$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KHVBanBGLo8ZMeceI191SAwcdOc.roa File: KHVBanBGLo8ZMeceI191SAwcdOc.roa (raw, json) Hash identifier: Gy4xcuJ21emuDCATP7vmTlWUlJgz15p1x97mYL2Wz6k= Subject key identifier: 28:75:41:6A:70:46:2E:8F:19:31:E7:1E:23:5F:75:48:0C:1C:74:E7 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0D84 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KHVBanBGLo8ZMeceI191SAwcdOc.roa Signing time: Mon 26 Aug 2024 05:35:01 +0000 ROA not before: Mon 26 Aug 2024 05:35:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24168 IP address blocks: 2405:8700:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3460 (0xd84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 26 05:35:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2875416A70462E8F1931E71E235F75480C1C74E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:72:a0:c4:b2:e5:d7:78:8a:56:2f:af:82:6e: 6d:0a:13:eb:70:d5:39:2d:78:d4:f0:f6:ac:19:46: 1c:92:ea:52:08:ae:13:d7:0a:6a:80:2a:80:60:c6: 8a:13:5a:12:a4:10:f9:40:d8:aa:17:f1:c3:d6:f4: 6e:44:b9:05:b3:20:af:28:6f:c2:a4:d8:dc:36:14: 5c:48:dc:3d:fd:05:9d:00:2d:b1:64:13:1f:e7:29: a9:d4:6d:ba:91:7f:3d:12:cf:55:d2:f6:ad:d6:7c: 1a:74:b0:e6:77:48:73:22:16:a0:f9:eb:e4:6c:8c: de:08:18:c0:21:05:62:64:c7:ca:b9:50:c1:75:be: 98:01:f8:86:24:a1:a5:db:8d:df:a4:a6:6a:3c:ee: 01:e0:ef:f3:44:c4:f9:a7:13:41:ed:8b:54:ae:46: a3:1c:e5:14:15:96:d4:b8:0b:50:6d:de:d1:b4:97: 07:87:fd:39:69:41:58:43:91:b2:11:b0:a8:d9:6b: 3c:88:9d:a0:f2:50:9d:54:68:b0:40:e9:5e:b1:d5: 1b:f0:ec:7f:ec:30:dc:31:7d:f6:46:6e:ad:38:96: 76:89:90:e1:47:e5:6d:35:a0:b6:30:f9:cf:43:38: 41:3c:74:0b:b7:24:f2:f0:3d:4f:2d:d7:45:5d:0e: f2:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:75:41:6A:70:46:2E:8F:19:31:E7:1E:23:5F:75:48:0C:1C:74:E7 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/KHVBanBGLo8ZMeceI191SAwcdOc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:8700:3000::/48 Signature Algorithm: sha256WithRSAEncryption 04:dd:77:aa:0f:31:06:15:b1:de:46:24:46:91:f1:5c:3a:46: 70:26:56:e7:b4:88:42:28:f4:3f:73:29:71:ce:2c:2f:22:09: 37:6e:44:5b:ce:6d:a4:51:85:50:0e:f1:db:e7:7f:f8:94:c5: f0:33:f8:7a:16:a9:4e:85:b0:ee:8a:d4:4f:71:36:78:7b:11: 42:f0:c3:81:73:3c:83:f2:84:de:c2:ce:4c:2e:e3:3e:95:da: 5f:70:b9:e4:11:c7:e7:c6:e5:e4:1a:33:61:40:c3:99:10:c2: ed:97:e6:2c:c0:e0:c2:b9:ac:7e:9a:a8:36:e6:9b:8b:0f:75: d8:2c:e3:24:a1:54:2a:55:2a:6f:3a:25:ad:98:71:ea:4d:85: c8:40:26:69:0b:af:fa:82:a8:93:d7:ee:8e:8c:04:2a:16:d2: af:72:f8:c0:0a:3a:2f:43:e5:7b:f0:dc:8e:92:e2:40:4c:4b: 95:ff:68:61:8e:70:33:54:58:a3:23:5f:69:d0:d7:5e:42:6f: c2:c2:49:35:88:38:a1:17:05:dc:aa:94:4b:4f:b1:39:a5:c1: 7d:6e:c6:be:32:1e:8e:0d:85:8d:ef:af:11:c8:72:9d:15:00: b8:4b:c3:dc:9b:72:0c:ae:17:de:46:d1:74:6d:66:c4:82:f3: dc:5c:f6:c9 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNDA4MjYw NTM1MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4NzU0MTZBNzA0NjJF OEYxOTMxRTcxRTIzNUY3NTQ4MEMxQzc0RTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOcqDEsuXXeIpWL6+Cbm0KE+tw1TkteNTw9qwZRhyS6lIIrhPX CmqAKoBgxooTWhKkEPlA2KoX8cPW9G5EuQWzIK8ob8Kk2Nw2FFxI3D39BZ0ALbFk Ex/nKanUbbqRfz0Sz1XS9q3WfBp0sOZ3SHMiFqD56+RsjN4IGMAhBWJkx8q5UMF1 vpgB+IYkoaXbjd+kpmo87gHg7/NExPmnE0Hti1SuRqMc5RQVltS4C1Bt3tG0lweH /TlpQVhDkbIRsKjZazyInaDyUJ1UaLBA6V6x1Rvw7H/sMNwxffZGbq04lnaJkOFH 5W01oLYw+c9DOEE8dAu3JPLwPU8t10VdDvLfAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUKHVBanBGLo8ZMeceI191SAwcdOcwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0tIVkJhbkJHTG84 Wk1lY2VJMTkxU0F3Y2RPYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBAATdd6oPMQYVsd5GJEaR8Vw6 RnAmVue0iEIo9D9zKXHOLC8iCTduRFvObaRRhVAO8dvnf/iUxfAz+HoWqU6FsO6K 1E9xNnh7EULww4FzPIPyhN7Czkwu4z6V2l9wueQRx+fG5eQaM2FAw5kQwu2X5izA 4MK5rH6aqDbmm4sPddgs4yShVCpVKm86Ja2YcepNhchAJmkLr/qCqJPX7o6MBCoW 0q9y+MAKOi9D5Xvw3I6S4kBMS5X/aGGOcDNUWKMjX2nQ115Cb8LCSTWIOKEXBdyq lEtPsTmlwX1uxr4yHo4NhY3vrxHIcp0VALhLw9ybcgyuF95G0XRtZsSC89xc9sk= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org