$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa File: ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa (raw, json) Hash identifier: MegBc9C89Ke8zhecntJeUMeQYjGYoRvxsFiyhlULHxE= Subject key identifier: 66:72:BD:26:06:58:4E:C7:EF:FC:5A:DD:A4:EF:EC:CC:D5:8A:FD:61 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 12D8 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa Signing time: Mon 26 Aug 2024 05:32:37 +0000 ROA not before: Mon 26 Aug 2024 05:32:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131621 IP address blocks: 101.101.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4824 (0x12d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 26 05:32:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6672BD2606584EC7EFFC5ADDA4EFECCCD58AFD61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:08:44:87:5f:49:64:8e:30:e0:e9:c9:95:3f: 25:42:55:51:18:a1:ed:cb:d4:7f:60:03:80:98:cb: af:71:84:c3:88:54:a9:e9:a3:1a:a6:f7:e6:bd:4a: e5:88:ce:3d:89:c6:1f:a5:08:e5:a7:1e:8e:a0:31: 09:ca:e0:0d:9d:f7:5c:ec:59:98:56:14:a4:a9:9f: 02:ce:0c:29:da:7a:5a:fa:d4:93:2b:ee:1c:6d:2b: e7:4c:26:fb:c2:68:42:87:15:25:f7:27:07:2d:50: 37:a5:92:d1:50:40:67:72:c3:33:67:bc:3b:50:60: 26:70:e7:cb:38:b9:02:12:44:f3:d9:9e:9c:70:32: fd:07:99:be:7f:c3:58:b2:7a:fc:22:a1:36:7e:04: 0d:e1:7f:99:65:b8:7c:b0:4f:84:2c:dc:65:d0:2a: ce:e9:06:ec:03:e7:08:5f:73:0a:81:1c:c2:cf:66: a3:12:1d:28:5a:63:8d:87:fb:ad:76:ea:b2:b0:6e: 4f:aa:f3:14:af:0d:b7:ce:c8:af:78:34:43:de:0c: 86:2d:ce:b8:68:f5:02:a5:da:5d:2b:38:94:b7:df: 35:1f:e6:5c:ac:3b:fd:43:5f:b0:5c:8d:6c:39:03: 0b:30:0c:8f:d0:0c:1d:9e:77:32:14:e3:03:d5:eb: 5d:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:72:BD:26:06:58:4E:C7:EF:FC:5A:DD:A4:EF:EC:CC:D5:8A:FD:61 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.101.101.0/24 Signature Algorithm: sha256WithRSAEncryption 28:51:22:df:dd:00:9e:7d:88:67:c8:89:5a:d4:e5:b9:e9:3c: 83:b2:3b:6a:8f:c9:92:a7:ef:41:2a:15:bf:c7:21:1f:dd:87: 51:42:e0:75:96:ee:ae:cf:dd:61:78:74:eb:45:14:b2:20:69: d5:71:42:a2:ac:b8:b3:6c:4b:a3:7d:f3:2b:0f:8e:af:57:2a: 27:82:3d:db:f3:8e:8d:f7:f0:2d:ec:f0:4d:2b:70:88:7d:70: 0a:9d:d5:20:5e:de:99:14:ab:37:e7:c9:74:8d:19:5b:bd:b1: 9f:ad:f9:a8:5a:47:74:2c:75:17:eb:01:68:43:23:23:7a:0e: b5:65:be:3c:43:b9:35:d3:17:c6:4d:0c:d7:9a:2d:62:7d:7c: 34:39:12:90:98:aa:c6:f7:6c:12:ea:a4:94:4a:ee:15:7c:fa: be:e0:75:83:4f:37:d6:29:29:92:d7:f8:bf:06:7e:2a:fe:04: c7:c0:90:9c:13:4d:8f:5f:b6:4d:78:be:89:ee:41:03:c9:ef: 35:66:78:c7:f1:0f:e9:5c:ae:13:d1:8d:dc:3c:cc:1f:6b:90: 9d:07:0d:84:82:1a:5c:73:0e:b4:34:4e:01:45:74:f9:0c:c4: f3:86:db:ac:6c:a8:7e:68:b6:ed:1d:6e:28:01:b1:3e:34:c2: 44:2f:f9:26 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MjYw NTMyMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2NzJCRDI2MDY1ODRF QzdFRkZDNUFEREE0RUZFQ0NDRDU4QUZENjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQCESHX0lkjjDg6cmVPyVCVVEYoe3L1H9gA4CYy69xhMOIVKnp oxqm9+a9SuWIzj2Jxh+lCOWnHo6gMQnK4A2d91zsWZhWFKSpnwLODCnaelr61JMr 7hxtK+dMJvvCaEKHFSX3JwctUDelktFQQGdywzNnvDtQYCZw58s4uQISRPPZnpxw Mv0Hmb5/w1iyevwioTZ+BA3hf5lluHywT4Qs3GXQKs7pBuwD5whfcwqBHMLPZqMS HShaY42H+6126rKwbk+q8xSvDbfOyK94NEPeDIYtzrho9QKl2l0rOJS33zUf5lys O/1DX7BcjWw5AwswDI/QDB2edzIU4wPV610jAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUZnK9JgZYTsfv/FrdpO/szNWK/WEwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9abks5SmdaWVRzZnZfRnJkcE9f c3pOV0tfV0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl MA0GCSqGSIb3DQEBCwUAA4IBAQAoUSLf3QCefYhnyIla1OW56TyDsjtqj8mSp+9B KhW/xyEf3YdRQuB1lu6uz91heHTrRRSyIGnVcUKirLizbEujffMrD46vVyongj3b 846N9/At7PBNK3CIfXAKndUgXt6ZFKs358l0jRlbvbGfrfmoWkd0LHUX6wFoQyMj eg61Zb48Q7k10xfGTQzXmi1ifXw0ORKQmKrG92wS6qSUSu4VfPq+4HWDTzfWKSmS 1/i/Bn4q/gTHwJCcE02PX7ZNeL6J7kEDye81ZnjH8Q/pXK4T0Y3cPMwfa5CdBw2E ghpccw60NE4BRXT5DMTzhtusbKh+aLbtHW4oAbE+NMJEL/km -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org