$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/ZpHGx6ucfe5-H64sWlwSwB6EQ1E.roa File: ZpHGx6ucfe5-H64sWlwSwB6EQ1E.roa (raw, json) Hash identifier: S6rx8Ru38JtsCc4t62iYOZZ88VJGusGJbb5m9FbM32w= Subject key identifier: 66:91:C6:C7:AB:9C:7D:EE:7E:1F:AE:2C:5A:5C:12:C0:1E:84:43:51 Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E54 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZpHGx6ucfe5-H64sWlwSwB6EQ1E.roa Signing time: Mon 26 Aug 2024 05:27:15 +0000 ROA not before: Mon 26 Aug 2024 05:27:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 203.71.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3668 (0xe54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6691C6C7AB9C7DEE7E1FAE2C5A5C12C01E844351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:bf:f1:00:89:b7:67:93:a6:3e:a6:92:dc:1e: 0d:19:f0:d2:8f:8e:a5:68:6c:5b:24:83:c9:42:7d: 65:12:a6:a5:85:89:91:6e:ab:16:2b:ae:09:e8:08: e7:e3:a7:9b:5f:a8:bb:1a:f5:5c:d6:87:f5:2b:fd: eb:30:ab:98:18:14:8a:12:43:22:c3:37:7d:1b:ab: bb:28:0a:a3:5f:68:32:03:9c:ac:ee:4c:8d:0f:df: 04:12:5c:aa:b9:f0:23:0b:d5:0d:34:57:70:26:2d: 2f:95:32:49:6e:ab:2b:79:0d:cb:10:a5:13:23:c0: ab:8b:04:99:a0:88:e0:5b:af:18:3f:6c:0b:b1:56: 06:72:ad:4c:cf:8b:ba:3f:0e:eb:0a:cc:9f:f1:12: 87:01:86:c5:d2:14:bf:b5:90:65:c1:57:28:d7:d4: 31:ee:a8:a8:0c:86:d3:09:9d:3a:4a:a7:73:aa:36: ac:57:1f:0d:8c:60:b7:29:71:a9:80:08:4f:f0:6e: 04:f7:31:49:25:2c:2a:16:5d:9d:4e:d9:dc:1e:84: a3:b9:bf:73:5b:8f:48:91:6d:25:7d:ca:74:ba:b6: f9:63:04:a8:38:f7:cd:f1:d9:6d:aa:e7:f2:f1:22: f1:03:4f:48:0b:0a:fe:d0:37:ab:94:6f:87:f5:fd: cc:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:91:C6:C7:AB:9C:7D:EE:7E:1F:AE:2C:5A:5C:12:C0:1E:84:43:51 X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/ZpHGx6ucfe5-H64sWlwSwB6EQ1E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.71.0.0/16 Signature Algorithm: sha256WithRSAEncryption 31:2b:ec:cd:22:be:5f:53:73:6e:2c:b1:09:38:15:86:70:91: 58:6d:13:43:6e:be:60:9e:97:9f:73:6f:6d:8b:a4:31:00:b7: 35:d2:8a:08:88:52:97:77:5c:96:e4:ac:c0:ca:4d:77:ec:e2: b1:bc:bd:c1:f2:83:9d:a6:63:63:dc:82:f4:70:8f:51:df:70: 7e:d1:4a:bf:7a:3d:5b:ba:df:5b:06:99:5a:b6:78:2e:86:5b: 1e:ab:d0:a0:2f:cf:a4:9d:11:3b:40:95:41:58:42:b4:11:8b: 08:0c:16:8e:9e:35:16:3a:cd:88:fc:53:db:bd:9a:3c:42:0f: 16:6c:df:56:70:de:df:6c:ad:e1:f2:f9:b2:1f:62:58:e5:3c: 3f:27:6e:f8:17:af:fd:e3:61:23:04:c5:81:ba:1b:4e:11:a3: f3:35:f6:73:34:c8:13:98:0d:40:5e:41:a8:78:cd:5d:b0:b8: 0a:bb:cd:e0:4d:1c:56:64:0c:87:11:8d:8f:60:ce:2e:ea:16: 99:72:81:f7:f6:e7:1e:e5:5f:46:d9:e5:0f:9d:d6:49:c6:23: e5:39:87:9d:7b:10:b3:05:5f:16:a8:2d:a3:2e:a5:0a:70:4b: c3:1c:33:ba:1f:7d:de:36:26:08:28:6d:f8:dd:c6:5d:9a:44: d1:1e:b4:33 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2OTFDNkM3QUI5QzdE RUU3RTFGQUUyQzVBNUMxMkMwMUU4NDQzNTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCov/EAibdnk6Y+ppLcHg0Z8NKPjqVobFskg8lCfWUSpqWFiZFu qxYrrgnoCOfjp5tfqLsa9VzWh/Ur/eswq5gYFIoSQyLDN30bq7soCqNfaDIDnKzu TI0P3wQSXKq58CML1Q00V3AmLS+VMkluqyt5DcsQpRMjwKuLBJmgiOBbrxg/bAux VgZyrUzPi7o/DusKzJ/xEocBhsXSFL+1kGXBVyjX1DHuqKgMhtMJnTpKp3OqNqxX Hw2MYLcpcamACE/wbgT3MUklLCoWXZ1O2dwehKO5v3Nbj0iRbSV9ynS6tvljBKg4 983x2W2q5/LxIvEDT0gLCv7QN6uUb4f1/cxXAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUZpHGx6ucfe5+H64sWlwSwB6EQ1EwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9acEhHeDZ1Y2ZlNS1INjRzV2x3 U3dCNkVRMUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0cw DQYJKoZIhvcNAQELBQADggEBADEr7M0ivl9Tc24ssQk4FYZwkVhtE0NuvmCel59z b22LpDEAtzXSigiIUpd3XJbkrMDKTXfs4rG8vcHyg52mY2PcgvRwj1HfcH7RSr96 PVu631sGmVq2eC6GWx6r0KAvz6SdETtAlUFYQrQRiwgMFo6eNRY6zYj8U9u9mjxC DxZs31Zw3t9sreHy+bIfYljlPD8nbvgXr/3jYSMExYG6G04Ro/M19nM0yBOYDUBe Qah4zV2wuAq7zeBNHFZkDIcRjY9gzi7qFplygff25x7lX0bZ5Q+d1knGI+U5h517 ELMFXxaoLaMupQpwS8McM7offd42Jggobfjdxl2aRNEetDM= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org