$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/deZxAU6jMDj0wccF87uaugCKLJ0.roa File: deZxAU6jMDj0wccF87uaugCKLJ0.roa (raw, json) Hash identifier: 4WRaJrU/V+l9yveVrYS9YsPkkO2hU4i1OqFrgeCNg6E= Subject key identifier: 75:E6:71:01:4E:A3:30:38:F4:C1:C7:05:F3:BB:9A:BA:00:8A:2C:9D Certificate issuer: /CN=57A994BD60555145CB6452DC6A980FC851136BDA Certificate serial: 0548 Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/deZxAU6jMDj0wccF87uaugCKLJ0.roa Signing time: Mon 26 Aug 2024 05:09:25 +0000 ROA not before: Mon 26 Aug 2024 05:09:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 41255 IP address blocks: 103.156.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1352 (0x548) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA Validity Not Before: Aug 26 05:09:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=75E671014EA33038F4C1C705F3BB9ABA008A2C9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a4:9e:2a:35:c1:39:be:24:e9:df:ae:c5:2a: c1:5b:b9:d6:85:c6:fa:a6:09:d2:c4:ac:36:1f:73: db:6c:14:49:3f:b4:10:44:c5:ea:31:ff:2e:6b:63: d8:25:d1:73:22:f2:7f:50:00:74:87:0e:b7:04:cc: f8:81:80:7e:96:52:3a:a7:a4:43:12:f4:9c:e9:92: 0b:74:bd:9d:64:a6:32:e4:86:68:b8:b0:1c:51:e6: fd:93:62:2f:d2:02:f6:b8:2a:9c:18:7f:8a:30:6c: 27:98:89:ec:76:d3:f5:3d:aa:af:ac:f0:ee:38:00: 68:3f:8e:b6:d1:1a:8e:91:8f:dc:d9:b1:23:3d:ce: b8:33:4d:fe:58:ff:f4:b3:e2:8b:c1:ff:a0:61:b4: f2:cd:c3:85:63:22:eb:21:ed:5e:f5:71:ab:bb:c3: 13:71:b5:6a:19:d7:45:ef:fc:b9:c0:02:58:40:69: 24:b6:5c:7a:5f:38:00:e6:c7:7c:5b:e2:5d:23:77: 3a:78:13:e0:f1:6f:af:92:48:e9:d0:af:cc:54:60: 45:f4:4f:d9:55:f7:1b:30:da:0d:b9:ee:dd:33:33: cd:40:47:4c:60:4f:d9:dc:89:dd:bb:cb:88:2d:ad: 76:b9:3a:8c:75:9e:5b:2f:cd:c7:bc:28:1e:92:63: 28:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E6:71:01:4E:A3:30:38:F4:C1:C7:05:F3:BB:9A:BA:00:8A:2C:9D X509v3 Authority Key Identifier: keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/deZxAU6jMDj0wccF87uaugCKLJ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.156.184.0/24 Signature Algorithm: sha256WithRSAEncryption 29:8a:6a:5a:e9:3b:ae:d9:e6:0f:12:51:db:c6:98:6c:d1:de: f8:d6:9a:cd:c8:7d:ee:95:68:0e:f3:f0:5d:54:63:d2:a1:d0: 70:7d:90:63:e2:39:d8:20:61:04:35:33:fc:35:5e:c4:77:e9: 02:a2:0d:fb:57:95:0e:3c:b8:0f:02:e5:ba:bf:06:66:84:65: 40:8a:43:4a:15:22:83:89:3b:27:a0:e0:de:9e:2b:43:d0:90: 20:b7:0e:a3:78:82:97:6b:b3:97:e2:84:a5:68:db:f1:b0:71: 75:6a:9a:07:47:de:f6:8e:60:35:99:4b:d7:92:0f:73:18:da: 78:34:7d:9c:a2:12:70:1e:8e:7f:7d:70:4c:34:d6:c2:52:fe: 45:39:cb:ec:3a:9d:60:be:04:77:16:72:bf:dd:99:cf:8e:68: bb:fc:bf:35:e9:f7:10:58:b6:3d:61:c6:ba:df:bf:dd:f4:5c: 88:61:15:a5:85:df:97:cb:02:49:9c:69:7a:70:31:47:93:2d: 36:1a:e9:65:d8:a4:44:22:3a:28:83:c9:fa:5c:31:59:48:99: 1f:3b:2d:74:2a:76:de:2a:b4:02:28:4f:42:79:15:86:d2:b7: 24:3c:f1:b7:bd:a0:9b:7c:c5:49:1e:2b:2c:51:b2:d5:8e:3a: 6d:d8:66:fd -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBUgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTdB OTk0QkQ2MDU1NTE0NUNCNjQ1MkRDNkE5ODBGQzg1MTEzNkJEQTAeFw0yNDA4MjYw NTA5MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc1RTY3MTAxNEVBMzMw MzhGNEMxQzcwNUYzQkI5QUJBMDA4QTJDOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4pJ4qNcE5viTp367FKsFbudaFxvqmCdLErDYfc9tsFEk/tBBE xeox/y5rY9gl0XMi8n9QAHSHDrcEzPiBgH6WUjqnpEMS9Jzpkgt0vZ1kpjLkhmi4 sBxR5v2TYi/SAva4KpwYf4owbCeYiex20/U9qq+s8O44AGg/jrbRGo6Rj9zZsSM9 zrgzTf5Y//Sz4ovB/6BhtPLNw4VjIush7V71cau7wxNxtWoZ10Xv/LnAAlhAaSS2 XHpfOADmx3xb4l0jdzp4E+Dxb6+SSOnQr8xUYEX0T9lV9xsw2g257t0zM81AR0xg T9ncid27y4gtrXa5Oox1nlsvzce8KB6SYygJAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUdeZxAU6jMDj0wccF87uaugCKLJ0wHwYDVR0jBBgwFoAUV6mUvWBVUUXLZFLc apgPyFETa9owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQUxMUEFT Uy9WNm1VdldCVlVVWExaRkxjYXBnUHlGRVRhOW8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1Y2bVV2V0JWVVVYTFpGTGNhcGdQeUZFVGE5by5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0FMTFBBU1MvZGVaeEFVNmpNRGowd2Nj Rjg3dWF1Z0NLTEowLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGecuDANBgkqhkiG9w0BAQsFAAOCAQEAKYpqWuk7rtnmDxJR28aYbNHe+Naazch9 7pVoDvPwXVRj0qHQcH2QY+I52CBhBDUz/DVexHfpAqIN+1eVDjy4DwLlur8GZoRl QIpDShUig4k7J6Dg3p4rQ9CQILcOo3iCl2uzl+KEpWjb8bBxdWqaB0fe9o5gNZlL 15IPcxjaeDR9nKIScB6Of31wTDTWwlL+RTnL7DqdYL4EdxZyv92Zz45ou/y/Nen3 EFi2PWHGut+/3fRciGEVpYXfl8sCSZxpenAxR5MtNhrpZdikRCI6KIPJ+lwxWUiZ HzstdCp23iq0AihPQnkVhtK3JDzxt72gm3zFSR4rLFGy1Y46bdhm/Q== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:29 2024 by rpki-client on console-ams.rpki-client.org