$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa File: 6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa (raw, json) Hash identifier: 9y4syfuWgSlgHZUa8uG5XUiugjb6ttA5WtPxYUxgUhA= Subject key identifier: EB:0A:FE:63:90:94:A8:B8:89:34:BF:83:8D:E9:B2:E1:5F:30:D6:97 Certificate issuer: /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Certificate serial: 0DEA Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa Signing time: Mon 26 Aug 2024 05:27:18 +0000 ROA not before: Mon 26 Aug 2024 05:27:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 140.138.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3562 (0xdea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A Validity Not Before: Aug 26 05:27:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EB0AFE639094A8B88934BF838DE9B2E15F30D697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:92:2e:33:e2:8b:a8:41:79:1e:06:01:73:02: f3:96:97:73:36:c8:a5:da:a8:9a:bb:dd:a7:8b:b4: e9:8c:59:29:9b:29:b5:57:e3:57:7b:65:4d:cc:7a: 6f:d9:43:8e:31:57:d6:f3:7f:ac:92:93:65:60:12: dc:f6:ac:10:c8:b8:b3:c6:f0:15:55:8e:19:46:2c: 53:32:3b:9b:be:e9:e9:6c:fc:d6:ff:27:dd:0b:20: c4:0f:f0:1b:e6:9a:a3:26:20:99:f5:e8:6e:08:df: fe:1d:6a:f3:49:95:67:a9:d5:8f:a1:33:c6:de:e7: fd:64:83:d6:62:58:57:1b:21:44:3c:b9:c2:55:80: 00:8b:61:7f:e1:44:9e:79:2a:fc:77:90:f1:43:7d: cd:74:42:7c:16:9c:f7:d5:56:04:af:d8:4b:1e:3f: 8c:ce:83:c1:2a:fe:ec:b6:1f:97:2a:c3:58:d3:e4: 94:31:6d:27:ae:c0:11:da:59:20:c0:58:43:9b:f9: 5b:98:fc:c4:d4:f0:4d:32:97:da:ca:48:9d:ec:70: 9d:c8:f1:d1:fb:79:72:e5:b5:99:a4:3d:70:17:c9: 9d:d0:7e:ce:f1:1a:31:7c:88:11:c5:1c:07:b4:1e: da:11:67:01:25:d8:67:7b:46:bb:fb:94:1a:89:58: ab:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0A:FE:63:90:94:A8:B8:89:34:BF:83:8D:E9:B2:E1:5F:30:D6:97 X509v3 Authority Key Identifier: keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6wr-Y5CUqLiJNL-Djemy4V8w1pc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 140.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption 76:a9:2c:d6:94:9c:8a:a3:fc:6d:92:c0:b3:38:74:81:86:d8: f6:94:9e:c3:62:1e:1e:cb:6f:00:75:4f:66:93:6c:83:3a:49: df:bd:25:98:e2:9a:d3:0c:c1:ae:3b:fa:95:f2:dd:3a:aa:17: a9:15:f1:cd:74:e8:ac:bf:c5:52:fd:7f:98:e2:57:8b:a9:5e: b0:6c:ae:41:f7:10:a7:c9:3f:85:23:c3:60:6f:fc:59:7b:cf: 61:e2:f7:44:c4:5e:96:d3:0c:d6:5e:4b:da:43:a8:84:8a:f6: b8:14:34:53:92:f6:a5:c3:59:75:aa:94:6d:f8:93:5e:af:10: 56:e1:79:51:9f:c9:1d:2a:0a:8f:00:59:01:6d:34:0d:57:4b: d9:8f:82:27:f5:8e:e3:9c:b4:72:e4:a2:90:1e:9b:3e:f8:39: e7:2d:3a:a4:7d:1d:f3:5e:49:b9:62:fc:61:02:1c:5f:61:f4: 4b:02:ee:bb:20:03:0e:f2:a3:11:ef:48:fa:b6:ae:b7:1b:22: aa:ed:5c:d5:98:21:2c:f3:68:43:96:98:10:e4:33:11:bb:1a: e3:53:ce:54:4a:62:74:0e:c0:55:8a:19:3d:c3:a1:de:87:96: 9e:5c:e4:39:48:9c:32:93:bb:7a:57:e4:fc:0a:5b:86:a0:88: ba:7c:fd:0a -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDeowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU3 QjEwMzcyQTY4NkUzRkY3MzY1NkJFQjVDRDNERUJDOTMyMzcxQTAeFw0yNDA4MjYw NTI3MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCMEFGRTYzOTA5NEE4 Qjg4OTM0QkY4MzhERTlCMkUxNUYzMEQ2OTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzki4z4ouoQXkeBgFzAvOWl3M2yKXaqJq73aeLtOmMWSmbKbVX 41d7ZU3Mem/ZQ44xV9bzf6ySk2VgEtz2rBDIuLPG8BVVjhlGLFMyO5u+6els/Nb/ J90LIMQP8BvmmqMmIJn16G4I3/4davNJlWep1Y+hM8be5/1kg9ZiWFcbIUQ8ucJV gACLYX/hRJ55Kvx3kPFDfc10QnwWnPfVVgSv2EseP4zOg8Eq/uy2H5cqw1jT5JQx bSeuwBHaWSDAWEOb+VuY/MTU8E0yl9rKSJ3scJ3I8dH7eXLltZmkPXAXyZ3Qfs7x GjF8iBHFHAe0HtoRZwEl2Gd7Rrv7lBqJWKuVAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU6wr+Y5CUqLiJNL+Djemy4V8w1pcwHwYDVR0jBBgwFoAURXsQNypobj/3Nla+ tc0968kyNxowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv UlhzUU55cG9ial8zTmxhLXRjMDk2OGt5TnhvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SWHNRTnlwb2JqXzNObGEtdGMwOTY4a3lOeG8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC82d3ItWTVDVXFMaUpOTC1EamVt eTRWOHcxcGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAjIow DQYJKoZIhvcNAQELBQADggEBAHapLNaUnIqj/G2SwLM4dIGG2PaUnsNiHh7LbwB1 T2aTbIM6Sd+9JZjimtMMwa47+pXy3TqqF6kV8c106Ky/xVL9f5jiV4upXrBsrkH3 EKfJP4Ujw2Bv/Fl7z2Hi90TEXpbTDNZeS9pDqISK9rgUNFOS9qXDWXWqlG34k16v EFbheVGfyR0qCo8AWQFtNA1XS9mPgif1juOctHLkopAemz74OectOqR9HfNeSbli /GECHF9h9EsC7rsgAw7yoxHvSPq2rrcbIqrtXNWYISzzaEOWmBDkMxG7GuNTzlRK YnQOwFWKGT3Dod6Hlp5c5DlInDKTu3pX5PwKW4agiLp8/Qo= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:15 2024 by rpki-client on console-ams.rpki-client.org