$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/RAAdJyE7DybfzMArzvVahsG1UjY.roa File: RAAdJyE7DybfzMArzvVahsG1UjY.roa (raw, json) Hash identifier: 6+SlXNiyMGysqjBB2Y94aUdl5yklv5N7FhNwQEPwHn4= Subject key identifier: 44:00:1D:27:21:3B:0F:26:DF:CC:C0:2B:CE:F5:5A:86:C1:B5:52:36 Certificate issuer: /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Certificate serial: 0C57 Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/RAAdJyE7DybfzMArzvVahsG1UjY.roa Signing time: Mon 26 Aug 2024 05:12:20 +0000 ROA not before: Mon 26 Aug 2024 05:12:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131662 IP address blocks: 103.135.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3159 (0xc57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477 Validity Not Before: Aug 26 05:12:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=44001D27213B0F26DFCCC02BCEF55A86C1B55236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:18:e9:14:25:98:c4:6f:20:d8:2f:87:48:f7: ab:9a:ad:56:e9:91:3c:77:60:5f:6d:ee:5d:76:25: 7b:da:e2:11:23:4a:77:25:c7:13:0a:cb:a1:05:e7: 47:83:40:b4:26:79:81:9e:a1:91:93:33:ae:7d:b7: a1:7c:af:be:10:db:d0:61:17:bf:32:87:ef:71:3d: 09:df:47:d8:f3:1a:fd:3e:90:5c:d0:03:e3:32:5e: 96:9e:3d:ed:09:c9:8a:e0:84:3e:b4:1e:1c:0e:96: c3:05:b3:65:ec:a7:8d:9b:d8:c1:8b:10:30:00:c6: 9b:67:7a:10:06:73:b2:da:2c:b4:ab:85:19:62:a8: fb:1e:47:24:68:55:92:b6:5b:c0:35:d3:5a:1b:dd: 02:39:97:b3:5d:da:60:fc:04:aa:39:19:92:a6:d3: 59:82:6c:f3:4c:5d:3c:ee:d3:13:9d:b9:5f:df:29: 24:76:c6:60:70:f9:9a:bf:51:43:3d:1c:04:bc:88: 4f:b1:b0:29:60:99:34:70:7a:97:23:7e:ef:90:05: 12:c4:86:92:46:0b:6a:5b:53:13:be:01:10:2f:9e: a3:02:ae:73:e0:53:43:da:23:8d:bd:3e:ca:af:31: 8e:1f:b1:8b:e5:43:fb:ad:51:7f:8a:9a:43:b6:dd: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:00:1D:27:21:3B:0F:26:DF:CC:C0:2B:CE:F5:5A:86:C1:B5:52:36 X509v3 Authority Key Identifier: keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/RAAdJyE7DybfzMArzvVahsG1UjY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.135.17.0/24 Signature Algorithm: sha256WithRSAEncryption a7:34:e0:af:57:0f:22:c6:b8:af:6b:73:6c:b6:0d:f3:33:53: 85:9a:4b:40:41:f9:9c:0d:45:81:c2:f1:55:cc:6e:30:62:e7: 32:66:62:9f:43:9c:c5:23:50:5b:94:a6:c5:36:4d:c6:8d:77: e6:cb:78:62:49:f6:f3:59:96:d1:21:a2:80:57:8e:4a:ed:7b: b9:d7:84:e7:8a:af:66:60:82:bd:47:a8:6a:68:c3:22:a7:de: b8:cd:63:ba:03:d5:a5:87:0b:78:e0:1f:e0:19:bb:13:f9:ae: 9a:07:64:a0:53:ed:21:de:06:10:e2:bb:6a:61:8a:28:fe:b1: 72:63:ca:eb:36:44:98:41:b9:41:22:f0:34:a9:62:05:53:2b: 31:29:36:54:81:f0:b8:f5:83:bf:ea:74:25:c4:92:c3:78:30: 66:c7:bf:e2:56:9b:25:60:f2:85:6a:71:ad:70:ba:31:2b:b6: 43:cb:3e:cc:c8:46:71:50:97:3d:bb:8b:6d:20:d9:4a:b0:dd: 40:a6:dd:e2:9e:87:b0:99:17:56:ee:89:83:60:d9:42:cf:1b: e7:82:01:f4:be:ca:22:a3:95:53:42:be:f8:3f:40:01:6a:67: ce:17:55:b0:6d:97:b9:76:9e:c9:78:d3:06:d2:cb:c6:60:13: b2:c1:c0:2a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDFcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTZF RDE0REIxMjEwMUExMjVEMzExMkRDNENDNTYwMkQzMEQ4QjQ3NzAeFw0yNDA4MjYw NTEyMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0MDAxRDI3MjEzQjBG MjZERkNDQzAyQkNFRjU1QTg2QzFCNTUyMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4GOkUJZjEbyDYL4dI96uarVbpkTx3YF9t7l12JXva4hEjSncl xxMKy6EF50eDQLQmeYGeoZGTM659t6F8r74Q29BhF78yh+9xPQnfR9jzGv0+kFzQ A+MyXpaePe0JyYrghD60HhwOlsMFs2Xsp42b2MGLEDAAxptnehAGc7LaLLSrhRli qPseRyRoVZK2W8A101ob3QI5l7Nd2mD8BKo5GZKm01mCbPNMXTzu0xOduV/fKSR2 xmBw+Zq/UUM9HAS8iE+xsClgmTRwepcjfu+QBRLEhpJGC2pbUxO+ARAvnqMCrnPg U0PaI429PsqvMY4fsYvlQ/utUX+KmkO23afDAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQURAAdJyE7DybfzMArzvVahsG1UjYwHwYDVR0jBBgwFoAUpu0U2xIQGhJdMRLc TMVgLTDYtHcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREVOUEFJ Ty9wdTBVMnhJUUdoSmRNUkxjVE1WZ0xURFl0SGMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3B1MFUyeElRR2hKZE1STGNUTVZnTFREWXRIYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RFTlBBSU8vUkFBZEp5RTdEeWJmek1B cnp2VmFoc0cxVWpZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeHETANBgkqhkiG9w0BAQsFAAOCAQEApzTgr1cPIsa4r2tzbLYN8zNThZpLQEH5 nA1FgcLxVcxuMGLnMmZin0OcxSNQW5SmxTZNxo135st4Ykn281mW0SGigFeOSu17 udeE54qvZmCCvUeoamjDIqfeuM1jugPVpYcLeOAf4Bm7E/mumgdkoFPtId4GEOK7 amGKKP6xcmPK6zZEmEG5QSLwNKliBVMrMSk2VIHwuPWDv+p0JcSSw3gwZse/4lab JWDyhWpxrXC6MSu2Q8s+zMhGcVCXPbuLbSDZSrDdQKbd4p6HsJkXVu6Jg2DZQs8b 54IB9L7KIqOVU0K++D9AAWpnzhdVsG2XuXaeyXjTBtLLxmATssHAKg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:03 2024 by rpki-client on console-ams.rpki-client.org