$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/6z9OrOvILjugeNuCY2ksmMDwZq4.roa File: 6z9OrOvILjugeNuCY2ksmMDwZq4.roa (raw, json) Hash identifier: ySSpNDMZ0NboJOA0NPBWwTLhHe+vWQ91sayH7KOUWyo= Subject key identifier: EB:3F:4E:AC:EB:C8:2E:3B:A0:78:DB:82:63:69:2C:98:C0:F0:66:AE Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E57 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6z9OrOvILjugeNuCY2ksmMDwZq4.roa Signing time: Mon 26 Aug 2024 05:27:16 +0000 ROA not before: Mon 26 Aug 2024 05:27:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 163.32.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3671 (0xe57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EB3F4EACEBC82E3BA078DB8263692C98C0F066AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1a:3b:9b:c9:55:3b:df:0b:38:83:b8:8d:87: ef:af:a2:aa:fd:35:1f:b5:68:89:be:c3:f1:6e:2e: b9:20:e2:f8:c1:b0:d4:73:c0:c9:62:ae:19:c3:0c: 77:64:c7:2a:92:79:a8:fe:5b:80:32:d7:91:4e:b6: b7:eb:15:f7:e7:0c:76:0a:d4:e5:16:df:6e:69:92: 4e:7d:7b:0a:46:8b:ec:15:ba:ff:44:04:a5:93:ae: bd:68:6e:65:68:0b:f4:72:62:61:b9:c5:cf:69:2f: ec:87:bf:d3:51:39:ed:29:90:a0:b4:b8:e6:67:0c: 26:4b:9d:d5:21:a4:72:5b:a7:79:49:d2:35:db:fe: 44:bd:28:cd:bc:52:aa:e6:47:b2:3f:4c:ab:83:7e: 63:d6:c8:5a:0c:4e:ba:aa:ae:b2:3b:16:a5:a5:6d: 3d:23:66:35:7f:f2:5b:14:ba:c1:32:52:ba:90:54: 27:34:ef:7c:d9:58:10:aa:e5:6e:60:fb:c2:31:e3: dd:87:c1:70:91:b4:27:8c:aa:88:3d:b0:d6:b9:32: 79:95:e6:16:bb:3c:88:44:9d:85:1a:0e:d7:8d:c6: 01:2d:f0:f0:b7:96:6f:da:a6:63:a0:12:97:63:f2: 1a:17:32:80:b9:2e:b2:dd:55:46:63:a0:32:c0:62: 97:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:3F:4E:AC:EB:C8:2E:3B:A0:78:DB:82:63:69:2C:98:C0:F0:66:AE X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/6z9OrOvILjugeNuCY2ksmMDwZq4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 163.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:0a:09:c5:fd:10:21:49:a6:2c:54:f9:db:ee:b5:88:91:bd: ae:df:db:72:5e:e8:6a:16:0c:04:35:bb:a0:28:4f:0d:03:a8: b6:ec:17:5e:07:75:53:ad:af:38:57:fd:aa:29:6e:9b:79:e0: f7:2a:09:23:22:87:79:25:f9:ca:5c:25:42:a0:4f:a5:c5:8a: cf:9f:63:e1:01:a9:c1:67:60:cf:a2:af:a7:e0:9f:39:a4:9e: 48:64:33:6f:f4:87:ad:eb:dd:9f:c8:cb:87:1d:78:ca:fe:5d: 29:31:40:0c:cf:39:b6:26:cd:57:5c:ea:1e:05:fa:d1:5f:f7: db:18:ac:f8:64:79:b7:72:5c:5a:48:ea:d8:2d:84:2b:e6:3d: 3c:d6:3b:3e:d6:95:3e:15:b5:58:98:34:c1:d1:3e:b1:a9:79: c2:4c:08:be:82:66:b7:83:29:c3:1a:5e:a4:a8:b5:72:17:01: 7e:34:d0:67:ab:f0:a8:9c:41:36:fb:06:a6:30:3a:c3:28:9c: 8e:a2:2d:ec:c5:4c:a9:84:1e:15:4e:31:a4:bf:4c:bc:39:d1: fe:0c:dc:0f:7e:45:62:c2:c9:66:21:61:0d:82:2b:a4:a1:ff: a0:4a:4d:1d:18:cc:a8:e5:88:b4:fc:20:3c:5e:94:33:fb:e8: bb:e3:f2:e6 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDlcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCM0Y0RUFDRUJDODJF M0JBMDc4REI4MjYzNjkyQzk4QzBGMDY2QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIGjubyVU73ws4g7iNh++voqr9NR+1aIm+w/FuLrkg4vjBsNRz wMlirhnDDHdkxyqSeaj+W4Ay15FOtrfrFffnDHYK1OUW325pkk59ewpGi+wVuv9E BKWTrr1obmVoC/RyYmG5xc9pL+yHv9NROe0pkKC0uOZnDCZLndUhpHJbp3lJ0jXb /kS9KM28UqrmR7I/TKuDfmPWyFoMTrqqrrI7FqWlbT0jZjV/8lsUusEyUrqQVCc0 73zZWBCq5W5g+8Ix492HwXCRtCeMqog9sNa5MnmV5ha7PIhEnYUaDteNxgEt8PC3 lm/apmOgEpdj8hoXMoC5LrLdVUZjoDLAYpd3AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU6z9OrOvILjugeNuCY2ksmMDwZq4wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC82ejlPck92SUxqdWdlTnVDWTJr c21NRHdacTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAoyAw DQYJKoZIhvcNAQELBQADggEBABUKCcX9ECFJpixU+dvutYiRva7f23Je6GoWDAQ1 u6AoTw0DqLbsF14HdVOtrzhX/aopbpt54PcqCSMih3kl+cpcJUKgT6XFis+fY+EB qcFnYM+ir6fgnzmknkhkM2/0h63r3Z/Iy4cdeMr+XSkxQAzPObYmzVdc6h4F+tFf 99sYrPhkebdyXFpI6tgthCvmPTzWOz7WlT4VtViYNMHRPrGpecJMCL6CZreDKcMa XqSotXIXAX400Ger8KicQTb7BqYwOsMonI6iLezFTKmEHhVOMaS/TLw50f4M3A9+ RWLCyWYhYQ2CK6Sh/6BKTR0YzKjliLT8IDxelDP76Lvj8uY= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org