$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/FyTkcLhymBjkY5A5C6YPsxlF1gE.roa File: FyTkcLhymBjkY5A5C6YPsxlF1gE.roa (raw, json) Hash identifier: DU3VpO781Ls0Xg9jFTfWxgNv1QlxeJJJqN5Pf2blJdg= Subject key identifier: 17:24:E4:70:B8:72:98:18:E4:63:90:39:0B:A6:0F:B3:19:45:D6:01 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CC6 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/FyTkcLhymBjkY5A5C6YPsxlF1gE.roa Signing time: Mon 26 Aug 2024 05:28:07 +0000 ROA not before: Mon 26 Aug 2024 05:28:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 2403:5200::/32 maxlen: 96 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1724E470B8729818E46390390BA60FB31945D601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:64:12:29:a9:02:e5:11:97:b0:13:cc:0c:89: 15:b6:48:ae:eb:1f:f6:b8:5a:3e:aa:10:0b:00:4a: 9c:ce:79:03:a4:27:9a:4d:59:b5:df:8d:67:82:77: 9f:17:49:6e:e9:f4:dd:32:47:5d:90:f6:db:e9:b4: da:ab:5a:f5:f2:b6:36:7b:25:97:5a:ed:44:00:85: bc:4e:e5:74:bb:c0:f5:4e:c1:55:bc:d8:47:df:25: 75:39:f6:8d:73:85:3d:fc:88:d3:9a:64:ce:b0:9f: 65:e1:58:38:a2:17:26:19:e2:98:e2:50:de:ed:54: 2f:ae:a8:a6:2c:f6:c5:e6:9a:30:94:9e:b4:08:6d: 0c:8a:ac:a8:fb:57:f7:53:db:a6:4e:a2:b8:b8:b8: 7d:e5:cd:5c:95:3c:3c:9d:a9:33:71:d3:7e:4d:e3: 96:15:6c:56:2f:e6:df:cf:62:86:05:46:f6:3d:a4: 59:d2:83:46:a2:1c:6b:1b:6e:81:54:77:d8:ca:a4: 79:d6:2c:2a:b9:eb:7c:17:a4:94:81:6e:21:4e:b7: bf:28:15:66:ba:8f:2a:33:77:3c:e6:d2:78:04:7e: 59:17:89:ae:b5:d1:25:60:0c:e6:f0:3f:41:7e:35: a7:97:52:8b:66:1e:85:30:08:89:7e:31:0a:ea:e4: 6f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:24:E4:70:B8:72:98:18:E4:63:90:39:0B:A6:0F:B3:19:45:D6:01 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/FyTkcLhymBjkY5A5C6YPsxlF1gE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:5200::/32 Signature Algorithm: sha256WithRSAEncryption ad:48:ad:7c:d9:89:36:12:50:ad:78:7f:b1:6e:72:6b:77:13: d5:60:0b:3f:2e:e4:1a:2e:e0:f4:47:e6:4f:04:6f:df:ef:d7: b2:91:ea:58:d9:0d:32:5c:cd:4f:fc:e8:8b:b2:5a:cc:ad:eb: f9:53:b1:2e:a8:4b:cf:d1:d4:76:91:99:20:72:6e:ad:cb:8f: 7d:e6:57:6e:6e:39:cc:71:5a:8e:f1:38:65:31:5d:f0:91:bc: f5:fb:8e:14:d3:a6:e2:03:71:47:20:16:98:78:f4:06:44:70: e7:c5:1f:37:22:7e:4f:26:e0:e2:1c:4c:83:ce:e6:56:4b:19: a5:85:90:61:4d:48:4c:97:fb:36:be:d3:78:6d:54:3f:2d:f1: 76:48:80:69:22:6e:4e:75:26:15:31:6d:71:e1:1d:83:eb:aa: 6a:06:24:fc:fb:83:e0:2c:c0:4a:59:fd:f8:49:f5:9f:0e:c6: d1:e9:1f:cb:b6:09:21:83:03:3c:69:b1:79:9f:b7:e1:be:4d: 17:c7:59:d9:a4:9b:92:92:62:47:f5:12:c6:5b:cf:31:fb:83: 22:af:91:1b:f1:4c:41:f1:a1:e9:4a:80:9d:99:ba:18:8c:94: 5c:c7:73:eb:e5:42:87:51:84:6f:1e:49:0f:ce:48:ce:56:07: 58:6a:53:dc -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE3MjRFNDcwQjg3Mjk4 MThFNDYzOTAzOTBCQTYwRkIzMTk0NUQ2MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYZBIpqQLlEZewE8wMiRW2SK7rH/a4Wj6qEAsASpzOeQOkJ5pN WbXfjWeCd58XSW7p9N0yR12Q9tvptNqrWvXytjZ7JZda7UQAhbxO5XS7wPVOwVW8 2EffJXU59o1zhT38iNOaZM6wn2XhWDiiFyYZ4pjiUN7tVC+uqKYs9sXmmjCUnrQI bQyKrKj7V/dT26ZOori4uH3lzVyVPDydqTNx035N45YVbFYv5t/PYoYFRvY9pFnS g0aiHGsbboFUd9jKpHnWLCq563wXpJSBbiFOt78oFWa6jyozdzzm0ngEflkXia61 0SVgDObwP0F+NaeXUotmHoUwCIl+MQrq5G+VAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUFyTkcLhymBjkY5A5C6YPsxlF1gEwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvRnlUa2NMaHltQmprWTVBNUM2WVBz eGxGMWdFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMFACQDUgAw DQYJKoZIhvcNAQELBQADggEBAK1IrXzZiTYSUK14f7Fucmt3E9VgCz8u5Bou4PRH 5k8Eb9/v17KR6ljZDTJczU/86IuyWsyt6/lTsS6oS8/R1HaRmSBybq3Lj33mV25u OcxxWo7xOGUxXfCRvPX7jhTTpuIDcUcgFph49AZEcOfFHzcifk8m4OIcTIPO5lZL GaWFkGFNSEyX+za+03htVD8t8XZIgGkibk51JhUxbXHhHYPrqmoGJPz7g+AswEpZ /fhJ9Z8OxtHpH8u2CSGDAzxpsXmft+G+TRfHWdmkm5KSYkf1EsZbzzH7gyKvkRvx TEHxoelKgJ2ZuhiMlFzHc+vlQodRhG8eSQ/OSM5WB1hqU9w= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:14 2024 by rpki-client on console-fra.rpki-client.org