$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWDS/MbBWTrglmIrCyqq1yjpL8qyGuH0.roa File: MbBWTrglmIrCyqq1yjpL8qyGuH0.roa (raw, json) Hash identifier: 1L1aKF8eICsEn2ptOMijzkssCuAaAdBilf0MAYod88E= Subject key identifier: 31:B0:56:4E:B8:25:98:8A:C2:CA:AA:B5:CA:3A:4B:F2:AC:86:B8:7D Certificate issuer: /CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Certificate serial: 09D4 Authority key identifier: 29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/MbBWTrglmIrCyqq1yjpL8qyGuH0.roa Signing time: Mon 26 Aug 2024 05:32:26 +0000 ROA not before: Mon 26 Aug 2024 05:32:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 209557 IP address blocks: 2405:a640:1173::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Oct 2024 23:47:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2516 (0x9d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=291BAF6A0C176CE0A32423666BCE78F9D91824CB Validity Not Before: Aug 26 05:32:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=31B0564EB825988AC2CAAAB5CA3A4BF2AC86B87D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:5e:c3:3d:52:29:42:ca:b5:38:19:ba:8f:c1: 80:4d:68:99:ca:ca:d3:ea:7b:76:a9:5b:1d:39:ad: 60:b8:e1:00:1e:1c:82:6d:32:2c:7e:31:9a:7d:ce: d5:9f:2a:84:52:10:df:b3:aa:1b:8c:d1:de:5e:a9: 94:73:08:2c:e1:a3:27:b4:e6:21:0d:c5:c3:ba:60: b4:c9:14:be:cb:9f:c2:3b:f4:b6:2c:cb:9b:af:28: ba:ac:73:73:0b:c1:09:46:69:d9:0f:db:1f:a9:5f: d5:f2:05:8e:5e:5f:3c:4e:43:e8:00:30:e9:a9:f8: f8:bd:b0:aa:83:26:87:46:dd:64:d9:1f:01:b8:38: 75:3e:18:8c:cf:b6:d8:32:e6:e9:f7:c3:e6:27:a2: 3e:e5:c3:17:13:57:7d:44:8c:8f:db:52:24:20:99: 1f:9b:18:5e:02:b5:db:5f:ab:52:c6:47:bc:2a:ae: 72:d7:91:37:4b:17:bf:26:3f:3f:12:33:e5:6c:0c: 92:87:d1:c6:a4:c6:1d:72:1f:11:f8:b7:4c:81:0d: cc:68:53:15:0e:16:43:dd:bd:8b:10:de:90:11:f5: dc:57:62:4f:42:07:ba:b1:d4:52:fc:52:a9:06:40: 02:e4:07:ea:c9:4b:e9:c4:34:9b:da:c9:06:68:6e: dd:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B0:56:4E:B8:25:98:8A:C2:CA:AA:B5:CA:3A:4B:F2:AC:86:B8:7D X509v3 Authority Key Identifier: keyid:29:1B:AF:6A:0C:17:6C:E0:A3:24:23:66:6B:CE:78:F9:D9:18:24:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/KRuvagwXbOCjJCNma854-dkYJMs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRuvagwXbOCjJCNma854-dkYJMs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWDS/MbBWTrglmIrCyqq1yjpL8qyGuH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:a640:1173::/48 Signature Algorithm: sha256WithRSAEncryption 0d:59:4e:c4:be:e4:b0:b3:f4:e6:20:ca:ad:23:5c:73:b1:b1: 65:7a:3e:3d:04:a6:0c:48:9a:b2:14:d9:eb:7b:5b:77:55:ab: cf:b2:da:cb:b1:5d:de:64:76:d9:97:35:d5:ab:2c:12:5c:2c: fb:42:a9:ab:e0:37:d5:45:99:13:cd:8e:d2:c2:86:36:ab:ac: 6b:d5:22:00:01:b2:cf:70:9c:c4:8f:8c:01:c3:66:23:94:28: 6e:2c:cb:1b:52:f0:28:63:a2:cc:4b:cc:81:ad:1e:96:9d:4b: cc:28:e9:5f:2f:c3:29:12:46:a1:7b:5e:d1:a8:24:90:85:c3: 3c:b1:e7:92:cd:63:01:6a:49:c4:65:88:b7:a4:9c:58:09:46: 0a:5e:7a:93:79:ae:4a:8e:44:da:a0:0d:ae:5a:fa:20:fa:2b: e2:d8:88:b7:e2:f6:42:43:98:81:ee:fc:68:0a:85:46:9e:ee: 7f:62:61:1d:a9:2f:3f:49:65:d8:20:1a:71:d6:a0:5f:28:81: 37:34:98:2f:5c:ff:b9:1f:e6:b8:f2:8e:2f:c8:78:c3:b7:ac: bd:cd:91:be:46:cc:9b:ca:e4:15:cd:d7:67:7d:36:1f:25:95: 9b:4f:c3:44:80:eb:3a:ae:c2:15:e4:72:1e:6b:e4:94:83:e7: eb:9e:17:c0 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICCdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjkx QkFGNkEwQzE3NkNFMEEzMjQyMzY2NkJDRTc4RjlEOTE4MjRDQjAeFw0yNDA4MjYw NTMyMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxQjA1NjRFQjgyNTk4 OEFDMkNBQUFCNUNBM0E0QkYyQUM4NkI4N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQXsM9UilCyrU4GbqPwYBNaJnKytPqe3apWx05rWC44QAeHIJt Mix+MZp9ztWfKoRSEN+zqhuM0d5eqZRzCCzhoye05iENxcO6YLTJFL7Ln8I79LYs y5uvKLqsc3MLwQlGadkP2x+pX9XyBY5eXzxOQ+gAMOmp+Pi9sKqDJodG3WTZHwG4 OHU+GIzPttgy5un3w+Ynoj7lwxcTV31EjI/bUiQgmR+bGF4Ctdtfq1LGR7wqrnLX kTdLF78mPz8SM+VsDJKH0cakxh1yHxH4t0yBDcxoUxUOFkPdvYsQ3pAR9dxXYk9C B7qx1FL8UqkGQALkB+rJS+nENJvayQZobt0BAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUMbBWTrglmIrCyqq1yjpL8qyGuH0wHwYDVR0jBBgwFoAUKRuvagwXbOCjJCNm a854+dkYJMswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdEUy9L UnV2YWd3WGJPQ2pKQ05tYTg1NC1ka1lKTXMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0tSdXZhZ3dYYk9DakpDTm1hODU0LWRrWUpNcy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RXRFMvTWJCV1RyZ2xtSXJDeXFxMXlqcEw4 cXlHdUgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIwCQMHACQFpkAR czANBgkqhkiG9w0BAQsFAAOCAQEADVlOxL7ksLP05iDKrSNcc7GxZXo+PQSmDEia shTZ63tbd1Wrz7Lay7Fd3mR22Zc11assElws+0Kpq+A31UWZE82O0sKGNqusa9Ui AAGyz3CcxI+MAcNmI5QobizLG1LwKGOizEvMga0elp1LzCjpXy/DKRJGoXte0agk kIXDPLHnks1jAWpJxGWIt6ScWAlGCl56k3muSo5E2qANrlr6IPor4tiIt+L2QkOY ge78aAqFRp7uf2JhHakvP0ll2CAacdagXyiBNzSYL1z/uR/muPKOL8h4w7esvc2R vkbMm8rkFc3XZ302HyWVm0/DRIDrOq7CFeRyHmvklIPn654XwA== -----END CERTIFICATE-----Generated at Tue Oct 22 19:06:35 2024 by rpki-client on console-fra.rpki-client.org