$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/xE0cekOqdTyZjP55P6Y_sZu5AoY.roa File: xE0cekOqdTyZjP55P6Y_sZu5AoY.roa (raw, json) Hash identifier: hBTTJzlOzaf8Dql5ddm/mYkp79IGcphchKyK/dP9+GI= Subject key identifier: C4:4D:1C:7A:43:AA:75:3C:99:8C:FE:79:3F:A6:3F:B1:9B:B9:02:86 Certificate issuer: /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Certificate serial: 0C58 Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/xE0cekOqdTyZjP55P6Y_sZu5AoY.roa Signing time: Mon 26 Aug 2024 05:12:06 +0000 ROA not before: Mon 26 Aug 2024 05:12:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.130.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3160 (0xc58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B Validity Not Before: Aug 26 05:12:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C44D1C7A43AA753C998CFE793FA63FB19BB90286 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:cd:70:d6:38:70:0e:d4:26:38:9a:11:2c:db: bb:41:c8:03:30:4c:e5:df:96:d6:bb:06:ff:17:1f: fb:b4:6b:2e:1a:97:dd:bb:c0:41:ff:bc:0e:ac:d2: b0:65:09:e5:0d:f8:ae:36:11:5e:77:1c:d5:04:58: 55:a2:3d:83:f8:a9:9b:b4:bb:d1:2f:1b:87:78:49: 00:dc:9d:e4:a4:54:e4:0e:a3:6f:8d:67:0f:5f:e4: 84:73:f6:47:25:e5:b3:14:7e:db:c2:2b:cc:48:70: d9:f6:96:f8:cd:9b:b9:e5:16:5a:60:f8:14:61:cf: d0:2a:07:b9:a6:41:7f:9d:62:6f:52:02:87:08:87: fd:e8:8d:46:d2:de:fe:12:66:46:03:1e:b0:fd:e2: da:03:b7:52:79:e6:0c:f5:56:e5:6f:3d:32:7f:a5: 59:ff:67:95:37:d2:10:81:43:63:9c:65:92:8f:2e: df:24:bd:f7:0b:77:8e:1d:53:72:be:00:7b:fb:47: b4:2b:bb:3e:5e:cf:4b:fd:e7:3f:55:81:00:2d:0e: d2:78:e2:a5:05:25:ae:f8:53:6c:51:22:d6:27:c3: bc:5b:94:bb:43:ed:8d:fe:d2:28:86:80:14:90:e2: 76:e3:86:ed:7c:71:4e:cc:d5:e1:ce:1d:07:7f:cb: 9b:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:4D:1C:7A:43:AA:75:3C:99:8C:FE:79:3F:A6:3F:B1:9B:B9:02:86 X509v3 Authority Key Identifier: keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/xE0cekOqdTyZjP55P6Y_sZu5AoY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.40.0/22 Signature Algorithm: sha256WithRSAEncryption 95:fb:dc:38:59:bb:70:ea:c5:a3:4c:bf:8d:ef:99:b1:64:fb: ed:8a:c3:db:20:a6:dd:d1:b2:98:ed:18:b2:1d:07:e2:71:ab: 77:9a:78:a7:e7:44:67:0f:cd:28:b9:c3:56:71:a2:2b:a5:6b: cc:f3:d9:41:26:f7:5e:75:d5:cf:83:48:e0:3b:c9:b1:31:5d: cc:71:2e:f2:a9:ab:67:73:8c:59:e8:05:c2:36:64:54:cc:36: 60:37:5a:72:35:bc:b9:c8:2c:4d:a4:a1:5e:6f:ff:73:f5:a8: f4:9b:e8:0d:55:ab:a9:87:1b:f1:02:3e:28:04:bc:5c:5b:e2: 2c:b2:25:57:7a:b8:1e:d8:03:3e:ad:92:5f:4e:9b:5d:46:9e: 4e:b4:4f:70:eb:f7:8d:bd:1f:af:35:ee:02:b5:03:52:56:42: e5:ff:0b:e6:3a:04:bb:67:0d:de:ee:d8:2a:ec:8e:22:98:c9: 45:b4:34:33:7c:00:05:05:fe:e0:cc:05:33:c1:4d:53:18:11: d1:54:8d:8c:a5:87:76:24:07:88:00:42:24:fa:97:e8:5e:51: 1e:0f:f0:59:28:fa:d8:a1:8f:45:8f:d2:d6:93:31:bd:43:9e: cd:98:ad:38:ae:b3:a0:f6:78:d7:c1:88:61:a7:76:70:43:af: 8f:db:16:af -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDFgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkZE RUEzNDcwNzE1MjI5MEMxRDI2MDZGRkJGQzY5QjkyN0Q0MEE1QjAeFw0yNDA4MjYw NTEyMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM0NEQxQzdBNDNBQTc1 M0M5OThDRkU3OTNGQTYzRkIxOUJCOTAyODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuzXDWOHAO1CY4mhEs27tByAMwTOXflta7Bv8XH/u0ay4al927 wEH/vA6s0rBlCeUN+K42EV53HNUEWFWiPYP4qZu0u9EvG4d4SQDcneSkVOQOo2+N Zw9f5IRz9kcl5bMUftvCK8xIcNn2lvjNm7nlFlpg+BRhz9AqB7mmQX+dYm9SAocI h/3ojUbS3v4SZkYDHrD94toDt1J55gz1VuVvPTJ/pVn/Z5U30hCBQ2OcZZKPLt8k vfcLd44dU3K+AHv7R7Qruz5ez0v95z9VgQAtDtJ44qUFJa74U2xRItYnw7xblLtD 7Y3+0iiGgBSQ4nbjhu18cU7M1eHOHQd/y5urAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxE0cekOqdTyZjP55P6Y/sZu5AoYwHwYDVR0jBBgwFoAUb96jRwcVIpDB0mBv +/xpuSfUClswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1lDQ0FU Vi9iOTZqUndjVklwREIwbUJ2LV94cHVTZlVDbHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2I5NmpSd2NWSXBEQjBtQnYtX3hwdVNmVUNscy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NZQ0NBVFYveEUwY2VrT3FkVHlaalA1 NVA2WV9zWnU1QW9ZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmeCKDANBgkqhkiG9w0BAQsFAAOCAQEAlfvcOFm7cOrFo0y/je+ZsWT77YrD2yCm 3dGymO0Ysh0H4nGrd5p4p+dEZw/NKLnDVnGiK6VrzPPZQSb3XnXVz4NI4DvJsTFd zHEu8qmrZ3OMWegFwjZkVMw2YDdacjW8ucgsTaShXm//c/Wo9JvoDVWrqYcb8QI+ KAS8XFviLLIlV3q4HtgDPq2SX06bXUaeTrRPcOv3jb0frzXuArUDUlZC5f8L5joE u2cN3u7YKuyOIpjJRbQ0M3wABQX+4MwFM8FNUxgR0VSNjKWHdiQHiABCJPqX6F5R Hg/wWSj62KGPRY/S1pMxvUOezZitOK6zoPZ418GIYad2cEOvj9sWrw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:26 2024 by rpki-client on console-ams.rpki-client.org