$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/pZtwS275UL1ejChoLT8o6eZPlbk.roa File: pZtwS275UL1ejChoLT8o6eZPlbk.roa (raw, json) Hash identifier: a64pIrH32lrk6V0TKEQzacdYtcvAi4VQyAdwwB/Z1GU= Subject key identifier: A5:9B:70:4B:6E:F9:50:BD:5E:8C:28:68:2D:3F:28:E9:E6:4F:95:B9 Certificate issuer: /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Certificate serial: 0CA0 Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/pZtwS275UL1ejChoLT8o6eZPlbk.roa Signing time: Mon 26 Aug 2024 05:26:54 +0000 ROA not before: Mon 26 Aug 2024 05:26:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 101.3.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3232 (0xca0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9 Validity Not Before: Aug 26 05:26:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A59B704B6EF950BD5E8C28682D3F28E9E64F95B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d4:a9:9a:1f:b8:30:8a:4d:dd:5d:d9:eb:cc: 09:55:1f:7e:c5:e7:6a:06:1d:ea:64:89:f9:1e:b7: f8:33:65:f7:3b:af:27:93:85:9c:7d:42:39:49:25: 97:9e:a2:51:4f:c9:64:1e:b0:b9:6f:74:74:da:10: 4e:40:88:65:b7:a3:15:da:f0:35:a5:77:89:63:5a: b2:52:61:1e:f6:90:14:92:cc:f8:5d:f3:cb:1e:70: 01:37:c4:63:76:6c:f8:9c:a5:cc:5d:6e:2c:c9:b9: 05:6c:25:9f:2d:fa:60:70:5c:87:46:80:f4:e5:6e: b5:7e:90:0c:5a:c9:99:3d:72:41:11:af:0e:15:ac: 2c:60:cf:26:19:e5:b6:49:61:b4:fd:f5:41:83:39: 2e:04:f6:02:10:4d:8a:8b:7c:46:8e:62:9c:4d:14: e7:51:58:55:e1:c9:be:d3:60:3c:2f:89:16:cc:eb: 80:66:bb:6e:9a:1f:0d:da:65:ac:02:2d:59:39:b7: d1:a9:0b:68:0a:70:f4:7b:d0:21:4d:db:30:01:d8: c7:fe:22:2b:05:db:19:1b:c2:81:54:b5:e2:76:11: 6b:18:2d:7e:6c:8e:4c:f1:77:97:06:b1:bf:d1:53: bd:30:c0:3f:7f:5e:32:8e:f7:26:d7:a2:2f:c6:a3: a6:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:9B:70:4B:6E:F9:50:BD:5E:8C:28:68:2D:3F:28:E9:E6:4F:95:B9 X509v3 Authority Key Identifier: keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/pZtwS275UL1ejChoLT8o6eZPlbk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.3.128.0/19 Signature Algorithm: sha256WithRSAEncryption 6f:d0:37:b9:79:c9:f5:aa:72:3a:98:e7:62:8f:2f:d7:36:3c: b3:81:bf:93:52:71:03:cb:b9:49:7c:58:b5:08:47:47:7f:5f: 10:69:b9:fe:29:b2:36:00:ae:06:34:9b:17:8a:87:a0:e6:ef: 1b:cc:34:fc:f1:c7:05:65:e9:14:1f:b9:4e:5c:91:41:6a:ba: 81:54:fe:91:5d:e6:df:19:7f:9c:4f:1a:fb:d7:2d:b1:3d:a4: 98:81:b6:5d:dd:ae:3b:c9:29:00:36:f3:0e:9e:01:47:d3:79: b6:4e:1c:ba:b8:e7:42:40:9d:25:54:e5:ab:50:fd:79:9f:f0: 92:50:2f:d6:53:2b:6b:87:db:a4:1a:cc:6c:20:d8:76:dc:a6: b6:27:d1:5d:54:31:06:8f:be:cf:0a:f4:27:91:f6:da:a4:ef: 5b:11:70:f0:1a:92:90:41:c1:73:3c:6b:cf:f9:7f:bf:29:fd: 1d:40:09:ac:b9:6b:51:23:a3:e1:79:c9:59:b0:a9:21:5f:41: 7a:5b:5c:57:47:46:7f:17:fc:52:98:6d:a1:a7:f4:da:26:41: e3:4a:84:f0:e6:f0:02:b0:a5:fe:29:d8:b1:de:5f:be:65:42: 1b:bb:ec:da:ce:b7:0e:7f:07:dc:fa:b4:7f:48:1b:93:fc:b0: fc:20:07:09 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDKAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREY1 NjczQTE5NzIxMjZFN0QyQ0M1RDRENTFCNDkxMDgzNDVCRjhDOTAeFw0yNDA4MjYw NTI2NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1OUI3MDRCNkVGOTUw QkQ1RThDMjg2ODJEM0YyOEU5RTY0Rjk1QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+1KmaH7gwik3dXdnrzAlVH37F52oGHepkifket/gzZfc7ryeT hZx9QjlJJZeeolFPyWQesLlvdHTaEE5AiGW3oxXa8DWld4ljWrJSYR72kBSSzPhd 88secAE3xGN2bPicpcxdbizJuQVsJZ8t+mBwXIdGgPTlbrV+kAxayZk9ckERrw4V rCxgzyYZ5bZJYbT99UGDOS4E9gIQTYqLfEaOYpxNFOdRWFXhyb7TYDwviRbM64Bm u26aHw3aZawCLVk5t9GpC2gKcPR70CFN2zAB2Mf+IisF2xkbwoFUteJ2EWsYLX5s jkzxd5cGsb/RU70wwD9/XjKO9ybXoi/Go6ZhAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUpZtwS275UL1ejChoLT8o6eZPlbkwHwYDVR0jBBgwFoAU31ZzoZchJufSzF1N UbSRCDRb+MkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83 NzE2LzMxWnpvWmNoSnVmU3pGMU5VYlNSQ0RSYi1Nay5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMzFaem9aY2hKdWZTekYxTlViU1JDRFJiLU1rLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJRk83NzE2L3BadHdTMjc1VUwx ZWpDaG9MVDhvNmVaUGxiay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVlA4AwDQYJKoZIhvcNAQELBQADggEBAG/QN7l5yfWqcjqY52KPL9c2PLOB v5NScQPLuUl8WLUIR0d/XxBpuf4psjYArgY0mxeKh6Dm7xvMNPzxxwVl6RQfuU5c kUFquoFU/pFd5t8Zf5xPGvvXLbE9pJiBtl3drjvJKQA28w6eAUfTebZOHLq450JA nSVU5atQ/Xmf8JJQL9ZTK2uH26QazGwg2HbcprYn0V1UMQaPvs8K9CeR9tqk71sR cPAakpBBwXM8a8/5f78p/R1ACay5a1Ejo+F5yVmwqSFfQXpbXFdHRn8X/FKYbaGn 9NomQeNKhPDm8AKwpf4p2LHeX75lQhu77NrOtw5/B9z6tH9IG5P8sPwgBwk= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org