$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Rk7Y8wuLC1qy3jA9GQm8dMQvtNA.roa File: Rk7Y8wuLC1qy3jA9GQm8dMQvtNA.roa (raw, json) Hash identifier: xTFSEBEfuucxQFAZDnuTAIkLmHEERb7MrV78H4WfI8o= Subject key identifier: 46:4E:D8:F3:0B:8B:0B:5A:B2:DE:30:3D:19:09:BC:74:C4:2F:B4:D0 Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 0551 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Rk7Y8wuLC1qy3jA9GQm8dMQvtNA.roa Signing time: Mon 26 Aug 2024 05:09:28 +0000 ROA not before: Mon 26 Aug 2024 05:09:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 983 IP address blocks: 103.156.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1361 (0x551) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Aug 26 05:09:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=464ED8F30B8B0B5AB2DE303D1909BC74C42FB4D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3f:01:f1:79:e0:05:23:23:a2:c7:ef:0e:cd: a1:e9:3f:a0:f6:df:cd:c3:d4:63:7c:c0:5f:13:9a: 0e:90:cb:3f:61:4c:67:8b:16:31:9f:47:fb:68:17: 13:b7:b5:3c:68:ad:52:bb:34:c3:b9:69:23:68:98: 2d:1d:02:41:ee:f2:96:e7:cc:73:f1:f8:21:e4:32: 22:10:02:9a:d4:2c:c4:48:d3:c9:18:80:b0:4a:44: aa:09:83:e6:90:16:e8:20:fe:52:87:10:8f:a9:42: bf:c3:fb:b8:02:35:65:17:23:f3:a2:1a:47:09:67: 02:44:ae:ad:d0:f9:d2:af:9c:84:5f:d1:70:4d:3e: 81:af:50:c9:17:8d:74:00:2b:f4:d6:1a:3c:0f:b5: b9:26:ec:64:58:ab:0d:a3:64:84:f4:91:54:84:e8: 1f:da:59:84:6f:91:11:bd:40:f2:36:d1:57:a1:f2: 0f:4b:90:57:50:64:a4:5a:59:4e:1d:1f:90:9a:ad: a3:b0:2c:d6:0d:a7:12:10:85:11:56:98:1d:c0:4f: 27:e1:a6:2b:b2:6e:a8:57:26:5c:db:1d:7f:b6:8c: 4f:d2:dd:26:17:b5:f0:68:96:f5:6a:de:ef:6b:1a: c3:43:d2:51:36:3a:91:4e:64:56:65:a0:98:ab:0e: b3:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:4E:D8:F3:0B:8B:0B:5A:B2:DE:30:3D:19:09:BC:74:C4:2F:B4:D0 X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/Rk7Y8wuLC1qy3jA9GQm8dMQvtNA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:a5:70:84:6c:29:58:be:05:a0:d0:03:e3:8a:df:ff:cc:5a: 46:bc:ed:d4:17:74:34:bb:7c:51:4f:6e:8b:c8:b2:b5:74:43: 45:37:78:9c:18:f1:16:e2:84:7f:2f:77:4d:92:bc:d8:ed:34: 77:52:f4:8b:ce:9a:10:3e:2d:c7:0f:cb:4b:35:71:41:70:50: 77:1b:31:e2:71:0c:3e:18:a9:02:b9:5f:ba:e1:e4:7a:2d:8d: d4:e9:f5:2e:f7:69:2c:25:bf:99:da:87:1a:11:a3:01:a7:b0: fb:ac:eb:0d:66:3d:5d:d9:6a:00:6d:a1:c2:bb:52:7e:40:cd: e3:cf:b0:25:11:bb:53:90:8c:59:eb:75:97:d0:25:fb:f2:ee: b3:a0:41:53:27:eb:20:0c:ff:a6:79:62:ba:7e:4a:e1:65:5d: 4f:c7:38:79:74:1b:f4:eb:e1:57:bc:2a:5a:36:46:c7:a3:ac: d3:da:ef:ec:b3:dd:90:5e:8c:6a:f0:7c:15:e6:e3:48:69:16: 59:f3:9d:7b:9c:56:6d:2c:bc:fd:4a:97:5f:f4:ba:1a:ae:27: bb:ca:5e:ba:16:16:b2:26:d1:17:de:11:37:de:f1:4c:96:97: f7:40:97:97:3a:ae:90:b6:3a:b6:c9:ca:25:54:83:06:38:c8: c3:e2:f0:08 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBVEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNDA4MjYw NTA5MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2NEVEOEYzMEI4QjBC NUFCMkRFMzAzRDE5MDlCQzc0QzQyRkI0RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7PwHxeeAFIyOix+8OzaHpP6D2383D1GN8wF8Tmg6Qyz9hTGeL FjGfR/toFxO3tTxorVK7NMO5aSNomC0dAkHu8pbnzHPx+CHkMiIQAprULMRI08kY gLBKRKoJg+aQFugg/lKHEI+pQr/D+7gCNWUXI/OiGkcJZwJErq3Q+dKvnIRf0XBN PoGvUMkXjXQAK/TWGjwPtbkm7GRYqw2jZIT0kVSE6B/aWYRvkRG9QPI20Veh8g9L kFdQZKRaWU4dH5CaraOwLNYNpxIQhRFWmB3ATyfhpiuybqhXJlzbHX+2jE/S3SYX tfBolvVq3u9rGsND0lE2OpFOZFZloJirDrMfAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQURk7Y8wuLC1qy3jA9GQm8dMQvtNAwHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvUms3WTh3dUxDMXF5M2pB OUdRbThkTVF2dE5BLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGecuDANBgkqhkiG9w0BAQsFAAOCAQEAXaVwhGwpWL4FoNAD44rf/8xaRrzt1Bd0 NLt8UU9ui8iytXRDRTd4nBjxFuKEfy93TZK82O00d1L0i86aED4txw/LSzVxQXBQ dxsx4nEMPhipArlfuuHkei2N1On1LvdpLCW/mdqHGhGjAaew+6zrDWY9XdlqAG2h wrtSfkDN48+wJRG7U5CMWet1l9Al+/Lus6BBUyfrIAz/pnliun5K4WVdT8c4eXQb 9OvhV7wqWjZGx6Os09rv7LPdkF6MavB8FebjSGkWWfOde5xWbSy8/UqXX/S6Gq4n u8peuhYWsibRF94RN97xTJaX90CXlzqukLY6tsnKJVSDBjjIw+LwCA== -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:05 2024 by rpki-client on console-fra.rpki-client.org