$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/iwJ2OFrckQ1xq4ANviCGGhCmz4s.roa File: iwJ2OFrckQ1xq4ANviCGGhCmz4s.roa (raw, json) Hash identifier: CcCKYK2z0S4PyBe69OEaTJYnnx3maGJumZCtuzJ2VBg= Subject key identifier: 8B:02:76:38:5A:DC:91:0D:71:AB:80:0D:BE:20:86:1A:10:A6:CF:8B Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0C82 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/iwJ2OFrckQ1xq4ANviCGGhCmz4s.roa Signing time: Mon 26 Aug 2024 05:26:35 +0000 ROA not before: Mon 26 Aug 2024 05:26:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 45474 IP address blocks: 27.105.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3202 (0xc82) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 26 05:26:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8B0276385ADC910D71AB800DBE20861A10A6CF8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e8:3b:6b:f4:6d:28:9e:c5:d5:d3:7d:d3:0f: af:32:aa:86:69:31:c7:1d:8a:0e:58:e0:ca:b4:42: ea:dd:0a:11:41:40:87:c0:4a:3f:0c:0b:d1:7f:39: 45:53:64:a0:6a:93:12:b4:cd:02:cd:4c:ea:82:14: 86:93:db:b2:52:c8:02:63:82:0f:01:06:ce:af:8d: a4:14:45:1e:e2:d6:c7:86:1d:f9:56:69:d9:6a:08: 5f:36:84:89:61:44:83:bc:cf:a9:1a:3c:7f:b1:93: 1f:5b:7c:24:d8:ba:37:bb:3e:b5:6a:3c:3a:71:17: fe:52:5c:8d:1a:ee:0d:0a:06:7a:24:a5:a1:fe:a6: 46:75:3f:d2:82:c9:c3:b5:51:5b:00:b5:8b:b4:53: 79:2f:fb:51:34:fa:23:db:dc:fa:5d:b5:2d:f0:d6: 80:f9:d6:c9:ce:2a:83:9b:e1:e5:8d:bd:e4:9f:1c: 89:21:7a:48:72:37:a1:b9:ac:8b:07:29:02:c4:f6: 06:7b:2c:b1:0d:2a:47:62:91:73:4b:f3:a6:c4:f9: 06:a0:30:85:cd:e1:29:0c:21:74:69:25:97:0d:95: b3:6c:0b:be:02:53:eb:61:6a:b2:01:2e:9e:3b:96: ff:0e:71:7e:80:89:2d:b5:f9:77:a0:e6:30:1c:dc: 6e:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:02:76:38:5A:DC:91:0D:71:AB:80:0D:BE:20:86:1A:10:A6:CF:8B X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/iwJ2OFrckQ1xq4ANviCGGhCmz4s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.105.206.0/24 Signature Algorithm: sha256WithRSAEncryption 67:7f:9d:24:0d:8f:10:6e:1d:41:13:e5:fc:bf:41:8c:b2:50: 0a:9b:b6:7a:6a:c5:76:31:80:f6:9d:3f:b6:43:74:64:df:d7: ed:70:74:82:d8:ba:0e:9d:64:cb:ed:2a:88:83:2e:61:27:a6: e2:39:35:40:97:50:0e:e4:2c:6f:cc:c6:d6:1a:53:43:ba:ba: d6:74:8d:0c:14:2c:60:51:62:9a:a6:33:52:61:f0:84:d8:5a: 0d:71:f2:9e:a4:62:0e:e0:85:24:d1:13:31:25:e4:3b:90:e4: 19:15:42:54:53:11:18:7d:21:4d:72:b1:76:2a:6a:8d:7a:8d: 67:ea:b7:3e:0a:15:6c:72:01:ae:d2:e8:16:6f:c5:3a:2c:78: 17:e7:ef:fb:79:6a:78:16:49:ea:db:f9:e4:80:6d:0b:a9:62: 12:1a:94:65:68:8d:d9:86:9b:9e:ca:34:5f:35:75:17:ea:59: 4f:40:d7:28:5a:69:b9:a5:b8:6a:aa:e0:ae:c8:74:17:3b:98: be:db:f9:41:27:f3:03:b6:85:d6:4a:c0:ba:87:db:ac:fc:32: 34:ae:0e:5c:c3:af:17:4e:0a:b7:05:17:61:75:9e:c2:07:b7: 9e:65:24:9a:e3:3f:65:76:7d:1a:6e:95:41:57:d6:6c:45:ac: 0d:8a:97:f7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDIIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA4MjYw NTI2MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCMDI3NjM4NUFEQzkx MEQ3MUFCODAwREJFMjA4NjFBMTBBNkNGOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA6Dtr9G0onsXV033TD68yqoZpMccdig5Y4Mq0QurdChFBQIfA Sj8MC9F/OUVTZKBqkxK0zQLNTOqCFIaT27JSyAJjgg8BBs6vjaQURR7i1seGHflW adlqCF82hIlhRIO8z6kaPH+xkx9bfCTYuje7PrVqPDpxF/5SXI0a7g0KBnokpaH+ pkZ1P9KCycO1UVsAtYu0U3kv+1E0+iPb3PpdtS3w1oD51snOKoOb4eWNveSfHIkh ekhyN6G5rIsHKQLE9gZ7LLENKkdikXNL86bE+QagMIXN4SkMIXRpJZcNlbNsC74C U+tharIBLp47lv8OcX6AiS21+Xeg5jAc3G4HAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUiwJ2OFrckQ1xq4ANviCGGhCmz4swHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9pd0oyT0ZyY2tRMXhxNEFOdmlD R0doQ216NHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAG2nO MA0GCSqGSIb3DQEBCwUAA4IBAQBnf50kDY8Qbh1BE+X8v0GMslAKm7Z6asV2MYD2 nT+2Q3Rk39ftcHSC2LoOnWTL7SqIgy5hJ6biOTVAl1AO5CxvzMbWGlNDurrWdI0M FCxgUWKapjNSYfCE2FoNcfKepGIO4IUk0RMxJeQ7kOQZFUJUUxEYfSFNcrF2KmqN eo1n6rc+ChVscgGu0ugWb8U6LHgX5+/7eWp4Fknq2/nkgG0LqWISGpRlaI3Zhpue yjRfNXUX6llPQNcoWmm5pbhqquCuyHQXO5i+2/lBJ/MDtoXWSsC6h9us/DI0rg5c w68XTgq3BRdhdZ7CB7eeZSSa4z9ldn0abpVBV9ZsRawNipf3 -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org