$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/d9FLSsU9sP_5TTwQObgKTiyLUGY.roa File: d9FLSsU9sP_5TTwQObgKTiyLUGY.roa (raw, json) Hash identifier: 0MAtiSdPnv2YpfZUpNFJrs3nxH9zasFiILsvjjnG5aU= Subject key identifier: 77:D1:4B:4A:C5:3D:B0:FF:F9:4D:3C:10:39:B8:0A:4E:2C:8B:50:66 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0C53 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/d9FLSsU9sP_5TTwQObgKTiyLUGY.roa Signing time: Mon 26 Aug 2024 05:12:04 +0000 ROA not before: Mon 26 Aug 2024 05:12:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.130.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3155 (0xc53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 26 05:12:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=77D14B4AC53DB0FFF94D3C1039B80A4E2C8B5066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:7f:eb:7c:58:98:e8:34:ec:f9:1f:a2:a9:00: 96:12:9e:87:5b:87:bb:75:08:66:38:8a:d2:8a:4b: e2:ad:97:c0:69:52:fd:ca:c8:c5:89:ba:77:e7:ed: 50:71:cd:ea:0d:a3:9b:3c:af:b7:0a:7c:35:c3:2e: cd:74:b7:45:e4:b3:af:0f:8c:57:df:27:71:d3:1a: cc:5f:94:21:bb:72:f4:ec:48:7c:95:f0:08:d0:d1: 47:ef:6b:de:7c:22:90:70:06:c3:94:1b:4a:f2:a1: e2:1f:ad:de:80:8a:d6:51:ac:27:82:e3:46:36:04: 3a:11:e4:fd:6a:03:33:83:01:b7:b7:2e:d1:19:08: bd:5c:4f:5e:5e:15:dd:6a:cd:52:6e:b9:9e:06:18: ae:2e:4d:3a:1d:9e:dc:95:f6:63:9b:0b:95:57:57: cb:f6:63:7e:5a:3d:33:bc:10:d0:ac:ea:84:6a:af: 57:c3:e4:ab:18:ae:90:83:fc:c2:22:04:68:b3:04: 6a:f5:1c:7c:0d:12:d7:6d:b2:be:f1:d2:fa:95:25: cf:bb:7d:9f:99:d5:25:68:23:a9:b7:68:23:99:35: 58:fc:80:cf:ba:b9:96:da:37:f5:7a:0e:19:61:aa: 33:d0:23:69:64:10:a5:fd:81:ab:8b:85:ab:c9:a7: d6:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D1:4B:4A:C5:3D:B0:FF:F9:4D:3C:10:39:B8:0A:4E:2C:8B:50:66 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/d9FLSsU9sP_5TTwQObgKTiyLUGY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.20.0/22 Signature Algorithm: sha256WithRSAEncryption 93:c8:2e:2f:0f:62:76:9e:e8:3a:2a:63:a5:0b:a8:f0:72:c0: 93:c6:66:40:a5:92:13:ed:e4:7f:bb:56:f1:42:e5:98:ec:d0: 08:87:e1:05:aa:31:7d:cc:1d:7c:33:59:8f:03:15:29:b5:c2: 02:e6:b6:26:82:8a:04:95:ab:20:a1:01:5f:a2:00:81:74:e3: c2:4d:09:86:72:50:51:5d:7d:45:3d:71:d8:c6:ab:6d:2b:86: 1e:7e:ac:35:cf:fe:96:f5:d4:0f:61:94:10:57:49:52:9c:8a: 5d:dd:72:87:68:76:b6:82:86:fc:ce:e0:d9:4a:9e:10:85:5e: b4:7b:4b:e4:0a:c2:36:a1:46:88:c8:ec:c7:b0:31:28:85:6d: 41:b9:70:7f:de:2c:b0:7d:ed:03:99:03:71:6f:84:28:99:fb: 3a:ad:cd:d5:24:5d:f4:d8:7c:26:c6:41:00:4e:a3:46:43:ec: da:20:2b:94:00:30:4d:8e:57:40:c6:36:15:86:d4:9f:25:f7: 80:2f:34:a4:6a:cb:ae:62:8d:15:dd:99:d7:ed:99:2c:1e:c0: a9:92:b7:69:33:79:7c:f2:9f:8d:ab:28:f9:fa:68:da:12:06: 8a:ea:7a:47:e8:37:4b:87:e3:de:65:d2:b6:b2:ba:77:b6:4b: dc:a0:d1:08 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNDA4MjYw NTEyMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc3RDE0QjRBQzUzREIw RkZGOTREM0MxMDM5QjgwQTRFMkM4QjUwNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnf+t8WJjoNOz5H6KpAJYSnodbh7t1CGY4itKKS+Ktl8BpUv3K yMWJunfn7VBxzeoNo5s8r7cKfDXDLs10t0Xks68PjFffJ3HTGsxflCG7cvTsSHyV 8AjQ0Ufva958IpBwBsOUG0ryoeIfrd6AitZRrCeC40Y2BDoR5P1qAzODAbe3LtEZ CL1cT15eFd1qzVJuuZ4GGK4uTTodntyV9mObC5VXV8v2Y35aPTO8ENCs6oRqr1fD 5KsYrpCD/MIiBGizBGr1HHwNEtdtsr7x0vqVJc+7fZ+Z1SVoI6m3aCOZNVj8gM+6 uZbaN/V6DhlhqjPQI2lkEKX9gauLhavJp9axAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUd9FLSsU9sP/5TTwQObgKTiyLUGYwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYvZDlGTFNzVTlzUF81VFR3 UU9iZ0tUaXlMVUdZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCFDANBgkqhkiG9w0BAQsFAAOCAQEAk8guLw9idp7oOipjpQuo8HLAk8ZmQKWS E+3kf7tW8ULlmOzQCIfhBaoxfcwdfDNZjwMVKbXCAua2JoKKBJWrIKEBX6IAgXTj wk0JhnJQUV19RT1x2MarbSuGHn6sNc/+lvXUD2GUEFdJUpyKXd1yh2h2toKG/M7g 2UqeEIVetHtL5ArCNqFGiMjsx7AxKIVtQblwf94ssH3tA5kDcW+EKJn7Oq3N1SRd 9Nh8JsZBAE6jRkPs2iArlAAwTY5XQMY2FYbUnyX3gC80pGrLrmKNFd2Z1+2ZLB7A qZK3aTN5fPKfjaso+fpo2hIGiup6R+g3S4fj3mXStrK6d7ZL3KDRCA== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:24 2024 by rpki-client on console-fra.rpki-client.org