$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa File: LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa (raw, json) Hash identifier: naxyPgwWGxN0V1lO9EsVxG48z6zNiaDelEoilm08H+w= Subject key identifier: 2D:44:78:13:69:E6:3B:2E:A6:DA:E1:E2:32:A0:6D:9F:18:48:FC:D1 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0C5B Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa Signing time: Mon 26 Aug 2024 05:12:20 +0000 ROA not before: Mon 26 Aug 2024 05:12:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 138145 IP address blocks: 103.135.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 26 05:12:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2D44781369E63B2EA6DAE1E232A06D9F1848FCD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:1a:83:06:17:31:46:4a:38:21:d5:ad:f0:ca: d1:5b:79:4a:89:0c:c0:57:92:6b:75:67:aa:ec:d0: 28:0b:a9:ce:bf:83:6e:cf:e4:cd:6b:9e:4f:f7:01: 70:17:e6:b7:3c:29:79:3b:bb:e5:86:f5:34:67:34: 7e:77:ad:f0:9b:32:17:68:4d:7a:44:77:75:78:48: ba:14:36:73:0e:9a:52:42:d5:4e:2d:7e:f1:7a:97: 33:45:c4:a5:7e:25:76:71:02:06:97:4f:05:cf:26: 52:4d:a9:c4:b7:9a:37:9e:67:c9:02:fe:64:41:ce: ab:06:21:63:e7:3e:ae:9b:cd:14:4f:aa:cf:ae:ab: a6:66:1b:b8:4b:3e:c6:68:1f:51:1c:32:06:dc:a9: 1f:da:06:56:0f:65:5c:f9:97:11:70:d7:f3:28:72: 68:68:e2:aa:02:d3:f8:57:c7:77:af:70:c9:da:55: 62:9d:e5:10:0b:3a:d4:a8:3a:c1:a2:54:40:b9:ab: 20:e9:23:36:25:7d:73:2a:22:f1:bf:bb:6f:11:23: 86:b0:9b:21:d4:cc:24:95:26:8b:1e:d4:2a:d3:37: 70:0e:e5:75:bc:9c:7e:92:06:c0:eb:d0:93:05:14: 1f:5b:c8:37:9d:f4:a2:d9:a0:0a:1d:c1:b3:7d:f2: 2a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:44:78:13:69:E6:3B:2E:A6:DA:E1:E2:32:A0:6D:9F:18:48:FC:D1 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/LUR4E2nmOy6m2uHiMqBtnxhI_NE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.19.0/24 Signature Algorithm: sha256WithRSAEncryption d5:82:e2:40:7a:ca:b7:89:be:ca:52:2f:25:87:a8:2c:c1:97: 1e:8d:75:5b:f8:d2:bc:34:33:68:dc:26:ce:43:12:c3:39:e4: 8a:44:71:ca:df:d0:91:85:68:42:ff:1b:ec:52:29:8d:58:9c: 39:71:95:cb:cb:8c:b8:19:d7:2b:07:2a:ca:a6:eb:b7:e2:6b: 51:6e:93:ed:25:76:c7:fa:d0:23:3b:03:6b:9d:dc:e7:1d:c2: b4:ec:d3:fc:2b:5b:a8:10:10:0c:e6:84:8f:7b:a5:4f:b4:64: ee:14:01:1a:be:23:f7:76:69:1b:9b:50:4b:f7:dc:c0:9e:3c: cb:d3:60:24:21:58:76:35:08:09:a0:af:42:29:87:75:70:8a: ec:b6:9a:6b:3c:62:13:d7:39:96:f5:a4:aa:44:2d:3b:c7:43: d2:75:3b:1c:91:e0:10:53:44:f4:98:c4:20:d9:39:22:2c:4a: 3f:9d:48:e4:1c:be:10:5f:8c:cb:cf:39:e9:84:1c:b4:a8:16: 5d:98:db:5b:b1:f4:ee:1d:76:b7:f5:39:75:c5:f4:4b:39:26: f1:d6:3f:f8:12:ee:11:3e:b9:03:63:0c:4b:33:27:6a:c7:12: 01:28:c7:19:cd:a1:19:32:e8:d8:b0:f0:ab:2b:5c:e6:a0:f7: 7d:47:69:25 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDFswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNDA4MjYw NTEyMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJENDQ3ODEzNjlFNjNC MkVBNkRBRTFFMjMyQTA2RDlGMTg0OEZDRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7GoMGFzFGSjgh1a3wytFbeUqJDMBXkmt1Z6rs0CgLqc6/g27P 5M1rnk/3AXAX5rc8KXk7u+WG9TRnNH53rfCbMhdoTXpEd3V4SLoUNnMOmlJC1U4t fvF6lzNFxKV+JXZxAgaXTwXPJlJNqcS3mjeeZ8kC/mRBzqsGIWPnPq6bzRRPqs+u q6ZmG7hLPsZoH1EcMgbcqR/aBlYPZVz5lxFw1/Mocmho4qoC0/hXx3evcMnaVWKd 5RALOtSoOsGiVEC5qyDpIzYlfXMqIvG/u28RI4awmyHUzCSVJose1CrTN3AO5XW8 nH6SBsDr0JMFFB9byDed9KLZoAodwbN98iq5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQULUR4E2nmOy6m2uHiMqBtnxhI/NEwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vTFVSNEUybm1PeTZtMnVI aU1xQnRueGhJX05FLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeHEzANBgkqhkiG9w0BAQsFAAOCAQEA1YLiQHrKt4m+ylIvJYeoLMGXHo11W/jS vDQzaNwmzkMSwznkikRxyt/QkYVoQv8b7FIpjVicOXGVy8uMuBnXKwcqyqbrt+Jr UW6T7SV2x/rQIzsDa53c5x3CtOzT/CtbqBAQDOaEj3ulT7Rk7hQBGr4j93ZpG5tQ S/fcwJ48y9NgJCFYdjUICaCvQimHdXCK7LaaazxiE9c5lvWkqkQtO8dD0nU7HJHg EFNE9JjEINk5IixKP51I5By+EF+My8856YQctKgWXZjbW7H07h12t/U5dcX0Szkm 8dY/+BLuET65A2MMSzMnascSASjHGc2hGTLo2LDwqytc5qD3fUdpJQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org