$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/i1sHBzLD63tyMs77E56IrBNVNeg.roa File: i1sHBzLD63tyMs77E56IrBNVNeg.roa (raw, json) Hash identifier: mdJu1JlqnSzMLgxg/3dGX+UTKja1MSkqbRVxv/NeM8U= Subject key identifier: 8B:5B:07:07:32:C3:EB:7B:72:32:CE:FB:13:9E:88:AC:13:55:35:E8 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 01B6 Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/i1sHBzLD63tyMs77E56IrBNVNeg.roa Signing time: Mon 26 Aug 2024 05:27:47 +0000 ROA not before: Mon 26 Aug 2024 05:27:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 2400:c9a0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 438 (0x1b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Aug 26 05:27:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8B5B070732C3EB7B7232CEFB139E88AC135535E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:23:3b:ea:c8:c6:8b:07:87:61:b2:1b:51:b5: ac:52:f5:1b:89:83:16:05:dd:ac:df:41:24:e8:5d: d1:cd:9c:48:0e:97:12:1d:f1:bb:78:0d:db:bf:bd: 0a:1f:b1:fa:59:93:80:41:cf:f6:94:44:5f:bf:ff: 7b:75:9e:48:dd:f2:32:c2:ef:b0:42:7d:a5:80:1f: 4d:68:be:2d:9e:f3:d7:6d:cf:81:43:75:aa:e8:fd: 10:10:6b:1e:d3:62:81:70:c5:74:f1:a4:12:6f:a8: ca:c8:8a:5c:c9:e6:50:45:a2:5a:ad:ad:f6:75:82: 11:dd:c5:97:08:9a:25:80:33:45:35:34:f9:95:e6: db:fb:58:45:b7:ac:d3:2e:14:d4:50:f0:18:75:7a: cb:fe:93:ce:70:d8:e5:d8:a4:ea:45:aa:e3:6b:67: cc:21:03:4b:c4:d9:ba:17:a3:34:a0:cc:81:cc:e7: 0e:bc:84:8d:6d:2f:fa:85:7b:a5:aa:90:c9:32:64: e8:d1:46:26:d5:dc:17:7c:d8:03:f2:2c:c6:f3:ae: 66:14:9e:72:d5:7f:91:ee:03:ee:6c:bc:be:3f:5e: 29:c2:5e:06:cc:3c:3d:54:d9:cf:91:96:c9:3e:26: 58:96:ab:5e:25:39:74:6c:4d:53:7a:dd:9c:4d:91: 08:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:5B:07:07:32:C3:EB:7B:72:32:CE:FB:13:9E:88:AC:13:55:35:E8 X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/i1sHBzLD63tyMs77E56IrBNVNeg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c9a0::/32 Signature Algorithm: sha256WithRSAEncryption 9e:1b:b5:6c:6d:2c:93:1b:1f:27:7e:fe:67:46:9a:a9:ca:ba: 96:d4:f6:f2:6f:7a:a6:e8:cb:fe:98:f1:25:d3:b0:7e:85:5a: 33:e3:fb:16:b1:a3:b2:39:51:39:3b:bc:dd:aa:c9:32:c0:50: 14:15:f0:1d:78:cc:3f:f3:20:46:69:f9:8b:20:69:28:85:77: d2:07:12:c2:fc:11:8c:b8:44:6b:b0:68:b9:4b:b2:a0:04:3a: be:af:af:f9:74:ad:f3:d1:70:87:2f:99:66:7e:d5:40:4f:2e: fc:f9:ff:bb:ee:c8:ca:76:c4:76:56:8a:07:3b:28:71:39:05: 57:75:56:50:1c:30:3b:42:ea:bc:ec:8f:8e:b8:39:d8:fd:14: 49:23:fc:a0:4a:1d:f1:4b:2c:f2:5e:8b:1b:b5:fa:77:75:27: 00:77:b3:d3:dc:4a:ee:40:12:24:f4:35:22:26:a9:a8:ea:4a: d1:26:94:66:ae:24:86:04:0c:32:3b:5f:8d:c5:38:d9:df:9d: c2:cb:a5:4f:ad:a4:af:51:92:9d:63:67:b1:d4:39:0b:e8:be: 49:48:4f:68:22:7a:74:31:89:72:bf:68:37:e1:9e:c0:72:d9: 83:11:19:59:98:0f:1f:c8:32:3e:fd:a8:39:5d:7f:7b:d0:b6: 35:e5:9b:0d -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNDA4MjYw NTI3NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCNUIwNzA3MzJDM0VC N0I3MjMyQ0VGQjEzOUU4OEFDMTM1NTM1RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvIzvqyMaLB4dhshtRtaxS9RuJgxYF3azfQSToXdHNnEgOlxId 8bt4Ddu/vQofsfpZk4BBz/aURF+//3t1nkjd8jLC77BCfaWAH01ovi2e89dtz4FD daro/RAQax7TYoFwxXTxpBJvqMrIilzJ5lBFolqtrfZ1ghHdxZcImiWAM0U1NPmV 5tv7WEW3rNMuFNRQ8Bh1esv+k85w2OXYpOpFquNrZ8whA0vE2boXozSgzIHM5w68 hI1tL/qFe6WqkMkyZOjRRibV3Bd82APyLMbzrmYUnnLVf5HuA+5svL4/XinCXgbM PD1U2c+Rlsk+JliWq14lOXRsTVN63ZxNkQgnAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUi1sHBzLD63tyMs77E56IrBNVNegwHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vaTFzSEJ6TEQ2 M3R5TXM3N0U1NklyQk5WTmVnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQAyaAwDQYJKoZIhvcNAQELBQADggEBAJ4btWxtLJMbHyd+/mdGmqnK upbU9vJveqboy/6Y8SXTsH6FWjPj+xaxo7I5UTk7vN2qyTLAUBQV8B14zD/zIEZp +YsgaSiFd9IHEsL8EYy4RGuwaLlLsqAEOr6vr/l0rfPRcIcvmWZ+1UBPLvz5/7vu yMp2xHZWigc7KHE5BVd1VlAcMDtC6rzsj464Odj9FEkj/KBKHfFLLPJeixu1+nd1 JwB3s9PcSu5AEiT0NSImqajqStEmlGauJIYEDDI7X43FONnfncLLpU+tpK9Rkp1j Z7HUOQvovklIT2gienQxiXK/aDfhnsBy2YMRGVmYDx/IMj79qDldf3vQtjXlmw0= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:41 2024 by rpki-client on console-ams.rpki-client.org