$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/WvWB3m7CEnCGEvCsOpYwxDU_j3k.roa File: WvWB3m7CEnCGEvCsOpYwxDU_j3k.roa (raw, json) Hash identifier: aUZf6y1XUSujlg99Obkf7xj/ng9zlgkHDR9l/J1i800= Subject key identifier: 5A:F5:81:DE:6E:C2:12:70:86:12:F0:AC:3A:96:30:C4:35:3F:8F:79 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0C49 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/WvWB3m7CEnCGEvCsOpYwxDU_j3k.roa Signing time: Mon 26 Aug 2024 05:09:43 +0000 ROA not before: Mon 26 Aug 2024 05:09:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 103.130.252.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 09:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3145 (0xc49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Aug 26 05:09:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5AF581DE6EC212708612F0AC3A9630C4353F8F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:dd:e3:6e:f1:a4:87:10:78:e2:ef:29:0f: 08:d6:6a:da:40:e8:e6:12:49:ff:42:08:e1:b4:da: f8:f3:89:8e:a2:f0:f8:72:ca:54:b0:d7:3d:c3:18: 24:a6:31:65:92:fd:7a:ec:81:64:9e:82:ee:06:f9: 40:8e:af:01:c6:f0:45:79:fd:20:98:cc:44:c6:c7: d7:cd:38:28:00:40:71:57:6c:27:e2:b0:5d:e7:9d: 6f:84:b8:c6:fa:9f:bc:4e:0e:60:1b:2e:f2:29:fb: 8f:c0:7f:fc:39:1e:9a:cb:c6:8a:81:a1:4f:5b:46: c1:9d:e0:ef:46:af:82:20:80:4d:e7:97:15:26:b2: ad:30:ca:70:1d:47:12:46:63:4a:61:cb:ac:55:19: 77:6a:8a:47:75:b0:00:e7:b3:2d:d4:7b:e0:75:2c: 85:2a:1b:9b:55:82:60:b7:df:ac:9a:9a:ce:3b:fa: 9e:21:56:07:84:69:dc:8a:25:e3:9b:ac:9d:6b:0c: 57:40:3e:0d:01:23:0e:a8:b9:f2:ff:3a:54:2f:df: e3:0d:a7:9e:fa:c9:9f:02:2c:29:63:7e:88:ed:ea: 28:77:73:dc:3c:13:cb:71:12:8c:5c:db:a6:bd:70: 5a:f9:bd:eb:da:0f:aa:83:51:27:98:e0:9a:ec:3e: 89:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:F5:81:DE:6E:C2:12:70:86:12:F0:AC:3A:96:30:C4:35:3F:8F:79 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/WvWB3m7CEnCGEvCsOpYwxDU_j3k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.252.0/22 Signature Algorithm: sha256WithRSAEncryption 83:af:1d:b1:3e:8a:69:5e:a1:1c:a4:93:08:73:ef:5e:36:17: 6f:5a:13:2d:0b:d7:c1:97:b5:2e:3f:fa:db:50:72:5e:9e:13: 0a:c4:b0:af:a1:56:0e:73:49:56:c5:10:f5:56:4f:43:d1:5d: 1f:2e:62:22:9a:39:33:9a:f2:26:bd:3f:7c:7c:2d:18:39:f1: 63:b2:df:83:89:e2:f4:06:6a:b5:7b:29:51:49:5e:d9:8e:00: 7d:e1:a1:62:ce:e9:b0:7b:cf:cf:ce:1a:fd:3c:fb:cd:6b:d5: 0a:de:2a:57:4e:00:14:85:5a:f8:dc:11:36:4a:4b:4c:20:8a: ea:d8:34:e4:02:c9:06:4b:b6:1d:72:5b:13:86:f9:76:41:79: 97:b5:ac:8d:41:6e:43:72:42:9f:44:e4:d6:65:47:bb:61:4d: 15:aa:02:cb:58:92:29:34:cc:97:2e:6d:a7:47:06:4d:86:11: 58:86:18:5d:96:74:63:c2:3c:2b:4f:cb:11:8c:a5:1a:cb:21: d2:22:51:21:b6:cc:9b:a7:17:b5:b4:0d:6c:47:f4:b9:84:e0: 4b:81:17:4a:bc:73:b2:83:ba:94:47:fd:c3:c6:60:b8:48:51: ba:a0:1b:5e:b0:ae:93:ab:a6:04:d2:13:7f:5f:7c:c8:c5:17: 79:3f:9c:12 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNDA4MjYw NTA5NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVBRjU4MURFNkVDMjEy NzA4NjEyRjBBQzNBOTYzMEM0MzUzRjhGNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/St3jbvGkhxB44u8pDwjWatpA6OYSSf9CCOG02vjziY6i8Phy ylSw1z3DGCSmMWWS/XrsgWSegu4G+UCOrwHG8EV5/SCYzETGx9fNOCgAQHFXbCfi sF3nnW+EuMb6n7xODmAbLvIp+4/Af/w5HprLxoqBoU9bRsGd4O9Gr4IggE3nlxUm sq0wynAdRxJGY0phy6xVGXdqikd1sADnsy3Ue+B1LIUqG5tVgmC336yams47+p4h VgeEadyKJeObrJ1rDFdAPg0BIw6oufL/OlQv3+MNp576yZ8CLCljfojt6ih3c9w8 E8txEoxc26a9cFr5vevaD6qDUSeY4JrsPoknAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWvWB3m7CEnCGEvCsOpYwxDU/j3kwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9XdldCM203Q0VuQ0dFdkNzT3BZ d3hEVV9qM2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ4L8 MA0GCSqGSIb3DQEBCwUAA4IBAQCDrx2xPoppXqEcpJMIc+9eNhdvWhMtC9fBl7Uu P/rbUHJenhMKxLCvoVYOc0lWxRD1Vk9D0V0fLmIimjkzmvImvT98fC0YOfFjst+D ieL0Bmq1eylRSV7ZjgB94aFizumwe8/Pzhr9PPvNa9UK3ipXTgAUhVr43BE2SktM IIrq2DTkAskGS7YdclsThvl2QXmXtayNQW5DckKfROTWZUe7YU0VqgLLWJIpNMyX Lm2nRwZNhhFYhhhdlnRjwjwrT8sRjKUayyHSIlEhtsybpxe1tA1sR/S5hOBLgRdK vHOyg7qUR/3DxmC4SFG6oBtesK6Tq6YE0hN/X3zIxRd5P5wS -----END CERTIFICATE-----Generated at Sat Sep 21 06:24:01 2024 by rpki-client on console-fra.rpki-client.org