$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/xfgWt1tY9HjZOWmBb949CqUJhLw.roa File: xfgWt1tY9HjZOWmBb949CqUJhLw.roa (raw, json) Hash identifier: uR2W2qClSjls3kwaeIPECxy9jznMQHzvnFOccNWVdNs= Subject key identifier: C5:F8:16:B7:5B:58:F4:78:D9:39:69:81:6F:DE:3D:0A:A5:09:84:BC Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0BEB Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/xfgWt1tY9HjZOWmBb949CqUJhLw.roa Signing time: Mon 26 Aug 2024 05:32:23 +0000 ROA not before: Mon 26 Aug 2024 05:32:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 133955 IP address blocks: 223.165.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3051 (0xbeb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 26 05:32:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C5F816B75B58F478D93969816FDE3D0AA50984BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6e:a7:9a:b2:5b:4e:46:91:d9:12:60:15:91: 44:49:b0:ad:99:63:7c:d2:f8:70:60:82:94:67:b7: c9:54:43:89:cf:65:fb:e1:38:07:a9:5b:e2:63:96: bb:a4:04:f3:91:07:e8:7f:83:10:48:11:9a:1a:30: 08:c5:ed:20:08:08:e7:fa:0a:a9:a3:0f:b2:23:05: 95:5f:5d:d0:ce:d4:ca:e5:82:8d:39:f6:2c:61:74: c7:3c:d4:7f:ff:c5:20:aa:31:3d:b7:0c:e8:9c:f4: c3:58:57:9b:cf:08:83:d6:43:c5:28:05:cb:2b:68: 2a:52:08:57:0f:00:f8:45:2d:a3:ba:65:ca:8e:aa: 3f:80:83:cb:b3:5c:2e:ff:4b:0e:7a:a6:bf:83:2d: ab:5a:39:9f:f0:c3:fe:ba:34:04:1d:49:ef:ec:4d: c9:42:6b:49:3d:49:74:ac:77:dd:e3:19:61:1d:1b: 0b:b7:60:aa:13:b9:f8:5e:52:01:52:31:0a:c4:19: a6:62:f7:0a:b7:70:22:c0:63:1c:0e:4e:07:c3:e7: a3:60:e4:32:5c:9e:60:ab:5f:59:d2:b5:14:ce:f6: d2:8e:6f:19:fd:c5:37:4e:89:08:f2:71:df:db:9b: 1b:29:7b:74:ae:93:bb:71:e9:a8:a6:ac:ba:ec:3c: 10:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:F8:16:B7:5B:58:F4:78:D9:39:69:81:6F:DE:3D:0A:A5:09:84:BC X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/xfgWt1tY9HjZOWmBb949CqUJhLw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.12.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:06:73:60:96:4d:78:2c:2d:3a:a6:5c:15:c6:2a:72:9c:3c: 94:eb:7a:8a:2e:8a:ae:76:2e:5b:02:9f:d2:9f:58:74:68:19: 8a:9c:84:d4:ee:94:be:2d:7c:c1:dc:7c:a7:1a:cc:b2:ad:f6: d2:e3:ff:fc:b7:b5:79:1e:08:da:b7:86:e3:32:50:89:f2:e3: a4:bd:95:23:a9:b9:dc:ba:84:19:87:51:8d:ba:59:b5:2e:61: 29:ca:c1:7f:4e:ec:ec:34:00:e6:80:28:6a:53:25:91:04:91: 16:ba:9c:a9:dc:42:c3:e5:0c:26:2d:cb:00:95:24:a0:47:b0: 11:8f:32:0b:c2:4d:2b:76:90:74:cb:e3:c6:e2:61:15:dd:a7: 48:92:1f:e5:cd:87:08:85:34:b0:44:42:72:3e:ea:2f:89:92: bd:44:ee:2c:92:01:8e:aa:50:c4:98:29:83:d6:82:3d:b4:23: 7f:15:8e:85:da:2c:ad:d4:b8:5c:51:c0:1b:5e:6f:77:0c:c8: 58:44:a5:0b:11:df:bd:b2:52:c0:75:f0:39:8a:16:a3:ec:34: 0e:0b:9d:19:97:2a:5e:3a:be:81:95:08:1c:1b:21:d9:1b:e3: c7:8c:5e:ea:10:62:52:34:b7:68:02:d7:b1:5c:7a:5a:37:67: d1:72:1e:db -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC+swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNDA4MjYw NTMyMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1RjgxNkI3NUI1OEY0 NzhEOTM5Njk4MTZGREUzRDBBQTUwOTg0QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfbqeasltORpHZEmAVkURJsK2ZY3zS+HBggpRnt8lUQ4nPZfvh OAepW+JjlrukBPORB+h/gxBIEZoaMAjF7SAICOf6CqmjD7IjBZVfXdDO1Mrlgo05 9ixhdMc81H//xSCqMT23DOic9MNYV5vPCIPWQ8UoBcsraCpSCFcPAPhFLaO6ZcqO qj+Ag8uzXC7/Sw56pr+DLataOZ/ww/66NAQdSe/sTclCa0k9SXSsd93jGWEdGwu3 YKoTufheUgFSMQrEGaZi9wq3cCLAYxwOTgfD56Ng5DJcnmCrX1nStRTO9tKObxn9 xTdOiQjycd/bmxspe3Suk7tx6aimrLrsPBAlAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUxfgWt1tY9HjZOWmBb949CqUJhLwwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcveGZnV3QxdFk5 SGpaT1dtQmI5NDlDcVVKaEx3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lDDANBgkqhkiG9w0BAQsFAAOCAQEAKwZzYJZNeCwtOqZcFcYqcpw8 lOt6ii6KrnYuWwKf0p9YdGgZipyE1O6Uvi18wdx8pxrMsq320uP//Le1eR4I2reG 4zJQifLjpL2VI6m53LqEGYdRjbpZtS5hKcrBf07s7DQA5oAoalMlkQSRFrqcqdxC w+UMJi3LAJUkoEewEY8yC8JNK3aQdMvjxuJhFd2nSJIf5c2HCIU0sERCcj7qL4mS vUTuLJIBjqpQxJgpg9aCPbQjfxWOhdosrdS4XFHAG15vdwzIWESlCxHfvbJSwHXw OYoWo+w0DgudGZcqXjq+gZUIHBsh2Rvjx4xe6hBiUjS3aALXsVx6Wjdn0XIe2w== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:53 2024 by rpki-client on console-fra.rpki-client.org