$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/j48l77IqJ6kZlnH0rws_wrpI6-0.roa File: j48l77IqJ6kZlnH0rws_wrpI6-0.roa (raw, json) Hash identifier: TAeRBVUesly5XWAtwoMhxEARhAVwyP05eJY1Oc9DIK4= Subject key identifier: 8F:8F:25:EF:B2:2A:27:A9:19:96:71:F4:AF:0B:3F:C2:BA:48:EB:ED Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0CA0 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/j48l77IqJ6kZlnH0rws_wrpI6-0.roa Signing time: Tue 24 Sep 2024 10:58:11 +0000 ROA not before: Tue 24 Sep 2024 10:58:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 39.1.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 24 10:58:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F8F25EFB22A27A9199671F4AF0B3FC2BA48EBED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:de:07:b9:ee:8d:f1:a6:92:48:1c:e6:da:ab: e2:69:d3:9f:13:d7:c4:fd:6b:fe:50:48:b0:3e:4e: ce:9c:26:95:96:0a:c3:97:ff:c5:4c:dc:8d:a5:e3: a7:c7:00:87:ac:0f:14:82:13:8b:81:53:ba:1a:ad: c3:74:7c:f4:39:c9:e8:28:06:0f:48:71:b3:02:23: ac:f0:e4:4b:e4:90:d8:2a:ff:e8:f7:b8:05:0b:3e: 44:37:48:12:f8:d4:73:68:83:73:58:e5:06:f6:6f: cf:3a:ba:2b:65:39:17:30:f5:b2:a7:0b:41:e6:53: 27:e2:09:12:b4:12:d2:66:d4:f8:8f:ac:f4:d5:d9: dc:74:42:70:55:48:f7:9e:e4:e0:12:1a:e4:88:f9: d6:b6:f8:cd:14:75:a6:56:2d:ca:f4:20:07:1a:c0: aa:da:36:a1:3f:4d:21:a1:97:a0:fa:2b:84:e0:8d: 28:fb:33:f1:a5:e7:de:2c:d4:5d:b1:5b:e7:1b:e9: b6:6e:57:2a:8c:78:32:2c:c8:ce:43:28:8a:85:6b: cd:9f:42:a8:f2:34:b0:fa:87:f4:13:e0:3e:46:0c: e1:55:7b:29:3e:dc:ea:4b:fd:2a:77:c0:c2:96:07: 86:c2:a5:ca:89:4e:04:9b:4e:cc:b2:96:cf:22:7f: c1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:8F:25:EF:B2:2A:27:A9:19:96:71:F4:AF:0B:3F:C2:BA:48:EB:ED X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/j48l77IqJ6kZlnH0rws_wrpI6-0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 39.1.46.0/24 Signature Algorithm: sha256WithRSAEncryption 34:79:9a:5b:0c:1a:db:b2:de:55:a1:13:ef:ca:9b:ab:3a:b2: d7:b0:e0:08:65:85:21:c4:0e:06:9d:0f:35:72:64:7a:52:51: 0a:44:ee:bf:f8:f7:80:f2:14:d4:1f:0c:6c:d0:5b:28:0e:b8: 90:61:00:b1:07:5d:a8:e0:39:7a:f8:f3:fb:a7:bd:a1:2e:e6: 9f:33:42:ee:d4:fc:d9:45:37:74:3b:f3:82:42:6a:1b:e3:bd: 81:16:f1:b3:44:f9:ae:50:c3:96:09:2a:f1:5a:da:12:d4:f8: 74:fe:26:15:f5:1c:ed:89:80:33:a2:9e:1f:63:57:d1:06:d8: 86:2a:41:36:88:4f:08:c2:ac:1e:47:0d:56:79:72:27:08:6d: dd:cf:8d:26:7d:90:94:4e:ba:0f:40:21:d5:19:d8:ae:49:4e: cc:de:53:55:99:fd:0a:ba:c9:de:e4:4d:50:15:56:48:3d:21: 91:d3:7d:df:f8:37:a2:35:82:11:a9:25:fd:d7:59:ca:22:5c: 2b:89:ae:1c:b8:9d:c3:bd:1c:3c:b3:5e:6a:8e:67:b8:eb:27: 9c:76:f1:cd:fb:e8:f5:23:25:28:10:9e:3f:81:30:55:d5:8f: 35:a3:fb:44:f6:41:d2:84:5a:23:f7:31:60:d1:95:59:54:3d: 07:5f:17:bc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA5MjQx MDU4MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGOEYyNUVGQjIyQTI3 QTkxOTk2NzFGNEFGMEIzRkMyQkE0OEVCRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC13ge57o3xppJIHObaq+Jp058T18T9a/5QSLA+Ts6cJpWWCsOX /8VM3I2l46fHAIesDxSCE4uBU7oarcN0fPQ5yegoBg9IcbMCI6zw5EvkkNgq/+j3 uAULPkQ3SBL41HNog3NY5Qb2b886uitlORcw9bKnC0HmUyfiCRK0EtJm1PiPrPTV 2dx0QnBVSPee5OASGuSI+da2+M0UdaZWLcr0IAcawKraNqE/TSGhl6D6K4TgjSj7 M/Gl594s1F2xW+cb6bZuVyqMeDIsyM5DKIqFa82fQqjyNLD6h/QT4D5GDOFVeyk+ 3OpL/Sp3wMKWB4bCpcqJTgSbTsyyls8if8F9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUj48l77IqJ6kZlnH0rws/wrpI6+0wHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9qNDhsNzdJcUo2a1psbkgwcndz X3dycEk2LTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAJwEu MA0GCSqGSIb3DQEBCwUAA4IBAQA0eZpbDBrbst5VoRPvypurOrLXsOAIZYUhxA4G nQ81cmR6UlEKRO6/+PeA8hTUHwxs0FsoDriQYQCxB12o4Dl6+PP7p72hLuafM0Lu 1PzZRTd0O/OCQmob472BFvGzRPmuUMOWCSrxWtoS1Ph0/iYV9RztiYAzop4fY1fR BtiGKkE2iE8IwqweRw1WeXInCG3dz40mfZCUTroPQCHVGdiuSU7M3lNVmf0Kusne 5E1QFVZIPSGR033f+DeiNYIRqSX911nKIlwria4cuJ3DvRw8s15qjme46yecdvHN ++j1IyUoEJ4/gTBV1Y81o/tE9kHShFoj9zFg0ZVZVD0HXxe8 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org