$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CPSYS/YGSsN2cPSFgh7YBbY1dAVTWjcf8.roa File: YGSsN2cPSFgh7YBbY1dAVTWjcf8.roa (raw, json) Hash identifier: iYBxWtQpY1eHEK2nJl5S8N74/h8JROwcvDcNJ0vD85Y= Subject key identifier: 60:64:AC:37:67:0F:48:58:21:ED:80:5B:63:57:40:55:35:A3:71:FF Certificate issuer: /CN=1F877983527470E200D5AE06A01588213555FEE6 Certificate serial: 01E3 Authority key identifier: 1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/YGSsN2cPSFgh7YBbY1dAVTWjcf8.roa Signing time: Mon 26 Aug 2024 05:11:45 +0000 ROA not before: Mon 26 Aug 2024 05:11:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 152179 IP address blocks: 103.14.170.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 483 (0x1e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1F877983527470E200D5AE06A01588213555FEE6 Validity Not Before: Aug 26 05:11:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6064AC37670F485821ED805B6357405535A371FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:14:cf:0e:7d:36:1e:d5:f7:52:2c:5d:36:0e: 5e:04:9f:4a:3b:f2:86:2e:5d:fd:27:2b:eb:4f:87: e7:49:fa:98:00:56:05:7f:f2:3e:fd:bd:0e:dd:9c: 27:df:d2:eb:18:61:46:ad:a1:e2:66:fb:5a:9c:4b: c4:e0:cb:54:93:1f:02:3e:cf:16:75:06:82:5b:2c: e3:ad:ee:ba:2d:00:42:55:93:1b:22:c1:1e:ec:aa: 3d:38:01:f1:de:fc:d4:86:f3:a1:0b:78:bb:aa:cd: d4:38:56:8e:3f:cf:5b:4a:74:a8:01:68:b4:a0:4c: 96:5b:14:55:2b:7a:50:30:2b:46:a0:08:91:5b:e2: ea:94:bf:b0:e9:7c:69:a2:89:b3:5c:c5:76:01:f8: 94:f2:f2:c3:45:09:78:88:9b:d7:08:b3:be:c9:1c: da:03:09:83:9f:bc:86:b6:05:ca:32:8e:58:11:4c: 64:7e:4d:64:68:e6:39:f2:01:70:77:37:3c:48:08: e4:39:3d:be:82:35:03:4a:19:81:e8:8c:56:4c:f9: f8:ba:d4:0b:35:23:cc:b4:6e:e5:69:2b:ce:f2:54: e3:7d:f8:9f:08:c5:fe:2d:b3:a6:3b:2c:9a:3b:3f: 2e:4a:46:1e:2c:84:4f:1a:7a:f3:98:93:e3:65:9a: 30:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:64:AC:37:67:0F:48:58:21:ED:80:5B:63:57:40:55:35:A3:71:FF X509v3 Authority Key Identifier: keyid:1F:87:79:83:52:74:70:E2:00:D5:AE:06:A0:15:88:21:35:55:FE:E6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/H4d5g1J0cOIA1a4GoBWIITVV_uY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/H4d5g1J0cOIA1a4GoBWIITVV_uY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CPSYS/YGSsN2cPSFgh7YBbY1dAVTWjcf8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.14.170.0/23 Signature Algorithm: sha256WithRSAEncryption 93:73:26:fa:b0:b9:24:35:13:35:95:87:89:2d:02:6d:66:41: 93:70:c4:87:47:15:9b:b1:95:18:2c:f2:13:ef:7c:ae:16:f5: 54:ed:28:f6:6d:28:2a:23:99:74:26:d5:ac:be:1b:f7:2e:33: ae:49:fd:a8:30:c7:6e:29:d9:20:48:3b:af:4a:e3:77:79:ed: c0:60:b2:b1:ef:78:03:8b:91:46:b4:d6:0d:a0:65:8b:19:57: e9:04:3a:7d:f7:dd:7b:2e:b8:70:3f:e5:05:3e:77:d7:35:45: 98:5d:d1:ba:82:74:f7:73:cd:c1:46:d8:5f:03:0f:8b:a9:76: ce:8c:fc:96:87:64:e9:f8:e3:25:8b:4e:84:cf:76:72:91:6e: 2f:05:9b:4d:79:d8:57:f2:c2:8c:cd:3b:28:35:5c:3d:d9:92: 6a:c9:1e:23:4e:84:2c:71:62:a3:6f:fc:b8:94:db:54:74:c1: d5:94:9f:15:cb:c8:ca:bb:ca:9e:84:82:0a:77:04:61:cc:4c: 80:e4:d2:e6:23:5d:33:11:2e:ed:cc:45:61:57:f6:f0:83:78: 92:d1:9a:11:ba:31:3f:f6:3d:27:09:ed:68:83:5c:13:9f:08: fe:89:55:d0:7b:ab:85:4e:78:03:a2:5d:6c:18:07:04:e9:e4: db:63:2d:33 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUY4 Nzc5ODM1Mjc0NzBFMjAwRDVBRTA2QTAxNTg4MjEzNTU1RkVFNjAeFw0yNDA4MjYw NTExNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwNjRBQzM3NjcwRjQ4 NTgyMUVEODA1QjYzNTc0MDU1MzVBMzcxRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfFM8OfTYe1fdSLF02Dl4En0o78oYuXf0nK+tPh+dJ+pgAVgV/ 8j79vQ7dnCff0usYYUatoeJm+1qcS8Tgy1STHwI+zxZ1BoJbLOOt7rotAEJVkxsi wR7sqj04AfHe/NSG86ELeLuqzdQ4Vo4/z1tKdKgBaLSgTJZbFFUrelAwK0agCJFb 4uqUv7DpfGmiibNcxXYB+JTy8sNFCXiIm9cIs77JHNoDCYOfvIa2BcoyjlgRTGR+ TWRo5jnyAXB3NzxICOQ5Pb6CNQNKGYHojFZM+fi61As1I8y0buVpK87yVON9+J8I xf4ts6Y7LJo7Py5KRh4shE8aevOYk+NlmjBDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUYGSsN2cPSFgh7YBbY1dAVTWjcf8wHwYDVR0jBBgwFoAUH4d5g1J0cOIA1a4G oBWIITVV/uYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1BTWVMv SDRkNWcxSjBjT0lBMWE0R29CV0lJVFZWX3VZLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9INGQ1ZzFKMGNPSUExYTRHb0JXSUlUVlZfdVkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DUFNZUy9ZR1NzTjJjUFNGZ2g3WUJiWTFk QVZUV2pjZjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZw6q MA0GCSqGSIb3DQEBCwUAA4IBAQCTcyb6sLkkNRM1lYeJLQJtZkGTcMSHRxWbsZUY LPIT73yuFvVU7Sj2bSgqI5l0JtWsvhv3LjOuSf2oMMduKdkgSDuvSuN3ee3AYLKx 73gDi5FGtNYNoGWLGVfpBDp99917LrhwP+UFPnfXNUWYXdG6gnT3c83BRthfAw+L qXbOjPyWh2Tp+OMli06Ez3ZykW4vBZtNedhX8sKMzTsoNVw92ZJqyR4jToQscWKj b/y4lNtUdMHVlJ8Vy8jKu8qehIIKdwRhzEyA5NLmI10zES7tzEVhV/bwg3iS0ZoR ujE/9j0nCe1og1wTnwj+iVXQe6uFTngDol1sGAcE6eTbYy0z -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:03 2024 by rpki-client on console-ams.rpki-client.org