$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/KUT2BWzEzGZ5thsM6WJmyGt9xeM.roa File: KUT2BWzEzGZ5thsM6WJmyGt9xeM.roa (raw, json) Hash identifier: rC4jgAOdB9UHivWW7vLM/JreB/0yhvNhLgw0IAzBCro= Subject key identifier: 29:44:F6:05:6C:C4:CC:66:79:B6:1B:0C:E9:62:66:C8:6B:7D:C5:E3 Certificate issuer: /CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Certificate serial: 0C29 Authority key identifier: 05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/KUT2BWzEzGZ5thsM6WJmyGt9xeM.roa Signing time: Fri 25 Oct 2024 03:00:34 +0000 ROA not before: Fri 25 Oct 2024 03:00:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 147035 IP address blocks: 103.122.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3113 (0xc29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=058662B8DA05E4029F3FA4D56A5121DD4BD68989 Validity Not Before: Oct 25 03:00:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2944F6056CC4CC6679B61B0CE96266C86B7DC5E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1f:b8:6b:57:27:f7:73:61:78:e5:db:b0:b3: 6b:de:14:74:93:ff:7b:27:d9:8a:65:54:f8:05:b2: c7:fc:77:50:6e:1b:a9:ea:bc:97:0c:36:90:c9:cb: 63:f0:92:ab:50:af:71:6c:83:17:cb:f2:4f:d4:da: 06:80:28:6e:37:3d:9d:c9:a6:f7:e1:eb:41:b2:65: a8:3f:6e:20:4a:c8:9e:1a:d3:ca:7e:ab:b4:07:a9: 8b:cf:33:83:b1:2a:62:b6:c5:ff:38:11:f2:7f:70: 73:2b:82:a2:92:11:fc:bc:de:2d:01:68:b6:dd:c0: 88:01:8e:7d:5c:7d:42:66:db:ed:69:a7:86:c5:53: 76:fa:c1:a1:b8:9d:17:48:26:96:f9:5c:fd:85:52: 7b:c0:7f:a2:e4:d7:6a:e5:34:89:31:fe:ba:44:0f: f1:55:67:f2:54:84:ad:23:af:6d:52:cb:ac:bf:67: 5a:76:e1:a2:05:c4:bd:8c:ac:20:e0:4f:27:e8:bd: c1:87:b2:2d:3d:42:ed:5f:c0:5b:e7:83:a2:50:b2: 1d:2c:8a:23:62:1b:7a:97:f3:cb:04:48:a3:6e:52: 33:77:bf:17:b0:ee:80:c2:f6:c5:85:2b:92:14:5d: d3:e9:ce:b4:79:71:0a:c7:db:cf:a9:a5:b5:68:22: 98:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:44:F6:05:6C:C4:CC:66:79:B6:1B:0C:E9:62:66:C8:6B:7D:C5:E3 X509v3 Authority Key Identifier: keyid:05:86:62:B8:DA:05:E4:02:9F:3F:A4:D5:6A:51:21:DD:4B:D6:89:89 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/BYZiuNoF5AKfP6TValEh3UvWiYk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BYZiuNoF5AKfP6TValEh3UvWiYk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASSMAU/KUT2BWzEzGZ5thsM6WJmyGt9xeM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.116.0/23 Signature Algorithm: sha256WithRSAEncryption 76:86:c2:79:25:28:3d:eb:e5:b5:00:8e:f8:6a:73:59:70:9b: 82:47:75:7f:4a:cd:d9:cd:c6:4f:61:dc:7d:16:b9:70:d3:16: a1:38:df:e3:70:3b:88:40:5e:b2:e8:1d:56:64:d2:21:f6:26: 2a:62:1e:34:2a:2f:94:c4:72:10:35:29:d0:84:11:ba:33:ff: 91:97:55:e6:aa:50:d4:7a:6f:a2:3e:ad:98:3f:d1:7a:3a:53: 69:ef:e2:70:84:67:7a:0a:fd:72:bd:03:bf:39:17:f1:fa:d3: d1:20:37:81:8c:3e:53:c8:af:e1:c1:7a:05:d6:ca:a3:3a:79: a0:a6:73:bd:ea:d9:bb:a7:c3:f3:e5:aa:75:cd:3a:9e:76:ab: c8:a2:9d:58:28:b5:ff:a9:b3:db:9c:8b:1f:76:f7:28:48:f4: 38:e7:5d:32:2b:26:3a:81:ad:79:5e:a7:93:f8:13:15:62:ad: 67:5d:e3:87:6d:82:3d:92:73:d5:73:0d:a2:13:6a:23:ef:ee: 5d:b7:39:fd:5b:c5:d5:a7:be:ea:11:39:76:27:7f:00:5a:39: cc:6d:34:9b:63:14:7c:a0:39:ea:a8:8f:85:6f:fa:fb:86:16: 20:ea:4e:4d:a4:f5:e1:aa:6a:f4:33:2c:06:ef:a5:00:26:c5: 69:b7:5a:bf -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDCkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDU4 NjYyQjhEQTA1RTQwMjlGM0ZBNEQ1NkE1MTIxREQ0QkQ2ODk4OTAeFw0yNDEwMjUw MzAwMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5NDRGNjA1NkNDNEND NjY3OUI2MUIwQ0U5NjI2NkM4NkI3REM1RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqH7hrVyf3c2F45duws2veFHST/3sn2YplVPgFssf8d1BuG6nq vJcMNpDJy2PwkqtQr3FsgxfL8k/U2gaAKG43PZ3Jpvfh60GyZag/biBKyJ4a08p+ q7QHqYvPM4OxKmK2xf84EfJ/cHMrgqKSEfy83i0BaLbdwIgBjn1cfUJm2+1pp4bF U3b6waG4nRdIJpb5XP2FUnvAf6Lk12rlNIkx/rpED/FVZ/JUhK0jr21Sy6y/Z1p2 4aIFxL2MrCDgTyfovcGHsi09Qu1fwFvng6JQsh0siiNiG3qX88sESKNuUjN3vxew 7oDC9sWFK5IUXdPpzrR5cQrH28+ppbVoIpgPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKUT2BWzEzGZ5thsM6WJmyGt9xeMwHwYDVR0jBBgwFoAUBYZiuNoF5AKfP6TV alEh3UvWiYkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFV L0JZWml1Tm9GNUFLZlA2VFZhbEVoM1V2V2lZay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQllaaXVOb0Y1QUtmUDZUVmFsRWgzVXZXaVlrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNTTUFVL0tVVDJCV3pFekdaNXRoc002 V0pteUd0OXhlTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn enQwDQYJKoZIhvcNAQELBQADggEBAHaGwnklKD3r5bUAjvhqc1lwm4JHdX9KzdnN xk9h3H0WuXDTFqE43+NwO4hAXrLoHVZk0iH2JipiHjQqL5TEchA1KdCEEboz/5GX VeaqUNR6b6I+rZg/0Xo6U2nv4nCEZ3oK/XK9A785F/H609EgN4GMPlPIr+HBegXW yqM6eaCmc73q2bunw/PlqnXNOp52q8iinVgotf+ps9ucix929yhI9DjnXTIrJjqB rXlep5P4ExVirWdd44dtgj2Sc9VzDaITaiPv7l23Of1bxdWnvuoROXYnfwBaOcxt NJtjFHygOeqoj4Vv+vuGFiDqTk2k9eGqavQzLAbvpQAmxWm3Wr8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:29 2024 by rpki-client on console-ams.rpki-client.org