$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COMPAL/FkDF8bFvc1huLORsYuI_iaRkvdU.roa File: FkDF8bFvc1huLORsYuI_iaRkvdU.roa (raw, json) Hash identifier: 9kNW3/ArnafP9P+xMIoqD2bm0sztW+78ucts+H8kHfU= Subject key identifier: 16:40:C5:F1:B1:6F:73:58:6E:2C:E4:6C:62:E2:3F:89:A4:64:BD:D5 Certificate issuer: /CN=791128256BB12B79908180ABC59F2CF8629889EF Certificate serial: 0BCF Authority key identifier: 79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/FkDF8bFvc1huLORsYuI_iaRkvdU.roa Signing time: Mon 26 Aug 2024 05:11:42 +0000 ROA not before: Mon 26 Aug 2024 05:11:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131680 IP address blocks: 103.122.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3023 (0xbcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=791128256BB12B79908180ABC59F2CF8629889EF Validity Not Before: Aug 26 05:11:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1640C5F1B16F73586E2CE46C62E23F89A464BDD5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3b:0c:fd:b6:2b:f8:f7:fe:16:92:6e:ea:87: a8:2e:29:99:07:16:f5:45:23:fc:ef:b0:c2:8d:d7: c4:53:4d:29:bc:48:df:ff:b0:ef:23:97:16:7a:eb: b0:b5:d7:92:d8:ff:c6:90:f5:17:b3:ec:52:b3:a1: b3:f4:c5:0d:0c:df:78:0b:28:4c:f5:f4:b5:95:8d: cc:64:79:82:76:a3:76:29:c1:a0:83:51:4f:b3:7d: 53:2a:6d:1f:48:e3:44:f1:d8:03:80:dd:b5:39:35: 32:1a:e7:c3:92:ce:6b:c7:38:fd:c1:7c:3a:9c:42: 6d:2d:d5:20:73:10:6a:95:9f:cf:f1:fc:48:6d:1c: 33:56:dd:ae:27:51:2f:04:fa:cd:70:25:e8:a7:d6: eb:1f:5e:f5:80:0e:dd:ae:ef:a9:e7:96:7a:75:46: 6b:9d:43:2c:0c:33:4d:3a:1f:07:b0:e8:44:60:52: 82:c5:b9:ca:dc:a3:46:82:57:7f:03:ac:35:86:f8: 12:43:98:cc:af:6a:3a:9d:9c:ab:a2:53:23:35:f2: 32:4f:19:5c:a1:fb:5c:13:ea:fa:b5:60:82:0a:c4: 58:9a:ab:25:7b:e5:3b:9f:36:67:c4:94:a8:91:8f: 0b:1d:c1:73:e3:15:42:e9:0c:c0:c8:50:e2:3b:33: 89:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:40:C5:F1:B1:6F:73:58:6E:2C:E4:6C:62:E2:3F:89:A4:64:BD:D5 X509v3 Authority Key Identifier: keyid:79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/FkDF8bFvc1huLORsYuI_iaRkvdU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.216.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:3e:b7:b7:4f:09:ba:57:89:2e:5c:60:5a:5d:59:cb:d8:46: 83:a6:fc:f0:0b:c0:d4:d4:08:a8:70:c0:d4:a9:5f:ea:c4:19: 95:ba:c4:b4:ad:f6:c3:7f:d5:14:d3:4f:3e:18:01:e8:75:2b: f2:0f:f3:3c:d5:1f:0d:b2:28:14:54:68:b2:c0:86:9c:65:93: d6:1c:16:f4:b0:82:62:6d:8c:5f:12:2a:e8:b3:a2:6b:e4:bd: 2e:4f:c6:8b:d2:72:9a:e3:a5:25:ed:a0:7f:86:5b:f4:66:68: d6:f0:89:7c:78:41:7a:9d:ab:76:b0:c8:51:99:ff:62:db:1d: b9:7a:06:d1:64:24:03:d5:68:a7:89:e7:8f:6b:cb:fc:8c:89: 9e:44:5b:c0:3b:76:11:16:e8:97:dd:bc:e1:d9:2f:3a:58:b0: 3a:85:6c:42:48:bf:1f:be:75:08:4e:09:ca:92:36:53:39:27: 1f:f2:e7:83:59:d5:1c:94:91:6d:cb:94:06:0a:b5:10:58:19: 0c:ec:3d:47:5e:5c:0f:6f:bc:47:41:22:26:4d:14:1b:f6:96: 03:ef:91:4b:a6:8b:1f:86:10:30:53:0f:b6:71:55:48:69:8e: e2:1e:3c:83:1d:e0:49:df:57:2a:91:e9:7c:36:f8:e1:48:97: f9:fd:a6:2b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC88wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzkx MTI4MjU2QkIxMkI3OTkwODE4MEFCQzU5RjJDRjg2Mjk4ODlFRjAeFw0yNDA4MjYw NTExNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2NDBDNUYxQjE2Rjcz NTg2RTJDRTQ2QzYyRTIzRjg5QTQ2NEJERDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbOwz9tiv49/4Wkm7qh6guKZkHFvVFI/zvsMKN18RTTSm8SN// sO8jlxZ667C115LY/8aQ9Rez7FKzobP0xQ0M33gLKEz19LWVjcxkeYJ2o3YpwaCD UU+zfVMqbR9I40Tx2AOA3bU5NTIa58OSzmvHOP3BfDqcQm0t1SBzEGqVn8/x/Eht HDNW3a4nUS8E+s1wJein1usfXvWADt2u76nnlnp1RmudQywMM006Hwew6ERgUoLF ucrco0aCV38DrDWG+BJDmMyvajqdnKuiUyM18jJPGVyh+1wT6vq1YIIKxFiaqyV7 5TufNmfElKiRjwsdwXPjFULpDMDIUOI7M4nlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFkDF8bFvc1huLORsYuI/iaRkvdUwHwYDVR0jBBgwFoAUeREoJWuxK3mQgYCr xZ8s+GKYie8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09NUEFM L2VSRW9KV3V4SzNtUWdZQ3J4WjhzLUdLWWllOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZVJFb0pXdXhLM21RZ1lDcnhaOHMtR0tZaWU4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ09NUEFML0ZrREY4YkZ2YzFodUxPUnNZ dUlfaWFSa3ZkVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn etgwDQYJKoZIhvcNAQELBQADggEBAH4+t7dPCbpXiS5cYFpdWcvYRoOm/PALwNTU CKhwwNSpX+rEGZW6xLSt9sN/1RTTTz4YAeh1K/IP8zzVHw2yKBRUaLLAhpxlk9Yc FvSwgmJtjF8SKuizomvkvS5PxovScprjpSXtoH+GW/RmaNbwiXx4QXqdq3awyFGZ /2LbHbl6BtFkJAPVaKeJ549ry/yMiZ5EW8A7dhEW6JfdvOHZLzpYsDqFbEJIvx++ dQhOCcqSNlM5Jx/y54NZ1RyUkW3LlAYKtRBYGQzsPUdeXA9vvEdBIiZNFBv2lgPv kUumix+GEDBTD7ZxVUhpjuIePIMd4EnfVyqR6Xw2+OFIl/n9pis= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org