$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/LRT9MNsKhhQlAzOZ6G3Xu1fsyAo.roa File: LRT9MNsKhhQlAzOZ6G3Xu1fsyAo.roa (raw, json) Hash identifier: bI9Sd6JdBPr8t8pZhtOyZfxtQLJh4JsFRNINMCWdWec= Subject key identifier: 2D:14:FD:30:DB:0A:86:14:25:03:33:99:E8:6D:D7:BB:57:EC:C8:0A Certificate issuer: /CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Certificate serial: 0124 Authority key identifier: EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/LRT9MNsKhhQlAzOZ6G3Xu1fsyAo.roa Signing time: Wed 09 Oct 2024 00:08:29 +0000 ROA not before: Wed 09 Oct 2024 00:08:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 398704 IP address blocks: 202.160.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ECD2FDC38522A74A422DE7BD1C026D55E08D9E9A Validity Not Before: Oct 9 00:08:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2D14FD30DB0A861425033399E86DD7BB57ECC80A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:03:7b:dc:35:24:9f:24:27:d9:08:89:61: 85:4c:a1:f4:b4:86:f7:4e:58:9f:a5:47:41:43:01: 32:35:9b:79:e1:c4:cd:00:98:af:2f:82:83:71:52: f3:17:a2:9a:4c:f9:7e:2e:e1:29:4f:f7:46:ae:36: c6:6b:53:f0:b2:43:49:22:3e:3c:dd:6c:72:b1:fb: 3f:3a:e8:8e:ca:20:ae:66:d4:6a:c1:91:1f:5f:ec: 66:30:b2:63:ac:c2:b7:e3:65:b3:b6:18:f1:f8:51: 6e:1e:c0:30:47:6f:ee:1e:d5:54:37:88:95:ee:df: be:0a:fa:c6:5b:1f:33:88:50:92:39:2a:25:3c:ab: 15:57:e6:eb:59:4b:db:30:cd:75:02:d1:08:74:49: e8:e2:81:e5:a8:b8:52:24:48:b0:7f:e7:07:21:7e: 58:10:44:37:e9:71:ad:29:20:3f:96:69:ba:09:81: eb:12:53:76:17:6b:fa:07:36:e0:ff:49:4f:1c:8f: 7b:1f:2b:57:7d:ea:43:a4:d7:45:39:85:b8:d4:06: 45:0f:33:e9:db:8e:45:43:3d:be:a8:4e:d0:f0:3b: af:1e:8c:1b:fe:dd:b6:4e:a6:8b:54:17:30:f2:6e: 3e:69:a7:e5:76:95:12:76:55:cf:0a:a0:7e:b6:33: 1f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:14:FD:30:DB:0A:86:14:25:03:33:99:E8:6D:D7:BB:57:EC:C8:0A X509v3 Authority Key Identifier: keyid:EC:D2:FD:C3:85:22:A7:4A:42:2D:E7:BD:1C:02:6D:55:E0:8D:9E:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/7NL9w4Uip0pCLee9HAJtVeCNnpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7NL9w4Uip0pCLee9HAJtVeCNnpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TPSILKERA/LRT9MNsKhhQlAzOZ6G3Xu1fsyAo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.160.72.0/21 Signature Algorithm: sha256WithRSAEncryption 87:91:74:48:c0:c5:ac:56:e4:3b:9f:98:06:36:07:ef:b1:dc: b5:d0:f3:a0:b9:ae:17:e5:d8:fc:4b:12:e4:06:35:61:ad:3d: 84:54:48:13:6e:cf:20:8c:e4:97:1e:0b:dd:df:81:29:fb:85: 07:7c:0b:52:9c:0e:00:a8:83:61:1d:5d:6c:1a:87:1b:ed:d6: 66:5f:29:f5:2d:3c:e4:f3:c4:53:9e:f4:55:72:c5:62:0a:c7: d6:be:6d:3f:b1:93:ac:8d:d5:c4:fc:39:07:7c:3b:b3:3f:3f: 40:8f:a0:0d:ef:ee:a6:4a:c6:94:5f:25:ff:64:f1:13:70:b0: 34:38:78:b9:3a:a4:2d:a0:b9:6f:7e:8a:71:3f:52:b0:a5:2d: f6:7d:77:11:3a:0c:d3:47:20:a3:ab:e9:fa:94:a9:54:da:26: 64:f9:24:3b:96:2f:e4:d9:7e:05:55:d6:e5:7a:3b:98:24:3b: 85:0f:7f:2e:f9:72:d5:c3:d6:06:ea:bc:3b:6b:48:5c:88:80: 1e:47:d4:ca:9e:60:fc:25:74:45:03:7f:ed:e1:9c:d8:0d:73: c9:32:44:8f:e5:a6:82:21:4f:1f:17:f3:b9:24:48:af:b0:9f: 0f:05:02:73:61:e1:11:5f:8c:01:04:ff:a2:9d:97:1d:9f:fb: 04:d6:5a:09 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICASQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUNE MkZEQzM4NTIyQTc0QTQyMkRFN0JEMUMwMjZENTVFMDhEOUU5QTAeFw0yNDEwMDkw MDA4MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJEMTRGRDMwREIwQTg2 MTQyNTAzMzM5OUU4NkREN0JCNTdFQ0M4MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+mwN73DUknyQn2QiJYYVMofS0hvdOWJ+lR0FDATI1m3nhxM0A mK8vgoNxUvMXoppM+X4u4SlP90auNsZrU/CyQ0kiPjzdbHKx+z866I7KIK5m1GrB kR9f7GYwsmOswrfjZbO2GPH4UW4ewDBHb+4e1VQ3iJXu374K+sZbHzOIUJI5KiU8 qxVX5utZS9swzXUC0Qh0SejigeWouFIkSLB/5wchflgQRDfpca0pID+WaboJgesS U3YXa/oHNuD/SU8cj3sfK1d96kOk10U5hbjUBkUPM+nbjkVDPb6oTtDwO68ejBv+ 3bZOpotUFzDybj5pp+V2lRJ2Vc8KoH62Mx+1AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQULRT9MNsKhhQlAzOZ6G3Xu1fsyAowHwYDVR0jBBgwFoAU7NL9w4Uip0pCLee9 HAJtVeCNnpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxL RVJBLzdOTDl3NFVpcDBwQ0xlZTlIQUp0VmVDTm5wby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvN05MOXc0VWlwMHBDTGVlOUhBSnRWZUNObnBvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFBTSUxLRVJBL0xSVDlNTnNLaGhR bEF6T1o2RzNYdTFmc3lBby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPKoEgwDQYJKoZIhvcNAQELBQADggEBAIeRdEjAxaxW5DufmAY2B++x3LXQ 86C5rhfl2PxLEuQGNWGtPYRUSBNuzyCM5JceC93fgSn7hQd8C1KcDgCog2EdXWwa hxvt1mZfKfUtPOTzxFOe9FVyxWIKx9a+bT+xk6yN1cT8OQd8O7M/P0CPoA3v7qZK xpRfJf9k8RNwsDQ4eLk6pC2guW9+inE/UrClLfZ9dxE6DNNHIKOr6fqUqVTaJmT5 JDuWL+TZfgVV1uV6O5gkO4UPfy75ctXD1gbqvDtrSFyIgB5H1MqeYPwldEUDf+3h nNgNc8kyRI/lpoIhTx8X87kkSK+wnw8FAnNh4RFfjAEE/6Kdlx2f+wTWWgk= -----END CERTIFICATE-----Generated at Fri Nov 22 08:14:10 2024 by rpki-client on console-ams.rpki-client.org