$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINANG/exV7rBrihI5vWCEB71Bd4i98vzE.roa File: exV7rBrihI5vWCEB71Bd4i98vzE.roa (raw, json) Hash identifier: 72/YUQrTldRs9Ymh/TZW3907SrnKdgmRfDNfclWazUs= Subject key identifier: 7B:15:7B:AC:1A:E2:84:8E:6F:58:21:01:EF:50:5D:E2:2F:7C:BF:31 Certificate issuer: /CN=032D33664F780B2C501EE623E7BBF1D226B26248 Certificate serial: 04 Authority key identifier: 03:2D:33:66:4F:78:0B:2C:50:1E:E6:23:E7:BB:F1:D2:26:B2:62:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Ay0zZk94CyxQHuYj57vx0iayYkg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/exV7rBrihI5vWCEB71Bd4i98vzE.roa Signing time: Fri 08 Nov 2024 05:33:00 +0000 ROA not before: Fri 08 Nov 2024 05:33:00 +0000 ROA not after: Tue 04 Nov 2025 15:30:21 +0000 asID: 131642 IP address blocks: 160.191.168.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/Ay0zZk94CyxQHuYj57vx0iayYkg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/Ay0zZk94CyxQHuYj57vx0iayYkg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Ay0zZk94CyxQHuYj57vx0iayYkg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 13:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032D33664F780B2C501EE623E7BBF1D226B26248 Validity Not Before: Nov 8 05:33:00 2024 GMT Not After : Nov 4 15:30:21 2025 GMT Subject: CN=7B157BAC1AE2848E6F582101EF505DE22F7CBF31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:b3:a5:ce:22:99:70:b8:c3:be:1a:bb:4d:03: 85:2e:e8:fe:30:5b:82:7a:7c:67:66:2c:47:12:cd: 08:43:bf:d6:1a:b0:e6:63:24:c6:c9:f6:0b:60:e6: de:34:9f:c2:ad:f7:ee:47:65:2e:8e:9f:71:d7:a0: 74:f9:13:06:4d:c9:1f:68:46:a3:23:ee:48:0a:6b: c2:5c:b1:fe:3d:25:d0:a2:38:9d:e2:97:1a:d1:9f: 0a:df:5e:d9:73:cb:12:11:36:76:6d:b8:78:82:00: 34:fd:15:f1:59:c2:c9:ca:e2:d7:fa:24:f1:24:99: b4:d0:30:6c:f1:c5:c2:20:a4:29:9b:1d:4f:4b:eb: 8a:5c:27:49:83:e8:bc:76:8a:4e:be:33:23:06:3d: 84:0d:82:33:af:a9:88:be:e3:49:51:08:07:3e:db: 70:cb:39:cb:fc:66:3e:a4:e5:4d:a1:37:43:f2:9c: 9f:fd:3c:de:00:40:3f:43:1f:cb:7c:c3:c6:02:36: cd:15:2b:9b:97:34:7b:f9:46:8d:b5:82:34:40:e6: 24:22:65:99:43:c4:a6:ad:e1:ce:27:2f:86:83:a1: cd:12:ea:19:b2:f8:9f:da:38:ab:29:7b:03:7f:91: 6c:d5:03:69:89:a4:68:3c:5e:ce:d3:5d:fc:b5:dc: e7:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:15:7B:AC:1A:E2:84:8E:6F:58:21:01:EF:50:5D:E2:2F:7C:BF:31 X509v3 Authority Key Identifier: keyid:03:2D:33:66:4F:78:0B:2C:50:1E:E6:23:E7:BB:F1:D2:26:B2:62:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/Ay0zZk94CyxQHuYj57vx0iayYkg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Ay0zZk94CyxQHuYj57vx0iayYkg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/exV7rBrihI5vWCEB71Bd4i98vzE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.168.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:33:31:d6:8b:7e:fd:e0:96:8c:c0:f3:55:e4:04:27:df:4f: d7:d0:57:83:d1:36:8a:69:65:cb:61:c1:0f:5b:97:84:df:2b: a5:d2:6f:16:9c:9d:61:83:d7:06:21:53:33:34:b6:ff:ef:10: b5:5b:d5:b7:16:99:dd:1d:dc:e4:e5:94:be:cb:96:43:58:20: e3:4e:99:13:a3:43:2e:a9:d3:2d:c3:d1:a0:0d:51:b9:ea:33: af:5f:02:32:bb:59:5f:a7:2a:f4:22:db:82:8e:70:32:84:f0: fc:66:ac:4e:4a:95:11:6d:2e:64:43:a7:97:fb:8a:3d:13:09: 9b:bb:1e:7e:cc:5f:09:c1:c4:d3:1e:c2:4e:74:cf:65:e2:9b: ac:b6:32:33:ab:e9:fe:1a:de:be:42:0b:db:93:ba:bd:29:1c: f8:31:1c:50:93:a1:54:40:e0:64:8a:68:8b:8a:4c:5f:3d:33: f8:85:65:76:9c:b5:1f:90:4e:85:6a:5e:db:5e:0a:5c:60:ec: 95:ae:89:64:e7:8f:4d:d1:bb:05:8a:a5:b4:bc:86:25:a4:21: d2:f5:8b:21:8a:6d:68:2e:55:76:83:b0:ed:b1:e5:06:a8:86: 4b:dc:a7:09:30:ce:e0:fe:0c:e5:c0:31:8b:f7:0e:3a:7c:5e: 46:ef:c8:de -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIBBDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwMzJE MzM2NjRGNzgwQjJDNTAxRUU2MjNFN0JCRjFEMjI2QjI2MjQ4MB4XDTI0MTEwODA1 MzMwMFoXDTI1MTEwNDE1MzAyMVowMzExMC8GA1UEAxMoN0IxNTdCQUMxQUUyODQ4 RTZGNTgyMTAxRUY1MDVERTIyRjdDQkYzMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAOqzpc4imXC4w74au00DhS7o/jBbgnp8Z2YsRxLNCEO/1hqw5mMk xsn2C2Dm3jSfwq337kdlLo6fcdegdPkTBk3JH2hGoyPuSAprwlyx/j0l0KI4neKX GtGfCt9e2XPLEhE2dm24eIIANP0V8VnCycri1/ok8SSZtNAwbPHFwiCkKZsdT0vr ilwnSYPovHaKTr4zIwY9hA2CM6+piL7jSVEIBz7bcMs5y/xmPqTlTaE3Q/Kcn/08 3gBAP0Mfy3zDxgI2zRUrm5c0e/lGjbWCNEDmJCJlmUPEpq3hzicvhoOhzRLqGbL4 n9o4qyl7A3+RbNUDaYmkaDxeztNd/LXc5ykCAwEAAaOCAe4wggHqMB0GA1UdDgQW BBR7FXusGuKEjm9YIQHvUF3iL3y/MTAfBgNVHSMEGDAWgBQDLTNmT3gLLFAe5iPn u/HSJrJiSDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTkcv QXkwelprOTRDeXhRSHVZajU3dngwaWF5WWtnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9BeTB6Wms5NEN5eFFIdVlqNTd2eDBpYXlZa2cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTkcvZXhWN3JCcmloSTV2V0NFQjcx QmQ0aTk4dnpFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaC/ qDANBgkqhkiG9w0BAQsFAAOCAQEAOjMx1ot+/eCWjMDzVeQEJ99P19BXg9E2imll y2HBD1uXhN8rpdJvFpydYYPXBiFTMzS2/+8QtVvVtxaZ3R3c5OWUvsuWQ1gg406Z E6NDLqnTLcPRoA1Rueozr18CMrtZX6cq9CLbgo5wMoTw/GasTkqVEW0uZEOnl/uK PRMJm7sefsxfCcHE0x7CTnTPZeKbrLYyM6vp/hrevkIL25O6vSkc+DEcUJOhVEDg ZIpoi4pMXz0z+IVldpy1H5BOhWpe214KXGDsla6JZOePTdG7BYqltLyGJaQh0vWL IYptaC5VdoOw7bHlBqiGS9ynCTDO4P4M5cAxi/cOOnxeRu/I3g== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org