$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TYCATV/6Z6iYvrV_15cnodJF0SfTY3lWnQ.roa File: 6Z6iYvrV_15cnodJF0SfTY3lWnQ.roa (raw, json) Hash identifier: KshcHOwNG9T/z544ZqoQOGeBfLTaEm9qNbaZxI165aE= Subject key identifier: E9:9E:A2:62:FA:D5:FF:5E:5C:9E:87:49:17:44:9F:4D:8D:E5:5A:74 Certificate issuer: /CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121 Certificate serial: 0BD2 Authority key identifier: DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/6Z6iYvrV_15cnodJF0SfTY3lWnQ.roa Signing time: Mon 26 Aug 2024 05:32:47 +0000 ROA not before: Mon 26 Aug 2024 05:32:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 203.111.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3026 (0xbd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF210700AE8EA25668E6BEA3FA6A6D3B378C3121 Validity Not Before: Aug 26 05:32:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E99EA262FAD5FF5E5C9E874917449F4D8DE55A74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:34:70:e6:16:9d:47:5c:8c:c6:27:55:23:a6: 6d:e4:be:28:93:4a:a9:d2:80:bb:27:d0:ef:31:9c: 07:61:8f:bc:a1:da:3c:46:b2:ff:0c:09:c8:f1:e9: f3:31:76:35:bc:48:9b:a6:1c:fa:6f:1d:7f:26:08: a8:f8:e1:3c:43:e8:c4:4f:13:2a:d8:f5:fe:3c:0f: f8:b5:88:2c:3b:3b:3f:cb:28:f6:30:37:61:f2:8c: 10:02:f5:d0:8e:d7:9c:38:53:f8:0b:8d:bc:67:bc: 46:d0:0b:a4:ab:60:5f:ac:48:ba:b2:f9:b4:4e:d7: 49:04:72:0b:50:98:20:e5:3b:53:81:5a:83:cf:22: f5:3a:9f:69:bf:10:76:54:ae:7c:1a:08:ef:2a:74: a8:1b:28:c6:e6:7b:d1:06:a1:06:73:11:7c:20:ca: 60:12:49:21:60:2e:3d:d1:cb:ab:3f:50:82:27:5d: 89:71:30:5f:a4:37:3e:70:fe:d9:6d:2c:1f:13:e0: 21:f0:70:40:1e:bd:f8:00:c5:15:f6:32:d7:07:11: c1:4b:ab:d4:b8:10:98:74:74:19:9e:b7:b2:72:98: 26:f0:0f:1c:b4:47:fc:51:6d:57:92:64:4a:ec:99: 07:5a:14:ff:93:10:63:79:1b:af:b0:79:57:10:ad: a8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:9E:A2:62:FA:D5:FF:5E:5C:9E:87:49:17:44:9F:4D:8D:E5:5A:74 X509v3 Authority Key Identifier: keyid:DF:21:07:00:AE:8E:A2:56:68:E6:BE:A3:FA:6A:6D:3B:37:8C:31:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/3yEHAK6OolZo5r6j-mptOzeMMSE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3yEHAK6OolZo5r6j-mptOzeMMSE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TYCATV/6Z6iYvrV_15cnodJF0SfTY3lWnQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.111.208.0/20 Signature Algorithm: sha256WithRSAEncryption 0a:70:98:41:1b:59:37:bc:2a:72:43:1e:f3:a2:19:a8:7a:04: b3:04:7b:70:37:15:a0:85:4c:b2:63:20:c0:33:1c:3e:93:58: 62:be:aa:ad:c5:1e:58:54:5b:8c:e6:27:39:13:d3:61:62:86: 7a:46:d8:30:d4:31:b5:86:1a:49:a0:24:d0:fa:8b:f9:4b:06: 82:ba:9b:f6:7a:0a:41:07:d6:6a:ec:f6:00:f7:42:f2:60:ef: 9e:f2:37:42:8d:70:1c:97:49:6f:11:14:8a:97:f8:ef:e4:49: 12:9c:e2:d4:87:7f:bf:b1:40:b1:a2:d0:2e:8c:03:8a:e7:58: fe:20:c3:5a:24:43:61:9b:88:b5:b8:44:86:c1:cf:cc:f3:47: 2f:5f:88:7f:89:d6:b3:28:9d:c4:be:b2:4b:8e:5c:6b:63:12: 5b:a1:c8:18:d3:dc:c7:98:6d:74:86:0e:a2:8a:9a:0c:d5:57: d8:b0:fe:36:d2:55:81:f7:b0:a4:53:d1:da:89:e8:7d:96:af: 65:e4:06:90:5f:c5:f5:65:64:a7:b5:8d:c8:3d:cc:02:20:6e: 39:f4:8e:37:11:95:1c:90:7f:ab:fb:6d:08:62:2a:f8:59:35: cb:46:93:bc:96:02:14:c2:0f:14:65:e3:f7:a9:57:17:f2:37: d1:a9:dc:21 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC9IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREYy MTA3MDBBRThFQTI1NjY4RTZCRUEzRkE2QTZEM0IzNzhDMzEyMTAeFw0yNDA4MjYw NTMyNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5OUVBMjYyRkFENUZG NUU1QzlFODc0OTE3NDQ5RjREOERFNTVBNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1NHDmFp1HXIzGJ1Ujpm3kviiTSqnSgLsn0O8xnAdhj7yh2jxG sv8MCcjx6fMxdjW8SJumHPpvHX8mCKj44TxD6MRPEyrY9f48D/i1iCw7Oz/LKPYw N2HyjBAC9dCO15w4U/gLjbxnvEbQC6SrYF+sSLqy+bRO10kEcgtQmCDlO1OBWoPP IvU6n2m/EHZUrnwaCO8qdKgbKMbme9EGoQZzEXwgymASSSFgLj3Ry6s/UIInXYlx MF+kNz5w/tltLB8T4CHwcEAevfgAxRX2MtcHEcFLq9S4EJh0dBmet7JymCbwDxy0 R/xRbVeSZErsmQdaFP+TEGN5G6+weVcQraiLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU6Z6iYvrV/15cnodJF0SfTY3lWnQwHwYDVR0jBBgwFoAU3yEHAK6OolZo5r6j +mptOzeMMSEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRW LzN5RUhBSzZPb2xabzVyNmotbXB0T3plTU1TRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvM3lFSEFLNk9vbFpvNXI2ai1tcHRPemVNTVNFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFlDQVRWLzZaNmlZdnJWXzE1Y25vZEpG MFNmVFkzbFduUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATL b9AwDQYJKoZIhvcNAQELBQADggEBAApwmEEbWTe8KnJDHvOiGah6BLMEe3A3FaCF TLJjIMAzHD6TWGK+qq3FHlhUW4zmJzkT02FihnpG2DDUMbWGGkmgJND6i/lLBoK6 m/Z6CkEH1mrs9gD3QvJg757yN0KNcByXSW8RFIqX+O/kSRKc4tSHf7+xQLGi0C6M A4rnWP4gw1okQ2GbiLW4RIbBz8zzRy9fiH+J1rMoncS+skuOXGtjEluhyBjT3MeY bXSGDqKKmgzVV9iw/jbSVYH3sKRT0dqJ6H2Wr2XkBpBfxfVlZKe1jcg9zAIgbjn0 jjcRlRyQf6v7bQhiKvhZNctGk7yWAhTCDxRl4/epVxfyN9Gp3CE= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org