$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/691--BAVl2_xglrIVu7NHY-Z5DQ.roa File: 691--BAVl2_xglrIVu7NHY-Z5DQ.roa (raw, json) Hash identifier: zJnLcwYDbZY8MsgUALeXuxHvO6pQAzm648kT4innwOI= Subject key identifier: EB:DD:7E:F8:10:15:97:6F:F1:82:5A:C8:56:EE:CD:1D:8F:99:E4:34 Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Certificate serial: 0BEC Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/691--BAVl2_xglrIVu7NHY-Z5DQ.roa Signing time: Mon 26 Aug 2024 05:10:13 +0000 ROA not before: Mon 26 Aug 2024 05:10:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 135293 IP address blocks: 103.104.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Validity Not Before: Aug 26 05:10:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EBDD7EF81015976FF1825AC856EECD1D8F99E434 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2e:03:6d:4c:ce:51:1a:77:1d:8f:be:98:c3: 1d:c9:99:e5:41:a6:1f:36:1f:c0:20:b5:6a:42:4a: 34:3a:7a:23:93:42:18:1d:7a:86:97:ed:6e:22:67: 7e:fb:6b:28:49:51:67:62:a2:46:df:3c:22:9f:00: 2e:65:09:34:08:36:4f:78:9e:49:3f:ba:2a:a2:4b: 8e:df:62:59:ca:40:53:57:f9:59:21:31:d0:4c:85: 2d:26:44:c1:c9:3b:c1:3c:49:6c:e4:4c:52:3f:cf: e6:11:0e:dd:68:3b:d8:1f:d5:7d:db:3c:1f:01:f8: 28:1b:76:80:f6:03:91:89:18:9e:94:cc:43:46:5a: 41:c0:71:5b:32:b1:f8:8a:e3:bc:3d:49:6d:50:4f: f8:36:c6:b5:09:54:16:51:71:0d:e1:20:4e:78:cc: 6a:b4:56:bf:eb:be:df:5f:19:cd:41:cd:2f:3a:c1: a1:f1:30:f3:fa:f3:6d:d8:93:32:f3:5c:e6:89:9f: ce:62:87:08:51:d6:ce:0f:1d:ee:ab:82:0f:b0:e9: ea:66:cd:fe:7b:d0:4a:a0:b4:1d:00:b8:cb:bf:75: 70:f8:32:8d:bb:b9:4e:1e:ef:81:c3:49:a4:23:06: 30:26:26:9e:5a:59:4e:3b:1b:e5:f0:98:e0:52:b0: f0:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DD:7E:F8:10:15:97:6F:F1:82:5A:C8:56:EE:CD:1D:8F:99:E4:34 X509v3 Authority Key Identifier: keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/691--BAVl2_xglrIVu7NHY-Z5DQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.104.148.0/24 Signature Algorithm: sha256WithRSAEncryption 86:51:ad:15:7a:30:dc:8c:9f:46:d3:d4:95:55:c9:7e:a7:fa: 70:a9:fd:0b:41:3c:d0:da:bd:22:a6:5d:df:fc:b2:21:99:7b: f8:e5:09:a1:da:ba:7a:72:e3:0e:f7:b0:4f:74:b4:bf:f4:b0: f3:6d:2d:5a:a3:6d:2a:41:fe:c3:1e:d2:43:79:e8:96:f3:1b: 9a:31:c9:3b:63:5f:c4:c3:a7:fe:bd:64:0d:d0:d3:e0:a5:9f: 02:bb:c8:0f:8f:66:06:98:ce:78:74:61:30:b5:8d:44:bf:3d: d9:b2:e3:cd:10:44:2a:3b:26:ab:f5:8f:2b:d0:73:a5:94:01: a3:c9:df:43:cb:f3:aa:e1:2d:fa:5e:12:3f:fe:fa:39:56:e3: 00:20:d1:63:ad:5c:21:e8:9d:93:86:cf:08:6a:1a:56:08:74: 8b:de:40:40:f4:c9:d4:2d:80:27:96:78:98:71:04:26:d7:4a: 45:b1:12:62:da:2b:be:f4:ac:2a:ec:ee:39:8b:c0:80:6b:42: 9f:b4:e5:4c:a1:1f:33:26:d3:11:54:58:df:d9:0a:52:4c:79: 57:42:29:8d:81:b4:6b:4d:b4:21:ae:e5:bb:28:39:86:e6:80: 2e:6d:41:7a:02:23:5e:f6:5d:e6:cb:34:e7:9d:b3:62:22:bd: a2:ac:af:48 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 QTkxRUQ0MEFBQTE1QjlBQkNBMjFDMjA1QjM2RUM3NDk0OUZDODAeFw0yNDA4MjYw NTEwMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVCREQ3RUY4MTAxNTk3 NkZGMTgyNUFDODU2RUVDRDFEOEY5OUU0MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKLgNtTM5RGncdj76Ywx3JmeVBph82H8AgtWpCSjQ6eiOTQhgd eoaX7W4iZ377ayhJUWdiokbfPCKfAC5lCTQINk94nkk/uiqiS47fYlnKQFNX+Vkh MdBMhS0mRMHJO8E8SWzkTFI/z+YRDt1oO9gf1X3bPB8B+CgbdoD2A5GJGJ6UzENG WkHAcVsysfiK47w9SW1QT/g2xrUJVBZRcQ3hIE54zGq0Vr/rvt9fGc1BzS86waHx MPP6823YkzLzXOaJn85ihwhR1s4PHe6rgg+w6epmzf570EqgtB0AuMu/dXD4Mo27 uU4e74HDSaQjBjAmJp5aWU47G+XwmOBSsPA3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU691++BAVl2/xglrIVu7NHY+Z5DQwHwYDVR0jBBgwFoAUeVqR7UCqoVuavKIc IFs27HSUn8gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0VOVFJP SUQvZVZxUjdVQ3FvVnVhdktJY0lGczI3SFNVbjhnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lVnFSN1VDcW9WdWF2S0ljSUZzMjdIU1VuOGcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DRU5UUk9JRC82OTEtLUJBVmwyX3hn bHJJVnU3TkhZLVo1RFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ2iUMA0GCSqGSIb3DQEBCwUAA4IBAQCGUa0VejDcjJ9G09SVVcl+p/pwqf0L QTzQ2r0ipl3f/LIhmXv45Qmh2rp6cuMO97BPdLS/9LDzbS1ao20qQf7DHtJDeeiW 8xuaMck7Y1/Ew6f+vWQN0NPgpZ8Cu8gPj2YGmM54dGEwtY1Evz3ZsuPNEEQqOyar 9Y8r0HOllAGjyd9Dy/Oq4S36XhI//vo5VuMAINFjrVwh6J2Ths8IahpWCHSL3kBA 9MnULYAnlniYcQQm10pFsRJi2iu+9Kwq7O45i8CAa0KftOVMoR8zJtMRVFjf2QpS THlXQimNgbRrTbQhruW7KDmG5oAubUF6AiNe9l3myzTnnbNiIr2irK9I -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:23 2024 by rpki-client on console-fra.rpki-client.org