$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/4928uT7wdgERVQItdOtnWNW2sJU.roa File: 4928uT7wdgERVQItdOtnWNW2sJU.roa (raw, json) Hash identifier: h3G6nychiYCYTfFU2fCGrQyj6RV6HAzQQm2fmqzFt1g= Subject key identifier: E3:DD:BC:B9:3E:F0:76:01:11:55:02:2D:74:EB:67:58:D5:B6:B0:95 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C7B Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/4928uT7wdgERVQItdOtnWNW2sJU.roa Signing time: Mon 26 Aug 2024 05:11:23 +0000 ROA not before: Mon 26 Aug 2024 05:11:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 101.0.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E3DDBCB93EF076011155022D74EB6758D5B6B095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0c:01:97:d4:e7:86:d2:21:18:11:a3:70:3c: e1:cf:b0:49:44:8c:16:1c:b9:17:68:e3:a0:94:85: 94:96:a9:5c:99:30:be:bc:6b:82:2c:95:44:22:a2: 0e:bd:e6:95:b6:15:3d:5f:2e:f9:43:32:b1:19:2c: 0d:4c:28:7e:87:7b:fd:b6:3e:c5:98:fe:b2:f2:ea: 0b:da:21:a1:12:b5:d3:7c:fc:06:2b:62:40:24:03: 00:8b:4d:e6:7c:51:05:e5:d6:31:a5:47:84:dd:b5: 7c:13:06:d2:53:c6:5c:a1:be:67:1d:58:d4:f8:1f: 81:f9:75:2c:b9:b1:ae:c2:cc:36:6c:85:4f:33:8a: 75:d5:95:8f:7b:9c:c2:36:ee:09:f0:d2:30:cf:e7: c6:d2:37:b2:3a:49:43:bb:e7:ea:79:7f:0e:d7:f9: f5:79:ce:ec:b0:8e:90:12:97:51:13:df:7b:34:27: 25:b6:94:4e:4e:fb:c5:d7:43:8a:d8:fb:9f:a0:53: c7:2b:ba:78:4f:eb:ef:5d:e4:fc:1b:cc:4f:5b:7f: b7:89:7b:60:f4:76:50:3b:2d:96:35:70:b1:58:32: 1b:df:ab:4d:36:8b:eb:4b:23:b8:c8:15:c8:c0:7a: 3a:41:ca:95:62:56:32:74:a7:e9:82:8c:76:73:7b: 28:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:DD:BC:B9:3E:F0:76:01:11:55:02:2D:74:EB:67:58:D5:B6:B0:95 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/4928uT7wdgERVQItdOtnWNW2sJU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.232.0/21 Signature Algorithm: sha256WithRSAEncryption 91:6e:46:9a:82:6f:74:c2:4d:1e:0f:3c:6c:e8:68:84:bd:92: 3b:a1:04:3d:c4:6d:c1:79:e0:e3:25:cf:d0:6a:35:9f:fc:cc: 0a:82:67:e2:67:d9:0f:bc:7f:36:61:45:33:09:10:da:e6:35: 69:58:29:f2:19:1a:c7:17:8c:39:d4:7c:3c:ef:25:93:89:d7: 1b:eb:e2:f3:2b:1c:49:d6:2e:76:1f:9a:2f:93:1d:95:ac:5c: a0:6a:aa:17:60:7e:91:46:06:be:d4:4c:82:0e:a2:ac:dd:ee: 9d:6b:07:d0:30:7b:99:7c:d9:b6:5b:27:3a:a0:f6:1e:6f:79: 8e:f5:ec:b5:b7:b4:e3:2c:ef:1e:59:59:2b:f4:8d:6f:51:f8: 5b:08:26:a5:3e:c9:b3:ce:9e:e7:99:c7:5c:cc:63:e4:13:3a: 79:9f:a9:20:37:ae:7c:68:e4:27:db:ab:3f:13:24:b5:01:fc: 9b:89:c2:4f:34:3c:1f:32:d1:d6:68:72:56:9a:d7:da:f2:04: d0:04:31:1b:8a:e7:fa:0f:79:53:aa:fa:a3:e0:5e:7c:0b:b1: 42:09:94:ee:ef:2d:a4:82:c4:38:bc:39:0a:19:b7:e2:39:ed: 69:85:40:37:12:1f:51:15:8e:76:e0:e0:2e:4e:2d:92:55:19: c3:df:02:04 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzRERCQ0I5M0VGMDc2 MDExMTU1MDIyRDc0RUI2NzU4RDVCNkIwOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDDAGX1OeG0iEYEaNwPOHPsElEjBYcuRdo46CUhZSWqVyZML68 a4IslUQiog695pW2FT1fLvlDMrEZLA1MKH6He/22PsWY/rLy6gvaIaEStdN8/AYr YkAkAwCLTeZ8UQXl1jGlR4TdtXwTBtJTxlyhvmcdWNT4H4H5dSy5sa7CzDZshU8z inXVlY97nMI27gnw0jDP58bSN7I6SUO75+p5fw7X+fV5zuywjpASl1ET33s0JyW2 lE5O+8XXQ4rY+5+gU8crunhP6+9d5PwbzE9bf7eJe2D0dlA7LZY1cLFYMhvfq002 i+tLI7jIFcjAejpBypViVjJ0p+mCjHZzeyiTAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU4928uT7wdgERVQItdOtnWNW2sJUwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vNDkyOHVUN3dk Z0VSVlFJdGRPdG5XTlcyc0pVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2UA6DANBgkqhkiG9w0BAQsFAAOCAQEAkW5GmoJvdMJNHg88bOhohL2S O6EEPcRtwXng4yXP0Go1n/zMCoJn4mfZD7x/NmFFMwkQ2uY1aVgp8hkaxxeMOdR8 PO8lk4nXG+vi8yscSdYudh+aL5MdlaxcoGqqF2B+kUYGvtRMgg6irN3unWsH0DB7 mXzZtlsnOqD2Hm95jvXstbe04yzvHllZK/SNb1H4WwgmpT7Js86e55nHXMxj5BM6 eZ+pIDeufGjkJ9urPxMktQH8m4nCTzQ8HzLR1mhyVprX2vIE0AQxG4rn+g95U6r6 o+BefAuxQgmU7u8tpILEOLw5Chm34jntaYVANxIfURWOduDgLk4tklUZw98CBA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org