$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/L3EMp3iTdWpdXP4kN1oPtqsUKIo.roa File: L3EMp3iTdWpdXP4kN1oPtqsUKIo.roa (raw, json) Hash identifier: 9FJEoPyqss0b3ol5io8O4klVxIjcq354h1ohshC+dZI= Subject key identifier: 2F:71:0C:A7:78:93:75:6A:5D:5C:FE:24:37:5A:0F:B6:AB:14:28:8A Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Certificate serial: F0 Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/L3EMp3iTdWpdXP4kN1oPtqsUKIo.roa Signing time: Fri 15 Nov 2024 15:52:57 +0000 ROA not before: Fri 15 Nov 2024 15:52:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18041 IP address blocks: 210.79.150.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Validity Not Before: Nov 15 15:52:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2F710CA77893756A5D5CFE24375A0FB6AB14288A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c6:cd:09:86:14:70:6d:95:d3:e4:01:ab:dc: 82:59:76:7f:fd:c1:25:83:b8:3d:c4:e4:07:75:51: 2a:32:ad:42:4f:b6:30:6a:92:d6:71:4b:a8:a5:79: 1c:a9:f1:60:b8:92:a7:a3:83:cc:4c:24:4b:b9:30: e9:dc:ef:ac:91:8c:5c:a3:12:70:bb:be:79:c6:fc: b7:d3:29:35:d9:ae:84:e0:46:64:44:93:c8:19:6e: 2f:f6:b8:b8:41:75:b3:4d:81:2c:b2:ba:6a:77:c8: d3:d9:99:a5:99:08:08:84:6a:53:50:34:e3:b7:52: 6b:8e:44:4a:1c:60:c1:38:12:f4:80:25:71:e7:c5: 5b:d0:2a:f4:be:16:e2:9c:80:89:90:84:88:c3:c0: 4d:b3:5f:e0:1c:c8:a9:70:7d:af:c7:aa:db:22:4a: a5:e1:3d:da:58:b5:5f:cd:0d:7a:c3:58:91:ab:31: 63:d0:f1:db:90:62:49:12:ae:c5:19:d0:b6:4e:8f: ca:e1:0c:0d:ea:7c:6a:0d:f4:b8:39:be:fe:3c:10: ee:2b:3d:a1:59:7b:9d:aa:0f:bc:48:74:85:d6:fe: 06:ed:e2:e0:77:b5:85:69:39:de:05:c9:0d:72:17: a0:aa:78:27:47:76:f9:49:92:48:1d:f5:29:f5:1c: 70:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:71:0C:A7:78:93:75:6A:5D:5C:FE:24:37:5A:0F:B6:AB:14:28:8A X509v3 Authority Key Identifier: keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/L3EMp3iTdWpdXP4kN1oPtqsUKIo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.150.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:6c:be:dc:e3:13:d7:18:20:f3:ca:4e:18:31:5a:5b:c4:db: 7c:18:fd:1e:77:9e:09:99:e0:c1:d4:5e:b5:38:13:49:38:5f: 85:7d:77:47:ab:e4:6e:cb:3f:ef:ce:c5:a4:d5:f4:05:3e:57: a0:02:b8:28:b0:20:48:94:df:63:b7:7b:a2:02:5b:91:eb:11: db:47:81:0f:49:bb:20:42:74:10:3c:be:94:d5:10:a1:c7:cb: 4f:a6:dd:09:43:7e:a1:5f:fe:ed:7b:6e:c4:95:03:fa:48:6c: 51:17:ae:91:f9:a5:e9:4c:43:b5:0e:d2:db:11:ef:fb:5a:92: 0c:b8:36:d5:cc:6a:e0:c1:6f:89:5a:21:2f:22:d8:74:86:3d: 3f:e4:83:ea:ee:38:21:32:77:a1:91:ad:8c:60:77:92:dc:ec: 66:5a:01:29:0c:76:21:eb:6a:68:12:ac:45:54:c1:7f:87:b0: 27:5a:09:eb:8a:a8:a1:ef:9e:1f:7b:08:c2:18:e1:f7:24:ff: 22:9d:ee:06:02:ca:83:9f:fd:0e:9d:69:f7:99:37:4b:8e:01: ac:1a:ea:a8:17:18:b2:74:be:7e:92:48:84:7c:65:e7:d8:aa: 41:9f:4c:76:6f:29:55:34:cb:14:13:52:72:d4:ac:0b:5a:bc: 3c:3c:0d:cc -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDFE NjA4MzM2Q0NGMEVERkVBNEEyNDYxNEYxRDcyMzQ4ODRFODk5MTAeFw0yNDExMTUx NTUyNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJGNzEwQ0E3Nzg5Mzc1 NkE1RDVDRkUyNDM3NUEwRkI2QUIxNDI4OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbxs0JhhRwbZXT5AGr3IJZdn/9wSWDuD3E5Ad1USoyrUJPtjBq ktZxS6ileRyp8WC4kqejg8xMJEu5MOnc76yRjFyjEnC7vnnG/LfTKTXZroTgRmRE k8gZbi/2uLhBdbNNgSyyump3yNPZmaWZCAiEalNQNOO3UmuOREocYME4EvSAJXHn xVvQKvS+FuKcgImQhIjDwE2zX+AcyKlwfa/HqtsiSqXhPdpYtV/NDXrDWJGrMWPQ 8duQYkkSrsUZ0LZOj8rhDA3qfGoN9Lg5vv48EO4rPaFZe52qD7xIdIXW/gbt4uB3 tYVpOd4FyQ1yF6CqeCdHdvlJkkgd9Sn1HHCfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUL3EMp3iTdWpdXP4kN1oPtqsUKIowHwYDVR0jBBgwFoAUQdYIM2zPDt/qSiRh Tx1yNIhOiZEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL1Fk WUlNMnpQRHRfcVNpUmhUeDF5TkloT2laRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UWRZSU0yelBEdF9xU2lSaFR4MXlOSWhPaVpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL0wzRU1wM2lUZFdwZFhQNGtOMW9QdHFz VUtJby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHST5YwDQYJ KoZIhvcNAQELBQADggEBAJ1svtzjE9cYIPPKThgxWlvE23wY/R53ngmZ4MHUXrU4 E0k4X4V9d0er5G7LP+/OxaTV9AU+V6ACuCiwIEiU32O3e6ICW5HrEdtHgQ9JuyBC dBA8vpTVEKHHy0+m3QlDfqFf/u17bsSVA/pIbFEXrpH5pelMQ7UO0tsR7/takgy4 NtXMauDBb4laIS8i2HSGPT/kg+ruOCEyd6GRrYxgd5Lc7GZaASkMdiHramgSrEVU wX+HsCdaCeuKqKHvnh97CMIY4fck/yKd7gYCyoOf/Q6dafeZN0uOAawa6qgXGLJ0 vn6SSIR8ZefYqkGfTHZvKVU0yxQTUnLUrAtavDw8Dcw= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:27 2024 by rpki-client on console-ams.rpki-client.org