$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/n1RN3JwJjHuj2EIePhdou7C9srQ.roa File: n1RN3JwJjHuj2EIePhdou7C9srQ.roa (raw, json) Hash identifier: VK5b0ZUdc6LOH1GSvYeV/7tmuNk5tsoDBeGTg6hH+C4= Subject key identifier: 9F:54:4D:DC:9C:09:8C:7B:A3:D8:42:1E:3E:17:68:BB:B0:BD:B2:B4 Certificate issuer: /CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Certificate serial: 0BE6 Authority key identifier: 8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/n1RN3JwJjHuj2EIePhdou7C9srQ.roa Signing time: Mon 26 Aug 2024 05:09:59 +0000 ROA not before: Mon 26 Aug 2024 05:09:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.103.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3046 (0xbe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BD645278FC4A2A200BCD8072F3B3DC79312536C Validity Not Before: Aug 26 05:09:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9F544DDC9C098C7BA3D8421E3E1768BBB0BDB2B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:43:35:f2:85:ad:0a:07:32:82:71:ed:06:ae: c5:22:29:f8:1b:b7:f0:61:b0:7b:80:dc:fd:64:a1: cd:85:ec:f4:1e:63:13:d2:9d:70:cd:d4:9d:6e:bb: dc:e9:60:71:6b:e3:36:bb:90:76:44:52:05:f1:d7: db:7f:05:71:8f:44:ea:65:dc:62:53:9f:fc:5c:3a: 47:36:d4:00:eb:12:e4:79:03:75:91:73:bb:32:c3: 7b:a0:22:e1:a9:0a:93:79:58:88:d8:26:bd:c4:93: fa:a7:af:f7:76:b9:a5:21:c2:ac:b6:01:86:82:d5: f7:47:aa:92:6a:c6:a5:7b:3f:c3:29:dc:6c:c3:a4: 0d:18:cf:8c:54:fd:9d:4e:f0:ae:89:6c:c8:e2:f3: 7e:21:fb:56:f9:7f:33:69:92:df:b7:3c:5f:1b:fc: 7f:68:f9:57:4f:8d:01:71:05:04:28:49:5c:bd:b5: 40:7a:db:a8:82:d5:47:37:33:e7:a5:eb:13:08:f9: 87:78:e8:51:2b:35:c4:63:48:ca:b0:56:1f:63:e8: 85:ea:43:1e:01:56:c7:d5:8f:85:c5:ac:1f:c5:e2: 10:ba:22:ce:e0:9d:ac:93:0e:76:a6:96:7d:db:75: 99:94:8f:a0:1d:cb:ec:9c:dd:9a:ff:0c:00:06:c2: fb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:54:4D:DC:9C:09:8C:7B:A3:D8:42:1E:3E:17:68:BB:B0:BD:B2:B4 X509v3 Authority Key Identifier: keyid:8B:D6:45:27:8F:C4:A2:A2:00:BC:D8:07:2F:3B:3D:C7:93:12:53:6C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/i9ZFJ4_EoqIAvNgHLzs9x5MSU2w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARL-NET/n1RN3JwJjHuj2EIePhdou7C9srQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.103.80.0/22 Signature Algorithm: sha256WithRSAEncryption 65:ed:c9:cb:8b:7b:7d:2f:df:98:c9:c7:35:bf:31:58:5f:91: 01:8d:af:79:0a:c9:16:54:cb:ae:41:71:9a:65:46:9c:2c:3f: 68:37:18:f0:cd:b3:71:b6:55:76:29:ff:3a:73:af:cb:03:7c: 1d:41:8d:0d:70:a0:42:04:54:79:66:00:15:dc:e4:25:9e:47: d5:4f:19:4f:11:41:a6:73:22:35:7f:4a:1b:10:5a:84:74:06: e9:cb:f7:44:f4:ab:ba:6d:dd:b7:91:b7:4b:5d:bd:1e:60:a0: 8c:a7:cb:ed:07:73:c4:59:a4:33:a3:d3:fe:ba:03:57:75:ab: 0e:63:b4:f9:7f:92:4e:47:94:9c:30:bf:f9:6b:d7:51:80:45: a4:12:d0:78:59:a0:9e:bd:4d:54:2f:06:7c:65:35:4b:44:81: 36:db:53:dd:fb:04:95:19:ae:84:b4:05:46:b5:1e:98:c4:9a: b0:2d:fc:1b:e3:8c:39:0b:8b:69:bb:01:7d:35:9b:fd:2c:0a: 3d:20:42:84:98:15:cb:21:a6:58:04:be:88:0c:3f:0b:40:e9: f7:82:7c:06:f3:de:4a:b9:5a:3d:5f:c4:8b:82:6a:ce:d4:40: a6:8a:e4:0c:18:c1:30:2a:53:48:3c:ac:f5:8f:7f:57:c2:ab: d4:0b:f1:66 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEJE NjQ1Mjc4RkM0QTJBMjAwQkNEODA3MkYzQjNEQzc5MzEyNTM2QzAeFw0yNDA4MjYw NTA5NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlGNTQ0RERDOUMwOThD N0JBM0Q4NDIxRTNFMTc2OEJCQjBCREIyQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuQzXyha0KBzKCce0GrsUiKfgbt/BhsHuA3P1koc2F7PQeYxPS nXDN1J1uu9zpYHFr4za7kHZEUgXx19t/BXGPROpl3GJTn/xcOkc21ADrEuR5A3WR c7syw3ugIuGpCpN5WIjYJr3Ek/qnr/d2uaUhwqy2AYaC1fdHqpJqxqV7P8Mp3GzD pA0Yz4xU/Z1O8K6JbMji834h+1b5fzNpkt+3PF8b/H9o+VdPjQFxBQQoSVy9tUB6 26iC1Uc3M+el6xMI+Yd46FErNcRjSMqwVh9j6IXqQx4BVsfVj4XFrB/F4hC6Is7g nayTDnamln3bdZmUj6Ady+yc3Zr/DAAGwvuxAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUn1RN3JwJjHuj2EIePhdou7C9srQwHwYDVR0jBBgwFoAUi9ZFJ4/EoqIAvNgH Lzs9x5MSU2wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTC1O RVQvaTlaRko0X0VvcUlBdk5nSEx6czl4NU1TVTJ3LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9pOVpGSjRfRW9xSUF2TmdITHpzOXg1TVNVMncuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DQVJMLU5FVC9uMVJOM0p3SmpIdWoy RUllUGhkb3U3QzlzclEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ2dQMA0GCSqGSIb3DQEBCwUAA4IBAQBl7cnLi3t9L9+Yycc1vzFYX5EBja95 CskWVMuuQXGaZUacLD9oNxjwzbNxtlV2Kf86c6/LA3wdQY0NcKBCBFR5ZgAV3OQl nkfVTxlPEUGmcyI1f0obEFqEdAbpy/dE9Ku6bd23kbdLXb0eYKCMp8vtB3PEWaQz o9P+ugNXdasOY7T5f5JOR5ScML/5a9dRgEWkEtB4WaCevU1ULwZ8ZTVLRIE221Pd +wSVGa6EtAVGtR6YxJqwLfwb44w5C4tpuwF9NZv9LAo9IEKEmBXLIaZYBL6IDD8L QOn3gnwG895KuVo9X8SLgmrO1ECmiuQMGMEwKlNIPKz1j39XwqvUC/Fm -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:24 2024 by rpki-client on console-ams.rpki-client.org