aSJwqUmwHSqgpW9TdNw/z1g== -----END CERTIFICATE-----Generated at Fri Nov 22 04:37:05 2024 by rpki-client on console-fra.rpki-client.org