$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa File: ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa (raw, json) Hash identifier: +G8XfPqkOeCysqKsWUxJqS9WFkdEKyEDHr6OZDUBZ3Y= Subject key identifier: 65:D4:DC:5B:AE:F5:4E:5F:FB:47:C6:73:97:13:A7:16:BA:FB:50:9C Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C78 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa Signing time: Mon 26 Aug 2024 05:11:22 +0000 ROA not before: Mon 26 Aug 2024 05:11:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24172 IP address blocks: 103.234.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3192 (0xc78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=65D4DC5BAEF54E5FFB47C6739713A716BAFB509C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:5b:ca:39:33:7e:1d:b7:a6:5c:73:c3:ef:c7: 7a:4d:13:9a:ce:f5:c1:5f:4b:eb:81:03:c0:9a:10: 42:1f:7d:2b:03:f2:a6:ab:82:55:52:2f:08:44:68: ab:84:10:49:e0:5e:8f:7d:2f:79:7f:9d:35:83:04: 4e:60:3e:34:37:e9:55:75:f7:ad:c2:53:6d:79:98: 11:b3:db:64:6d:4f:d2:53:96:02:0b:7e:63:ad:ca: 76:4a:f0:63:15:b6:86:da:01:60:aa:64:f5:9c:e0: a7:2d:67:0c:36:dc:0b:e0:8f:f3:b2:51:6c:ce:08: 43:98:41:cc:35:49:25:0e:c8:74:f8:60:10:bd:c3: 6f:a5:f8:7f:20:2a:d9:9e:5c:14:09:6d:dd:2a:d4: 60:78:e4:e9:9c:5d:97:dd:fd:9c:31:12:92:4e:b5: fc:35:1d:d7:a7:e6:0c:10:2f:47:8f:f8:ff:31:04: 93:7d:bc:0f:63:c8:39:7a:70:c8:2f:20:00:73:65: 29:89:2e:21:50:39:c1:bb:64:e9:f1:ff:b4:c8:cc: f2:a9:d2:aa:6a:7c:43:74:ae:3f:ea:ee:34:2a:13: 7f:7c:6b:46:7a:b2:86:d0:09:4e:30:4f:e4:77:9b: bb:d7:61:4a:bd:d7:00:99:bb:1c:4e:bd:af:68:14: d7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:D4:DC:5B:AE:F5:4E:5F:FB:47:C6:73:97:13:A7:16:BA:FB:50:9C X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ZdTcW671Tl_7R8ZzlxOnFrr7UJw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.224.0/24 Signature Algorithm: sha256WithRSAEncryption b2:66:b2:29:f9:9f:20:88:7c:93:31:fe:6c:e9:35:d6:ee:cc: 7d:d6:c5:95:b7:ea:c5:eb:a6:03:28:66:32:cb:f8:9c:b4:22: 1f:54:bc:f0:24:4b:ed:2d:33:3c:f4:38:4a:32:55:e1:c9:24: 51:e5:e3:59:4c:73:c7:65:a8:72:85:86:34:58:82:84:52:85: 0c:4c:1c:cc:7f:5b:8b:9f:ee:b6:76:94:a6:ce:6c:9a:85:23: 10:67:ed:2c:3e:de:4b:26:3d:65:a6:2d:f7:e7:49:cc:f1:f1: 21:3b:80:7c:5f:33:14:89:b7:a3:7c:5d:e2:be:b2:e5:06:5a: f1:fd:6d:e2:55:67:d8:f6:65:64:9c:56:6e:d0:58:bf:04:00: 4d:bf:b9:2c:ba:d5:e1:a5:89:38:b5:c9:fe:65:a3:02:7d:30: 43:75:98:41:74:e1:c3:f1:0f:c7:d7:8f:8d:76:6c:c2:bd:a5: 32:50:69:46:f8:14:be:fb:f6:c3:5e:96:fd:a1:0c:ac:ec:cd: 0f:d3:27:f7:0c:3d:c4:54:22:d8:4c:5a:10:29:98:84:aa:03: a3:5e:30:4a:50:2e:a4:03:9d:a2:81:5b:cb:7b:71:c4:be:f2: ed:62:fc:42:48:55:1f:94:60:1a:12:ff:ee:f2:04:16:69:e5: 8a:88:c6:81 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDHgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1RDREQzVCQUVGNTRF NUZGQjQ3QzY3Mzk3MTNBNzE2QkFGQjUwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyW8o5M34dt6Zcc8Pvx3pNE5rO9cFfS+uBA8CaEEIffSsD8qar glVSLwhEaKuEEEngXo99L3l/nTWDBE5gPjQ36VV1963CU215mBGz22RtT9JTlgIL fmOtynZK8GMVtobaAWCqZPWc4KctZww23Avgj/OyUWzOCEOYQcw1SSUOyHT4YBC9 w2+l+H8gKtmeXBQJbd0q1GB45OmcXZfd/ZwxEpJOtfw1Hden5gwQL0eP+P8xBJN9 vA9jyDl6cMgvIABzZSmJLiFQOcG7ZOnx/7TIzPKp0qpqfEN0rj/q7jQqE398a0Z6 sobQCU4wT+R3m7vXYUq91wCZuxxOva9oFNeLAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUZdTcW671Tl/7R8ZzlxOnFrr7UJwwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vWmRUY1c2NzFU bF83Ujhaemx4T25GcnI3VUp3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGfq4DANBgkqhkiG9w0BAQsFAAOCAQEAsmayKfmfIIh8kzH+bOk11u7M fdbFlbfqxeumAyhmMsv4nLQiH1S88CRL7S0zPPQ4SjJV4ckkUeXjWUxzx2WocoWG NFiChFKFDEwczH9bi5/utnaUps5smoUjEGftLD7eSyY9ZaYt9+dJzPHxITuAfF8z FIm3o3xd4r6y5QZa8f1t4lVn2PZlZJxWbtBYvwQATb+5LLrV4aWJOLXJ/mWjAn0w Q3WYQXThw/EPx9ePjXZswr2lMlBpRvgUvvv2w16W/aEMrOzND9Mn9ww9xFQi2Exa ECmYhKoDo14wSlAupAOdooFby3txxL7y7WL8QkhVH5RgGhL/7vIEFmnliojGgQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org