$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/8XD8DRxi_Z-YdUBDwkIfae2W7Qo.roa File: 8XD8DRxi_Z-YdUBDwkIfae2W7Qo.roa (raw, json) Hash identifier: BHr75iTDGSsgNsIrWr30kwvlVigyX7WiSgKLB7n61vo= Subject key identifier: F1:70:FC:0D:1C:62:FD:9F:98:75:40:43:C2:42:1F:69:ED:96:ED:0A Certificate issuer: /CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Certificate serial: A2 Authority key identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/8XD8DRxi_Z-YdUBDwkIfae2W7Qo.roa Signing time: Thu 07 Nov 2024 14:36:00 +0000 ROA not before: Thu 07 Nov 2024 14:36:00 +0000 ROA not after: Wed 08 Oct 2025 15:30:28 +0000 asID: 62517 IP address blocks: 160.187.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 18:53:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Validity Not Before: Nov 7 14:36:00 2024 GMT Not After : Oct 8 15:30:28 2025 GMT Subject: CN=F170FC0D1C62FD9F98754043C2421F69ED96ED0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:89:b4:b3:b0:f2:0e:07:83:b0:63:60:6e:3f: 0c:b3:b8:a4:1b:b4:5e:ca:d8:75:d3:95:8d:25:ba: 18:90:b7:63:fa:8c:00:49:33:7f:05:4d:90:50:2c: 4b:4f:b6:af:52:10:d1:24:2f:a2:e9:33:5b:df:94: cc:2d:94:29:09:b2:d8:f2:91:5c:a0:79:a7:e6:42: 84:1c:a9:0e:da:6d:b0:b7:4b:cc:51:cf:95:eb:68: 45:8c:75:8e:78:b4:67:0a:17:9d:18:02:3c:fd:ae: 02:71:07:a9:bd:e2:08:56:06:2c:4e:d5:50:97:ca: 86:a1:ae:9f:55:a3:ca:0c:18:7a:37:43:37:a7:e3: a3:f9:08:5c:6f:7f:c0:69:26:d0:73:8f:21:60:60: de:5d:49:ce:c6:78:d8:06:ec:e8:bc:68:47:bf:fb: d3:ad:ad:7c:09:d7:2a:5f:96:d8:1b:15:1d:29:c2: 6a:50:81:d9:cf:d8:4a:b9:36:22:55:a6:a0:cb:1c: 2c:2a:39:85:59:95:2d:ad:f3:7f:c4:61:5a:7e:ad: d5:3a:db:f8:b8:8d:98:7f:ff:b3:9b:29:5a:c6:4b: 52:fb:0a:0b:f4:00:46:c9:70:50:60:1e:1d:42:81: 7c:1f:67:e6:d0:5e:b7:6e:e2:cb:70:28:24:5d:ea: 9e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:70:FC:0D:1C:62:FD:9F:98:75:40:43:C2:42:1F:69:ED:96:ED:0A X509v3 Authority Key Identifier: keyid:4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/8XD8DRxi_Z-YdUBDwkIfae2W7Qo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.187.201.0/24 Signature Algorithm: sha256WithRSAEncryption b8:29:87:2a:bc:ff:db:50:e1:b2:2c:b5:e3:65:ad:c5:7a:ba: 3e:8a:60:bc:0a:21:58:91:1b:79:12:30:be:7d:09:fd:63:63: a8:32:8d:3a:88:62:bb:49:04:bd:25:39:cc:88:a1:99:d5:af: 22:a6:3e:cb:26:db:4f:bf:9f:0c:27:f1:cc:30:9c:d7:a4:54: a0:38:c4:9b:df:8c:eb:a9:73:72:c7:c8:c5:6e:20:9f:42:bb: da:b6:8a:a3:36:7f:40:f4:30:12:3a:f0:68:af:c6:cb:91:29: a1:d3:88:f7:5f:77:69:8c:3a:e3:7c:2a:4f:9d:d2:13:aa:22: a4:46:3f:49:cd:e3:6a:2a:34:05:30:67:52:30:42:e3:10:ae: 95:cd:90:d1:69:a3:24:a3:8d:31:f4:a3:79:5a:52:95:3d:4e: 06:b1:26:57:28:74:10:e6:d4:a8:45:a2:c5:18:a0:fa:0b:a4: d9:17:26:66:18:00:e1:ff:73:fd:9c:b6:2b:ba:b8:f6:78:2c: 34:02:0d:be:f7:da:55:cf:b2:54:56:f3:06:60:25:06:f7:45: b8:50:aa:ee:99:7d:92:82:77:c3:ad:dc:dc:6b:5f:80:e4:96: 78:ee:08:eb:f8:32:d8:20:74:7c:5d:e4:7c:4a:c3:86:17:b6: f8:17:50:8f -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEI0 NkNFOEY4MDMxQkFCNzUzNjREQTVCRDk4MUU4ODg1MDRGQjQxMTAeFw0yNDExMDcx NDM2MDBaFw0yNTEwMDgxNTMwMjhaMDMxMTAvBgNVBAMTKEYxNzBGQzBEMUM2MkZE OUY5ODc1NDA0M0MyNDIxRjY5RUQ5NkVEMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfibSzsPIOB4OwY2BuPwyzuKQbtF7K2HXTlY0luhiQt2P6jABJ M38FTZBQLEtPtq9SENEkL6LpM1vflMwtlCkJstjykVygeafmQoQcqQ7abbC3S8xR z5XraEWMdY54tGcKF50YAjz9rgJxB6m94ghWBixO1VCXyoahrp9Vo8oMGHo3Qzen 46P5CFxvf8BpJtBzjyFgYN5dSc7GeNgG7Oi8aEe/+9OtrXwJ1ypfltgbFR0pwmpQ gdnP2Eq5NiJVpqDLHCwqOYVZlS2t83/EYVp+rdU62/i4jZh//7ObKVrGS1L7Cgv0 AEbJcFBgHh1CgXwfZ+bQXrdu4stwKCRd6p4dAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU8XD8DRxi/Z+YdUBDwkIfae2W7QowHwYDVR0jBBgwFoAUS0bOj4AxurdTZNpb 2YHoiFBPtBEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO X05PMS9TMGJPajRBeHVyZFRaTnBiMllIb2lGQlB0QkUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1MwYk9qNEF4dXJkVFpOcGIyWUhvaUZCUHRCRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RBSVdBTl9OTzEvOFhEOERSeGlf Wi1ZZFVCRHdrSWZhZTJXN1FvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAKC7yTANBgkqhkiG9w0BAQsFAAOCAQEAuCmHKrz/21Dhsiy142WtxXq6 PopgvAohWJEbeRIwvn0J/WNjqDKNOohiu0kEvSU5zIihmdWvIqY+yybbT7+fDCfx zDCc16RUoDjEm9+M66lzcsfIxW4gn0K72raKozZ/QPQwEjrwaK/Gy5EpodOI9193 aYw643wqT53SE6oipEY/Sc3jaio0BTBnUjBC4xCulc2Q0WmjJKONMfSjeVpSlT1O BrEmVyh0EObUqEWixRig+guk2RcmZhgA4f9z/Zy2K7q49ngsNAINvvfaVc+yVFbz BmAlBvdFuFCq7pl9koJ3w63c3GtfgOSWeO4I6/gy2CB0fF3kfErDhhe2+BdQjw== -----END CERTIFICATE-----Generated at Fri Nov 22 15:07:06 2024 by rpki-client on console-ams.rpki-client.org