$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SYVC/pl0Gc0cdC_zAc_GyCP1UCnCexqI.roa File: pl0Gc0cdC_zAc_GyCP1UCnCexqI.roa (raw, json) Hash identifier: gijTpw+atOssxWyNB65L0Yr1VhnjN40fdEnYFkF7tRo= Subject key identifier: A6:5D:06:73:47:1D:0B:FC:C0:73:F1:B2:08:FD:54:0A:70:9E:C6:A2 Certificate issuer: /CN=7448D66FF329D2945C52EA01A567578B50026717 Certificate serial: 0267 Authority key identifier: 74:48:D6:6F:F3:29:D2:94:5C:52:EA:01:A5:67:57:8B:50:02:67:17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/pl0Gc0cdC_zAc_GyCP1UCnCexqI.roa Signing time: Fri 06 Sep 2024 03:13:03 +0000 ROA not before: Fri 06 Sep 2024 03:13:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 2400:63e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 615 (0x267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7448D66FF329D2945C52EA01A567578B50026717 Validity Not Before: Sep 6 03:13:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A65D0673471D0BFCC073F1B208FD540A709EC6A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:75:b4:30:7d:35:0f:41:15:56:38:de:21:b2: 67:dd:18:98:b3:83:d5:4f:75:71:31:26:f0:ce:5a: d7:da:13:5b:69:8d:f4:48:b6:0f:7a:ce:ad:19:73: 5f:7a:b7:97:ba:3a:0b:2f:e5:32:c4:10:b6:10:72: 27:e2:0e:c4:f0:cc:60:82:67:f3:d6:56:8d:8a:54: 6e:fb:b8:13:4b:4d:69:90:c5:24:09:4b:8b:74:30: fc:64:02:df:98:62:18:85:61:3d:7e:07:56:44:91: d2:5a:4e:29:88:f5:7b:28:a4:4b:79:4e:77:76:27: 2a:b1:74:22:95:5f:3b:e8:19:d8:3b:b9:9f:78:40: ea:50:7f:bf:b3:a4:e7:be:c3:51:ae:6b:c8:d0:d4: cb:5a:eb:01:b4:6b:d6:b1:55:40:26:67:24:52:c6: c9:11:31:ca:59:2f:e0:05:67:1a:c6:dc:92:71:97: ae:85:74:d8:df:f8:59:b3:8d:93:22:dd:c4:eb:b7: d1:5b:d6:91:58:c0:e1:3f:d2:39:ff:20:20:d9:13: 03:2f:24:ae:7c:11:c4:ac:40:98:f0:d9:d1:f3:a0: a5:b5:d6:00:42:19:0b:a2:89:7a:79:2a:58:32:0e: 26:8f:ba:60:bf:64:db:4e:45:79:c7:86:b1:df:cd: 5e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:5D:06:73:47:1D:0B:FC:C0:73:F1:B2:08:FD:54:0A:70:9E:C6:A2 X509v3 Authority Key Identifier: keyid:74:48:D6:6F:F3:29:D2:94:5C:52:EA:01:A5:67:57:8B:50:02:67:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dEjWb_Mp0pRcUuoBpWdXi1ACZxc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SYVC/pl0Gc0cdC_zAc_GyCP1UCnCexqI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:63e0::/32 Signature Algorithm: sha256WithRSAEncryption 22:56:33:58:e3:75:7f:20:fe:e1:52:c6:a9:e1:a0:64:36:12: 58:ea:f0:90:6b:7c:35:3b:07:47:de:5e:88:ce:4c:14:03:3d: b0:03:1e:06:f9:12:05:ff:c9:2f:42:98:c4:30:15:c0:12:9a: 2f:a0:46:19:68:9a:80:7c:1f:37:56:17:65:af:c0:c4:c3:12: d6:26:48:ab:1a:17:16:aa:1d:d1:2f:17:21:41:28:0f:f8:1a: fb:c1:7f:7b:0b:d5:78:8a:7d:b6:f5:70:18:da:08:4e:e1:5d: b1:f3:6b:ec:45:53:33:06:aa:03:db:60:9c:9b:06:10:7d:af: cd:e9:bf:b2:b3:91:81:ba:22:43:9b:4f:5c:f9:f4:ef:8b:44: 98:ee:db:90:4f:18:be:ef:bd:d6:e5:a5:59:03:f8:73:5b:f9: 4c:e6:94:b2:d9:60:ff:3c:63:95:e6:93:7f:eb:00:b6:ee:ed: 00:ea:5a:2c:7e:c7:72:60:aa:8b:a1:57:9f:34:f8:4b:ae:45: 38:7e:3b:a7:04:b6:42:0a:5d:a2:37:6f:63:e6:d0:4a:04:e6: 01:ef:22:0b:0f:ae:ff:0b:2a:c4:59:d9:9e:49:86:44:00:4f: 7a:6f:de:b6:73:f5:e5:8d:35:17:e3:96:67:bc:a1:e1:71:a7: 15:7b:19:6f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICAmcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzQ0 OEQ2NkZGMzI5RDI5NDVDNTJFQTAxQTU2NzU3OEI1MDAyNjcxNzAeFw0yNDA5MDYw MzEzMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE2NUQwNjczNDcxRDBC RkNDMDczRjFCMjA4RkQ1NDBBNzA5RUM2QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/dbQwfTUPQRVWON4hsmfdGJizg9VPdXExJvDOWtfaE1tpjfRI tg96zq0Zc196t5e6Ogsv5TLEELYQcifiDsTwzGCCZ/PWVo2KVG77uBNLTWmQxSQJ S4t0MPxkAt+YYhiFYT1+B1ZEkdJaTimI9XsopEt5Tnd2JyqxdCKVXzvoGdg7uZ94 QOpQf7+zpOe+w1Gua8jQ1Mta6wG0a9axVUAmZyRSxskRMcpZL+AFZxrG3JJxl66F dNjf+FmzjZMi3cTrt9Fb1pFYwOE/0jn/ICDZEwMvJK58EcSsQJjw2dHzoKW11gBC GQuiiXp5KlgyDiaPumC/ZNtORXnHhrHfzV69AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUpl0Gc0cdC/zAc/GyCP1UCnCexqIwHwYDVR0jBBgwFoAUdEjWb/Mp0pRcUuoB pWdXi1ACZxcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1lWQy9k RWpXYl9NcDBwUmNVdW9CcFdkWGkxQUNaeGMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2RFaldiX01wMHBSY1V1b0JwV2RYaTFBQ1p4Yy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NZVkMvcGwwR2MwY2RDX3pBY19HeUNQMVVD bkNleHFJLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQAY+Aw DQYJKoZIhvcNAQELBQADggEBACJWM1jjdX8g/uFSxqnhoGQ2Eljq8JBrfDU7B0fe XojOTBQDPbADHgb5EgX/yS9CmMQwFcASmi+gRhlomoB8HzdWF2WvwMTDEtYmSKsa FxaqHdEvFyFBKA/4GvvBf3sL1XiKfbb1cBjaCE7hXbHza+xFUzMGqgPbYJybBhB9 r83pv7KzkYG6IkObT1z59O+LRJju25BPGL7vvdblpVkD+HNb+UzmlLLZYP88Y5Xm k3/rALbu7QDqWix+x3JgqouhV580+EuuRTh+O6cEtkIKXaI3b2Pm0EoE5gHvIgsP rv8LKsRZ2Z5JhkQAT3pv3rZz9eWNNRfjlme8oeFxpxV7GW8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org