$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Vp3i-RGaH4T8ff1EAZ6xdXNG-dE.roa File: Vp3i-RGaH4T8ff1EAZ6xdXNG-dE.roa (raw, json) Hash identifier: G/xXrmJsp15c+rn1LtaAcRt5V4kRt1bnChgG7psrEqE= Subject key identifier: 56:9D:E2:F9:11:9A:1F:84:FC:7D:FD:44:01:9E:B1:75:73:46:F9:D1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2F95 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Vp3i-RGaH4T8ff1EAZ6xdXNG-dE.roa Signing time: Mon 26 Aug 2024 05:28:38 +0000 ROA not before: Mon 26 Aug 2024 05:28:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff0c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12181 (0x2f95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=569DE2F9119A1F84FC7DFD44019EB1757346F9D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:51:50:3d:51:98:43:63:2e:e4:af:8e:34:6d: fb:20:c3:b6:82:9f:8b:52:15:f8:9f:c0:79:6f:49: 24:c2:61:f3:28:5c:69:f6:63:ed:01:8a:a5:72:da: c9:a3:bd:7d:c9:a8:b3:1e:69:03:0f:11:c3:61:01: bf:c0:7a:69:42:66:65:d3:60:7e:15:d6:ae:92:e1: 57:c2:b3:62:b2:d4:f2:9b:75:03:5f:ce:87:36:2a: e1:56:d2:5a:15:d2:a5:02:9f:7d:a0:fd:5e:ed:79: de:5b:8f:10:ce:85:10:0c:89:c9:87:5b:bb:24:07: 5d:17:f5:d5:51:76:4a:a2:01:fb:4e:e8:b4:7a:47: 61:b9:a1:b6:b4:d3:1a:74:75:7f:db:10:a9:90:ef: fa:24:a4:d6:4c:66:44:15:76:10:3b:94:8e:ec:b5: fb:83:20:35:0a:4b:98:31:22:a7:86:e9:36:11:97: cf:65:84:17:60:da:63:ad:90:c2:75:a5:b8:f1:a8: 97:c7:6c:ec:48:88:f8:d6:d8:38:1f:c8:b8:b0:19: d7:ff:98:62:5e:bc:54:33:b2:09:56:06:48:60:7f: f2:b0:2f:2d:46:ba:84:f6:23:31:7f:37:7e:d5:04: 3f:54:f1:29:7e:40:44:52:8a:c8:d1:66:b7:10:8d: ef:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9D:E2:F9:11:9A:1F:84:FC:7D:FD:44:01:9E:B1:75:73:46:F9:D1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Vp3i-RGaH4T8ff1EAZ6xdXNG-dE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff0c::/48 Signature Algorithm: sha256WithRSAEncryption 4a:b8:54:cb:3f:40:fc:fd:b5:45:d7:2a:85:9a:a4:59:51:c1: 4f:b6:f0:40:90:13:1c:ec:5a:b2:82:b5:01:f4:7b:4b:f1:b6: 9b:05:dc:d2:0e:0b:fa:2d:8d:7d:07:45:2d:b1:a0:b3:e7:64: fc:5a:c1:19:0b:4a:91:d1:62:dc:eb:ad:f7:67:93:b6:3d:7a: 1f:e9:e1:38:1f:d6:39:1c:91:74:b2:ea:5d:22:e8:a1:fd:5d: 2b:72:4a:24:37:13:58:e4:a8:32:da:e9:fa:b7:81:be:79:32: 17:4c:4c:ca:f5:37:5d:f3:c4:75:3c:92:7f:ce:71:bc:c6:1f: 32:c7:51:0b:08:82:b4:f5:76:31:67:cc:91:7b:65:7c:59:ad: b5:86:95:da:92:ae:72:2b:f5:46:94:8c:79:40:b9:7e:db:65: 45:3a:53:6d:2a:e1:9c:0f:90:f0:4b:af:bd:f6:3d:c8:37:72: 91:c8:91:0d:0e:32:f8:63:a4:ab:6d:db:8b:4a:94:aa:4a:3b: 12:11:e3:ae:7a:8f:93:0e:f7:47:e8:6f:95:2f:c4:d9:1a:0a: 3e:35:f5:56:8e:f7:0a:ba:ba:df:e5:02:60:c8:81:e5:1e:12: 21:31:33:14:81:f1:8b:d9:eb:e7:77:e5:21:69:c4:7c:91:6b: 4a:d8:15:b0 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICL5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2OURFMkY5MTE5QTFG ODRGQzdERkQ0NDAxOUVCMTc1NzM0NkY5RDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzUVA9UZhDYy7kr440bfsgw7aCn4tSFfifwHlvSSTCYfMoXGn2 Y+0BiqVy2smjvX3JqLMeaQMPEcNhAb/AemlCZmXTYH4V1q6S4VfCs2Ky1PKbdQNf zoc2KuFW0loV0qUCn32g/V7ted5bjxDOhRAMicmHW7skB10X9dVRdkqiAftO6LR6 R2G5oba00xp0dX/bEKmQ7/okpNZMZkQVdhA7lI7stfuDIDUKS5gxIqeG6TYRl89l hBdg2mOtkMJ1pbjxqJfHbOxIiPjW2DgfyLiwGdf/mGJevFQzsglWBkhgf/KwLy1G uoT2IzF/N37VBD9U8Sl+QERSisjRZrcQje/XAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUVp3i+RGaH4T8ff1EAZ6xdXNG+dEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL1ZwM2ktUkdhSDRUOGZmMUVB WjZ4ZFhORy1kRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wwwDQYJKoZIhvcNAQELBQADggEBAEq4VMs/QPz9tUXXKoWapFlRwU+28ECQ ExzsWrKCtQH0e0vxtpsF3NIOC/otjX0HRS2xoLPnZPxawRkLSpHRYtzrrfdnk7Y9 eh/p4Tgf1jkckXSy6l0i6KH9XStySiQ3E1jkqDLa6fq3gb55MhdMTMr1N13zxHU8 kn/OcbzGHzLHUQsIgrT1djFnzJF7ZXxZrbWGldqSrnIr9UaUjHlAuX7bZUU6U20q 4ZwPkPBLr732Pcg3cpHIkQ0OMvhjpKtt24tKlKpKOxIR4656j5MO90fob5UvxNka Cj419VaO9wq6ut/lAmDIgeUeEiExMxSB8YvZ6+d35SFpxHyRa0rYFbA= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:52 2024 by rpki-client on console-ams.rpki-client.org