$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Zmy1f0kvrgfJ2F4hXDDGBcp_2Aw.roa File: Zmy1f0kvrgfJ2F4hXDDGBcp_2Aw.roa (raw, json) Hash identifier: G1l8nZbMiYVZqljeasMtDHzGOWUWMRxjj1uZ8JsFuk8= Subject key identifier: 66:6C:B5:7F:49:2F:AE:07:C9:D8:5E:21:5C:30:C6:05:CA:7F:D8:0C Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C74 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Zmy1f0kvrgfJ2F4hXDDGBcp_2Aw.roa Signing time: Mon 26 Aug 2024 05:32:40 +0000 ROA not before: Mon 26 Aug 2024 05:32:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18018 IP address blocks: 122.255.93.112/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3188 (0xc74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=666CB57F492FAE07C9D85E215C30C605CA7FD80C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c5:a2:ab:8a:0d:21:62:30:58:b6:6f:31:f0: 48:7b:1c:03:a7:26:76:65:32:b3:6c:fc:9e:d3:c2: 3a:b3:59:5c:16:a9:0d:52:c2:3f:43:2f:4c:db:9d: 5f:47:3c:c9:e8:38:f7:5d:7d:f9:75:3e:a7:cc:ba: 49:0d:82:fa:dd:57:db:92:82:4d:b7:9d:bd:e9:3d: 63:48:dd:a1:47:18:0f:91:c0:b0:89:25:2c:b5:36: f8:68:56:80:2d:20:85:98:be:e5:a7:f2:de:82:8e: ab:72:c8:f0:20:be:6a:3f:ff:34:3a:91:83:2d:68: d3:0f:4a:c8:97:11:1c:6d:8e:75:79:a4:a2:13:ed: d4:32:f9:e6:81:48:50:1b:87:6d:83:c1:6a:f2:e1: 09:46:83:17:c5:c7:1a:4b:37:f8:1a:26:53:5c:ae: 32:65:6c:7c:65:f5:33:01:99:58:4d:65:0c:a4:e1: ee:3e:d2:21:0c:a2:01:91:00:fd:a6:75:2d:04:1f: 40:e5:7a:35:b1:1e:0e:65:f0:be:c2:57:97:8c:56: 13:55:ed:9b:e3:ac:07:bf:7f:db:49:07:ba:32:7d: 23:1b:89:61:5c:9e:94:b1:83:e3:37:39:5b:85:55: ce:3e:dc:8d:35:a9:8e:01:ac:6f:26:0c:16:3d:fe: b1:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:6C:B5:7F:49:2F:AE:07:C9:D8:5E:21:5C:30:C6:05:CA:7F:D8:0C X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Zmy1f0kvrgfJ2F4hXDDGBcp_2Aw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.255.93.112/28 Signature Algorithm: sha256WithRSAEncryption 7d:3e:0b:99:c7:df:72:5b:6d:15:8d:fc:49:52:27:d6:02:c0: 15:23:c4:1e:f5:d6:24:73:88:70:74:80:46:70:94:88:20:79: 6b:16:b4:0c:25:10:49:55:e9:f3:b5:39:a0:e9:b4:59:83:4e: 3f:2d:c2:14:da:9c:95:3f:16:f8:2c:a7:ed:15:3a:43:fe:51: bb:6a:37:d9:f7:f8:44:24:67:c4:db:20:24:eb:84:a6:d5:71: 43:bf:a4:65:5e:b7:30:a5:9f:ca:ae:d5:71:ce:bc:31:61:bb: 30:e8:dd:8f:ec:f0:6d:8b:16:1e:71:cb:fb:1e:60:44:71:be: 96:10:48:f6:2a:ba:6a:a5:b4:4b:b2:dd:66:66:73:ee:37:45: f0:f7:4a:35:32:80:54:6a:8e:de:38:66:2b:2d:0f:9f:7f:ae: 1b:c9:76:4a:bd:ce:75:c4:ab:a4:87:cc:68:a9:f8:38:27:48: bc:c6:97:27:29:68:b8:71:94:a5:f6:be:75:91:01:ba:d3:b3: da:2d:19:38:f7:f4:fa:ab:b3:82:f3:8e:f8:1e:d6:19:4f:e3: c2:1d:ae:dc:f2:f2:1f:da:94:90:0d:eb:d7:c7:28:9c:b8:64: 44:75:6a:e5:85:69:d1:9c:ec:6f:8f:b1:d5:b2:62:38:73:18: dc:9a:71:4d -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDHQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2NkNCNTdGNDkyRkFF MDdDOUQ4NUUyMTVDMzBDNjA1Q0E3RkQ4MEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTxaKrig0hYjBYtm8x8Eh7HAOnJnZlMrNs/J7TwjqzWVwWqQ1S wj9DL0zbnV9HPMnoOPddffl1PqfMukkNgvrdV9uSgk23nb3pPWNI3aFHGA+RwLCJ JSy1NvhoVoAtIIWYvuWn8t6CjqtyyPAgvmo//zQ6kYMtaNMPSsiXERxtjnV5pKIT 7dQy+eaBSFAbh22DwWry4QlGgxfFxxpLN/gaJlNcrjJlbHxl9TMBmVhNZQyk4e4+ 0iEMogGRAP2mdS0EH0DlejWxHg5l8L7CV5eMVhNV7ZvjrAe/f9tJB7oyfSMbiWFc npSxg+M3OVuFVc4+3I01qY4BrG8mDBY9/rENAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUZmy1f0kvrgfJ2F4hXDDGBcp/2AwwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9abXkxZjBrdnJnZkoyRjRoWERE R0JjcF8yQXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9d cDANBgkqhkiG9w0BAQsFAAOCAQEAfT4LmcffclttFY38SVIn1gLAFSPEHvXWJHOI cHSARnCUiCB5axa0DCUQSVXp87U5oOm0WYNOPy3CFNqclT8W+Cyn7RU6Q/5Ru2o3 2ff4RCRnxNsgJOuEptVxQ7+kZV63MKWfyq7Vcc68MWG7MOjdj+zwbYsWHnHL+x5g RHG+lhBI9iq6aqW0S7LdZmZz7jdF8PdKNTKAVGqO3jhmKy0Pn3+uG8l2Sr3OdcSr pIfMaKn4OCdIvMaXJylouHGUpfa+dZEButOz2i0ZOPf0+quzgvOO+B7WGU/jwh2u 3PLyH9qUkA3r18conLhkRHVq5YVp0Zzsb4+x1bJiOHMY3JpxTQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org