$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/3QjKBJJloJmWm8ujilwpXML3tRI.roa File: 3QjKBJJloJmWm8ujilwpXML3tRI.roa (raw, json) Hash identifier: el5DSZyOlFFZZO23/jDA9Ix+cjMPUM4Ii24K31ssI8Q= Subject key identifier: DD:08:CA:04:92:65:A0:99:96:9B:CB:A3:8A:5C:29:5C:C2:F7:B5:12 Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E Certificate serial: 0C5B Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/3QjKBJJloJmWm8ujilwpXML3tRI.roa Signing time: Mon 26 Aug 2024 05:28:00 +0000 ROA not before: Mon 26 Aug 2024 05:28:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38254 IP address blocks: 103.129.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E Validity Not Before: Aug 26 05:28:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DD08CA049265A099969BCBA38A5C295CC2F7B512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:0e:c8:1a:4a:b6:56:1e:0e:b8:5b:73:9a:28: 42:c7:53:44:d6:7f:e4:49:35:c2:5f:b6:db:fe:1a: 83:46:58:6f:e3:b3:41:c7:b1:7f:7b:80:52:ea:e6: b9:41:a7:d8:50:2c:11:2d:4f:0b:b0:01:c6:d5:d3: fb:8b:77:10:0d:46:c4:b0:a9:ae:5c:56:cd:cd:9d: fa:31:68:05:31:72:7c:f4:fd:5a:94:2e:1e:a7:a6: 21:ef:15:9b:aa:13:2c:d1:c4:a1:51:f0:26:f3:27: 99:96:be:68:94:3c:48:e8:93:82:ed:ba:4b:d7:65: 96:29:53:07:11:c6:e6:6e:a6:30:c4:ed:de:80:ae: bf:e3:43:04:79:be:bf:3d:93:e5:70:ae:76:94:f4: 07:65:3c:1f:e9:83:bd:64:91:d2:e9:a9:37:fa:01: f5:db:b8:27:fb:8d:34:3a:6e:46:79:3b:7e:95:2c: 76:71:9d:47:95:09:2e:07:d0:0c:12:f3:cb:f3:0b: 23:e3:e1:4b:ec:59:fc:96:c3:17:d3:3d:cf:56:5a: ef:c5:46:ec:00:c3:6a:63:c5:4f:b8:56:7e:59:e4: a9:ae:53:09:61:6a:4d:68:24:57:13:77:2a:75:f3: 3e:3a:87:14:19:5b:00:b3:25:d6:d2:12:cb:26:ec: e6:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:08:CA:04:92:65:A0:99:96:9B:CB:A3:8A:5C:29:5C:C2:F7:B5:12 X509v3 Authority Key Identifier: keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/3QjKBJJloJmWm8ujilwpXML3tRI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.145.0/24 Signature Algorithm: sha256WithRSAEncryption 68:61:37:2c:13:15:dd:e5:6f:99:89:a4:73:ee:b2:c9:a1:59: 59:65:1d:9f:93:71:2b:b7:91:e8:f7:f6:e0:b0:9f:c0:8f:3e: 96:59:91:b4:51:44:1e:f4:b3:0d:6b:2c:ac:e9:1a:fe:de:61: 27:6b:84:6d:f4:3e:03:e9:40:86:46:d4:3f:be:ac:a4:6c:13: 3a:91:c2:b8:f4:1d:b3:10:e1:cc:f3:74:ec:ad:55:28:58:9c: 86:d0:85:c8:17:27:c2:52:b7:a4:03:18:27:7c:f1:37:61:51: af:a2:62:0c:b5:2d:0b:5c:88:d8:bd:d2:68:f9:3d:01:1d:06: 98:5e:98:6c:fb:09:e8:27:87:9e:02:d0:dd:60:ce:39:2c:05: cc:23:9c:5a:eb:8a:2e:cb:2e:d6:bb:7b:58:2c:5f:73:73:d0: 11:43:80:78:2c:e8:ea:7a:21:80:1d:bb:a0:32:6f:f9:3a:16: e0:fd:e7:c2:06:3a:c9:30:a7:3f:e2:a6:22:ad:e8:6b:b7:c8: a6:b7:3c:be:36:ce:b0:57:76:87:f0:a0:57:39:1c:fb:6c:a1: 2e:29:0b:ff:e6:ca:9e:25:b8:cb:c1:2c:01:20:2f:27:e4:e5: 91:8e:c0:b4:89:f1:dc:6e:c5:47:3d:0e:7b:4e:e5:05:9a:65: 22:72:83:f2 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDFswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3 MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yNDA4MjYw NTI4MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEREMDhDQTA0OTI2NUEw OTk5NjlCQ0JBMzhBNUMyOTVDQzJGN0I1MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFDsgaSrZWHg64W3OaKELHU0TWf+RJNcJfttv+GoNGWG/js0HH sX97gFLq5rlBp9hQLBEtTwuwAcbV0/uLdxANRsSwqa5cVs3NnfoxaAUxcnz0/VqU Lh6npiHvFZuqEyzRxKFR8CbzJ5mWvmiUPEjok4LtukvXZZYpUwcRxuZupjDE7d6A rr/jQwR5vr89k+VwrnaU9AdlPB/pg71kkdLpqTf6AfXbuCf7jTQ6bkZ5O36VLHZx nUeVCS4H0AwS88vzCyPj4UvsWfyWwxfTPc9WWu/FRuwAw2pjxU+4Vn5Z5KmuUwlh ak1oJFcTdyp18z46hxQZWwCzJdbSEssm7OZ7AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU3QjKBJJloJmWm8ujilwpXML3tRIwHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVElILzNRaktCSkpsb0ptV204dWppbHdwWE1M M3RSSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngZEwDQYJ KoZIhvcNAQELBQADggEBAGhhNywTFd3lb5mJpHPussmhWVllHZ+TcSu3kej39uCw n8CPPpZZkbRRRB70sw1rLKzpGv7eYSdrhG30PgPpQIZG1D++rKRsEzqRwrj0HbMQ 4czzdOytVShYnIbQhcgXJ8JSt6QDGCd88TdhUa+iYgy1LQtciNi90mj5PQEdBphe mGz7Cegnh54C0N1gzjksBcwjnFrrii7LLta7e1gsX3Nz0BFDgHgs6Op6IYAdu6Ay b/k6FuD958IGOskwpz/ipiKt6Gu3yKa3PL42zrBXdofwoFc5HPtsoS4pC//myp4l uMvBLAEgLyfk5ZGOwLSJ8dxuxUc9DntO5QWaZSJyg/I= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:53 2024 by rpki-client on console-ams.rpki-client.org