$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/vOpAEXPgkqwheuiGpVNPsiQQvuY.roa File: vOpAEXPgkqwheuiGpVNPsiQQvuY.roa (raw, json) Hash identifier: aXPWK0QaPm2ihvIcx1OmZa6CLFVr7Up+lYxtb3R4MJE= Subject key identifier: BC:EA:40:11:73:E0:92:AC:21:7A:E8:86:A5:53:4F:B2:24:10:BE:E6 Certificate issuer: /CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Certificate serial: 0C Authority key identifier: 44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/vOpAEXPgkqwheuiGpVNPsiQQvuY.roa Signing time: Tue 13 Aug 2024 04:24:02 +0000 ROA not before: Tue 13 Aug 2024 04:24:02 +0000 ROA not after: Fri 08 Aug 2025 15:30:25 +0000 asID: 152611 IP address blocks: 160.30.78.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 12:53:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=44F8DCF66B25B719056D1ED65C16EA9257E5553D Validity Not Before: Aug 13 04:24:02 2024 GMT Not After : Aug 8 15:30:25 2025 GMT Subject: CN=BCEA401173E092AC217AE886A5534FB22410BEE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dd:07:e8:59:a8:89:c1:4c:3a:ff:c8:04:75: b0:0f:94:2a:22:e9:41:d8:57:4b:e0:24:0f:49:c3: e8:7d:da:d6:f3:fa:52:49:f0:1f:11:e6:c0:a3:b6: d7:f7:1a:ad:ad:85:d6:a4:19:48:ce:07:1b:97:e3: 59:60:23:dc:16:29:3c:75:ed:36:ff:fc:ae:30:de: e8:f7:69:39:34:0b:16:2e:ca:1a:3d:8a:9a:93:27: de:45:6a:2b:0c:9f:53:85:0d:05:03:0f:f8:51:98: cc:56:1e:bc:ae:8c:52:bc:35:19:34:62:ea:2f:60: df:6e:43:60:28:33:e1:1e:d1:b7:25:bf:fa:90:5d: 28:4c:fc:f8:d2:27:11:bb:bb:2c:e4:b9:e1:ba:c7: 4a:6b:04:a7:d9:64:14:57:b0:23:56:94:b6:95:f8: 3e:8c:db:4a:49:24:fa:1a:de:0b:90:b9:53:4e:01: 43:c1:9b:fd:16:85:17:c4:43:56:7f:e1:3c:e2:78: e7:e7:aa:8c:0c:0e:28:7f:7f:16:a5:d3:77:86:99: 90:ff:e6:b1:92:8b:ab:cd:d0:92:43:fc:07:a4:70: f8:00:1d:ea:e3:b7:39:c6:9e:b0:8e:69:ac:5f:fb: a9:d7:61:5d:c4:05:df:14:e2:1b:9b:28:f7:3e:c8: 9d:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:EA:40:11:73:E0:92:AC:21:7A:E8:86:A5:53:4F:B2:24:10:BE:E6 X509v3 Authority Key Identifier: keyid:44:F8:DC:F6:6B:25:B7:19:05:6D:1E:D6:5C:16:EA:92:57:E5:55:3D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/RPjc9msltxkFbR7WXBbqklflVT0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RPjc9msltxkFbR7WXBbqklflVT0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BEIDOU/vOpAEXPgkqwheuiGpVNPsiQQvuY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.30.78.0/23 Signature Algorithm: sha256WithRSAEncryption 36:5d:03:1d:75:67:95:fa:61:cd:63:16:3e:c9:8e:83:b5:c3: d3:c3:ee:49:37:39:81:bf:56:38:8e:f1:02:b7:26:b3:ab:a3: 87:8f:01:e3:37:f7:34:43:78:fb:f0:cf:cb:bd:56:b9:c0:e5: 78:8d:46:bf:30:a4:f8:3d:99:69:37:c7:22:31:d5:7e:06:de: 76:35:2e:a8:9d:98:1b:e0:c3:75:15:eb:9b:fa:f9:0c:f7:7b: ad:b4:1f:51:b8:cb:fa:a9:c7:57:9b:47:28:1e:cc:51:bc:8d: a3:fd:ea:9e:40:da:80:af:9e:04:4b:42:f9:47:8c:ad:65:b0: 64:a7:bf:8f:06:05:55:03:05:eb:24:08:92:cc:11:ca:9a:0d: 07:d0:6c:db:97:0f:97:0e:84:a2:af:d1:9d:58:93:8f:10:e8: 45:20:c8:83:90:a8:f1:4e:ea:36:a5:9c:92:1e:50:18:ca:55: 24:1e:8b:1a:a3:b7:fc:28:61:ba:c1:f0:4f:b3:e0:2d:04:10: 79:a3:88:5d:95:5e:a9:b9:32:02:c6:de:34:c0:f9:c8:96:64: ca:13:2c:be:3a:d0:d5:93:76:3a:b1:45:5c:f8:3b:d6:cd:65: 06:93:61:eb:7e:51:6e:0b:32:23:55:31:33:db:df:65:9b:7f: 80:fb:80:bd -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgIBDDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0NEY4 RENGNjZCMjVCNzE5MDU2RDFFRDY1QzE2RUE5MjU3RTU1NTNEMB4XDTI0MDgxMzA0 MjQwMloXDTI1MDgwODE1MzAyNVowMzExMC8GA1UEAxMoQkNFQTQwMTE3M0UwOTJB QzIxN0FFODg2QTU1MzRGQjIyNDEwQkVFNjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMLdB+hZqInBTDr/yAR1sA+UKiLpQdhXS+AkD0nD6H3a1vP6Uknw HxHmwKO21/cara2F1qQZSM4HG5fjWWAj3BYpPHXtNv/8rjDe6PdpOTQLFi7KGj2K mpMn3kVqKwyfU4UNBQMP+FGYzFYevK6MUrw1GTRi6i9g325DYCgz4R7RtyW/+pBd KEz8+NInEbu7LOS54brHSmsEp9lkFFewI1aUtpX4PozbSkkk+hreC5C5U04BQ8Gb /RaFF8RDVn/hPOJ45+eqjAwOKH9/FqXTd4aZkP/msZKLq83QkkP8B6Rw+AAd6uO3 OcaesI5prF/7qddhXcQF3xTiG5so9z7InQ0CAwEAAaOCAe4wggHqMB0GA1UdDgQW BBS86kARc+CSrCF66IalU0+yJBC+5jAfBgNVHSMEGDAWgBRE+Nz2ayW3GQVtHtZc FuqSV+VVPTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CRUlET1Uv UlBqYzltc2x0eGtGYlI3V1hCYnFrbGZsVlQwLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9SUGpjOW1zbHR4a0ZiUjdXWEJicWtsZmxWVDAuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CRUlET1Uvdk9wQUVYUGdrcXdoZXVpR3BW TlBzaVFRdnVZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAaAe TjANBgkqhkiG9w0BAQsFAAOCAQEANl0DHXVnlfphzWMWPsmOg7XD08PuSTc5gb9W OI7xArcms6ujh48B4zf3NEN4+/DPy71WucDleI1GvzCk+D2ZaTfHIjHVfgbedjUu qJ2YG+DDdRXrm/r5DPd7rbQfUbjL+qnHV5tHKB7MUbyNo/3qnkDagK+eBEtC+UeM rWWwZKe/jwYFVQMF6yQIkswRypoNB9Bs25cPlw6Eoq/RnViTjxDoRSDIg5Co8U7q NqWckh5QGMpVJB6LGqO3/ChhusHwT7PgLQQQeaOIXZVeqbkyAsbeNMD5yJZkyhMs vjrQ1ZN2OrFFXPg71s1lBpNh635RbgsyI1UxM9vfZZt/gPuAvQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:29 2024 by rpki-client on console-ams.rpki-client.org