$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/f0gTa_lzdEz3OfeazBNvz-41G84.roa File: f0gTa_lzdEz3OfeazBNvz-41G84.roa (raw, json) Hash identifier: 4aSkC+wT66Rq6eFQeyg4GbBigKZDOq61B2SYRtQmh/o= Subject key identifier: 7F:48:13:6B:F9:73:74:4C:F7:39:F7:9A:CC:13:6F:CF:EE:35:1B:CE Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0D88 Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/f0gTa_lzdEz3OfeazBNvz-41G84.roa Signing time: Mon 26 Aug 2024 05:35:02 +0000 ROA not before: Mon 26 Aug 2024 05:35:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 6939 IP address blocks: 2405:8700:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3464 (0xd88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 26 05:35:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7F48136BF973744CF739F79ACC136FCFEE351BCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:ed:eb:05:90:74:84:8d:c4:a9:44:b2:60:e2: 79:69:55:c8:81:cf:c4:1b:8a:70:80:75:1d:d5:ff: a8:b4:c1:f2:ae:30:73:e6:81:4b:f6:f9:b5:b2:21: 11:d0:3c:b4:42:ff:46:78:3a:d8:2c:1c:e0:00:2d: 55:df:d5:12:27:9e:2f:36:9e:31:b3:28:27:05:11: 2d:98:29:c6:0d:f5:63:62:04:7c:af:72:86:94:fb: 55:be:1c:1c:7b:a4:f3:3c:1a:26:05:54:f8:46:9f: 32:64:65:41:e8:5a:0f:d4:55:df:ee:f1:26:27:ba: 8f:bc:6f:1d:27:db:24:0d:ab:59:50:ab:3b:8b:31: e2:dd:6a:99:c1:93:a5:0f:7d:b4:01:4d:9d:c8:24: 54:d0:42:0b:7e:f1:54:fd:a8:e0:80:e3:bf:c5:e6: 62:e9:16:b7:bf:d9:64:f7:9d:32:03:83:4d:8c:0b: fe:88:c2:d7:5a:e6:08:f7:2b:12:de:a4:8f:4c:64: 40:c5:26:e2:9a:f4:bd:f3:d4:78:11:38:5c:24:de: 54:83:d2:93:60:51:5f:b1:ad:3d:b4:d1:e0:8d:e2: b2:2a:d7:6d:e9:c8:46:6d:20:87:52:4e:f3:22:df: a5:f9:21:01:63:19:e6:ac:73:9f:f2:52:88:1f:7d: be:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:48:13:6B:F9:73:74:4C:F7:39:F7:9A:CC:13:6F:CF:EE:35:1B:CE X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/f0gTa_lzdEz3OfeazBNvz-41G84.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:8700:3000::/48 Signature Algorithm: sha256WithRSAEncryption 1f:ac:4c:01:af:50:90:95:8a:a5:09:cf:8d:71:ec:6c:63:c4: d1:03:a1:84:d5:80:13:a9:25:a2:25:1f:e8:9a:93:44:10:ce: c0:dc:90:bd:09:d2:6f:0d:d3:fd:24:3c:c6:e0:43:e4:d2:c0: 53:33:52:b6:71:59:86:51:eb:51:51:04:0c:b1:78:dc:f2:3a: 58:db:15:a3:7d:3d:a6:ad:a1:62:ac:1b:75:22:c2:fc:6d:80: 0d:55:ef:f0:90:71:ac:54:48:2b:3a:7b:ca:ea:1b:e3:e3:37: 0a:d3:e9:8d:9f:01:c9:32:f6:c3:50:d6:4e:a5:52:b5:3d:29: ef:b3:b9:8b:ad:9a:ac:4a:fa:83:39:af:59:bb:04:06:0b:1d: d7:55:0a:ab:2a:63:8d:23:18:3d:af:3f:5a:b8:f3:9c:ea:f3: 2a:bf:7d:75:a0:93:fc:dd:58:5b:f4:7d:71:b5:09:d2:66:3c: 88:b1:89:55:fa:a9:aa:49:88:d3:46:da:16:e3:ad:a8:09:b6: ce:2e:6a:8c:a7:1a:32:6f:53:5c:9c:7c:f7:37:d9:60:21:70: e0:0a:23:09:cc:8c:63:be:46:eb:34:58:4d:c8:87:ea:b2:63: c8:71:0e:5f:83:e0:eb:0f:73:48:e4:c4:20:a6:92:1a:eb:30: ae:50:ff:c0 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDYgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNDA4MjYw NTM1MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdGNDgxMzZCRjk3Mzc0 NENGNzM5Rjc5QUNDMTM2RkNGRUUzNTFCQ0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDf7esFkHSEjcSpRLJg4nlpVciBz8QbinCAdR3V/6i0wfKuMHPm gUv2+bWyIRHQPLRC/0Z4OtgsHOAALVXf1RInni82njGzKCcFES2YKcYN9WNiBHyv coaU+1W+HBx7pPM8GiYFVPhGnzJkZUHoWg/UVd/u8SYnuo+8bx0n2yQNq1lQqzuL MeLdapnBk6UPfbQBTZ3IJFTQQgt+8VT9qOCA47/F5mLpFre/2WT3nTIDg02MC/6I wtda5gj3KxLepI9MZEDFJuKa9L3z1HgROFwk3lSD0pNgUV+xrT200eCN4rIq123p yEZtIIdSTvMi36X5IQFjGeasc5/yUogffb7ZAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUf0gTa/lzdEz3OfeazBNvz+41G84wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL2YwZ1RhX2x6ZEV6 M09mZWF6Qk52ei00MUc4NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkBYcAMAAwDQYJKoZIhvcNAQELBQADggEBAB+sTAGvUJCViqUJz41x7Gxj xNEDoYTVgBOpJaIlH+iak0QQzsDckL0J0m8N0/0kPMbgQ+TSwFMzUrZxWYZR61FR BAyxeNzyOljbFaN9PaatoWKsG3UiwvxtgA1V7/CQcaxUSCs6e8rqG+PjNwrT6Y2f Acky9sNQ1k6lUrU9Ke+zuYutmqxK+oM5r1m7BAYLHddVCqsqY40jGD2vP1q485zq 8yq/fXWgk/zdWFv0fXG1CdJmPIixiVX6qapJiNNG2hbjragJts4uaoynGjJvU1yc fPc32WAhcOAKIwnMjGO+Rus0WE3Ih+qyY8hxDl+D4OsPc0jkxCCmkhrrMK5Q/8A= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org