$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/M6O_e1guJQxenv66_1k4c4Fdj0k.roa File: M6O_e1guJQxenv66_1k4c4Fdj0k.roa (raw, json) Hash identifier: mtJ9xXfDaZLoMV9kXp5IxO5439BtGbA/4RXpsCDyUE4= Subject key identifier: 33:A3:BF:7B:58:2E:25:0C:5E:9E:FE:BA:FF:59:38:73:81:5D:8F:49 Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D Certificate serial: 0133 Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/M6O_e1guJQxenv66_1k4c4Fdj0k.roa Signing time: Mon 26 Aug 2024 05:27:44 +0000 ROA not before: Mon 26 Aug 2024 05:27:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 2401:a60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 307 (0x133) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D Validity Not Before: Aug 26 05:27:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=33A3BF7B582E250C5E9EFEBAFF593873815D8F49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:49:e5:99:93:80:63:21:72:ff:1d:4a:f8:6d: f7:45:b8:4a:6a:02:7e:eb:4b:44:16:61:34:ac:04: 0a:00:f1:68:55:3c:a8:56:86:17:f1:c4:d4:4b:4f: 7c:b3:ce:9c:90:1b:ab:d9:af:13:e7:58:50:4d:ec: 24:ad:d8:5a:17:81:da:42:b1:cf:11:d2:1e:1e:db: 09:29:e1:77:25:14:28:4d:f0:08:22:a5:27:81:c2: 58:14:fd:45:54:02:37:72:10:81:26:a4:db:2a:25: 8c:ed:27:60:7b:b2:49:88:37:a4:d2:06:45:84:25: f0:0a:60:71:e2:54:82:b2:46:b6:aa:16:1e:17:4d: 3d:89:50:28:c2:da:00:fb:86:b8:42:a0:dc:a0:2a: 01:8c:14:59:e4:b5:cb:25:f6:e2:88:12:85:dd:db: be:96:86:2c:b3:2e:7d:a9:c0:48:ce:0c:81:62:ac: fb:f7:7b:6b:ee:a6:05:c6:24:df:ce:4e:ae:f1:e4: 83:86:86:c2:10:45:41:ec:b3:7b:57:de:9b:71:e6: 5b:d1:1c:6e:e4:5d:bf:12:ba:26:05:84:8c:4c:11: e4:91:72:9e:b0:84:7e:2a:38:4e:85:1b:53:ed:aa: 21:09:e3:9f:4b:c7:b1:69:f5:1e:3e:47:24:c4:90: fa:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:A3:BF:7B:58:2E:25:0C:5E:9E:FE:BA:FF:59:38:73:81:5D:8F:49 X509v3 Authority Key Identifier: keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/M6O_e1guJQxenv66_1k4c4Fdj0k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:a60::/32 Signature Algorithm: sha256WithRSAEncryption 6f:f0:1d:22:6c:ff:16:07:b7:7d:a7:cd:08:3d:d9:38:55:35: 5d:2e:13:dc:8a:b1:a3:e3:bb:28:c8:2d:55:c2:d9:0c:aa:2e: cb:6d:f5:1f:c9:98:ea:06:98:a9:74:44:af:03:c7:3a:24:0e: aa:94:bd:47:8c:1d:47:81:fe:33:36:95:d0:b9:ff:10:a7:3b: 70:90:29:be:e2:36:d5:5f:c4:05:82:7d:dd:66:6b:67:04:0a: b1:9c:74:01:6f:5d:bb:4a:b1:77:5f:42:66:3b:78:85:25:b7: d2:51:6b:0b:eb:d6:8d:2e:cf:81:ed:7f:ba:2b:5e:d8:c7:ed: 06:54:b4:d9:b9:2c:01:68:2f:a2:ee:7f:af:7f:c5:19:72:4f: 01:62:a3:c6:a4:90:69:f0:cf:e4:42:03:a9:31:8a:43:ad:63: f9:ed:56:e3:e2:9d:b6:17:5c:6b:77:76:af:46:a5:80:f5:26: 7c:2d:02:eb:5d:cf:82:76:fe:9b:53:8f:7c:6b:2f:0e:07:22: bd:74:75:19:81:c3:f4:aa:84:c8:21:84:a4:90:87:f7:9d:35: 0b:3a:4c:53:f8:f8:8b:3a:20:9f:9c:7c:45:50:de:d8:bd:2a: 44:88:df:dc:f7:aa:a8:ed:19:54:83:87:18:0d:06:97:01:3d: af:1b:3d:ed -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICATMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDYz RjgxOERBQ0IxNzFCODM1NDE1QUJEMjc4OTkzOTIyRjNDREM1RDAeFw0yNDA4MjYw NTI3NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzQTNCRjdCNTgyRTI1 MEM1RTlFRkVCQUZGNTkzODczODE1RDhGNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbSeWZk4BjIXL/HUr4bfdFuEpqAn7rS0QWYTSsBAoA8WhVPKhW hhfxxNRLT3yzzpyQG6vZrxPnWFBN7CSt2FoXgdpCsc8R0h4e2wkp4XclFChN8Agi pSeBwlgU/UVUAjdyEIEmpNsqJYztJ2B7skmIN6TSBkWEJfAKYHHiVIKyRraqFh4X TT2JUCjC2gD7hrhCoNygKgGMFFnktcsl9uKIEoXd276WhiyzLn2pwEjODIFirPv3 e2vupgXGJN/OTq7x5IOGhsIQRUHss3tX3ptx5lvRHG7kXb8SuiYFhIxMEeSRcp6w hH4qOE6FG1PtqiEJ459Lx7Fp9R4+RyTEkPrXAgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUM6O/e1guJQxenv66/1k4c4Fdj0kwHwYDVR0jBBgwFoAUBj+Bjayxcbg1QVq9 J4mTki883F0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVERDL0Jq LUJqYXl4Y2JnMVFWcTlKNG1Ua2k4ODNGMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev QmotQmpheXhjYmcxUVZxOUo0bVRraTg4M0YwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVERDL002T19lMWd1SlF4ZW52NjZfMWs0YzRG ZGoway5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkAQpgMA0G CSqGSIb3DQEBCwUAA4IBAQBv8B0ibP8WB7d9p80IPdk4VTVdLhPcirGj47soyC1V wtkMqi7LbfUfyZjqBpipdESvA8c6JA6qlL1HjB1Hgf4zNpXQuf8QpztwkCm+4jbV X8QFgn3dZmtnBAqxnHQBb127SrF3X0JmO3iFJbfSUWsL69aNLs+B7X+6K17Yx+0G VLTZuSwBaC+i7n+vf8UZck8BYqPGpJBp8M/kQgOpMYpDrWP57Vbj4p22F1xrd3av RqWA9SZ8LQLrXc+Cdv6bU498ay8OByK9dHUZgcP0qoTIIYSkkIf3nTULOkxT+PiL OiCfnHxFUN7YvSpEiN/c96qo7RlUg4cYDQaXAT2vGz3t -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org