$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa File: nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa (raw, json) Hash identifier: DxckC06zBFfiQRswv5X2IHSPVbRzs97iK+Ybzbmy0EI= Subject key identifier: 9C:5B:49:46:52:80:2D:28:76:39:F6:8D:9A:DF:10:FC:7C:E8:87:0E Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E53 Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa Signing time: Mon 26 Aug 2024 05:27:15 +0000 ROA not before: Mon 26 Aug 2024 05:27:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 2001:288::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3667 (0xe53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9C5B494652802D287639F68D9ADF10FC7CE8870E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3a:a1:f5:0f:70:d3:61:71:03:76:46:42:c0: 79:a3:4b:16:25:ce:4f:07:86:da:ea:c8:b7:1f:fe: 99:39:48:b9:bc:0f:cd:0a:52:48:1a:aa:73:a3:7b: d9:e6:05:05:40:b2:8f:43:92:ab:b4:50:c8:f4:4a: 83:4c:3f:f6:66:e6:24:c1:e0:0f:a7:ee:b8:b8:aa: 32:28:79:6f:8c:c3:0f:a7:35:08:29:70:8d:58:20: 37:c5:ae:96:aa:ab:43:aa:b3:49:f7:9b:74:62:24: a0:76:82:11:67:88:61:dd:66:d7:88:86:fc:2a:29: d9:c4:71:54:4f:3c:74:07:8d:76:5a:4d:f0:a4:23: a6:e2:75:0a:f5:bb:0d:00:4b:59:95:7c:c2:3c:91: 2d:24:15:fe:b2:d2:9f:d5:62:aa:74:1e:dc:e3:02: e7:1f:fb:50:38:51:f3:ea:40:18:4f:c0:5d:14:1e: c5:ca:8c:d0:dd:74:aa:87:01:07:39:e4:7b:d4:ce: 47:82:e2:80:cd:0e:6a:10:42:2a:69:cf:4c:1b:53: e1:36:80:a0:b7:4b:f8:99:b0:a5:71:f0:9d:94:e0: 15:a6:25:fb:b3:24:2e:d9:db:fd:27:5a:ac:0c:d1: 4f:36:05:8f:b7:fa:08:89:64:29:9a:d1:c1:26:cb: 40:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:5B:49:46:52:80:2D:28:76:39:F6:8D:9A:DF:10:FC:7C:E8:87:0E X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/nFtJRlKALSh2OfaNmt8Q_Hzohw4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:288::/32 Signature Algorithm: sha256WithRSAEncryption 55:a7:70:1b:64:fa:4a:2f:dd:af:7b:0a:a8:30:7b:bc:c6:df: cd:e3:79:e4:8d:51:80:44:cc:12:fd:d4:bc:3e:4b:c7:f4:b4: ad:5d:35:dc:f1:9d:74:4a:5b:4a:3a:a1:2c:92:6f:a1:17:08: ab:c4:d3:23:8f:20:f3:ef:ea:06:1c:0e:38:65:94:e3:ac:c5: d8:7e:a6:fc:72:34:40:22:89:71:5f:96:06:74:4a:cd:ab:05: a1:bd:11:bb:fd:53:e0:70:f3:19:f7:36:47:e4:68:11:29:0b: fa:05:af:2b:3c:cf:62:50:c2:0d:ea:06:4d:75:b7:91:16:25: 35:92:bd:46:cc:b6:bf:7d:48:4b:30:b9:73:2a:54:34:99:75: e6:37:a2:06:65:11:d4:b1:bf:1b:44:ab:af:83:56:d7:ab:7f: c4:a1:80:20:d3:fd:cf:24:5d:e4:c9:12:2f:ca:a4:08:f1:1d: af:91:24:36:35:e6:4c:84:91:55:0d:91:6c:75:19:86:c5:c4: 89:96:47:e8:49:b5:82:38:63:8a:72:12:41:27:f2:6d:46:ff: 9a:b6:fd:b9:9c:38:10:42:a6:52:5f:60:a1:a4:58:3f:d4:80: f1:87:ce:c5:ed:d6:7c:01:c8:2c:43:6f:4c:c6:f3:35:ee:22: e6:ff:cf:cc -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDlMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlDNUI0OTQ2NTI4MDJE Mjg3NjM5RjY4RDlBREYxMEZDN0NFODg3MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWOqH1D3DTYXEDdkZCwHmjSxYlzk8HhtrqyLcf/pk5SLm8D80K UkgaqnOje9nmBQVAso9Dkqu0UMj0SoNMP/Zm5iTB4A+n7ri4qjIoeW+Mww+nNQgp cI1YIDfFrpaqq0Oqs0n3m3RiJKB2ghFniGHdZteIhvwqKdnEcVRPPHQHjXZaTfCk I6bidQr1uw0AS1mVfMI8kS0kFf6y0p/VYqp0HtzjAucf+1A4UfPqQBhPwF0UHsXK jNDddKqHAQc55HvUzkeC4oDNDmoQQippz0wbU+E2gKC3S/iZsKVx8J2U4BWmJfuz JC7Z2/0nWqwM0U82BY+3+giJZCma0cEmy0ChAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUnFtJRlKALSh2OfaNmt8Q/Hzohw4wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9uRnRKUmxLQUxTaDJPZmFObXQ4 UV9Iem9odzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAEC iDANBgkqhkiG9w0BAQsFAAOCAQEAVadwG2T6Si/dr3sKqDB7vMbfzeN55I1RgETM Ev3UvD5Lx/S0rV013PGddEpbSjqhLJJvoRcIq8TTI48g8+/qBhwOOGWU46zF2H6m /HI0QCKJcV+WBnRKzasFob0Ru/1T4HDzGfc2R+RoESkL+gWvKzzPYlDCDeoGTXW3 kRYlNZK9Rsy2v31ISzC5cypUNJl15jeiBmUR1LG/G0Srr4NW16t/xKGAINP9zyRd 5MkSL8qkCPEdr5EkNjXmTISRVQ2RbHUZhsXEiZZH6Em1gjhjinISQSfybUb/mrb9 uZw4EEKmUl9goaRYP9SA8YfOxe3WfAHILENvTMbzNe4i5v/PzA== -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:36 2024 by rpki-client on console-fra.rpki-client.org