$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/bVzXs49CnuhX2nwcCP3WNqR9laQ.roa File: bVzXs49CnuhX2nwcCP3WNqR9laQ.roa (raw, json) Hash identifier: cQGSsfpTLve7voQaFyYFHQMu4t5NeRP3xFT0wGvVeto= Subject key identifier: 6D:5C:D7:B3:8F:42:9E:E8:57:DA:7C:1C:08:FD:D6:36:A4:7D:95:A4 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0C87 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/bVzXs49CnuhX2nwcCP3WNqR9laQ.roa Signing time: Mon 26 Aug 2024 05:26:36 +0000 ROA not before: Mon 26 Aug 2024 05:26:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 219.84.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 26 05:26:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6D5CD7B38F429EE857DA7C1C08FDD636A47D95A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:ae:fd:76:11:c4:b8:fd:6f:be:78:d3:af:b1: 29:d3:f5:b8:82:eb:da:d0:c3:2f:71:0f:b6:23:ca: e2:34:26:87:a7:aa:12:f5:ba:d9:6b:0b:68:44:62: d8:76:71:6d:e7:48:42:97:34:c5:13:53:1e:d2:b5: cc:4d:83:4c:e8:39:4d:83:3d:cf:e9:f8:36:0b:4b: 7c:07:0b:8a:78:bc:32:74:51:2e:26:bb:5e:b7:f6: 88:3f:e1:e4:fe:12:76:f1:c4:7f:07:27:c2:0f:00: 69:9d:7b:92:cd:b2:39:cc:bd:f3:64:6a:4d:7c:d6: 69:54:61:8e:6b:c7:dc:94:af:11:b5:df:9b:06:a4: 9d:c3:c8:9d:49:f9:5c:62:c8:08:9c:b7:41:4e:b7: 47:b1:6f:f5:d9:27:a0:ae:29:62:e0:80:2d:74:ec: a1:35:92:2c:20:82:25:ef:a7:15:49:a9:b6:e6:12: 18:a3:de:08:39:5f:30:6a:9c:02:56:00:f5:65:db: 55:0f:7f:51:6f:4a:a0:7d:a0:61:33:16:2b:b5:1a: 82:d9:42:4f:3c:d0:05:24:e9:59:97:bd:9f:e2:0d: 6c:64:1f:22:6d:01:e9:9c:dc:f9:83:74:87:50:be: ce:9d:a5:dd:b8:b7:a9:b8:5f:c8:ff:6b:62:05:52: aa:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:5C:D7:B3:8F:42:9E:E8:57:DA:7C:1C:08:FD:D6:36:A4:7D:95:A4 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/bVzXs49CnuhX2nwcCP3WNqR9laQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 219.84.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:5d:ba:51:5c:2a:2f:c3:c6:76:80:05:cd:a2:cb:48:63:c9: 40:fd:91:c9:d0:1f:db:e9:d1:9d:71:f3:a7:6f:91:8e:38:98: a8:ce:f2:68:e7:67:dc:bc:fb:29:c4:47:96:fe:95:87:06:07: 80:bc:60:e9:9a:d1:1a:d4:fe:61:63:2e:f8:80:32:b9:96:b4: f1:45:66:3d:97:54:9a:53:6c:02:31:b3:a0:32:61:78:d1:4c: bb:cf:33:06:5f:e1:85:03:41:34:cc:57:cb:49:9f:af:10:3e: 49:fc:47:97:82:8c:a6:4d:1d:65:f5:91:46:e6:94:45:b2:f5: ec:1e:ac:bd:0b:87:a5:89:a3:d0:d6:0a:f6:7e:41:3c:31:c9: 43:73:7b:53:78:e4:b0:dc:ba:ea:66:8f:ac:c7:bc:9b:34:12: fc:71:1d:6e:2f:7a:cc:1a:8f:16:35:d6:7e:63:db:33:9e:d4: c9:b3:45:f9:da:10:02:bc:d1:a9:db:a5:52:b1:e8:98:e2:2c: 8e:d5:37:bd:12:e7:c2:da:7b:4d:6e:68:54:80:cc:b5:a2:c7: f9:71:23:01:eb:15:af:38:e0:16:e7:d7:ea:e3:72:b1:51:f9: f7:e5:75:fb:3b:7d:09:0c:18:46:69:90:7c:76:d7:df:3b:a5: f9:3e:f0:80 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA4MjYw NTI2MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZENUNEN0IzOEY0MjlF RTg1N0RBN0MxQzA4RkRENjM2QTQ3RDk1QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkrv12EcS4/W++eNOvsSnT9biC69rQwy9xD7YjyuI0JoenqhL1 utlrC2hEYth2cW3nSEKXNMUTUx7StcxNg0zoOU2DPc/p+DYLS3wHC4p4vDJ0US4m u1639og/4eT+EnbxxH8HJ8IPAGmde5LNsjnMvfNkak181mlUYY5rx9yUrxG135sG pJ3DyJ1J+VxiyAict0FOt0exb/XZJ6CuKWLggC107KE1kiwggiXvpxVJqbbmEhij 3gg5XzBqnAJWAPVl21UPf1FvSqB9oGEzFiu1GoLZQk880AUk6VmXvZ/iDWxkHyJt Aemc3PmDdIdQvs6dpd24t6m4X8j/a2IFUqrRAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUbVzXs49CnuhX2nwcCP3WNqR9laQwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9iVnpYczQ5Q251aFgybndjQ1Az V05xUjlsYVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA21Qw DQYJKoZIhvcNAQELBQADggEBABNdulFcKi/DxnaABc2iy0hjyUD9kcnQH9vp0Z1x 86dvkY44mKjO8mjnZ9y8+ynER5b+lYcGB4C8YOma0RrU/mFjLviAMrmWtPFFZj2X VJpTbAIxs6AyYXjRTLvPMwZf4YUDQTTMV8tJn68QPkn8R5eCjKZNHWX1kUbmlEWy 9ewerL0Lh6WJo9DWCvZ+QTwxyUNze1N45LDcuupmj6zHvJs0EvxxHW4veswajxY1 1n5j2zOe1MmzRfnaEAK80anbpVKx6JjiLI7VN70S58Lae01uaFSAzLWix/lxIwHr Fa844Bbn1+rjcrFR+ffldfs7fQkMGEZpkHx21987pfk+8IA= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org