$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ULC/FZD1GikCMIudHhecpeVEuG34cxo.roa File: FZD1GikCMIudHhecpeVEuG34cxo.roa (raw, json) Hash identifier: JJGtrZ2NZS1OkaluAPsqUOzkxvL40MNyVO8CFtQvrZc= Subject key identifier: 15:90:F5:1A:29:02:30:8B:9D:1E:17:9C:A5:E5:44:B8:6D:F8:73:1A Certificate issuer: /CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B Certificate serial: 048E Authority key identifier: BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/FZD1GikCMIudHhecpeVEuG34cxo.roa Signing time: Mon 26 Aug 2024 05:34:33 +0000 ROA not before: Mon 26 Aug 2024 05:34:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 2406:9740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1166 (0x48e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFBB7F7B5C58323490875849B8EDDA495EF17B1B Validity Not Before: Aug 26 05:34:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1590F51A2902308B9D1E179CA5E544B86DF8731A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e7:c8:81:c9:90:c4:1d:a2:04:47:30:58:a7: 7e:c0:96:39:12:f2:7d:33:6c:68:6b:19:03:35:0a: 59:13:96:18:87:24:78:7b:ab:33:77:72:a2:3d:58: 34:52:eb:6b:26:2a:6e:df:17:4a:15:a6:61:9c:1a: 52:e0:09:41:13:e0:b6:42:ae:4a:95:3e:1d:a5:89: 8e:57:d1:ee:fb:14:5b:c4:3b:65:a6:28:c1:3f:61: 14:76:e1:fd:a8:d1:98:bd:ae:7b:e2:b3:20:8c:0a: 93:6e:37:a3:1a:83:a8:c0:96:bc:fa:67:72:34:de: 3f:07:99:3c:5b:d7:10:ba:32:16:e4:5c:c3:72:cd: 98:a7:0d:41:e6:c9:58:41:ea:78:bb:d5:b5:c3:38: 3e:12:e4:3f:44:67:74:67:8b:ee:ee:d0:2d:8c:c7: 85:8f:34:50:76:49:d3:69:22:d3:2c:cf:4a:8a:78: 66:88:b2:48:2a:23:19:96:83:57:5c:b5:0b:5a:58: 8b:5e:6a:d2:12:ae:ca:ec:01:75:9b:38:d2:01:fb: 6e:d8:e5:11:15:d7:12:54:e7:e8:82:fb:01:a6:ab: 60:fd:a9:79:d9:98:3a:09:62:2d:d4:bb:d3:d3:e2: 08:8c:73:61:0c:97:62:ba:e4:7a:35:d8:7a:72:79: 3c:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:90:F5:1A:29:02:30:8B:9D:1E:17:9C:A5:E5:44:B8:6D:F8:73:1A X509v3 Authority Key Identifier: keyid:BF:BB:7F:7B:5C:58:32:34:90:87:58:49:B8:ED:DA:49:5E:F1:7B:1B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/v7t_e1xYMjSQh1hJuO3aSV7xexs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v7t_e1xYMjSQh1hJuO3aSV7xexs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ULC/FZD1GikCMIudHhecpeVEuG34cxo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:9740::/32 Signature Algorithm: sha256WithRSAEncryption 95:62:5c:32:39:23:3f:81:51:49:1c:82:bc:36:d3:13:3c:62: 49:54:68:2a:06:b3:a4:5b:08:20:90:8b:c2:d1:e6:1a:ac:6b: 3b:8b:c9:c2:71:9b:03:27:b0:24:11:cb:5a:e0:a7:c3:d9:74: 47:9d:c1:45:5f:a2:33:0c:13:62:73:d2:19:c3:8c:30:ff:46: bf:a1:85:53:14:11:45:f4:bb:d5:ed:af:0d:62:98:8e:ca:a5: ae:5b:14:85:c6:e0:ed:d4:86:55:75:8f:5d:9d:06:8c:e0:02: c0:79:5c:29:bb:94:c4:dc:01:c7:5a:2c:1e:d8:c1:e9:e0:d5: 19:f7:dc:cb:19:ad:fa:02:4e:11:5b:e1:0d:f8:60:76:d6:b2: 9a:ab:1e:bd:09:a0:51:25:a3:6a:25:5d:14:09:08:8c:83:af: 52:36:ea:6f:7b:5d:8b:dd:64:6e:f3:3a:42:32:87:84:df:a2: dd:9a:cd:27:5f:cf:6b:dc:32:98:c1:8a:2d:ee:98:62:b3:29: 44:7d:14:51:75:59:f2:a1:f9:1e:6f:69:94:bd:89:53:d6:7e: 8a:b5:23:0f:41:de:7b:a1:ce:55:86:3e:8a:fa:5d:f9:c5:55: fe:77:2c:71:8d:9c:ee:e8:30:1f:fe:d1:59:9d:cd:0f:c7:97: a0:75:5e:1b -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgICBI4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkZC QjdGN0I1QzU4MzIzNDkwODc1ODQ5QjhFRERBNDk1RUYxN0IxQjAeFw0yNDA4MjYw NTM0MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1OTBGNTFBMjkwMjMw OEI5RDFFMTc5Q0E1RTU0NEI4NkRGODczMUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx58iByZDEHaIERzBYp37AljkS8n0zbGhrGQM1ClkTlhiHJHh7 qzN3cqI9WDRS62smKm7fF0oVpmGcGlLgCUET4LZCrkqVPh2liY5X0e77FFvEO2Wm KME/YRR24f2o0Zi9rnvisyCMCpNuN6Mag6jAlrz6Z3I03j8HmTxb1xC6MhbkXMNy zZinDUHmyVhB6ni71bXDOD4S5D9EZ3Rni+7u0C2Mx4WPNFB2SdNpItMsz0qKeGaI skgqIxmWg1dctQtaWIteatISrsrsAXWbONIB+27Y5REV1xJU5+iC+wGmq2D9qXnZ mDoJYi3Uu9PT4giMc2EMl2K65Ho12HpyeTx/AgMBAAGjggHpMIIB5TAdBgNVHQ4E FgQUFZD1GikCMIudHhecpeVEuG34cxowHwYDVR0jBBgwFoAUv7t/e1xYMjSQh1hJ uO3aSV7xexswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL3Y3 dF9lMXhZTWpTUWgxaEp1TzNhU1Y3eGV4cy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djd0X2UxeFlNalNRaDFoSnVPM2FTVjd4ZXhzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVUxDL0ZaRDFHaWtDTUl1ZEhoZWNwZVZFdUcz NGN4by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAkBpdAMA0G CSqGSIb3DQEBCwUAA4IBAQCVYlwyOSM/gVFJHIK8NtMTPGJJVGgqBrOkWwggkIvC 0eYarGs7i8nCcZsDJ7AkEcta4KfD2XRHncFFX6IzDBNic9IZw4ww/0a/oYVTFBFF 9LvV7a8NYpiOyqWuWxSFxuDt1IZVdY9dnQaM4ALAeVwpu5TE3AHHWiwe2MHp4NUZ 99zLGa36Ak4RW+EN+GB21rKaqx69CaBRJaNqJV0UCQiMg69SNupve12L3WRu8zpC MoeE36Ldms0nX89r3DKYwYot7phisylEfRRRdVnyofkeb2mUvYlT1n6KtSMPQd57 oc5Vhj6K+l35xVX+dyxxjZzu6DAf/tFZnc0Px5egdV4b -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org