$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/3cWupUWRhva5FnTcGpsBgPayCoE.roa File: 3cWupUWRhva5FnTcGpsBgPayCoE.roa (raw, json) Hash identifier: 3d0NAa3bVit7OgWFlo1kOXt4zjcAQi4b5TWDbDoz8x0= Subject key identifier: DD:C5:AE:A5:45:91:86:F6:B9:16:74:DC:1A:9B:01:80:F6:B2:0A:81 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0C75 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/3cWupUWRhva5FnTcGpsBgPayCoE.roa Signing time: Mon 26 Aug 2024 04:56:18 +0000 ROA not before: Mon 26 Aug 2024 04:56:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 2407:7100::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 26 04:56:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DDC5AEA5459186F6B91674DC1A9B0180F6B20A81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a4:89:45:39:ad:e6:a0:fd:e1:b1:21:12:9f: 50:9f:7c:d8:5d:ba:d3:bc:85:27:2f:79:b4:53:3c: 88:78:bf:ba:7a:a9:47:7a:6b:77:7b:67:67:99:66: e3:31:c3:99:0c:34:80:c1:11:80:4e:3c:b3:75:ac: b5:c0:6b:b6:a2:a1:dd:48:64:24:1c:bd:18:28:8b: 8c:4a:f1:79:e6:17:65:3c:87:31:68:7e:08:1c:a9: c2:c8:18:77:85:80:aa:f5:6a:bc:7c:88:1f:98:62: f6:9d:f2:d4:d8:16:8b:ec:ff:2c:a2:5e:a2:78:e2: 19:2d:59:22:43:36:62:fd:1b:a0:c7:d6:1c:22:68: bb:87:c6:58:cb:a9:11:84:79:8e:1d:d0:ac:ec:26: 62:4b:07:e6:91:d9:ef:84:d2:5c:e5:2b:d8:ad:97: 82:2b:88:ed:3c:df:19:45:89:81:4d:a7:bb:79:e2: 15:72:13:8c:fc:8f:e7:fb:7d:0f:45:48:5a:4e:0c: 09:20:43:fe:c8:cf:f9:b1:44:bb:76:5e:37:67:2f: ab:67:3f:63:b0:62:3c:72:65:af:71:94:9b:3b:a3: b4:67:0d:66:81:f6:86:ab:b4:0c:08:12:2c:b2:4e: 4a:fb:67:d5:2a:75:91:b3:3f:59:dc:df:6d:ad:be: e3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:C5:AE:A5:45:91:86:F6:B9:16:74:DC:1A:9B:01:80:F6:B2:0A:81 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/3cWupUWRhva5FnTcGpsBgPayCoE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:7100::/32 Signature Algorithm: sha256WithRSAEncryption 8b:f7:0f:5c:66:d6:b6:47:92:65:b1:15:84:bd:85:2d:4c:4f: 10:0b:6b:9b:76:ab:d6:6c:a1:1c:76:f1:3b:7a:f0:27:b4:04: 5b:c1:dc:4e:c2:5e:e2:55:08:74:a2:e4:84:46:ea:54:2d:7f: b5:ae:06:4f:4b:87:c8:3f:0b:7f:c7:0a:da:30:f2:01:dc:5e: 68:ca:d0:93:e3:18:e6:66:68:11:0a:20:e3:38:1c:95:0f:f3: 74:72:5b:99:21:bf:56:4d:55:bc:bd:ad:36:43:59:98:12:71: 60:f5:b4:22:d0:54:a2:99:44:0a:23:c7:66:44:4e:85:8f:ca: 52:36:c5:1e:5c:39:ed:1c:46:6e:e3:bc:4d:a1:22:e1:5d:ff: 95:68:11:99:74:25:94:7a:04:12:37:21:6f:6c:40:8b:02:71: e5:94:77:7c:bd:76:21:ff:c0:2e:1e:b6:d1:d3:1a:ad:c3:11: 5f:7a:ec:14:a8:11:14:b0:d6:0b:90:e7:aa:2d:27:ca:51:60: 76:4a:16:52:c4:94:5c:39:8f:30:ca:a5:65:87:ed:d1:a4:2e: 0d:4d:3a:ed:f6:dd:79:6b:84:51:8a:f8:49:df:79:6a:0e:4f: 9b:5e:f8:5b:a3:8c:d3:20:62:4a:d5:18:7a:ac:8a:70:d4:f3: 24:53:67:73 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNDA4MjYw NDU2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEREQzVBRUE1NDU5MTg2 RjZCOTE2NzREQzFBOUIwMTgwRjZCMjBBODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDepIlFOa3moP3hsSESn1CffNhdutO8hScvebRTPIh4v7p6qUd6 a3d7Z2eZZuMxw5kMNIDBEYBOPLN1rLXAa7aiod1IZCQcvRgoi4xK8XnmF2U8hzFo fggcqcLIGHeFgKr1arx8iB+YYvad8tTYFovs/yyiXqJ44hktWSJDNmL9G6DH1hwi aLuHxljLqRGEeY4d0KzsJmJLB+aR2e+E0lzlK9itl4IriO083xlFiYFNp7t54hVy E4z8j+f7fQ9FSFpODAkgQ/7Iz/mxRLt2XjdnL6tnP2OwYjxyZa9xlJs7o7RnDWaB 9oartAwIEiyyTkr7Z9UqdZGzP1nc322tvuNLAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU3cWupUWRhva5FnTcGpsBgPayCoEwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi8zY1d1cFVXUmh2YTVG blRjR3BzQmdQYXlDb0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAdxADANBgkqhkiG9w0BAQsFAAOCAQEAi/cPXGbWtkeSZbEVhL2FLUxPEAtr m3ar1myhHHbxO3rwJ7QEW8HcTsJe4lUIdKLkhEbqVC1/ta4GT0uHyD8Lf8cK2jDy AdxeaMrQk+MY5mZoEQog4zgclQ/zdHJbmSG/Vk1VvL2tNkNZmBJxYPW0ItBUoplE CiPHZkROhY/KUjbFHlw57RxGbuO8TaEi4V3/lWgRmXQllHoEEjchb2xAiwJx5ZR3 fL12If/ALh620dMarcMRX3rsFKgRFLDWC5Dnqi0nylFgdkoWUsSUXDmPMMqlZYft 0aQuDU067fbdeWuEUYr4Sd95ag5Pm174W6OM0yBiStUYeqyKcNTzJFNncw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org