$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/vyrLltdBW4MqIFD6K3Dkzp8vAgo.roa File: vyrLltdBW4MqIFD6K3Dkzp8vAgo.roa (raw, json) Hash identifier: 00gSMzjRCG/Qi3WrVzSngzGCzXTQ3vaqK0osThBRUjo= Subject key identifier: BF:2A:CB:96:D7:41:5B:83:2A:20:50:FA:2B:70:E4:CE:9F:2F:02:0A Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C7A Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/vyrLltdBW4MqIFD6K3Dkzp8vAgo.roa Signing time: Mon 26 Aug 2024 05:11:23 +0000 ROA not before: Mon 26 Aug 2024 05:11:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.234.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BF2ACB96D7415B832A2050FA2B70E4CE9F2F020A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:38:b5:12:7b:27:47:46:94:8f:59:40:fc:fd: ba:f1:f5:83:95:06:92:9e:59:a9:bb:d5:f7:39:20: 2d:04:7a:09:7e:ca:52:83:47:be:e8:9d:d4:5a:84: 0c:ce:bb:b4:8f:22:e0:7f:09:27:fe:70:0b:57:b5: 10:dd:8a:2f:dd:33:6e:dd:5a:b2:f8:81:f1:f8:01: 1e:d7:57:11:37:09:84:46:42:e0:5b:00:fe:03:1b: ca:a6:af:89:06:c4:62:12:39:3c:af:7e:dc:0a:ec: 08:8f:4f:c3:0a:e8:44:02:1d:fd:ea:24:14:85:fc: 5e:8c:1f:4d:f0:52:80:67:ff:0e:19:64:35:17:67: 06:7b:62:3b:9c:bf:1e:a6:9f:68:dd:ef:a2:69:6a: f9:f7:04:87:0d:06:f2:2b:ce:0e:27:63:f9:fe:3d: ab:26:07:90:71:f4:d0:77:81:8d:40:18:1f:a6:f4: b9:63:db:45:af:e9:69:cf:23:fe:ec:cf:99:5b:28: a2:0c:95:a3:c6:3e:22:ad:49:17:ad:41:a2:ac:79: 15:5e:c8:7e:09:07:8d:b4:4b:cc:a6:df:f9:9f:1c: 0f:41:86:70:32:32:80:3f:ea:16:80:24:a7:46:e6: a3:94:53:d2:cf:ca:70:94:92:dd:45:c9:3a:ac:35: a8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:2A:CB:96:D7:41:5B:83:2A:20:50:FA:2B:70:E4:CE:9F:2F:02:0A X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/vyrLltdBW4MqIFD6K3Dkzp8vAgo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.224.0/22 Signature Algorithm: sha256WithRSAEncryption 0b:5c:a2:64:ad:8b:f4:11:76:aa:b3:ef:6a:0b:e6:69:27:89: 74:8b:aa:ac:81:8c:87:ac:12:7b:ad:62:eb:4c:5f:de:fa:75: 7d:5f:76:d3:5e:71:a0:aa:bd:d3:80:6a:cc:8d:08:6e:6c:3e: d6:52:9c:9f:0d:7c:64:a3:22:9b:29:6e:c0:04:9a:b9:6c:b7: f2:d6:bf:cd:75:0d:c1:06:3f:58:ec:18:a7:75:a6:11:a2:42: 24:f7:2b:97:43:1b:c1:71:a2:17:dd:94:18:f3:51:cd:df:88: 53:b3:4d:b8:8a:93:dc:bb:6d:08:07:a8:82:a6:1d:45:5d:8b: 81:d7:12:15:b9:3d:98:4d:6d:8e:d6:ef:5d:38:26:ce:73:92: 88:6e:b7:f2:54:06:39:88:f6:67:48:f7:52:35:46:ae:61:da: 98:3d:9d:8c:4e:9a:3d:99:99:59:e1:86:f2:8a:a1:06:27:ef: 99:64:30:a6:04:f9:ba:e3:5c:ab:4f:aa:9e:83:03:30:cb:f0: 0b:2e:d8:00:9b:a0:94:8c:b1:2f:d2:3e:91:6a:cc:54:50:5f: 05:bb:93:5c:b4:b9:f5:60:b8:4b:3e:3b:5f:7e:0f:0e:f3:0a: 45:b4:f1:e6:26:6f:ef:0c:16:d2:a5:f1:cb:8c:b9:db:ef:d3: 22:98:ea:a0 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJGMkFDQjk2RDc0MTVC ODMyQTIwNTBGQTJCNzBFNENFOUYyRjAyMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgOLUSeydHRpSPWUD8/brx9YOVBpKeWam71fc5IC0Eegl+ylKD R77ondRahAzOu7SPIuB/CSf+cAtXtRDdii/dM27dWrL4gfH4AR7XVxE3CYRGQuBb AP4DG8qmr4kGxGISOTyvftwK7AiPT8MK6EQCHf3qJBSF/F6MH03wUoBn/w4ZZDUX ZwZ7Yjucvx6mn2jd76Jpavn3BIcNBvIrzg4nY/n+PasmB5Bx9NB3gY1AGB+m9Llj 20Wv6WnPI/7sz5lbKKIMlaPGPiKtSRetQaKseRVeyH4JB420S8ym3/mfHA9BhnAy MoA/6haAJKdG5qOUU9LPynCUkt1FyTqsNag/AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUvyrLltdBW4MqIFD6K3Dkzp8vAgowHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vdnlyTGx0ZEJX NE1xSUZENkszRGt6cDh2QWdvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAmfq4DANBgkqhkiG9w0BAQsFAAOCAQEAC1yiZK2L9BF2qrPvagvmaSeJ dIuqrIGMh6wSe61i60xf3vp1fV92015xoKq904BqzI0Ibmw+1lKcnw18ZKMimylu wASauWy38ta/zXUNwQY/WOwYp3WmEaJCJPcrl0MbwXGiF92UGPNRzd+IU7NNuIqT 3LttCAeogqYdRV2LgdcSFbk9mE1tjtbvXTgmznOSiG638lQGOYj2Z0j3UjVGrmHa mD2djE6aPZmZWeGG8oqhBifvmWQwpgT5uuNcq0+qnoMDMMvwCy7YAJuglIyxL9I+ kWrMVFBfBbuTXLS59WC4Sz47X34PDvMKRbTx5iZv7wwW0qXxy4y52+/TIpjqoA== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:25 2024 by rpki-client on console-ams.rpki-client.org