$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/qKiYtQea8VkSvvvScam42oJMctU.roa File: qKiYtQea8VkSvvvScam42oJMctU.roa (raw, json) Hash identifier: 7u3gvq1IlXDhXHtQ3s8h4OoFieWhagLkmIPpDsR6sQE= Subject key identifier: A8:A8:98:B5:07:9A:F1:59:12:BE:FB:D2:71:A9:B8:DA:82:4C:72:D5 Certificate issuer: /CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Certificate serial: 0E4F Authority key identifier: A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/qKiYtQea8VkSvvvScam42oJMctU.roa Signing time: Mon 26 Aug 2024 05:09:39 +0000 ROA not before: Mon 26 Aug 2024 05:09:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.135.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3663 (0xe4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2FB739525B742A28A743315C6C88E766A7E0DC3 Validity Not Before: Aug 26 05:09:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A8A898B5079AF15912BEFBD271A9B8DA824C72D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e8:83:55:d6:44:ad:79:b2:f0:af:fd:5d:f1: f1:6c:b7:a1:63:cb:97:26:a5:a1:5c:99:0e:03:c9: 32:8d:8b:04:0a:f6:26:69:95:1d:5f:bb:e7:7f:32: 26:6f:c8:b6:de:2a:f1:88:37:9d:78:9b:ee:48:9e: d4:fe:69:2b:c9:57:23:1a:cb:f3:3b:c7:14:11:2e: a9:7e:c1:37:f6:b3:4e:b7:fa:2c:7d:05:15:7f:24: 8f:81:7f:1f:90:ba:89:09:e8:ad:7f:b2:22:28:a7: f2:ae:ea:ed:94:43:c1:27:90:fd:7e:56:2f:33:29: 78:44:cc:48:0b:67:d6:c3:73:dd:1b:e6:0d:8b:c7: 82:cf:c4:28:9f:83:a4:43:2f:b3:a8:a3:05:1d:e8: 02:93:8b:bf:a3:9e:8e:4c:1a:76:8d:a8:7f:2c:51: 6b:88:cd:3f:5f:00:92:d4:75:bf:94:db:75:2c:43: 4c:0a:5a:be:4c:12:0e:20:70:bf:7e:c3:d1:bb:8f: 78:34:29:a3:b7:cb:92:67:c7:fa:04:52:91:07:85: 6d:40:87:75:6f:84:04:95:75:71:0e:c5:ac:8c:7f: bc:16:65:29:6e:90:a2:aa:18:18:d8:1d:d7:96:3a: 65:17:f5:30:21:9b:7c:af:9d:28:1d:a4:77:9b:f6: f7:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:A8:98:B5:07:9A:F1:59:12:BE:FB:D2:71:A9:B8:DA:82:4C:72:D5 X509v3 Authority Key Identifier: keyid:A2:FB:73:95:25:B7:42:A2:8A:74:33:15:C6:C8:8E:76:6A:7E:0D:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/ovtzlSW3QqKKdDMVxsiOdmp-DcM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ovtzlSW3QqKKdDMVxsiOdmp-DcM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASIACLOUD/qKiYtQea8VkSvvvScam42oJMctU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.118.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:50:80:f5:fc:d8:a4:8a:16:45:18:69:3f:5a:88:46:49:b6: 7c:3e:40:46:a8:af:f6:e8:3c:c5:7a:6f:9f:68:85:3c:f9:5a: d4:ff:f8:da:20:3d:1b:6e:4e:db:46:2e:cb:3d:6b:30:5d:33: c3:a4:78:af:13:3f:aa:fe:e4:b5:54:62:fc:d6:68:eb:0b:39: 93:d3:64:22:34:f3:33:e6:50:46:8c:6d:43:aa:f0:63:95:93: 70:f4:06:70:bf:72:a2:6b:12:4c:91:cd:3a:29:b1:ab:55:cb: aa:fd:a1:94:db:f1:ee:27:49:e0:79:f2:9b:b8:24:1f:08:f1: a1:45:94:18:42:cc:7c:d8:7b:48:a7:a7:1c:d3:d6:bf:2d:37: 39:2b:72:4e:82:78:6c:ff:c5:a1:e5:d6:c3:8b:74:6e:83:0c: 00:fd:63:f8:26:77:ac:fc:bc:65:2d:30:46:8e:f9:22:1c:21: 73:86:bd:10:04:d2:23:f7:24:05:27:7b:ad:d0:4e:2c:49:b8: f8:09:02:a5:b1:61:db:b3:1b:15:cd:14:e3:42:4f:ea:4b:09: 3a:9b:e4:43:ee:ed:d8:94:c4:84:1e:f0:73:82:d6:33:c3:ce: ae:38:e7:92:6a:38:8c:72:ba:ae:b8:32:90:bd:b1:81:53:87: 99:75:02:0e -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTJG QjczOTUyNUI3NDJBMjhBNzQzMzE1QzZDODhFNzY2QTdFMERDMzAeFw0yNDA4MjYw NTA5MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4QTg5OEI1MDc5QUYx NTkxMkJFRkJEMjcxQTlCOERBODI0QzcyRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr6INV1kStebLwr/1d8fFst6Fjy5cmpaFcmQ4DyTKNiwQK9iZp lR1fu+d/MiZvyLbeKvGIN514m+5IntT+aSvJVyMay/M7xxQRLql+wTf2s063+ix9 BRV/JI+Bfx+QuokJ6K1/siIop/Ku6u2UQ8EnkP1+Vi8zKXhEzEgLZ9bDc90b5g2L x4LPxCifg6RDL7OoowUd6AKTi7+jno5MGnaNqH8sUWuIzT9fAJLUdb+U23UsQ0wK Wr5MEg4gcL9+w9G7j3g0KaO3y5Jnx/oEUpEHhW1Ah3VvhASVdXEOxayMf7wWZSlu kKKqGBjYHdeWOmUX9TAhm3yvnSgdpHeb9vdbAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUqKiYtQea8VkSvvvScam42oJMctUwHwYDVR0jBBgwFoAUovtzlSW3QqKKdDMV xsiOdmp+DcMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNM T1VEL292dHpsU1czUXFLS2RETVZ4c2lPZG1wLURjTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Evb3Z0emxTVzNRcUtLZERNVnhzaU9kbXAtRGNNLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNJQUNMT1VEL3FLaVl0UWVhOFZr U3Z2dlNjYW00Mm9KTWN0VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnh3YwDQYJKoZIhvcNAQELBQADggEBAE9QgPX82KSKFkUYaT9aiEZJtnw+ QEaor/boPMV6b59ohTz5WtT/+NogPRtuTttGLss9azBdM8OkeK8TP6r+5LVUYvzW aOsLOZPTZCI08zPmUEaMbUOq8GOVk3D0BnC/cqJrEkyRzTopsatVy6r9oZTb8e4n SeB58pu4JB8I8aFFlBhCzHzYe0inpxzT1r8tNzkrck6CeGz/xaHl1sOLdG6DDAD9 Y/gmd6z8vGUtMEaO+SIcIXOGvRAE0iP3JAUne63QTixJuPgJAqWxYduzGxXNFONC T+pLCTqb5EPu7diUxIQe8HOC1jPDzq4455JqOIxyuq64MpC9sYFTh5l1Ag4= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:22 2024 by rpki-client on console-fra.rpki-client.org