$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZAT/rpRms8TW_8uy6QVnW6E2FPMK8Fg.roa File: rpRms8TW_8uy6QVnW6E2FPMK8Fg.roa (raw, json) Hash identifier: /+anKC1K5j1HaOHNoEoAIJ1ocuMF0YR7C9TO3K+xeLY= Subject key identifier: AE:94:66:B3:C4:D6:FF:CB:B2:E9:05:67:5B:A1:36:14:F3:0A:F0:58 Certificate issuer: /CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Certificate serial: F0 Authority key identifier: 41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/rpRms8TW_8uy6QVnW6E2FPMK8Fg.roa Signing time: Fri 15 Nov 2024 15:52:57 +0000 ROA not before: Fri 15 Nov 2024 15:52:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 201217 IP address blocks: 210.79.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41D608336CCF0EDFEA4A24614F1D7234884E8991 Validity Not Before: Nov 15 15:52:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE9466B3C4D6FFCBB2E905675BA13614F30AF058 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:30:1f:cd:3c:06:e2:4d:c0:86:0e:5b:48:e6: ce:60:fd:08:3e:42:a8:13:24:a9:f4:5a:76:55:5d: 07:52:a2:ca:44:a0:ba:60:ce:14:17:4b:bd:3e:29: 9e:25:9f:0b:79:41:a6:46:1e:58:87:fe:a7:30:6b: 9f:21:c8:4e:a3:ed:45:ba:fd:c6:8a:99:c4:90:c5: df:de:8a:70:e4:0f:05:e2:27:d1:39:0a:08:d6:82: 8d:9b:34:26:ea:22:b4:3c:95:07:82:3e:c6:43:2f: 2c:ae:c9:ce:a6:29:75:3d:af:fe:89:76:7b:4f:fb: 2a:89:2f:cc:3a:c9:99:e8:03:c4:9e:65:bd:ed:51: d4:8a:4a:86:b0:f0:10:fa:d4:28:a9:01:d8:5b:7a: 6a:e5:2c:1b:d0:67:25:cf:b6:0b:82:58:d5:ca:ae: 59:39:1c:77:e9:be:66:b9:a0:c2:d0:76:63:48:a4: b9:0f:dc:61:56:ea:9b:3d:03:a5:6e:03:56:43:6c: 80:0c:1e:89:6b:13:29:ef:30:bf:25:f7:a6:d7:8b: c7:af:bf:2d:dc:4f:94:ce:dd:45:3f:ab:13:0b:89: ac:c4:a3:59:da:18:0e:d0:dd:96:f8:1b:91:d8:55: ce:f6:91:42:43:ec:9c:ef:bf:4f:94:9b:d6:1c:98: aa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:94:66:B3:C4:D6:FF:CB:B2:E9:05:67:5B:A1:36:14:F3:0A:F0:58 X509v3 Authority Key Identifier: keyid:41:D6:08:33:6C:CF:0E:DF:EA:4A:24:61:4F:1D:72:34:88:4E:89:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/QdYIM2zPDt_qSiRhTx1yNIhOiZE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QdYIM2zPDt_qSiRhTx1yNIhOiZE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZAT/rpRms8TW_8uy6QVnW6E2FPMK8Fg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.79.151.0/24 Signature Algorithm: sha256WithRSAEncryption 68:70:ef:7c:02:4d:c0:1e:55:99:b9:5a:8e:ba:51:fa:5e:50: 14:d5:0e:e2:5f:3c:4e:42:04:c9:81:7b:e7:44:14:e6:98:74: 59:29:c1:44:4c:4a:d8:88:fa:d4:0f:e7:54:28:16:38:32:8c: 3b:2b:6d:ea:8b:05:33:fe:1b:23:7e:11:c0:3c:18:ca:52:8f: a1:76:6e:7b:41:c5:80:b7:3c:de:41:5a:5c:e1:9e:13:61:36: 8a:a2:51:81:bc:7a:3d:ab:10:b7:fa:27:80:16:a2:ab:c4:2a: c2:5b:f7:f8:9d:4b:c3:fe:78:b0:c6:30:29:d7:3a:5c:d1:b0: ac:69:b1:60:5d:f9:08:be:d6:d8:ce:52:e9:94:e9:7f:f4:a0: c9:f2:17:75:3b:4f:a4:3e:a0:94:b1:ba:6e:68:67:77:fa:8d: e3:4f:35:0b:8d:4b:a9:c0:e6:10:62:15:90:b6:c5:29:39:78: 86:7a:14:c1:e4:3e:4c:6c:aa:08:42:13:31:b8:00:43:f7:c6: d9:0c:02:c8:0d:d5:4c:0d:29:e3:68:fb:76:21:1b:b0:41:cf: c1:07:74:c0:15:62:88:99:c4:4c:21:f5:e8:2e:81:b2:6f:1d: 47:fe:08:b6:52:b0:26:68:79:11:3c:e2:a2:c1:7c:1f:e7:88: fe:94:31:98 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDFE NjA4MzM2Q0NGMEVERkVBNEEyNDYxNEYxRDcyMzQ4ODRFODk5MTAeFw0yNDExMTUx NTUyNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFOTQ2NkIzQzRENkZG Q0JCMkU5MDU2NzVCQTEzNjE0RjMwQUYwNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrMB/NPAbiTcCGDltI5s5g/Qg+QqgTJKn0WnZVXQdSospEoLpg zhQXS70+KZ4lnwt5QaZGHliH/qcwa58hyE6j7UW6/caKmcSQxd/einDkDwXiJ9E5 CgjWgo2bNCbqIrQ8lQeCPsZDLyyuyc6mKXU9r/6JdntP+yqJL8w6yZnoA8SeZb3t UdSKSoaw8BD61CipAdhbemrlLBvQZyXPtguCWNXKrlk5HHfpvma5oMLQdmNIpLkP 3GFW6ps9A6VuA1ZDbIAMHolrEynvML8l96bXi8evvy3cT5TO3UU/qxMLiazEo1na GA7Q3Zb4G5HYVc72kUJD7Jzvv0+Um9YcmKqfAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUrpRms8TW/8uy6QVnW6E2FPMK8FgwHwYDVR0jBBgwFoAUQdYIM2zPDt/qSiRh Tx1yNIhOiZEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL1Fk WUlNMnpQRHRfcVNpUmhUeDF5TkloT2laRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UWRZSU0yelBEdF9xU2lSaFR4MXlOSWhPaVpFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvWkFUL3JwUm1zOFRXXzh1eTZRVm5XNkUyRlBN SzhGZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADST5cwDQYJ KoZIhvcNAQELBQADggEBAGhw73wCTcAeVZm5Wo66UfpeUBTVDuJfPE5CBMmBe+dE FOaYdFkpwURMStiI+tQP51QoFjgyjDsrbeqLBTP+GyN+EcA8GMpSj6F2bntBxYC3 PN5BWlzhnhNhNoqiUYG8ej2rELf6J4AWoqvEKsJb9/idS8P+eLDGMCnXOlzRsKxp sWBd+Qi+1tjOUumU6X/0oMnyF3U7T6Q+oJSxum5oZ3f6jeNPNQuNS6nA5hBiFZC2 xSk5eIZ6FMHkPkxsqghCEzG4AEP3xtkMAsgN1UwNKeNo+3YhG7BBz8EHdMAVYoiZ xEwh9egugbJvHUf+CLZSsCZoeRE84qLBfB/niP6UMZg= -----END CERTIFICATE-----Generated at Mon Nov 25 12:00:54 2024 by rpki-client on console-ams.rpki-client.org