$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WANIN/fm4NsW1iQI9Wii7nvuxkFOUFhAo.roa File: fm4NsW1iQI9Wii7nvuxkFOUFhAo.roa (raw, json) Hash identifier: c+QSOC1Fu6n9PgyW3T6xmNxcUBlNAKcWZPGm6xsj788= Subject key identifier: 7E:6E:0D:B1:6D:62:40:8F:56:8A:2E:E7:BE:EC:64:14:E5:05:84:0A Certificate issuer: /CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Certificate serial: 129F Authority key identifier: C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/fm4NsW1iQI9Wii7nvuxkFOUFhAo.roa Signing time: Mon 26 Aug 2024 05:34:52 +0000 ROA not before: Mon 26 Aug 2024 05:34:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 2403:b9c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 19:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4767 (0x129f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C0D2C8C3D4C2FBBA24D3D83508AB142F2D49427D Validity Not Before: Aug 26 05:34:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7E6E0DB16D62408F568A2EE7BEEC6414E505840A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:0d:5c:35:8f:dc:20:00:5c:d8:06:8f:02:00: 26:5c:e3:db:8d:79:ca:e3:f7:7e:aa:19:0d:c2:d1: 3b:ae:45:b4:44:92:f6:6f:77:c4:7c:2d:a5:5a:6c: fb:d6:fd:87:db:45:53:7e:5b:b5:a7:96:fc:6e:19: 65:aa:ef:57:05:33:ac:58:1f:6a:43:2b:43:be:6a: 52:b3:2f:6b:dd:e4:40:80:d5:3a:dd:d1:26:f6:83: 33:40:a2:d4:98:da:f3:45:50:b6:45:d9:6b:a4:6d: 2b:44:8a:55:4d:4c:9c:4b:a3:99:35:44:9e:2e:97: 77:b9:1f:8b:a2:00:1a:4c:05:ac:b0:f0:7e:c1:a3: e1:07:cb:f7:db:ba:c4:ad:ef:f3:da:51:fe:69:47: d8:fd:df:d1:18:3f:5e:65:88:6e:29:b5:4d:e8:72: 40:3e:c2:4b:d1:d7:65:23:b2:d9:86:65:15:0d:72: 81:fb:d6:7c:87:c1:0d:05:6e:42:34:f9:12:4a:7e: 31:45:68:08:5b:9b:c9:e3:7d:a3:2b:ec:20:af:63: 37:c1:7a:3e:1b:e3:ed:29:5b:19:62:b6:8a:de:da: 05:46:da:47:32:01:4b:a1:0e:81:7e:bf:3b:5a:ac: 23:60:7c:48:3c:55:31:4c:7e:2c:a0:51:29:eb:f6: ce:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6E:0D:B1:6D:62:40:8F:56:8A:2E:E7:BE:EC:64:14:E5:05:84:0A X509v3 Authority Key Identifier: keyid:C0:D2:C8:C3:D4:C2:FB:BA:24:D3:D8:35:08:AB:14:2F:2D:49:42:7D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/wNLIw9TC-7ok09g1CKsULy1JQn0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wNLIw9TC-7ok09g1CKsULy1JQn0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WANIN/fm4NsW1iQI9Wii7nvuxkFOUFhAo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:b9c0::/32 Signature Algorithm: sha256WithRSAEncryption 99:6d:55:03:99:0c:91:13:42:12:b4:ad:7a:76:da:14:20:70: c9:cf:97:34:aa:af:15:36:17:a1:80:74:bf:75:df:d0:bd:31: 38:64:cc:ae:84:18:d8:50:66:4d:3f:35:76:7f:c5:8d:71:49: c9:88:da:9c:53:c5:8d:70:72:01:ef:86:2e:42:bc:4b:1b:a1: 6b:c5:20:8f:f7:ae:01:fe:16:7b:52:63:c9:a3:52:7a:66:9f: 0a:7e:58:d5:96:ba:26:ac:c2:c6:3a:f9:fb:24:cb:66:df:95: 2f:94:9e:52:98:02:81:64:e8:0a:f0:32:18:60:35:2e:65:56: a2:72:66:a5:4b:51:31:fc:99:a1:b6:eb:e6:5c:5e:94:2d:0a: 75:d2:f5:d3:28:f3:00:9c:a0:2b:6e:e2:fd:73:c2:2e:1e:1c: 63:8e:4d:b1:49:54:ec:c1:c1:67:12:d7:b0:f3:2a:b9:b3:44: 9d:c5:2d:1c:09:16:65:64:9b:33:14:01:62:8b:98:e3:b4:6f: e6:a4:e8:a7:c3:76:e7:7b:5f:a5:cd:1f:b6:8c:24:5a:ea:f1: 23:de:4a:1a:0f:86:cb:54:bc:0e:76:3a:45:b0:15:8a:ad:bc: 77:6c:3c:8a:51:8c:19:6f:dd:f5:e7:90:61:cf:c2:12:46:c0: 60:d6:9d:c5 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEp8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzBE MkM4QzNENEMyRkJCQTI0RDNEODM1MDhBQjE0MkYyRDQ5NDI3RDAeFw0yNDA4MjYw NTM0NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFNkUwREIxNkQ2MjQw OEY1NjhBMkVFN0JFRUM2NDE0RTUwNTg0MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXDVw1j9wgAFzYBo8CACZc49uNecrj936qGQ3C0TuuRbREkvZv d8R8LaVabPvW/YfbRVN+W7WnlvxuGWWq71cFM6xYH2pDK0O+alKzL2vd5ECA1Trd 0Sb2gzNAotSY2vNFULZF2WukbStEilVNTJxLo5k1RJ4ul3e5H4uiABpMBayw8H7B o+EHy/fbusSt7/PaUf5pR9j939EYP15liG4ptU3ockA+wkvR12UjstmGZRUNcoH7 1nyHwQ0FbkI0+RJKfjFFaAhbm8njfaMr7CCvYzfBej4b4+0pWxlitore2gVG2kcy AUuhDoF+vztarCNgfEg8VTFMfiygUSnr9s6JAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUfm4NsW1iQI9Wii7nvuxkFOUFhAowHwYDVR0jBBgwFoAUwNLIw9TC+7ok09g1 CKsULy1JQn0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0FOSU4v d05MSXc5VEMtN29rMDlnMUNLc1VMeTFKUW4wLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS93TkxJdzlUQy03b2swOWcxQ0tzVUx5MUpRbjAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9XQU5JTi9mbTROc1cxaVFJOVdpaTdudnV4 a0ZPVUZoQW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAO5 wDANBgkqhkiG9w0BAQsFAAOCAQEAmW1VA5kMkRNCErStenbaFCBwyc+XNKqvFTYX oYB0v3Xf0L0xOGTMroQY2FBmTT81dn/FjXFJyYjanFPFjXByAe+GLkK8Sxuha8Ug j/euAf4We1JjyaNSemafCn5Y1Za6JqzCxjr5+yTLZt+VL5SeUpgCgWToCvAyGGA1 LmVWonJmpUtRMfyZobbr5lxelC0KddL10yjzAJygK27i/XPCLh4cY45NsUlU7MHB ZxLXsPMqubNEncUtHAkWZWSbMxQBYouY47Rv5qTop8N253tfpc0ftowkWurxI95K Gg+Gy1S8DnY6RbAViq28d2w8ilGMGW/d9eeQYc/CEkbAYNadxQ== -----END CERTIFICATE-----Generated at Fri Nov 22 15:07:14 2024 by rpki-client on console-ams.rpki-client.org