$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/IKsQM0gold36BSwxGWMoQ2SCOBw.roa File: IKsQM0gold36BSwxGWMoQ2SCOBw.roa (raw, json) Hash identifier: souYzaOYuMK9FC+iU2nhlAjOaP7BTrk6FKTzyjzAnBM= Subject key identifier: 20:AB:10:33:48:28:95:DD:FA:05:2C:31:19:63:28:43:64:82:38:1C Certificate issuer: /CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97 Certificate serial: 0336 Authority key identifier: C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/IKsQM0gold36BSwxGWMoQ2SCOBw.roa Signing time: Mon 26 Aug 2024 05:35:12 +0000 ROA not before: Mon 26 Aug 2024 05:35:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38846 IP address blocks: 2407:a0c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 822 (0x336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C3FC116A3CCB105AB50DA417679B1F9C70A4BD97 Validity Not Before: Aug 26 05:35:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=20AB1033482895DDFA052C31196328436482381C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f0:86:b5:27:8d:58:e0:d4:21:c5:7c:30:b0: e2:d7:57:27:6a:da:db:4c:60:4c:b2:5d:44:1a:c2: f4:12:c8:78:96:80:06:de:e3:d9:68:1b:be:5c:01: b4:7b:eb:68:6d:9a:7c:8b:46:44:2b:0f:8d:97:46: 9f:24:f7:57:66:15:02:70:b7:06:64:e3:53:91:fd: c2:17:4e:8e:e5:30:f7:75:f5:ce:91:0a:6c:dc:2c: f7:46:ae:4b:80:10:15:d7:c8:d3:f4:8a:27:33:e9: 41:53:75:2c:a8:1b:d6:7a:4a:63:45:71:dd:39:1e: ab:cd:74:bc:ef:2a:64:8a:20:93:f0:14:44:82:d4: de:31:1b:4f:5d:92:15:c3:05:8b:ed:9e:56:6b:16: 1f:26:18:95:54:2b:2b:9e:69:9f:d0:07:88:79:ce: 17:72:60:ef:af:e4:b6:bb:52:dd:19:54:ce:43:c7: db:13:eb:8d:b7:d8:2a:fb:bd:a9:cc:2e:87:d8:00: cf:71:c1:ef:b7:d9:22:9a:db:34:0b:99:63:21:84: 07:61:29:93:c5:37:51:f6:80:6a:48:0e:dd:2d:6e: d5:cc:9a:e6:61:07:fb:e2:32:e2:09:c5:ba:08:83: 07:96:09:b0:39:d0:0a:18:63:f8:96:f0:c6:62:e9: 8d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:AB:10:33:48:28:95:DD:FA:05:2C:31:19:63:28:43:64:82:38:1C X509v3 Authority Key Identifier: keyid:C3:FC:11:6A:3C:CB:10:5A:B5:0D:A4:17:67:9B:1F:9C:70:A4:BD:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/w_wRajzLEFq1DaQXZ5sfnHCkvZc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/w_wRajzLEFq1DaQXZ5sfnHCkvZc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WOLFNET/IKsQM0gold36BSwxGWMoQ2SCOBw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:a0c0::/32 Signature Algorithm: sha256WithRSAEncryption 77:8f:c8:b2:5b:cf:95:77:d2:e6:b4:52:8b:da:23:b0:62:52: d6:76:e1:99:ba:f3:f5:3c:cb:63:ce:16:c6:74:83:0a:ed:cf: 08:31:20:42:30:b2:0a:1e:73:1b:fe:9e:e8:8f:bb:51:e8:5b: 8a:93:fd:94:67:cb:e4:2d:bf:82:1d:3c:08:b4:34:f2:81:50: ff:2f:13:b4:ad:e0:10:55:6d:1b:93:10:44:1b:a7:5f:a6:09: 05:d5:7e:94:3c:28:ca:56:39:82:84:53:0a:89:cf:63:eb:bb: ed:dd:d4:ee:9c:38:a3:17:c8:b9:40:10:7a:37:47:f2:29:16: 95:08:f2:06:4f:20:9a:2d:a6:97:12:5a:2e:14:66:e3:59:9b: 05:f5:77:ad:0d:2a:b4:d0:5a:45:dc:d0:2f:11:e6:d6:e4:18: 93:a2:78:8c:8b:b7:bc:93:c2:79:ff:86:16:e5:3c:34:77:af: cc:1f:3c:59:d7:50:b7:c6:38:35:36:5e:d1:37:ce:44:bf:34: 88:70:0e:06:e4:bb:bf:95:5a:5c:17:0e:45:61:b9:26:61:e8: e2:be:c8:95:07:b6:9d:aa:15:d6:a2:ed:43:59:4d:c8:ba:4e: 9a:79:31:3e:73:d4:8a:45:19:54:1f:e4:e2:f5:a8:02:80:e3: a8:40:05:1f -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICAzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzNG QzExNkEzQ0NCMTA1QUI1MERBNDE3Njc5QjFGOUM3MEE0QkQ5NzAeFw0yNDA4MjYw NTM1MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwQUIxMDMzNDgyODk1 RERGQTA1MkMzMTE5NjMyODQzNjQ4MjM4MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF8Ia1J41Y4NQhxXwwsOLXVydq2ttMYEyyXUQawvQSyHiWgAbe 49loG75cAbR762htmnyLRkQrD42XRp8k91dmFQJwtwZk41OR/cIXTo7lMPd19c6R CmzcLPdGrkuAEBXXyNP0iicz6UFTdSyoG9Z6SmNFcd05HqvNdLzvKmSKIJPwFESC 1N4xG09dkhXDBYvtnlZrFh8mGJVUKyueaZ/QB4h5zhdyYO+v5La7Ut0ZVM5Dx9sT 64232Cr7vanMLofYAM9xwe+32SKa2zQLmWMhhAdhKZPFN1H2gGpIDt0tbtXMmuZh B/viMuIJxboIgweWCbA50AoYY/iW8MZi6Y3/AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUIKsQM0gold36BSwxGWMoQ2SCOBwwHwYDVR0jBBgwFoAUw/wRajzLEFq1DaQX Z5sfnHCkvZcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV09MRk5F VC93X3dSYWp6TEVGcTFEYVFYWjVzZm5IQ2t2WmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3dfd1JhanpMRUZxMURhUVhaNXNmbkhDa3ZaYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1dPTEZORVQvSUtzUU0wZ29sZDM2QlN3 eEdXTW9RMlNDT0J3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQHoMAwDQYJKoZIhvcNAQELBQADggEBAHePyLJbz5V30ua0UovaI7BiUtZ24Zm6 8/U8y2POFsZ0gwrtzwgxIEIwsgoecxv+nuiPu1HoW4qT/ZRny+Qtv4IdPAi0NPKB UP8vE7St4BBVbRuTEEQbp1+mCQXVfpQ8KMpWOYKEUwqJz2Pru+3d1O6cOKMXyLlA EHo3R/IpFpUI8gZPIJotppcSWi4UZuNZmwX1d60NKrTQWkXc0C8R5tbkGJOieIyL t7yTwnn/hhblPDR3r8wfPFnXULfGODU2XtE3zkS/NIhwDgbku7+VWlwXDkVhuSZh 6OK+yJUHtp2qFdai7UNZTci6Tpp5MT5z1IpFGVQf5OL1qAKA46hABR8= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:19 2024 by rpki-client on console-fra.rpki-client.org