$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/XEoCGWd0ivjIO-VUiI60UpF6_OY.roa File: XEoCGWd0ivjIO-VUiI60UpF6_OY.roa (raw, json) Hash identifier: FLjGD1MLmWaAJvZMSHmRahUZcfhcgL2vQAztP8+Mvhc= Subject key identifier: 5C:4A:02:19:67:74:8A:F8:C8:3B:E5:54:88:8E:B4:52:91:7A:FC:E6 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 01B7 Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/XEoCGWd0ivjIO-VUiI60UpF6_OY.roa Signing time: Mon 26 Aug 2024 05:27:48 +0000 ROA not before: Mon 26 Aug 2024 05:27:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 2400:c9a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Aug 26 05:27:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5C4A021967748AF8C83BE554888EB452917AFCE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a5:df:ef:3e:af:94:9a:7b:51:88:0b:c3:54: c9:c2:b5:52:41:bb:8c:74:e6:35:df:9f:7d:ac:f9: 3c:f4:1c:c7:be:64:05:5b:de:f6:b6:72:21:2c:7f: 4b:45:15:b5:6e:03:84:64:5f:1a:ad:e7:21:87:18: 0e:2c:42:cd:bb:2e:25:67:b3:31:db:b1:f0:b4:25: 48:38:c4:8a:76:81:07:e1:fe:cd:7a:60:b0:57:b8: f1:ac:9e:d4:0a:21:40:e0:17:f0:38:e2:82:2d:57: 76:72:b6:69:56:1c:40:b6:7c:c8:89:ad:8c:b7:03: 4f:bf:4b:b5:ce:eb:9e:f5:d8:a4:cf:7a:63:41:3f: e7:83:40:88:26:31:9e:06:be:b3:e9:b8:71:af:77: 38:75:6f:91:98:ba:cb:1f:54:61:d8:13:f8:c3:60: f8:75:a5:b8:de:2e:62:71:0f:1c:d9:aa:50:c5:17: fe:35:74:ed:e5:1f:66:68:55:9c:8a:0f:3e:75:2d: dd:ea:87:b0:4e:5a:09:ed:29:6d:89:31:7e:72:96: d3:2c:e4:46:35:f6:22:4e:2f:22:ef:f2:22:09:83: 5e:02:71:cb:d8:82:ff:d9:e3:1e:bb:40:4e:d2:b0: 78:9d:c5:a8:c4:ad:a0:f7:75:1a:04:e7:d8:18:0c: 9b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:4A:02:19:67:74:8A:F8:C8:3B:E5:54:88:8E:B4:52:91:7A:FC:E6 X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/XEoCGWd0ivjIO-VUiI60UpF6_OY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c9a0::/32 Signature Algorithm: sha256WithRSAEncryption 9d:f0:3a:1e:b5:da:a9:22:00:ba:13:ab:59:97:1b:22:a6:89: 4e:0a:86:8d:58:63:90:52:ea:cd:70:4f:05:ac:af:33:52:84: a1:c2:56:a1:da:c6:a7:af:3b:02:de:65:b8:e9:e4:fb:74:32: d8:6a:f2:d8:19:75:fe:cb:6e:ff:42:48:bb:01:08:2f:00:32: 91:fc:61:18:0b:fd:20:1b:03:e1:aa:8b:63:d7:67:7e:72:81: 40:91:0f:c7:64:97:53:0f:3b:b6:9f:27:13:de:eb:21:b0:37: ee:fe:71:59:df:bd:1c:73:46:18:54:65:35:56:88:2c:66:18: 99:61:a7:4b:d6:1e:d4:88:7b:29:93:d6:23:54:b1:14:82:45: 5a:a9:43:0f:90:f8:53:a9:0a:bc:ca:c4:79:f2:c3:bb:dd:46: 79:81:04:94:15:91:7b:26:63:8d:e1:e5:84:69:63:52:9c:d4: 63:40:31:94:51:6f:ee:eb:12:a9:f5:35:d9:f4:f8:b0:bf:ca: 24:b8:c2:62:d6:20:8e:79:4f:94:bb:a7:ac:2c:67:36:8c:ed: ab:ed:f7:c6:02:07:de:8c:4c:f9:07:b6:5c:6c:a1:f8:39:28: 1e:98:c4:4a:b7:ef:88:c2:4a:b3:92:a8:06:3e:42:52:38:cc: fd:14:f8:aa -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNDA4MjYw NTI3NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDNEEwMjE5Njc3NDhB RjhDODNCRTU1NDg4OEVCNDUyOTE3QUZDRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCopd/vPq+UmntRiAvDVMnCtVJBu4x05jXfn32s+Tz0HMe+ZAVb 3va2ciEsf0tFFbVuA4RkXxqt5yGHGA4sQs27LiVnszHbsfC0JUg4xIp2gQfh/s16 YLBXuPGsntQKIUDgF/A44oItV3ZytmlWHEC2fMiJrYy3A0+/S7XO65712KTPemNB P+eDQIgmMZ4GvrPpuHGvdzh1b5GYussfVGHYE/jDYPh1pbjeLmJxDxzZqlDFF/41 dO3lH2ZoVZyKDz51Ld3qh7BOWgntKW2JMX5yltMs5EY19iJOLyLv8iIJg14CccvY gv/Z4x67QE7SsHidxajEraD3dRoE59gYDJvpAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUXEoCGWd0ivjIO+VUiI60UpF6/OYwHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vWEVvQ0dXZDBp dmpJTy1WVWlJNjBVcEY2X09ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQAyaAwDQYJKoZIhvcNAQELBQADggEBAJ3wOh612qkiALoTq1mXGyKm iU4Kho1YY5BS6s1wTwWsrzNShKHCVqHaxqevOwLeZbjp5Pt0Mthq8tgZdf7Lbv9C SLsBCC8AMpH8YRgL/SAbA+Gqi2PXZ35ygUCRD8dkl1MPO7afJxPe6yGwN+7+cVnf vRxzRhhUZTVWiCxmGJlhp0vWHtSIeymT1iNUsRSCRVqpQw+Q+FOpCrzKxHnyw7vd RnmBBJQVkXsmY43h5YRpY1Kc1GNAMZRRb+7rEqn1Ndn0+LC/yiS4wmLWII55T5S7 p6wsZzaM7avt98YCB96MTPkHtlxsofg5KB6YxEq374jCSrOSqAY+QlI4zP0U+Ko= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org