$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/6YHj56NA25a0BbCgU5J19YfeEDo.roa File: 6YHj56NA25a0BbCgU5J19YfeEDo.roa (raw, json) Hash identifier: xXyCNebelu4ztilOloJsXlOIJdzlRuumn9BhailCENw= Subject key identifier: E9:81:E3:E7:A3:40:DB:96:B4:05:B0:A0:53:92:75:F5:87:DE:10:3A Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0BE7 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/6YHj56NA25a0BbCgU5J19YfeEDo.roa Signing time: Mon 26 Aug 2024 05:32:21 +0000 ROA not before: Mon 26 Aug 2024 05:32:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 133955 IP address blocks: 223.165.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 26 05:32:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E981E3E7A340DB96B405B0A0539275F587DE103A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:32:48:6d:3e:43:71:60:e0:48:f3:74:df:03: 1a:c4:83:be:a6:41:40:bc:bc:ec:49:9f:f9:c8:3d: 1b:b3:aa:55:e8:7f:48:6e:0e:9b:44:73:4e:7b:e3: 9c:ff:7e:73:0c:ab:75:7d:f2:e4:a8:0e:84:f2:49: 71:4f:d2:36:a1:d5:f7:09:fa:6e:a7:ab:d8:39:01: 42:6f:aa:d1:68:cd:c8:b0:fc:a5:5a:ae:a8:58:08: dd:bf:ef:c9:3a:65:53:de:33:9c:70:b6:24:0d:20: 9c:0f:8a:cf:70:4b:8b:6a:5d:dd:e9:68:75:16:ad: 09:2a:5c:d2:7b:84:4c:7e:16:77:40:9e:c7:28:ab: f4:67:64:f0:6b:63:66:f4:a8:cc:4e:d3:dd:1f:87: 67:12:1b:04:e5:0d:8e:15:04:6e:26:38:8e:5f:77: 28:65:7c:52:d0:60:77:61:ea:24:c0:dd:7c:fb:5e: 85:b4:98:10:50:16:30:f2:ba:81:38:0a:24:58:5d: 1b:45:66:f4:d5:ef:9d:d8:8d:c8:3e:e3:ed:a4:67: 8f:2b:d3:77:49:a2:37:56:27:e4:4b:9c:8b:4b:43: 24:cb:02:0b:99:54:e0:6a:13:41:7e:ce:b1:cb:e4: c5:e7:62:73:82:51:ba:f9:b4:11:76:8e:e9:d5:b8: 68:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:81:E3:E7:A3:40:DB:96:B4:05:B0:A0:53:92:75:F5:87:DE:10:3A X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/6YHj56NA25a0BbCgU5J19YfeEDo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.8.0/24 Signature Algorithm: sha256WithRSAEncryption 85:0b:60:2d:37:35:f2:14:ec:34:e9:60:ea:3f:90:1b:52:06: 95:91:f9:29:13:a1:79:5d:82:59:49:7f:b7:7e:5a:0e:ea:73: f5:81:0f:3b:84:0d:ab:ca:10:62:b4:1a:d7:98:13:a1:70:ca: 44:ed:33:6e:6c:13:70:d7:05:41:17:65:06:35:c7:f8:a5:aa: fd:6d:61:9d:79:e9:09:8e:6b:0b:01:6d:8e:a0:1e:6c:57:2f: f7:e8:70:35:e9:98:57:21:b0:b5:cd:3d:30:e8:46:ea:2f:ed: 65:8f:ec:fb:c5:f5:a0:6c:27:50:52:15:f4:b1:49:e2:bf:d4: bb:a7:8e:ed:fe:e6:fe:88:39:bd:08:43:8f:a4:cc:bf:d9:7e: 21:f9:53:80:43:87:62:67:14:c5:fb:be:db:56:80:8f:7e:f5: 59:74:87:01:7c:0d:2a:66:19:82:6a:b3:3b:bc:11:9c:00:3b: e7:c3:ec:df:7e:5d:e1:e2:5a:a0:86:52:a1:6c:58:50:3b:3e: cb:75:3a:8f:96:09:d8:da:75:fc:9c:38:d2:1b:b1:7c:62:76: d7:f0:6e:a4:ed:78:f1:ba:b0:6a:51:55:12:73:05:03:26:fa: 71:b7:54:a1:e1:7e:56:94:56:c2:35:0a:43:bd:77:95:27:4f: ea:77:15:11 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNDA4MjYw NTMyMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5ODFFM0U3QTM0MERC OTZCNDA1QjBBMDUzOTI3NUY1ODdERTEwM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOMkhtPkNxYOBI83TfAxrEg76mQUC8vOxJn/nIPRuzqlXof0hu DptEc05745z/fnMMq3V98uSoDoTySXFP0jah1fcJ+m6nq9g5AUJvqtFozciw/KVa rqhYCN2/78k6ZVPeM5xwtiQNIJwPis9wS4tqXd3paHUWrQkqXNJ7hEx+FndAnsco q/RnZPBrY2b0qMxO090fh2cSGwTlDY4VBG4mOI5fdyhlfFLQYHdh6iTA3Xz7XoW0 mBBQFjDyuoE4CiRYXRtFZvTV753Yjcg+4+2kZ48r03dJojdWJ+RLnItLQyTLAguZ VOBqE0F+zrHL5MXnYnOCUbr5tBF2junVuGgZAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU6YHj56NA25a0BbCgU5J19YfeEDowHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvNllIajU2TkEy NWEwQmJDZ1U1SjE5WWZlRURvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lCDANBgkqhkiG9w0BAQsFAAOCAQEAhQtgLTc18hTsNOlg6j+QG1IG lZH5KROheV2CWUl/t35aDupz9YEPO4QNq8oQYrQa15gToXDKRO0zbmwTcNcFQRdl BjXH+KWq/W1hnXnpCY5rCwFtjqAebFcv9+hwNemYVyGwtc09MOhG6i/tZY/s+8X1 oGwnUFIV9LFJ4r/Uu6eO7f7m/og5vQhDj6TMv9l+IflTgEOHYmcUxfu+21aAj371 WXSHAXwNKmYZgmqzO7wRnAA758Ps335d4eJaoIZSoWxYUDs+y3U6j5YJ2Np1/Jw4 0huxfGJ21/BupO148bqwalFVEnMFAyb6cbdUoeF+VpRWwjUKQ713lSdP6ncVEQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org