$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/WxD5R6oc1quYCsmFeBLq8pRAUVk.roa File: WxD5R6oc1quYCsmFeBLq8pRAUVk.roa (raw, json) Hash identifier: ZxHqq4rSaHZES1WZCdT7nIZ/WWFxBq2iIiGlEA3eRsw= Subject key identifier: 5B:10:F9:47:AA:1C:D6:AB:98:0A:C9:85:78:12:EA:F2:94:40:51:59 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0C7B Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/WxD5R6oc1quYCsmFeBLq8pRAUVk.roa Signing time: Mon 26 Aug 2024 05:26:34 +0000 ROA not before: Mon 26 Aug 2024 05:26:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 61.56.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 26 05:26:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5B10F947AA1CD6AB980AC9857812EAF294405159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:a7:1b:22:0a:47:1b:9a:42:08:fe:ef:de:1c: f2:51:ea:45:b7:91:0e:2d:cd:c4:df:49:e3:a8:ce: 51:d5:f9:6f:91:80:7e:94:f8:89:50:57:98:3a:c1: 46:9c:58:d2:1b:6a:cb:8a:05:be:3c:fa:e1:88:e0: cb:7b:da:8b:0c:64:fb:85:b6:dc:7e:ae:52:0b:1c: 01:36:6c:71:69:ce:6a:fd:57:0e:3c:f1:b9:51:b6: d0:8d:1a:f1:79:22:b8:f3:d9:52:46:a3:5d:71:de: 70:5f:0c:75:c2:85:05:71:4c:36:bb:3d:53:e0:c9: bd:b6:b8:82:56:07:69:4f:59:a2:76:e5:ca:4b:ce: 69:9a:84:c3:e5:4a:29:cc:2d:76:e5:14:ec:01:99: 88:06:09:1f:17:cd:74:0c:84:3e:b5:a0:a8:48:33: fd:ce:f1:36:cc:c7:7c:32:71:0e:d7:00:a1:7f:10: 8b:4f:f6:e1:05:b2:b7:8c:c2:b7:aa:fc:23:66:a6: 5d:fd:4e:6b:a7:49:5a:51:51:70:b9:a4:12:c7:72: be:e2:c9:54:52:21:1c:eb:f0:41:aa:c9:7a:02:76: 2e:31:9b:a0:40:f5:bd:7c:a3:3a:a5:29:7c:ea:b5: aa:e0:43:b1:63:d0:8d:fc:a1:f6:e0:1a:12:12:10: aa:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:10:F9:47:AA:1C:D6:AB:98:0A:C9:85:78:12:EA:F2:94:40:51:59 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/WxD5R6oc1quYCsmFeBLq8pRAUVk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.128.0/19 Signature Algorithm: sha256WithRSAEncryption 25:1d:52:75:3a:ca:71:3b:72:33:16:fa:1a:08:17:9f:c9:20: 61:64:4d:06:fe:36:2f:a5:ca:d5:f9:77:7a:f4:50:44:9d:38: 37:2a:65:f8:3a:5d:55:70:f3:76:10:e1:3f:1c:90:f4:db:a9: 96:46:92:d4:f3:75:79:fd:9b:6f:7b:60:25:70:2e:91:88:13: 8e:c5:aa:f7:50:16:8f:04:56:28:40:e6:c5:c3:ab:5a:89:cb: d8:e1:f1:9b:01:6d:43:56:ad:99:ff:88:72:5a:51:ec:c3:b5: 18:bb:7e:31:cf:fc:f8:12:26:6f:00:c5:17:99:0e:9d:39:46: 17:8c:eb:14:99:dd:65:e4:ba:cc:cb:2f:51:0b:e7:a6:00:6e: 75:5c:24:cc:17:8a:0f:dd:65:9f:95:f1:f9:7e:65:fe:b8:f2: 04:4c:31:5b:ac:c3:bc:c7:a5:7f:2c:28:22:31:8f:03:8f:10: 16:29:59:fa:aa:c2:14:e2:15:38:4d:18:b0:6c:24:85:c5:d9: 03:91:27:02:bf:de:b4:94:0f:11:01:32:8a:af:37:0a:8a:63: 3f:eb:4f:df:01:4a:37:e5:81:c2:57:d5:87:57:c1:b8:95:9c: 20:b8:c2:b7:55:26:22:4f:28:9a:d6:32:25:88:61:eb:c9:2e: 06:5a:16:3f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA4MjYw NTI2MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVCMTBGOTQ3QUExQ0Q2 QUI5ODBBQzk4NTc4MTJFQUYyOTQ0MDUxNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBpxsiCkcbmkII/u/eHPJR6kW3kQ4tzcTfSeOozlHV+W+RgH6U +IlQV5g6wUacWNIbasuKBb48+uGI4Mt72osMZPuFttx+rlILHAE2bHFpzmr9Vw48 8blRttCNGvF5Irjz2VJGo11x3nBfDHXChQVxTDa7PVPgyb22uIJWB2lPWaJ25cpL zmmahMPlSinMLXblFOwBmYgGCR8XzXQMhD61oKhIM/3O8TbMx3wycQ7XAKF/EItP 9uEFsreMwreq/CNmpl39TmunSVpRUXC5pBLHcr7iyVRSIRzr8EGqyXoCdi4xm6BA 9b18ozqlKXzqtargQ7Fj0I38ofbgGhISEKoJAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWxD5R6oc1quYCsmFeBLq8pRAUVkwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9XeEQ1UjZvYzFxdVlDc21GZUJM cThwUkFVVmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTiA MA0GCSqGSIb3DQEBCwUAA4IBAQAlHVJ1OspxO3IzFvoaCBefySBhZE0G/jYvpcrV +Xd69FBEnTg3KmX4Ol1VcPN2EOE/HJD026mWRpLU83V5/Ztve2AlcC6RiBOOxar3 UBaPBFYoQObFw6taicvY4fGbAW1DVq2Z/4hyWlHsw7UYu34xz/z4EiZvAMUXmQ6d OUYXjOsUmd1l5LrMyy9RC+emAG51XCTMF4oP3WWflfH5fmX+uPIETDFbrMO8x6V/ LCgiMY8DjxAWKVn6qsIU4hU4TRiwbCSFxdkDkScCv960lA8RATKKrzcKimM/60/f AUo35YHCV9WHV8G4lZwguMK3VSYiTyia1jIliGHryS4GWhY/ -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org