$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Ua25SDqXTHt75x64h163xrjyQgg.roa File: Ua25SDqXTHt75x64h163xrjyQgg.roa (raw, json) Hash identifier: CJqOlc7wAJVVO5shRq/SSFzvpEQcZs/RiugI9RT4uv4= Subject key identifier: 51:AD:B9:48:3A:97:4C:7B:7B:E7:1E:B8:87:5E:B7:C6:B8:F2:42:08 Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0C9E Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Ua25SDqXTHt75x64h163xrjyQgg.roa Signing time: Mon 26 Aug 2024 05:26:54 +0000 ROA not before: Mon 26 Aug 2024 05:26:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 101.3.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3230 (0xc9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 26 05:26:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=51ADB9483A974C7B7BE71EB8875EB7C6B8F24208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:a6:6a:6a:21:f5:a7:98:72:a8:68:fb:a8:88: e9:f1:8b:06:9e:0d:e2:4e:47:af:43:c5:c4:cb:49: d8:0c:38:32:b8:ee:f4:c7:45:67:c6:25:60:02:92: f5:9f:82:01:b9:a5:ca:cf:5a:24:d5:f9:3b:91:48: 6f:fe:b1:98:bc:2c:b5:8b:36:cb:8b:82:2e:a6:a9: 9b:5f:e2:69:ea:85:d5:60:53:32:4a:21:58:eb:f5: 1a:4b:91:8a:09:4e:62:f5:17:58:eb:3e:cf:c9:19: 2d:8e:9c:05:62:00:6a:a9:d6:5c:58:0d:96:ce:fe: 9f:e4:47:f1:7b:fc:b9:2f:e7:b9:22:c8:84:ae:47: b4:95:f8:d6:66:b8:2b:5b:29:8b:bc:eb:c9:74:57: d8:79:c1:04:b6:99:e2:7f:c2:30:62:2d:f2:c6:93: c3:c1:15:8d:a0:9b:87:0e:fa:07:1b:cc:9f:ee:fd: 2f:e6:ac:82:29:3b:7a:0d:24:0a:a8:db:22:ce:25: 8f:15:7c:ab:36:b8:c8:14:d8:83:7d:f3:b3:b1:46: 26:46:c7:17:d5:b5:5a:87:c1:3a:ea:c6:83:1f:b1: 81:95:01:c6:de:06:32:1c:95:67:16:22:9f:ea:9f: 45:fc:73:12:b5:9b:73:70:8e:66:1a:57:48:e0:82: c4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:AD:B9:48:3A:97:4C:7B:7B:E7:1E:B8:87:5E:B7:C6:B8:F2:42:08 X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/Ua25SDqXTHt75x64h163xrjyQgg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.3.112.0/20 Signature Algorithm: sha256WithRSAEncryption a0:b4:4b:63:ca:5f:de:6b:36:cd:e7:2d:d8:46:55:ff:15:d9: a8:f6:63:2e:94:99:02:e0:51:93:d4:ea:13:af:0a:70:7d:25: 4d:29:84:ce:4d:b5:6e:a2:69:2c:6d:1b:5d:3c:ea:83:98:7d: fe:9b:a5:6e:65:13:5b:3b:b8:9d:5e:3e:02:37:8f:69:f4:43: 51:33:7f:ff:1b:6e:1a:56:ba:5b:9b:11:ee:58:13:db:86:4c: 2e:07:d5:ec:54:6a:03:13:04:e8:9a:92:11:cb:6b:89:bd:b0: f9:99:04:fa:09:01:ff:68:75:34:e7:88:de:a1:aa:85:0e:1b: 88:00:77:c1:40:10:e4:87:47:2c:f3:ba:42:1f:fc:8b:f2:ce: 10:cb:ad:61:b0:84:6f:59:b4:74:be:6f:7b:d9:08:7b:34:3a: 7a:58:e3:15:06:e1:b9:3a:68:f8:4e:97:81:ff:b9:33:bd:e9: 03:fc:34:4a:04:7e:c2:14:57:6b:f4:da:7c:6d:ec:b6:9d:c8: 8c:be:4e:49:54:e7:4f:a6:4f:38:bc:5d:9b:eb:b9:24:1f:de: 33:6b:0a:a8:27:a0:9f:ac:0f:fb:d1:49:0a:77:c1:1e:1c:2f: d2:08:90:3a:c0:80:a4:2c:40:18:57:84:e2:36:3f:fb:ed:9d: 8c:cc:d9:56 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDJ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNDA4MjYw NTI2NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxQURCOTQ4M0E5NzRD N0I3QkU3MUVCODg3NUVCN0M2QjhGMjQyMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJpmpqIfWnmHKoaPuoiOnxiwaeDeJOR69DxcTLSdgMODK47vTH RWfGJWACkvWfggG5pcrPWiTV+TuRSG/+sZi8LLWLNsuLgi6mqZtf4mnqhdVgUzJK IVjr9RpLkYoJTmL1F1jrPs/JGS2OnAViAGqp1lxYDZbO/p/kR/F7/Lkv57kiyISu R7SV+NZmuCtbKYu868l0V9h5wQS2meJ/wjBiLfLGk8PBFY2gm4cO+gcbzJ/u/S/m rIIpO3oNJAqo2yLOJY8VfKs2uMgU2IN987OxRiZGxxfVtVqHwTrqxoMfsYGVAcbe BjIclWcWIp/qn0X8cxK1m3NwjmYaV0jggsSHAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUUa25SDqXTHt75x64h163xrjyQggwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L1VhMjVTRHFYVEh0 NzV4NjRoMTYzeHJqeVFnZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARlA3AwDQYJKoZIhvcNAQELBQADggEBAKC0S2PKX95rNs3nLdhGVf8V2aj2 Yy6UmQLgUZPU6hOvCnB9JU0phM5NtW6iaSxtG1086oOYff6bpW5lE1s7uJ1ePgI3 j2n0Q1Ezf/8bbhpWulubEe5YE9uGTC4H1exUagMTBOiakhHLa4m9sPmZBPoJAf9o dTTniN6hqoUOG4gAd8FAEOSHRyzzukIf/IvyzhDLrWGwhG9ZtHS+b3vZCHs0OnpY 4xUG4bk6aPhOl4H/uTO96QP8NEoEfsIUV2v02nxt7LadyIy+TklU50+mTzi8XZvr uSQf3jNrCqgnoJ+sD/vRSQp3wR4cL9IIkDrAgKQsQBhXhOI2P/vtnYzM2VY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org