$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/VyEIq0nvGCdz3FitB97wfFYW0tE.roa File: VyEIq0nvGCdz3FitB97wfFYW0tE.roa (raw, json) Hash identifier: S5BqVOJFysTaE3iid3XiugnOb5YgI57djUzGJWlTHkY= Subject key identifier: 57:21:08:AB:49:EF:18:27:73:DC:58:AD:07:DE:F0:7C:56:16:D2:D1 Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6 Certificate serial: 01E0 Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/VyEIq0nvGCdz3FitB97wfFYW0tE.roa Signing time: Mon 26 Aug 2024 05:11:45 +0000 ROA not before: Mon 26 Aug 2024 05:11:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.14.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 480 (0x1e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6 Validity Not Before: Aug 26 05:11:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=572108AB49EF182773DC58AD07DEF07C5616D2D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:e3:6d:c4:26:d1:32:dc:ec:19:61:2d:c3:5f: f8:c6:bd:c1:fe:8c:77:06:db:10:c6:2e:a2:90:2b: 42:9d:73:28:4e:af:b6:96:ef:09:b0:80:ff:3e:7a: 75:0b:1c:6a:1b:36:7f:40:a2:b4:7e:6e:6a:fb:17: 66:01:b3:7f:e7:45:94:cf:70:ce:bf:08:82:40:4e: e1:33:bc:f1:dc:d9:2b:ee:f2:f6:78:d2:73:5c:06: b0:ca:40:48:a9:e1:1e:27:98:f4:0f:dc:0f:90:cf: af:e6:31:a6:06:7c:85:9a:79:60:29:00:54:d9:20: 6e:d4:de:6f:ff:c2:d8:44:ca:81:ea:73:80:21:24: 98:0a:55:82:ac:e4:f3:7e:4d:ae:65:5d:cb:8b:c6: 9d:01:03:9e:f0:a3:8a:4d:74:5c:d8:c5:1d:5f:c5: 54:1e:a0:7d:7e:57:3f:1c:9f:be:f6:db:ab:b2:82: a5:5e:82:32:e1:c5:d7:bb:33:f8:16:ca:42:04:49: 90:17:11:97:41:d8:b2:63:88:d0:8e:c6:fb:2e:62: 27:69:33:b5:44:20:02:48:b8:3a:74:95:cb:d8:02: 0a:4b:ad:b1:6e:ad:e2:6d:b4:f0:8c:50:ae:b7:77: f4:51:90:dc:68:91:f1:e4:11:be:94:7d:48:f9:3b: 99:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:21:08:AB:49:EF:18:27:73:DC:58:AD:07:DE:F0:7C:56:16:D2:D1 X509v3 Authority Key Identifier: keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/VyEIq0nvGCdz3FitB97wfFYW0tE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.14.170.0/23 Signature Algorithm: sha256WithRSAEncryption 56:83:31:b2:52:93:83:1d:22:c8:f4:57:14:af:82:e9:de:4f: f0:0e:6d:e3:36:16:fd:7f:99:6a:a6:c9:fe:99:fb:25:36:ff: af:99:50:1d:d0:c2:ca:ee:d5:65:47:ac:cd:1c:df:0c:60:c0: 3b:66:ce:e7:2a:b1:58:b8:9f:29:fa:e7:aa:b7:e6:b6:07:ec: e4:27:d5:37:3c:10:c7:69:68:1b:0e:24:4e:42:34:ed:cc:28: e7:25:0a:59:5b:87:40:0f:08:6b:ff:1d:48:da:7b:be:19:8d: 85:dd:26:0e:81:cf:22:ef:50:9a:cc:77:d3:d2:77:e0:f9:4b: 4c:02:c6:e7:dc:fd:36:39:61:c9:84:49:0c:53:33:f1:55:a5: 94:07:81:05:98:36:9d:99:45:28:ca:c3:98:c6:33:ad:26:ed: 7e:69:b5:fc:25:a1:5a:eb:5c:f6:b5:4c:47:35:b9:8a:72:e6: 0a:b2:44:d7:4b:d4:46:0f:81:63:d1:18:de:ff:26:a3:32:e1: 8e:73:43:27:bb:42:b9:cf:d1:f0:d5:02:90:2f:a3:66:65:46: 74:0e:d4:02:b7:2e:da:72:4e:e3:e4:2c:5a:c4:45:a2:fa:a0: 34:22:47:5a:34:fe:2c:da:12:a3:f1:53:db:76:bb:fe:b4:18: c4:d7:a0:84 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAeAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4 Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNDA4MjYw NTExNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU3MjEwOEFCNDlFRjE4 Mjc3M0RDNThBRDA3REVGMDdDNTYxNkQyRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ423EJtEy3OwZYS3DX/jGvcH+jHcG2xDGLqKQK0KdcyhOr7aW 7wmwgP8+enULHGobNn9AorR+bmr7F2YBs3/nRZTPcM6/CIJATuEzvPHc2Svu8vZ4 0nNcBrDKQEip4R4nmPQP3A+Qz6/mMaYGfIWaeWApAFTZIG7U3m//wthEyoHqc4Ah JJgKVYKs5PN+Ta5lXcuLxp0BA57wo4pNdFzYxR1fxVQeoH1+Vz8cn77226uygqVe gjLhxde7M/gWykIESZAXEZdB2LJjiNCOxvsuYidpM7VEIAJIuDp0lcvYAgpLrbFu reJttPCMUK63d/RRkNxokfHkEb6UfUj5O5nLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUVyEIq0nvGCdz3FitB97wfFYW0tEwHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy9WeUVJcTBudkdDZHozRml0Qjk3 d2ZGWVcwdEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw6q MA0GCSqGSIb3DQEBCwUAA4IBAQBWgzGyUpODHSLI9FcUr4Lp3k/wDm3jNhb9f5lq psn+mfslNv+vmVAd0MLK7tVlR6zNHN8MYMA7Zs7nKrFYuJ8p+ueqt+a2B+zkJ9U3 PBDHaWgbDiROQjTtzCjnJQpZW4dADwhr/x1I2nu+GY2F3SYOgc8i71CazHfT0nfg +UtMAsbn3P02OWHJhEkMUzPxVaWUB4EFmDadmUUoysOYxjOtJu1+abX8JaFa61z2 tUxHNbmKcuYKskTXS9RGD4Fj0Rje/yajMuGOc0Mnu0K5z9Hw1QKQL6NmZUZ0DtQC ty7ack7j5CxaxEWi+qA0IkdaNP4s2hKj8VPbdrv+tBjE16CE -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:25 2024 by rpki-client on console-ams.rpki-client.org