$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/ZvcyQFdcPBTrP7lP0oaDi-y-HYQ.roa File: ZvcyQFdcPBTrP7lP0oaDi-y-HYQ.roa (raw, json) Hash identifier: CiMOQcUOqwXTgEtI2DvFmMCRkVJ/xepkVBY18S0wUt4= Subject key identifier: 66:F7:32:40:57:5C:3C:14:EB:3F:B9:4F:D2:86:83:8B:EC:BE:1D:84 Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Certificate serial: 0C76 Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/ZvcyQFdcPBTrP7lP0oaDi-y-HYQ.roa Signing time: Mon 26 Aug 2024 05:32:40 +0000 ROA not before: Mon 26 Aug 2024 05:32:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 61.58.41.128/29 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214 Validity Not Before: Aug 26 05:32:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=66F73240575C3C14EB3FB94FD286838BECBE1D84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f0:a8:b5:2c:b5:cd:f1:d5:ca:c3:b0:ea:67: 01:d3:a3:ca:56:b1:ae:e3:3f:4e:45:db:24:9b:e8: 46:91:02:5c:68:18:8a:fd:d5:46:b5:35:c5:55:f4: 85:4d:75:e7:96:96:eb:3f:66:44:28:82:6c:84:1b: 14:08:1b:9c:aa:bb:65:a6:e5:fb:f7:f6:11:f7:6a: ab:32:81:e9:3c:f0:86:ad:dd:57:55:50:3f:6c:1f: 43:57:60:b3:6d:6d:ab:38:65:5c:cd:cf:b9:c8:9e: 2e:dc:55:73:20:3e:56:69:3e:32:2a:f0:fe:ac:30: 64:3f:41:6e:bc:e0:3a:48:e2:68:a5:10:18:3f:e9: 63:d3:cc:5f:e0:06:a4:9a:d4:a8:35:4f:20:ea:06: 38:b6:74:e1:8d:a0:77:cd:b9:85:90:ed:d9:00:87: 25:a1:b0:95:bb:af:27:d2:9b:9e:1b:4c:18:2f:db: 77:a7:cb:41:30:31:ac:12:b1:3e:8b:9c:39:35:cf: a9:32:41:be:f5:32:d0:0a:cb:c8:bd:7d:dc:54:2a: 71:bd:f5:fd:6a:f5:65:17:e7:80:e0:70:6c:6c:05: 0e:f1:a2:12:58:13:df:32:96:2f:82:05:fc:02:13: 3f:98:1f:35:d8:a7:9d:b2:da:b5:1d:d6:b1:95:99: b4:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:F7:32:40:57:5C:3C:14:EB:3F:B9:4F:D2:86:83:8B:EC:BE:1D:84 X509v3 Authority Key Identifier: keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/ZvcyQFdcPBTrP7lP0oaDi-y-HYQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.41.128/29 Signature Algorithm: sha256WithRSAEncryption 70:50:57:6a:17:a4:a8:dd:82:07:95:b0:8b:a0:d7:5f:70:8e: 20:06:e0:6a:ed:8b:77:29:6f:91:ad:45:83:33:15:6e:27:14: b7:de:5c:9f:1e:fd:3c:d7:aa:97:80:4d:11:cc:66:65:a1:0d: d9:1f:70:99:92:2b:12:c5:b4:82:db:7b:f2:7f:06:99:f8:00: 1a:de:6b:5f:9f:5e:72:2c:a5:38:fe:54:4b:2f:c0:1d:13:37: a5:01:83:37:4d:33:c2:e0:38:9e:ec:18:27:df:2c:ab:bb:d4: 2f:cd:d1:3b:2d:5c:14:8f:df:d0:10:54:86:e0:f9:b0:6a:e6: 9c:cb:4a:92:b2:22:72:7c:47:7d:44:e7:0c:d4:a0:45:ab:48: 36:77:d4:b2:e2:e5:83:52:2a:5b:a0:03:3e:95:cf:84:74:3d: 3c:26:20:28:14:dc:29:ba:e2:d9:b2:2d:85:27:67:f4:f5:31: e0:22:87:ec:69:ec:04:8b:b2:1b:4a:37:f7:d7:dd:7a:f1:46: d0:6c:5c:c0:68:a1:49:b7:54:40:b6:34:ee:d2:4c:42:18:e3: af:80:72:53:bb:a8:da:cc:da:e4:66:dd:22:50:a8:d7:f7:79: 05:53:af:da:eb:77:a4:6f:30:ed:5a:3e:60:1c:99:da:2a:fd: 52:5f:a8:4c -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNDA4MjYw NTMyNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2RjczMjQwNTc1QzND MTRFQjNGQjk0RkQyODY4MzhCRUNCRTFEODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL8Ki1LLXN8dXKw7DqZwHTo8pWsa7jP05F2ySb6EaRAlxoGIr9 1Ua1NcVV9IVNdeeWlus/ZkQogmyEGxQIG5yqu2Wm5fv39hH3aqsygek88Iat3VdV UD9sH0NXYLNtbas4ZVzNz7nIni7cVXMgPlZpPjIq8P6sMGQ/QW684DpI4milEBg/ 6WPTzF/gBqSa1Kg1TyDqBji2dOGNoHfNuYWQ7dkAhyWhsJW7ryfSm54bTBgv23en y0EwMawSsT6LnDk1z6kyQb71MtAKy8i9fdxUKnG99f1q9WUX54DgcGxsBQ7xohJY E98yli+CBfwCEz+YHzXYp52y2rUd1rGVmbS3AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUZvcyQFdcPBTrP7lP0oaDi+y+HYQwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9admN5UUZkY1BCVHJQN2xQMG9h RGkteS1IWVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDPTop gDANBgkqhkiG9w0BAQsFAAOCAQEAcFBXahekqN2CB5Wwi6DXX3COIAbgau2Ldylv ka1FgzMVbicUt95cnx79PNeql4BNEcxmZaEN2R9wmZIrEsW0gtt78n8GmfgAGt5r X59eciylOP5USy/AHRM3pQGDN00zwuA4nuwYJ98sq7vUL83ROy1cFI/f0BBUhuD5 sGrmnMtKkrIicnxHfUTnDNSgRatINnfUsuLlg1IqW6ADPpXPhHQ9PCYgKBTcKbri 2bIthSdn9PUx4CKH7GnsBIuyG0o399fdevFG0GxcwGihSbdUQLY07tJMQhjjr4By U7uo2sza5GbdIlCo1/d5BVOv2ut3pG8w7Vo+YByZ2ir9Ul+oTA== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:40 2024 by rpki-client on console-fra.rpki-client.org