$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/PPG0W2tlfmP9TqEvmQX7xFFb9zk.roa File: PPG0W2tlfmP9TqEvmQX7xFFb9zk.roa (raw, json) Hash identifier: 6qMpZtuaAMQJQ2dq2s6oplsZO8eQIcEkudQC+xWZgPU= Subject key identifier: 3C:F1:B4:5B:6B:65:7E:63:FD:4E:A1:2F:99:05:FB:C4:51:5B:F7:39 Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Certificate serial: F0 Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/PPG0W2tlfmP9TqEvmQX7xFFb9zk.roa Signing time: Fri 15 Nov 2024 15:52:57 +0000 ROA not before: Fri 15 Nov 2024 15:52:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 215672 IP address blocks: 210.79.150.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Validity Not Before: Nov 15 15:52:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CF1B45B6B657E63FD4EA12F9905FBC4515BF739 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:47:7b:81:fb:eb:fe:28:c4:46:75:06:ab:8c: 58:f2:d8:8b:c7:be:ff:b9:a3:2b:b6:9d:5e:64:5f: bd:76:6a:b5:b9:bb:8d:b6:52:21:68:62:e7:04:0d: c7:9a:28:9e:bc:39:8c:6b:aa:60:bb:c4:35:f0:d8: c5:64:db:ea:cd:6c:9d:bb:a9:16:06:6e:26:8a:1e: ba:17:1c:e4:76:95:dd:b7:9d:c3:48:4f:d4:58:a4: c6:99:76:22:b6:d1:c0:54:8f:06:8a:c4:8c:22:4e: 5d:ea:b4:63:54:f6:33:b9:e0:4e:0d:ab:4c:c4:3a: 01:a7:3f:ba:fa:b8:69:67:c9:1b:ab:0e:0b:87:3f: d3:6f:c6:87:99:38:07:e5:29:10:61:a3:73:e2:23: c2:c2:bc:78:30:51:c5:15:93:d0:66:bf:66:55:28: 6d:64:ab:24:41:9d:be:4a:64:09:09:0c:06:cc:76: 09:39:d4:12:31:33:9c:60:18:c6:83:d7:e9:4c:de: 2a:ad:22:7e:9e:3d:d4:53:3a:02:3e:80:54:aa:9b: d9:9d:a9:03:ad:9e:f9:89:a4:69:2a:8d:b2:90:42: bf:58:73:36:34:81:43:a7:a2:96:2a:58:d8:1f:6d: d1:d9:8c:55:de:58:ac:42:33:0f:8d:95:e7:60:f1: d1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F1:B4:5B:6B:65:7E:63:FD:4E:A1:2F:99:05:FB:C4:51:5B:F7:39 X509v3 Authority Key Identifier: keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/PPG0W2tlfmP9TqEvmQX7xFFb9zk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.150.0/24 Signature Algorithm: sha256WithRSAEncryption 06:e4:31:41:53:c3:55:f1:66:24:39:8a:ad:6a:d1:be:3b:f1: fd:28:13:73:e4:ea:e0:28:66:dc:94:39:d0:44:2e:c4:86:63: 81:47:16:88:64:ff:ea:30:a4:cf:8e:c3:95:8e:99:99:db:dd: 01:3c:24:41:eb:45:45:05:87:b4:df:d1:cc:5e:68:49:bb:ff: cd:36:20:5b:af:9d:00:a6:7b:b7:24:5c:e0:db:00:51:ab:c7: d4:0f:3e:ec:dd:41:cd:f6:4a:d1:d5:dc:71:25:15:a6:6a:df: 7b:42:2a:7f:53:fb:ec:84:8e:d2:81:2f:1a:a5:e2:a2:95:2a: 8b:0b:ee:32:e9:6d:1d:2a:41:7f:ce:1c:21:ab:e5:a6:85:78: 7b:a3:c3:c7:db:4d:70:74:8e:11:f1:64:90:e3:ea:9b:28:5e: 5b:db:de:ef:de:90:4a:e0:e9:fb:96:0b:36:0b:42:17:42:98: a4:9b:c2:a8:00:3a:ff:64:ea:8a:41:38:e7:2b:aa:c1:5d:eb: df:03:24:53:3d:d6:34:ee:cf:36:1e:e2:3b:3b:02:87:1a:1a: 1d:f3:a3:17:be:cf:2a:08:8f:04:16:a5:6c:99:65:a4:6b:f9: 82:28:05:05:45:71:38:2a:9b:3b:8c:49:35:27:a7:40:a3:a1: fb:92:a8:8f -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDFE NjA4MzM2Q0NGMEVERkVBNEEyNDYxNEYxRDcyMzQ4ODRFODk5MTAeFw0yNDExMTUx NTUyNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDRjFCNDVCNkI2NTdF NjNGRDRFQTEyRjk5MDVGQkM0NTE1QkY3MzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnR3uB++v+KMRGdQarjFjy2IvHvv+5oyu2nV5kX712arW5u422 UiFoYucEDceaKJ68OYxrqmC7xDXw2MVk2+rNbJ27qRYGbiaKHroXHOR2ld23ncNI T9RYpMaZdiK20cBUjwaKxIwiTl3qtGNU9jO54E4Nq0zEOgGnP7r6uGlnyRurDguH P9NvxoeZOAflKRBho3PiI8LCvHgwUcUVk9Bmv2ZVKG1kqyRBnb5KZAkJDAbMdgk5 1BIxM5xgGMaD1+lM3iqtIn6ePdRTOgI+gFSqm9mdqQOtnvmJpGkqjbKQQr9YczY0 gUOnopYqWNgfbdHZjFXeWKxCMw+Nledg8dHfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUPPG0W2tlfmP9TqEvmQX7xFFb9zkwHwYDVR0jBBgwFoAUQdYIM2zPDt/qSiRh Tx1yNIhOiZEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL1Fk WUlNMnpQRHRfcVNpUmhUeDF5TkloT2laRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UWRZSU0yelBEdF9xU2lSaFR4MXlOSWhPaVpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL1BQRzBXMnRsZm1QOVRxRXZtUVg3eEZG Yjl6ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADST5YwDQYJ KoZIhvcNAQELBQADggEBAAbkMUFTw1XxZiQ5iq1q0b478f0oE3Pk6uAoZtyUOdBE LsSGY4FHFohk/+owpM+Ow5WOmZnb3QE8JEHrRUUFh7Tf0cxeaEm7/802IFuvnQCm e7ckXODbAFGrx9QPPuzdQc32StHV3HElFaZq33tCKn9T++yEjtKBLxql4qKVKosL 7jLpbR0qQX/OHCGr5aaFeHujw8fbTXB0jhHxZJDj6psoXlvb3u/ekErg6fuWCzYL QhdCmKSbwqgAOv9k6opBOOcrqsFd698DJFM91jTuzzYe4js7AocaGh3zoxe+zyoI jwQWpWyZZaRr+YIoBQVFcTgqmzuMSTUnp0CjofuSqI8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org