$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/RjI5z8as5ivXm3mp9UI3LcR-Fd4.roa File: RjI5z8as5ivXm3mp9UI3LcR-Fd4.roa (raw, json) Hash identifier: C5J1VHBv/+k5UXYmBReeLQcjX9n98q5HiVGc8GB3OfM= Subject key identifier: 46:32:39:CF:C6:AC:E6:2B:D7:9B:79:A9:F5:42:37:2D:C4:7E:15:DE Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0C9E Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/RjI5z8as5ivXm3mp9UI3LcR-Fd4.roa Signing time: Tue 24 Sep 2024 10:57:35 +0000 ROA not before: Tue 24 Sep 2024 10:57:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 39.1.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 24 10:57:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=463239CFC6ACE62BD79B79A9F542372DC47E15DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:97:4c:d7:6c:f4:17:ef:2e:5e:ef:3c:6e:52: 56:46:3e:b0:8e:3f:bd:a1:b1:62:ad:05:24:02:b8: d0:15:83:c3:3c:8e:a3:94:e7:e1:f7:9f:3d:51:fa: 98:71:e3:97:4e:52:22:c7:4c:21:86:e1:ee:69:c6: 1b:f3:5c:1d:bf:74:60:26:e8:a2:aa:ab:d6:5a:83: d7:de:d0:0e:2d:78:76:9f:27:6d:47:bb:e5:cc:a5: 13:fc:8f:ad:4f:44:1a:7a:61:67:b8:a6:d8:e7:ca: 9e:93:a8:0b:49:09:68:66:0c:a5:49:bc:c3:df:7a: 1b:96:06:29:d3:6f:01:ce:8f:3e:46:a5:0e:d4:98: 24:e4:00:18:ab:9f:c7:c6:c2:5b:25:cc:6d:15:33: 2a:7d:8a:e2:ad:02:59:1f:10:d1:02:6b:92:31:87: 9f:02:7a:43:72:fb:f2:2d:f8:26:49:46:6e:60:df: 2a:a4:46:96:dd:85:b2:90:67:00:51:8d:39:0f:85: 85:79:59:d7:8f:89:8d:fa:5e:a6:15:c5:43:cc:40: 3a:dc:ba:f2:d4:6e:e8:62:40:50:f1:0d:24:b5:2e: ed:ed:06:19:5f:e2:22:dc:1f:35:35:09:42:96:1e: b9:6e:b2:cd:9c:c0:9c:65:4e:35:81:3c:cc:2f:a2: b8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:32:39:CF:C6:AC:E6:2B:D7:9B:79:A9:F5:42:37:2D:C4:7E:15:DE X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/RjI5z8as5ivXm3mp9UI3LcR-Fd4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.45.0/24 Signature Algorithm: sha256WithRSAEncryption c1:fb:6e:9b:06:ee:ca:48:17:9b:75:91:a2:e1:87:16:1f:e2: 30:81:9c:16:b5:7d:47:d9:ec:bb:78:ad:eb:d0:70:73:c3:3b: 53:9e:8e:cf:9c:1e:01:80:8f:3d:b1:fd:a8:90:97:7d:b8:fb: 49:b8:71:0d:b4:9b:83:fc:cc:c5:ab:ca:c0:e8:15:d1:23:36: f7:c8:7a:3c:cd:53:f8:02:96:4d:48:43:a8:0c:5f:ff:13:bc: 6f:15:c6:3a:44:1d:48:9e:37:8d:84:da:8c:8c:85:0a:e4:fc: 27:86:7e:e9:49:37:ab:82:c8:7f:f7:2e:53:e3:01:86:8b:c3: 0d:7b:96:ec:4a:1a:5f:7b:34:3c:ce:c1:a9:1c:b5:a0:4c:ce: 84:75:55:39:07:b5:37:b8:29:40:27:89:e0:92:3d:00:c1:2f: 65:8b:e8:4d:e9:ff:2e:dc:16:15:50:2c:96:97:58:92:5e:cd: 57:74:f7:33:f0:a8:87:0f:09:4c:96:a5:16:72:f1:aa:e6:56: ae:fa:fa:ae:09:41:05:4e:d4:55:57:de:e1:76:cb:cc:14:a2: 06:f6:3a:18:b1:04:40:39:fe:39:35:bb:92:5e:5b:64:33:19: db:87:93:b4:b0:f9:07:e5:aa:49:cd:81:bd:59:e6:74:f8:69: a5:2f:3f:0f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA5MjQx MDU3MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2MzIzOUNGQzZBQ0U2 MkJENzlCNzlBOUY1NDIzNzJEQzQ3RTE1REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsl0zXbPQX7y5e7zxuUlZGPrCOP72hsWKtBSQCuNAVg8M8jqOU 5+H3nz1R+phx45dOUiLHTCGG4e5pxhvzXB2/dGAm6KKqq9Zag9fe0A4teHafJ21H u+XMpRP8j61PRBp6YWe4ptjnyp6TqAtJCWhmDKVJvMPfehuWBinTbwHOjz5GpQ7U mCTkABirn8fGwlslzG0VMyp9iuKtAlkfENECa5Ixh58CekNy+/It+CZJRm5g3yqk RpbdhbKQZwBRjTkPhYV5WdePiY36XqYVxUPMQDrcuvLUbuhiQFDxDSS1Lu3tBhlf 4iLcHzU1CUKWHrluss2cwJxlTjWBPMwvorg9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQURjI5z8as5ivXm3mp9UI3LcR+Fd4wHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9Sakk1ejhhczVpdlhtM21wOVVJ M0xjUi1GZDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJwEt MA0GCSqGSIb3DQEBCwUAA4IBAQDB+26bBu7KSBebdZGi4YcWH+IwgZwWtX1H2ey7 eK3r0HBzwztTno7PnB4BgI89sf2okJd9uPtJuHENtJuD/MzFq8rA6BXRIzb3yHo8 zVP4ApZNSEOoDF//E7xvFcY6RB1InjeNhNqMjIUK5Pwnhn7pSTergsh/9y5T4wGG i8MNe5bsShpfezQ8zsGpHLWgTM6EdVU5B7U3uClAJ4ngkj0AwS9li+hN6f8u3BYV UCyWl1iSXs1XdPcz8KiHDwlMlqUWcvGq5lau+vquCUEFTtRVV97hdsvMFKIG9joY sQRAOf45NbuSXltkMxnbh5O0sPkH5apJzYG9WeZ0+GmlLz8P -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org