$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ZK6TM1QGAc0DXccjFKa_HDEAoJU.roa File: ZK6TM1QGAc0DXccjFKa_HDEAoJU.roa (raw, json) Hash identifier: bDOjF+K2zd9uOf/63rSoq6Kk3BbYimeSwEGZPbSnylE= Subject key identifier: 64:AE:93:33:54:06:01:CD:03:5D:C7:23:14:A6:BF:1C:31:00:A0:95 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E59 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZK6TM1QGAc0DXccjFKa_HDEAoJU.roa Signing time: Mon 26 Aug 2024 05:27:17 +0000 ROA not before: Mon 26 Aug 2024 05:27:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 203.72.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3673 (0xe59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=64AE9333540601CD035DC72314A6BF1C3100A095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f1:65:08:7d:eb:38:d5:72:3f:6a:a6:38:3a: 6c:8d:30:fc:d1:30:a7:ef:4c:60:2b:26:03:2e:1b: b9:4e:51:60:a1:fd:8a:12:7f:64:32:78:0f:40:70: 8b:01:3d:52:55:2a:2b:7f:96:44:25:08:82:ef:55: f5:71:fa:f8:a8:ae:b5:42:7f:06:70:68:b0:74:2f: 8f:21:b0:c4:6f:c6:c9:05:7b:1c:8b:14:9d:b4:8f: 3a:5e:d6:ba:53:8e:de:12:a2:44:59:b1:69:bb:5b: e7:04:10:f3:57:c7:3d:ab:06:a4:bc:42:a2:a0:b1: a5:9f:c5:c6:00:a9:50:50:1b:4a:ad:0c:c4:5f:d8: 82:95:81:90:47:0a:7f:89:de:c6:4a:00:34:dd:12: 70:d5:2a:8e:a6:95:cc:74:e1:38:a8:e8:8e:e5:d1: d8:07:78:c2:dd:86:5f:be:b5:54:d3:d3:a4:be:da: 36:f4:d8:f4:a4:9a:9b:c1:c7:c9:17:94:3d:f5:b3: b5:13:82:c9:0f:52:c7:5b:41:8f:30:b7:1d:82:39: fc:d7:5b:d7:19:44:95:28:08:67:c6:a7:5b:35:96: 94:c3:f8:a9:c0:0e:f0:76:e0:61:76:e1:60:6b:1c: bf:8c:e9:a6:24:2e:38:e0:37:bf:e9:56:5e:fa:a4: 66:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:AE:93:33:54:06:01:CD:03:5D:C7:23:14:A6:BF:1C:31:00:A0:95 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZK6TM1QGAc0DXccjFKa_HDEAoJU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.72.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:c3:68:8a:64:1a:af:f3:cd:95:24:c3:df:6a:f1:1b:60:79: f7:ab:16:04:3e:3e:29:02:07:5b:05:50:af:f5:4f:18:79:14: e6:ca:26:d8:29:ea:0e:19:6f:27:2f:41:8f:3b:9f:e5:fd:af: ba:f5:3f:fe:9b:ed:90:21:32:5b:b1:dc:36:33:02:3f:b4:2c: 00:93:b5:ab:1a:ea:d9:be:86:34:25:a6:e1:96:cb:b1:3c:99: f1:ad:29:16:26:f4:82:ef:48:8f:71:c2:35:f6:9f:a9:68:49: 66:c3:28:4f:b3:f5:bd:e3:c7:95:11:d9:da:3b:92:14:1e:7d: 5c:dc:3e:f0:71:8f:de:d7:42:14:30:7e:1f:a7:01:d8:a0:88: 33:40:76:09:14:5d:eb:ff:d3:a8:92:75:98:b2:c7:f3:03:20: da:b1:11:68:91:9e:17:59:96:20:32:b7:45:e4:e7:00:78:f1: 1b:58:aa:c8:f3:31:48:40:cf:ac:78:7c:18:20:d0:93:c9:7d: f3:11:32:fa:13:d2:86:ea:19:f8:f9:c7:a9:3c:03:b4:5a:c0: 97:72:b3:39:e2:3a:4a:34:3c:5d:7d:59:56:ab:0f:99:66:56: 52:8f:ae:81:d7:9c:12:30:e6:1b:d9:d2:86:cb:a2:9f:b5:cb: 9e:8d:86:91 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0QUU5MzMzNTQwNjAx Q0QwMzVEQzcyMzE0QTZCRjFDMzEwMEEwOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm8WUIfes41XI/aqY4OmyNMPzRMKfvTGArJgMuG7lOUWCh/YoS f2QyeA9AcIsBPVJVKit/lkQlCILvVfVx+viorrVCfwZwaLB0L48hsMRvxskFexyL FJ20jzpe1rpTjt4SokRZsWm7W+cEEPNXxz2rBqS8QqKgsaWfxcYAqVBQG0qtDMRf 2IKVgZBHCn+J3sZKADTdEnDVKo6mlcx04Tio6I7l0dgHeMLdhl++tVTT06S+2jb0 2PSkmpvBx8kXlD31s7UTgskPUsdbQY8wtx2COfzXW9cZRJUoCGfGp1s1lpTD+KnA DvB24GF24WBrHL+M6aYkLjjgN7/pVl76pGZ7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUZK6TM1QGAc0DXccjFKa/HDEAoJUwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9aSzZUTTFRR0FjMERYY2NqRkth X0hERUFvSlUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0gw DQYJKoZIhvcNAQELBQADggEBACbDaIpkGq/zzZUkw99q8RtgeferFgQ+PikCB1sF UK/1Txh5FObKJtgp6g4ZbycvQY87n+X9r7r1P/6b7ZAhMlux3DYzAj+0LACTtasa 6tm+hjQlpuGWy7E8mfGtKRYm9ILvSI9xwjX2n6loSWbDKE+z9b3jx5UR2do7khQe fVzcPvBxj97XQhQwfh+nAdigiDNAdgkUXev/06iSdZiyx/MDINqxEWiRnhdZliAy t0Xk5wB48RtYqsjzMUhAz6x4fBgg0JPJffMRMvoT0obqGfj5x6k8A7RawJdyszni Oko0PF19WVarD5lmVlKProHXnBIw5hvZ0obLop+1y56NhpE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org