$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/KkNLMlr_NHogh2sgzkZS7Cg7hWA.roa File: KkNLMlr_NHogh2sgzkZS7Cg7hWA.roa (raw, json) Hash identifier: zvwtPImjI/J+TBx0XXylPdwqDGp0eIE5DEH9J9ky3yI= Subject key identifier: 2A:43:4B:32:5A:FF:34:7A:20:87:6B:20:CE:46:52:EC:28:3B:85:60 Certificate issuer: /CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5 Certificate serial: FA Authority key identifier: 60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/KkNLMlr_NHogh2sgzkZS7Cg7hWA.roa Signing time: Mon 26 Aug 2024 05:10:29 +0000 ROA not before: Mon 26 Aug 2024 05:10:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.69.80.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6016EF41F321C9AA6C1E13D115B5B60A3029C8E5 Validity Not Before: Aug 26 05:10:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2A434B325AFF347A20876B20CE4652EC283B8560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:99:cf:cd:8a:b6:81:11:ad:bd:c0:8a:72:c3: ca:67:39:6d:3d:31:8a:19:0b:14:d0:74:1e:45:e4: 68:94:b2:52:6d:ae:ac:fd:f8:82:27:fc:ec:d7:c8: 3a:2c:52:72:3e:f9:68:cb:6a:47:c9:4f:4d:ac:fa: 90:78:1b:b6:2c:59:8e:19:cb:97:8f:1c:c2:7a:30: 7f:74:56:a3:9d:74:88:a0:d3:6f:87:53:d9:a2:da: ad:bd:07:34:be:56:fd:23:c9:6d:65:d6:c6:3b:cc: cf:10:ac:f6:fc:d4:40:3b:2e:9b:29:20:8e:d6:8e: e8:d7:f8:3b:e3:18:b0:58:77:82:00:3d:5d:71:73: c2:8b:e2:ac:0e:bc:75:17:50:9b:06:35:ed:de:94: bf:4c:ca:09:e6:ac:2a:dd:76:41:87:a8:7d:59:af: 65:95:0d:43:cd:14:99:b6:a6:19:23:f5:3f:f6:c1: ed:be:75:62:d7:83:6d:56:07:d7:7c:45:9c:93:6f: 19:48:09:fe:e6:d8:0f:37:c5:28:b3:03:b5:c1:4b: 67:23:70:6d:06:11:8a:c1:30:4a:71:66:a5:7d:23: 54:be:bf:8c:4a:f0:52:f3:21:17:cd:76:7b:ab:7d: 68:2e:a1:75:3a:96:be:82:8f:1a:b7:c1:17:c9:a5: 1e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:43:4B:32:5A:FF:34:7A:20:87:6B:20:CE:46:52:EC:28:3B:85:60 X509v3 Authority Key Identifier: keyid:60:16:EF:41:F3:21:C9:AA:6C:1E:13:D1:15:B5:B6:0A:30:29:C8:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/YBbvQfMhyapsHhPRFbW2CjApyOU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YBbvQfMhyapsHhPRFbW2CjApyOU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHANGSHEN/KkNLMlr_NHogh2sgzkZS7Cg7hWA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.80.0/23 Signature Algorithm: sha256WithRSAEncryption 51:30:45:57:8e:85:78:e5:b6:47:e2:73:be:47:c3:10:91:e1: 06:99:c0:25:6c:e7:aa:8d:16:25:fb:75:bb:e2:82:7b:2a:9a: 39:e9:37:e7:df:9b:35:71:0f:16:17:e2:04:af:f1:c4:16:c9: 5e:0d:ec:2f:b6:81:64:30:46:b4:8c:98:5e:5b:a9:77:f7:29: 14:43:36:f9:73:e3:0e:f7:ec:a5:ea:72:5e:6c:61:93:63:92: d7:33:26:20:48:d6:f8:4b:97:e3:71:f6:e0:23:4f:30:7b:8e: d4:9a:4a:7a:73:c9:bd:3a:8c:ad:b4:9a:51:da:34:8a:db:ff: b4:5c:52:15:68:11:56:7a:82:26:dc:71:24:68:41:a0:a7:89: d4:d6:3a:a8:fa:cc:13:54:38:d1:fe:be:2f:fb:bf:d6:91:67: 90:b3:89:e5:ac:fa:76:de:ca:26:23:77:e6:4a:30:9f:43:16: 6b:cc:b9:36:96:65:b3:5a:4a:84:38:aa:31:98:98:e3:41:53: 8b:59:97:72:39:e5:5f:95:eb:0f:5b:c1:2e:7c:a3:11:a7:9a: 26:b0:b5:fe:ea:2f:e1:ea:83:5e:05:5b:be:81:31:e8:23:6d: 56:8f:82:08:72:98:41:4f:8d:87:d0:55:85:6d:1e:6e:f5:3c: 4a:39:84:f4 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAPowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAx NkVGNDFGMzIxQzlBQTZDMUUxM0QxMTVCNUI2MEEzMDI5QzhFNTAeFw0yNDA4MjYw NTEwMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBNDM0QjMyNUFGRjM0 N0EyMDg3NkIyMENFNDY1MkVDMjgzQjg1NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDmc/NiraBEa29wIpyw8pnOW09MYoZCxTQdB5F5GiUslJtrqz9 +IIn/OzXyDosUnI++WjLakfJT02s+pB4G7YsWY4Zy5ePHMJ6MH90VqOddIig02+H U9mi2q29BzS+Vv0jyW1l1sY7zM8QrPb81EA7LpspII7WjujX+DvjGLBYd4IAPV1x c8KL4qwOvHUXUJsGNe3elL9MygnmrCrddkGHqH1Zr2WVDUPNFJm2phkj9T/2we2+ dWLXg21WB9d8RZyTbxlICf7m2A83xSizA7XBS2cjcG0GEYrBMEpxZqV9I1S+v4xK 8FLzIRfNdnurfWguoXU6lr6Cjxq3wRfJpR4NAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUKkNLMlr/NHogh2sgzkZS7Cg7hWAwHwYDVR0jBBgwFoAUYBbvQfMhyapsHhPR FbW2CjApyOUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdT SEVOL1lCYnZRZk1oeWFwc0hoUFJGYlcyQ2pBcHlPVS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWUJidlFmTWh5YXBzSGhQUkZiVzJDakFweU9VLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBTkdTSEVOL0trTkxNbHJfTkhv Z2gyc2d6a1pTN0NnN2hXQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnRVAwDQYJKoZIhvcNAQELBQADggEBAFEwRVeOhXjltkfic75HwxCR4QaZ wCVs56qNFiX7dbvignsqmjnpN+ffmzVxDxYX4gSv8cQWyV4N7C+2gWQwRrSMmF5b qXf3KRRDNvlz4w737KXqcl5sYZNjktczJiBI1vhLl+Nx9uAjTzB7jtSaSnpzyb06 jK20mlHaNIrb/7RcUhVoEVZ6gibccSRoQaCnidTWOqj6zBNUONH+vi/7v9aRZ5Cz ieWs+nbeyiYjd+ZKMJ9DFmvMuTaWZbNaSoQ4qjGYmONBU4tZl3I55V+V6w9bwS58 oxGnmiawtf7qL+Hqg14FW76BMegjbVaPgghymEFPjYfQVYVtHm71PEo5hPQ= -----END CERTIFICATE-----Generated at Fri Sep 20 08:12:09 2024 by rpki-client on console-fra.rpki-client.org