$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYSNET/r0ma_04vX4RNYGZ7TE3wdcUaeCg.roa File: r0ma_04vX4RNYGZ7TE3wdcUaeCg.roa (raw, json) Hash identifier: A1uqL53kkzIJwERNosc6C1wqNkME377O66PD/QXhnWM= Subject key identifier: AF:49:9A:FF:4E:2F:5F:84:4D:60:66:7B:4C:4D:F0:75:C5:1A:78:28 Certificate issuer: /CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Certificate serial: 0C57 Authority key identifier: 96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/r0ma_04vX4RNYGZ7TE3wdcUaeCg.roa Signing time: Mon 26 Aug 2024 05:26:48 +0000 ROA not before: Mon 26 Aug 2024 05:26:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4783 IP address blocks: 2405:a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96BB94B457F9D82A29B5B2FD9F3A4418899E71EC Validity Not Before: Aug 26 05:26:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AF499AFF4E2F5F844D60667B4C4DF075C51A7828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cb:40:ff:e6:ad:99:05:80:49:b0:04:dc:22: b2:35:95:ca:4d:3d:44:ec:ed:a1:42:10:0f:ed:9a: b9:b9:fc:db:cf:32:2e:69:66:7a:11:82:ed:ee:70: 2e:2b:ea:68:61:7a:ce:04:59:5f:a4:33:b3:13:6b: f8:15:9f:08:f2:48:72:2f:25:b9:6b:d3:7c:c0:de: bb:a6:ce:aa:f6:aa:92:65:4d:c0:18:e1:40:aa:fa: 2d:20:8d:e1:3d:c3:72:b4:26:6e:1f:ab:3c:93:08: 82:e2:39:e9:7f:bb:a5:5c:32:d8:a3:6c:dd:72:2c: 82:01:71:62:b2:3f:f8:cd:16:7b:0d:e8:e0:e6:d0: 68:4c:67:af:20:4b:d8:4d:11:a2:bf:27:c6:b5:2f: 48:b1:64:96:1d:f7:45:d9:a9:22:3f:3d:f2:0c:82: ca:70:8e:05:eb:a6:e7:18:2f:88:18:7b:f0:9b:8d: 69:b0:16:af:95:47:ab:67:e8:c9:99:b0:71:26:96: 48:c8:2b:46:f2:e0:b9:61:05:4c:fc:ae:6e:94:29: 3e:fd:62:26:42:33:7b:a0:ad:be:11:23:9d:7e:a6: e4:34:97:e4:f8:43:18:eb:33:36:e6:03:1a:f6:71: 9d:b6:38:dc:68:87:fc:84:e3:f8:c9:29:7c:20:a9: 9e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:49:9A:FF:4E:2F:5F:84:4D:60:66:7B:4C:4D:F0:75:C5:1A:78:28 X509v3 Authority Key Identifier: keyid:96:BB:94:B4:57:F9:D8:2A:29:B5:B2:FD:9F:3A:44:18:89:9E:71:EC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/lruUtFf52CoptbL9nzpEGImecew.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lruUtFf52CoptbL9nzpEGImecew.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYSNET/r0ma_04vX4RNYGZ7TE3wdcUaeCg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a00::/32 Signature Algorithm: sha256WithRSAEncryption 7d:55:a6:b4:b1:57:83:8f:15:9d:27:fc:64:b9:a0:fb:20:ed: 04:54:3f:3a:06:fe:60:c2:74:4e:70:a8:0f:c1:4a:ca:ad:68: c0:2c:0b:a3:05:2e:d6:9d:dd:88:7f:ab:24:fd:de:7c:50:3f: 42:24:b7:dc:e1:bb:da:bc:19:11:79:10:3b:03:d3:db:4f:9b: 23:74:97:1b:1f:3f:30:52:4b:b7:55:52:24:f0:4b:b5:c7:4b: e6:55:33:ef:78:c5:c4:43:2c:36:d0:b5:08:52:45:dd:9f:d4: fd:8f:db:aa:09:17:6f:e8:40:b8:2f:0d:e0:d6:2e:b9:5e:44: d1:43:b0:03:de:9e:4c:59:b4:d5:a9:e8:9e:91:e6:6f:e1:c1: 5c:c0:16:b1:7a:fb:2e:39:bf:ba:5b:e9:18:56:01:0a:43:48: 15:cc:ba:80:6c:a0:a6:08:a2:3e:3f:32:4e:a8:ea:56:90:f5: 19:9c:bf:be:c2:b1:b5:67:82:36:f3:18:4d:be:51:a8:b7:43: a8:aa:c5:e0:c3:8c:4e:c3:5a:06:d3:51:b9:17:ce:9b:74:88: 9f:0b:c5:78:5c:c8:a5:b0:ab:32:7d:eb:8d:f6:91:8f:f9:9b: 1b:9e:42:8e:2a:92:0a:4d:fc:3b:de:f2:ba:c4:6c:9e:4e:85: ea:45:9a:2f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC Qjk0QjQ1N0Y5RDgyQTI5QjVCMkZEOUYzQTQ0MTg4OTlFNzFFQzAeFw0yNDA4MjYw NTI2NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGNDk5QUZGNEUyRjVG ODQ0RDYwNjY3QjRDNERGMDc1QzUxQTc4MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2y0D/5q2ZBYBJsATcIrI1lcpNPUTs7aFCEA/tmrm5/NvPMi5p ZnoRgu3ucC4r6mhhes4EWV+kM7MTa/gVnwjySHIvJblr03zA3rumzqr2qpJlTcAY 4UCq+i0gjeE9w3K0Jm4fqzyTCILiOel/u6VcMtijbN1yLIIBcWKyP/jNFnsN6ODm 0GhMZ68gS9hNEaK/J8a1L0ixZJYd90XZqSI/PfIMgspwjgXrpucYL4gYe/CbjWmw Fq+VR6tn6MmZsHEmlkjIK0by4LlhBUz8rm6UKT79YiZCM3ugrb4RI51+puQ0l+T4 QxjrMzbmAxr2cZ22ONxoh/yE4/jJKXwgqZ61AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUr0ma/04vX4RNYGZ7TE3wdcUaeCgwHwYDVR0jBBgwFoAUlruUtFf52CoptbL9 nzpEGImecewwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVU L2xydVV0RmY1MkNvcHRiTDluenBFR0ltZWNldy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvbHJ1VXRGZjUyQ29wdGJMOW56cEVHSW1lY2V3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lTTkVUL3IwbWFfMDR2WDRSTllHWjdU RTN3ZGNVYWVDZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BQoAMA0GCSqGSIb3DQEBCwUAA4IBAQB9Vaa0sVeDjxWdJ/xkuaD7IO0EVD86Bv5g wnROcKgPwUrKrWjALAujBS7Wnd2If6sk/d58UD9CJLfc4bvavBkReRA7A9PbT5sj dJcbHz8wUku3VVIk8Eu1x0vmVTPveMXEQyw20LUIUkXdn9T9j9uqCRdv6EC4Lw3g 1i65XkTRQ7AD3p5MWbTVqeiekeZv4cFcwBaxevsuOb+6W+kYVgEKQ0gVzLqAbKCm CKI+PzJOqOpWkPUZnL++wrG1Z4I28xhNvlGot0OoqsXgw4xOw1oG01G5F86bdIif C8V4XMilsKsyfeuN9pGP+ZsbnkKOKpIKTfw73vK6xGyeToXqRZov -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org