$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/6YOh7O8BYhCK5Rtnc1ZAPFVXGGw.roa File: 6YOh7O8BYhCK5Rtnc1ZAPFVXGGw.roa (raw, json) Hash identifier: coWWbn5N7ZYH/RE1rGFcmP74zLU8muI7Ku1yOw3lfW4= Subject key identifier: E9:83:A1:EC:EF:01:62:10:8A:E5:1B:67:73:56:40:3C:55:57:18:6C Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C79 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/6YOh7O8BYhCK5Rtnc1ZAPFVXGGw.roa Signing time: Mon 26 Aug 2024 05:32:41 +0000 ROA not before: Mon 26 Aug 2024 05:32:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 132819 IP address blocks: 61.58.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E983A1ECEF0162108AE51B677356403C5557186C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:66:ec:61:de:3a:75:d9:e6:58:5a:72:91:fa: c2:15:09:0e:be:69:3a:d7:11:21:a5:bf:69:2b:15: 29:c4:26:5f:2f:66:d2:89:7c:b9:01:9b:9d:f6:74: c4:5b:1d:01:7a:93:77:ca:f2:b4:be:9b:41:b6:86: fc:a0:c0:c1:72:67:1f:0f:61:7b:cf:af:86:65:30: 5a:40:47:d4:6d:67:84:1f:73:4f:8f:ea:91:2e:b5: e6:48:7e:5d:0f:84:2e:bd:5e:00:94:88:72:28:9f: 91:86:f1:79:35:3f:65:91:57:fb:2e:bf:b9:f2:65: 9e:c3:2c:f9:6b:7c:72:2d:91:af:64:a7:6c:d3:04: c7:db:0b:7a:ea:63:48:a1:de:97:ac:b1:29:ac:50: 15:7e:87:43:cb:58:5d:d2:58:18:16:91:af:da:eb: ef:00:36:06:8d:8e:90:37:5b:c1:8f:ab:ef:a2:a0: c0:93:fc:4f:fc:17:19:89:0c:af:57:19:b9:00:91: b8:90:60:05:3d:3b:75:b9:68:d6:39:1a:85:e8:30: 9b:f0:fa:d4:e7:3a:8c:b8:1f:76:7c:56:cc:21:38: 45:00:5c:dd:a5:25:b4:a2:c4:27:32:80:90:8f:a5: be:43:45:24:aa:f4:df:41:c4:3f:57:e6:a9:8d:0f: 77:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:83:A1:EC:EF:01:62:10:8A:E5:1B:67:73:56:40:3C:55:57:18:6C X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/6YOh7O8BYhCK5Rtnc1ZAPFVXGGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.38.0/24 Signature Algorithm: sha256WithRSAEncryption 42:3b:1d:76:c0:c0:1f:9f:54:f8:5e:35:a8:f6:4c:89:84:32: 17:87:e3:e1:af:66:b8:33:38:77:67:3d:fa:72:e8:a8:96:48: 7c:9b:1d:52:74:f1:c0:9a:c9:41:30:d3:16:a4:ff:f8:15:30: 75:0e:cc:f7:23:4f:62:fa:cc:19:4b:de:03:7c:e6:cd:c6:2a: 55:21:a8:95:a8:cc:8a:3a:96:1c:15:f5:51:15:7e:fa:8d:fe: f3:0a:30:76:bf:81:7f:16:d6:eb:9e:c5:ac:67:6a:73:03:15: 1b:ca:00:a5:42:92:9c:c0:27:d1:77:b6:ba:0e:ba:69:a0:25: 73:2e:2f:5f:01:84:8a:b0:4d:85:99:9b:c9:e2:4d:b3:a6:e8: f9:9d:4f:e2:74:44:ad:7f:ac:8f:e5:2c:39:43:b0:46:f3:03: 79:68:86:19:56:99:9e:61:ad:d6:1c:09:5a:64:5a:35:39:49: be:f3:32:de:41:72:f3:dd:8c:f7:64:07:ff:68:61:9d:19:22: 38:4d:4e:08:88:ad:f5:d6:1a:d8:d0:0a:8e:37:16:46:c5:39: c9:71:dd:38:6c:22:a1:bb:34:94:58:ef:e4:e6:1c:14:d9:c2: c8:c2:6a:af:d2:e7:3b:e6:6c:f4:af:2f:99:78:eb:f3:b7:8a: b5:c4:cb:ff -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5ODNBMUVDRUYwMTYy MTA4QUU1MUI2NzczNTY0MDNDNTU1NzE4NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZZuxh3jp12eZYWnKR+sIVCQ6+aTrXESGlv2krFSnEJl8vZtKJ fLkBm532dMRbHQF6k3fK8rS+m0G2hvygwMFyZx8PYXvPr4ZlMFpAR9RtZ4Qfc0+P 6pEuteZIfl0PhC69XgCUiHIon5GG8Xk1P2WRV/suv7nyZZ7DLPlrfHItka9kp2zT BMfbC3rqY0ih3pessSmsUBV+h0PLWF3SWBgWka/a6+8ANgaNjpA3W8GPq++ioMCT /E/8FxmJDK9XGbkAkbiQYAU9O3W5aNY5GoXoMJvw+tTnOoy4H3Z8VswhOEUAXN2l JbSixCcygJCPpb5DRSSq9N9BxD9X5qmND3cDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU6YOh7O8BYhCK5Rtnc1ZAPFVXGGwwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC82WU9oN084QlloQ0s1UnRuYzFa QVBGVlhHR3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAPTom MA0GCSqGSIb3DQEBCwUAA4IBAQBCOx12wMAfn1T4XjWo9kyJhDIXh+Phr2a4Mzh3 Zz36cuiolkh8mx1SdPHAmslBMNMWpP/4FTB1Dsz3I09i+swZS94DfObNxipVIaiV qMyKOpYcFfVRFX76jf7zCjB2v4F/FtbrnsWsZ2pzAxUbygClQpKcwCfRd7a6Drpp oCVzLi9fAYSKsE2FmZvJ4k2zpuj5nU/idEStf6yP5Sw5Q7BG8wN5aIYZVpmeYa3W HAlaZFo1OUm+8zLeQXLz3Yz3ZAf/aGGdGSI4TU4IiK311hrY0AqONxZGxTnJcd04 bCKhuzSUWO/k5hwU2cLIwmqv0uc75mz0ry+ZeOvzt4q1xMv/ -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org