$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/r50N0nlSgnXOf4EjAzEchut8AkM.roa File: r50N0nlSgnXOf4EjAzEchut8AkM.roa (raw, json) Hash identifier: thhF6rS4/UpGtupRIsg8C1xJnRInq/svcs3HgZTEACc= Subject key identifier: AF:9D:0D:D2:79:52:82:75:CE:7F:81:23:03:31:1C:86:EB:7C:02:43 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0C89 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/r50N0nlSgnXOf4EjAzEchut8AkM.roa Signing time: Mon 26 Aug 2024 05:26:37 +0000 ROA not before: Mon 26 Aug 2024 05:26:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18182 IP address blocks: 61.64.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3209 (0xc89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Aug 26 05:26:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AF9D0DD279528275CE7F812303311C86EB7C0243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6e:58:65:7d:64:fc:08:a8:47:17:f3:eb:0e: 8f:06:ea:c5:e1:e9:2a:48:34:83:f6:81:93:18:85: 17:6b:28:ec:50:53:d9:3b:c5:53:33:01:7c:ae:c9: c7:3a:f5:0c:1e:87:8a:c1:c5:d0:00:7c:d9:06:34: 49:07:0d:fc:35:22:e3:1b:72:0a:06:ac:f7:1b:81: 4d:b5:2d:3a:86:90:79:a6:6e:35:89:b9:75:f5:af: 6c:2f:be:de:4e:2d:b8:23:f5:a7:7b:19:ea:76:e8: 47:34:93:26:cd:ea:33:c1:5d:6f:6f:09:92:16:f7: 01:d5:0a:0b:f2:b2:25:11:36:af:fc:18:71:c4:11: 79:ad:af:ab:da:7e:ec:36:73:5c:59:5f:4b:71:4a: 83:db:68:b9:82:00:3b:3c:fa:30:dd:6f:b2:2d:e3: 69:a8:82:e8:87:b7:77:a7:7a:0b:a8:0c:33:e2:ce: a3:66:73:8c:29:05:e5:44:d9:0e:2b:2f:a0:51:ae: e9:09:83:4a:9c:ba:4b:76:00:05:31:16:f9:26:fe: 09:f3:06:a8:98:f8:7f:62:d7:3d:73:4f:41:ab:15: f1:fc:7d:bf:30:aa:5c:46:f8:93:5b:1b:f3:41:a4: 47:ab:5f:43:99:f0:8c:ae:5d:89:c9:bb:70:fb:68: 4a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9D:0D:D2:79:52:82:75:CE:7F:81:23:03:31:1C:86:EB:7C:02:43 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/r50N0nlSgnXOf4EjAzEchut8AkM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.128.0/17 Signature Algorithm: sha256WithRSAEncryption 26:23:03:69:79:9e:fe:64:ea:b6:88:14:a1:cb:03:5b:27:bd: dd:39:96:9f:3d:f9:74:f6:5d:98:e8:1f:3b:ae:9c:b9:2f:04: 34:c9:29:42:75:85:c2:11:a6:38:ce:f5:90:f4:2d:43:8c:9f: 1d:c8:4f:a1:61:38:6c:db:2b:5a:17:d8:32:9e:a6:46:e9:bd: 31:b8:ed:0f:9f:6c:82:ea:0b:fc:96:89:d4:57:cb:da:1d:ae: 32:51:bf:33:27:10:d3:27:cf:f2:7f:f4:fd:6c:7a:5b:14:cd: a2:e3:3d:5d:5a:c4:e8:59:d1:0c:2e:6a:c4:a6:64:1e:d3:76: 7a:43:2a:5b:29:ec:3c:d8:34:b1:2d:83:b5:49:a5:67:67:5d: 15:f4:1b:b4:6a:54:02:99:bf:7b:79:0c:b5:f9:a6:40:37:8c: 15:ab:ab:ce:43:9d:64:ff:b6:42:de:46:bb:e9:45:6f:92:bc: 7b:82:24:12:1b:6c:80:48:95:e2:9f:67:13:01:95:c6:2d:50: 6f:7c:96:76:40:80:9d:bd:79:ad:93:7e:58:96:91:28:9d:9f: 03:ee:da:4b:b3:8a:b3:a7:6c:83:51:76:3f:87:c0:5e:a6:96: 83:58:e6:fb:6d:e1:65:ad:b0:f7:e3:6b:2b:89:17:ea:f2:85: b3:70:8a:83 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDIkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA4MjYw NTI2MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGOUQwREQyNzk1Mjgy NzVDRTdGODEyMzAzMzExQzg2RUI3QzAyNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvblhlfWT8CKhHF/PrDo8G6sXh6SpINIP2gZMYhRdrKOxQU9k7 xVMzAXyuycc69Qweh4rBxdAAfNkGNEkHDfw1IuMbcgoGrPcbgU21LTqGkHmmbjWJ uXX1r2wvvt5OLbgj9ad7Gep26Ec0kybN6jPBXW9vCZIW9wHVCgvysiURNq/8GHHE EXmtr6vafuw2c1xZX0txSoPbaLmCADs8+jDdb7It42moguiHt3eneguoDDPizqNm c4wpBeVE2Q4rL6BRrukJg0qcukt2AAUxFvkm/gnzBqiY+H9i1z1zT0GrFfH8fb8w qlxG+JNbG/NBpEerX0OZ8IyuXYnJu3D7aErXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUr50N0nlSgnXOf4EjAzEchut8AkMwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9yNTBOMG5sU2duWE9mNEVqQXpF Y2h1dDhBa00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQHPUCA MA0GCSqGSIb3DQEBCwUAA4IBAQAmIwNpeZ7+ZOq2iBShywNbJ73dOZafPfl09l2Y 6B87rpy5LwQ0ySlCdYXCEaY4zvWQ9C1DjJ8dyE+hYThs2ytaF9gynqZG6b0xuO0P n2yC6gv8lonUV8vaHa4yUb8zJxDTJ8/yf/T9bHpbFM2i4z1dWsToWdEMLmrEpmQe 03Z6QypbKew82DSxLYO1SaVnZ10V9Bu0alQCmb97eQy1+aZAN4wVq6vOQ51k/7ZC 3ka76UVvkrx7giQSG2yASJXin2cTAZXGLVBvfJZ2QICdvXmtk35YlpEonZ8D7tpL s4qzp2yDUXY/h8BeppaDWOb7beFlrbD342sriRfq8oWzcIqD -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org