$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COLIN/STcJXfly_rQ6xHMyUQ1-HImx72E.roa File: STcJXfly_rQ6xHMyUQ1-HImx72E.roa (raw, json) Hash identifier: duGhuRjRxqejouhgK9w7HIxn6poBXIoRzmaXBkjWgZY= Subject key identifier: 49:37:09:5D:F9:72:FE:B4:3A:C4:73:32:51:0D:7E:1C:89:B1:EF:61 Certificate issuer: /CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Certificate serial: 011A Authority key identifier: 97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/STcJXfly_rQ6xHMyUQ1-HImx72E.roa Signing time: Sun 22 Sep 2024 18:03:07 +0000 ROA not before: Sun 22 Sep 2024 18:03:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150768 IP address blocks: 103.6.124.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9700C068EFA9A6B2E6879310C9AEA030DC8B2AD1 Validity Not Before: Sep 22 18:03:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4937095DF972FEB43AC47332510D7E1C89B1EF61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:37:e3:12:ca:d6:83:06:e9:52:e9:97:85: e6:21:5a:19:60:37:f5:19:d0:c2:5e:38:65:6e:bd: c0:a4:89:d8:c0:bf:99:e0:53:48:c3:e8:24:3c:a0: 0b:72:2f:6c:92:e9:d3:77:58:31:6c:94:47:42:e8: 5f:5d:90:e4:13:cb:06:35:e0:36:db:45:01:92:3b: db:20:74:4a:6a:ad:1b:f9:ea:4c:21:e8:37:cf:d7: 9c:a3:b0:f8:57:ca:66:fe:b5:2f:c0:6d:d1:93:22: ca:3b:ce:39:63:29:58:f2:ed:91:dc:53:d9:7a:5d: 62:a7:c1:c0:8b:25:67:9e:f7:bf:11:d4:eb:19:ba: 3d:af:19:fe:71:0a:18:4e:63:2d:4b:a9:a1:bb:2c: 9b:f2:b7:de:8c:32:55:27:c9:b2:5c:a3:08:71:9d: f1:3c:82:11:9d:f5:18:81:ab:fa:1f:c4:6c:7c:36: 80:88:c7:38:5d:4f:29:00:16:2e:ff:60:9c:71:89: 22:41:0d:05:ae:89:16:e0:ff:33:6f:3d:9c:ab:ad: fc:8b:9f:e5:96:2e:01:d5:05:64:7c:dc:b5:7e:7a: e1:e7:81:89:cb:37:e5:22:4b:9c:59:a9:db:ce:ca: e9:0a:96:a4:31:5d:a2:16:89:9b:71:37:4a:6f:a2: 9b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:37:09:5D:F9:72:FE:B4:3A:C4:73:32:51:0D:7E:1C:89:B1:EF:61 X509v3 Authority Key Identifier: keyid:97:00:C0:68:EF:A9:A6:B2:E6:87:93:10:C9:AE:A0:30:DC:8B:2A:D1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/lwDAaO-pprLmh5MQya6gMNyLKtE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lwDAaO-pprLmh5MQya6gMNyLKtE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COLIN/STcJXfly_rQ6xHMyUQ1-HImx72E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.6.124.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:b1:63:f7:1b:98:db:d7:05:da:14:96:d4:b1:90:ad:fb:e6: b7:44:dc:d0:91:41:7b:54:63:b9:11:13:ee:7d:99:51:6a:48: 15:c3:f0:0b:70:c9:6d:93:10:0f:eb:f6:c8:3c:d1:85:b5:fc: 59:17:24:df:f0:01:61:a4:c4:24:56:25:38:5e:30:5a:39:b3: 0e:b8:1d:f3:d0:4a:1b:3c:d1:9b:c4:7c:ad:b0:6f:a8:11:f6: f3:85:a3:c8:ff:b1:2e:83:01:00:9b:f3:28:a8:90:1e:2c:63: 2f:b9:25:7d:b7:18:8a:e8:4a:a1:50:35:9b:04:17:2c:a8:8c: c3:63:4a:44:6e:8b:aa:53:d8:ac:01:da:02:58:5b:b4:2a:48: 51:f5:21:41:b9:ba:05:ef:76:7c:1d:47:8d:d2:bc:db:0f:0a: 91:2e:e9:0f:d2:76:f7:52:a5:b6:dc:be:ea:c7:22:bb:df:d9: 93:25:44:39:93:7f:b2:bc:c5:93:b0:c5:8b:26:99:a6:f9:52: cc:de:a6:19:8d:57:fc:69:be:ff:e6:c1:f9:23:a0:12:11:58: 3b:ce:62:5c:85:ec:b8:81:03:45:6b:7f:5a:dc:07:02:c2:ea: e7:af:d0:5f:1b:73:fd:85:8a:38:78:90:60:10:9e:fb:3c:fb: 74:88:a7:a3 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICARowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTcw MEMwNjhFRkE5QTZCMkU2ODc5MzEwQzlBRUEwMzBEQzhCMkFEMTAeFw0yNDA5MjIx ODAzMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5MzcwOTVERjk3MkZF QjQzQUM0NzMzMjUxMEQ3RTFDODlCMUVGNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8hDfjEsrWgwbpUumXheYhWhlgN/UZ0MJeOGVuvcCkidjAv5ng U0jD6CQ8oAtyL2yS6dN3WDFslEdC6F9dkOQTywY14DbbRQGSO9sgdEpqrRv56kwh 6DfP15yjsPhXymb+tS/AbdGTIso7zjljKVjy7ZHcU9l6XWKnwcCLJWee978R1OsZ uj2vGf5xChhOYy1LqaG7LJvyt96MMlUnybJcowhxnfE8ghGd9RiBq/ofxGx8NoCI xzhdTykAFi7/YJxxiSJBDQWuiRbg/zNvPZyrrfyLn+WWLgHVBWR83LV+euHngYnL N+UiS5xZqdvOyukKlqQxXaIWiZtxN0pvopu3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUSTcJXfly/rQ6xHMyUQ1+HImx72EwHwYDVR0jBBgwFoAUlwDAaO+pprLmh5MQ ya6gMNyLKtEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09MSU4v bHdEQWFPLXBwckxtaDVNUXlhNmdNTnlMS3RFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9sd0RBYU8tcHByTG1oNU1ReWE2Z01OeUxLdEUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DT0xJTi9TVGNKWGZseV9yUTZ4SE15VVEx LUhJbXg3MkUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZwZ8 MA0GCSqGSIb3DQEBCwUAA4IBAQA9sWP3G5jb1wXaFJbUsZCt++a3RNzQkUF7VGO5 ERPufZlRakgVw/ALcMltkxAP6/bIPNGFtfxZFyTf8AFhpMQkViU4XjBaObMOuB3z 0EobPNGbxHytsG+oEfbzhaPI/7EugwEAm/MoqJAeLGMvuSV9txiK6EqhUDWbBBcs qIzDY0pEbouqU9isAdoCWFu0KkhR9SFBuboF73Z8HUeN0rzbDwqRLukP0nb3UqW2 3L7qxyK739mTJUQ5k3+yvMWTsMWLJpmm+VLM3qYZjVf8ab7/5sH5I6ASEVg7zmJc hey4gQNFa39a3AcCwurnr9BfG3P9hYo4eJBgEJ77PPt0iKej -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org