$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/jvTkrFEUrVOzFo8CkNzQOrZqRVw.roa File: jvTkrFEUrVOzFo8CkNzQOrZqRVw.roa (raw, json) Hash identifier: hGbAqJfvz4+02qRdi9jamkW3VzG+4XPrHV3PrLXmygs= Subject key identifier: 8E:F4:E4:AC:51:14:AD:53:B3:16:8F:02:90:DC:D0:3A:B6:6A:45:5C Certificate issuer: /CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC Certificate serial: 03A5 Authority key identifier: 1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/jvTkrFEUrVOzFo8CkNzQOrZqRVw.roa Signing time: Mon 26 Aug 2024 05:34:49 +0000 ROA not before: Mon 26 Aug 2024 05:34:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38856 IP address blocks: 2406:d040::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 933 (0x3a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC Validity Not Before: Aug 26 05:34:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8EF4E4AC5114AD53B3168F0290DCD03AB66A455C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4e:80:81:dc:c7:af:5c:ab:98:08:b4:e0:92: da:b8:56:74:5c:c6:82:55:0a:81:0a:b8:f4:65:d2: 07:65:c0:27:e8:1a:86:1a:f9:5a:fe:44:2c:d5:4a: 5a:ce:92:c6:9f:ac:1d:30:c2:6b:e5:3e:1b:bc:d9: 4b:80:3a:76:15:13:c0:c7:84:57:fc:4d:a5:2d:4a: e4:a8:03:11:ec:a9:73:fe:d8:dd:1f:ac:50:be:3e: 1b:5d:fa:3c:c5:36:e3:97:28:76:52:56:3d:da:80: 0f:1c:4c:fe:ec:19:08:79:25:cd:fd:de:53:ac:b5: 8f:a5:9f:7b:cb:6b:db:12:8d:d6:27:c7:05:00:14: 5d:c7:9c:cd:21:2c:0d:f6:b6:be:93:ed:d0:ea:eb: 5f:c3:49:1b:36:e0:f0:e9:7f:ba:5d:af:a3:38:fc: 65:5a:f8:8a:1d:ae:48:cf:4f:a2:7b:c7:7d:96:28: fc:29:68:ca:5e:59:95:af:32:06:cf:79:0c:ea:84: e6:ad:82:56:b8:a9:63:73:6d:39:ff:d7:ec:37:29: d1:04:c9:89:ca:8e:54:b5:1d:b0:9e:0d:2e:89:9b: e9:b1:be:a6:09:ee:d6:b4:9e:6a:00:ab:4c:05:f5: 98:45:19:da:18:75:3c:e4:fe:95:6d:0a:78:76:b2: fc:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F4:E4:AC:51:14:AD:53:B3:16:8F:02:90:DC:D0:3A:B6:6A:45:5C X509v3 Authority Key Identifier: keyid:1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/jvTkrFEUrVOzFo8CkNzQOrZqRVw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:d040::/32 Signature Algorithm: sha256WithRSAEncryption 9c:24:25:74:e4:26:db:3f:37:78:1d:18:64:a0:4a:ac:da:d1: 58:3c:eb:22:e3:66:b5:48:e7:ec:4b:27:bc:77:e9:92:1f:04: 4e:f8:24:fd:84:bd:63:c3:85:3a:66:7e:28:cc:57:3c:33:0e: 5b:27:4d:16:51:ec:52:05:a2:41:16:4e:8d:51:85:18:65:81: ed:03:6f:9d:4f:49:bd:7a:e8:55:8b:35:47:87:07:62:38:40: 65:df:21:cb:59:4d:c0:ca:e6:db:99:ea:fd:9c:74:a1:83:d1: 19:e8:fc:79:3c:b4:cd:06:45:93:cd:ae:2f:63:9c:05:41:3f: 5c:4e:29:f1:f3:d8:af:2c:3c:e6:67:b1:95:27:94:61:73:74: 21:18:6a:be:e4:5f:52:54:eb:37:20:05:ac:85:0a:74:2f:c1: 2d:79:c3:87:cf:94:26:8a:56:4f:6a:c4:20:9f:11:4c:1e:97: 84:95:b6:48:7f:3d:d9:1c:22:48:f4:32:be:09:4f:4d:38:33: 1b:3b:88:be:45:f0:09:03:f3:c2:cf:98:ec:60:c9:89:db:33: 30:53:9f:de:32:77:df:2d:87:d6:66:3d:30:98:79:93:12:53: 35:d0:a2:67:32:8d:d6:25:21:16:4a:f8:53:c4:27:5f:5e:da: 6b:a3:0c:5a -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICA6UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUU3 OUM2QzAzM0JCOUQ0NjlFMENFODE2NDUzOERGMzlFOUYxQzNCQzAeFw0yNDA4MjYw NTM0NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFRjRFNEFDNTExNEFE NTNCMzE2OEYwMjkwRENEMDNBQjY2QTQ1NUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsToCB3MevXKuYCLTgktq4VnRcxoJVCoEKuPRl0gdlwCfoGoYa +Vr+RCzVSlrOksafrB0wwmvlPhu82UuAOnYVE8DHhFf8TaUtSuSoAxHsqXP+2N0f rFC+Phtd+jzFNuOXKHZSVj3agA8cTP7sGQh5Jc393lOstY+ln3vLa9sSjdYnxwUA FF3HnM0hLA32tr6T7dDq61/DSRs24PDpf7pdr6M4/GVa+IodrkjPT6J7x32WKPwp aMpeWZWvMgbPeQzqhOatgla4qWNzbTn/1+w3KdEEyYnKjlS1HbCeDS6Jm+mxvqYJ 7ta0nmoAq0wF9ZhFGdoYdTzk/pVtCnh2svyRAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUjvTkrFEUrVOzFo8CkNzQOrZqRVwwHwYDVR0jBBgwFoAUHnnGwDO7nUaeDOgW RTjfOenxw7wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FMS1ND TE9VRC9Ibm5Hd0RPN25VYWVET2dXUlRqZk9lbnh3N3cuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0hubkd3RE83blVhZURPZ1dSVGpmT2VueHc3dy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1dBTEtTQ0xPVUQvanZUa3JGRVVy Vk96Rm84Q2tOelFPclpxUlZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQG0EAwDQYJKoZIhvcNAQELBQADggEBAJwkJXTkJts/N3gdGGSgSqza 0Vg86yLjZrVI5+xLJ7x36ZIfBE74JP2EvWPDhTpmfijMVzwzDlsnTRZR7FIFokEW To1RhRhlge0Db51PSb166FWLNUeHB2I4QGXfIctZTcDK5tuZ6v2cdKGD0Rno/Hk8 tM0GRZPNri9jnAVBP1xOKfHz2K8sPOZnsZUnlGFzdCEYar7kX1JU6zcgBayFCnQv wS15w4fPlCaKVk9qxCCfEUwel4SVtkh/PdkcIkj0Mr4JT004Mxs7iL5F8AkD88LP mOxgyYnbMzBTn94yd98th9ZmPTCYeZMSUzXQomcyjdYlIRZK+FPEJ19e2mujDFo= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:56 2024 by rpki-client on console-fra.rpki-client.org