$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DNSNET/YQpM_uuVtExRr41-SG1VLuZzBHw.roa File: YQpM_uuVtExRr41-SG1VLuZzBHw.roa (raw, json) Hash identifier: ciYZDw0iAEPK2hL3Ii4+cb3L603m7GTGAo2fZM+NUJ4= Subject key identifier: 61:0A:4C:FE:EB:95:B4:4C:51:AF:8D:7E:48:6D:55:2E:E6:73:04:7C Certificate issuer: /CN=277895E64BE41B7182664E1345CD57E5D36A1AF2 Certificate serial: 014F Authority key identifier: 27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/YQpM_uuVtExRr41-SG1VLuZzBHw.roa Signing time: Mon 26 Aug 2024 05:12:24 +0000 ROA not before: Mon 26 Aug 2024 05:12:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131659 IP address blocks: 103.160.226.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=277895E64BE41B7182664E1345CD57E5D36A1AF2 Validity Not Before: Aug 26 05:12:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=610A4CFEEB95B44C51AF8D7E486D552EE673047C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4b:a4:6b:4d:d6:66:84:cf:c3:a7:6f:33:53: 8c:85:7d:c8:7d:63:8d:5b:a6:1f:45:76:8a:f9:04: e9:43:2e:8d:62:13:40:63:e2:29:6f:b7:06:fa:ae: e4:5b:f1:8d:aa:38:23:87:46:d4:f1:d6:81:fb:70: df:3e:7f:fb:7f:4f:a6:a1:b8:53:f4:b8:cf:0d:db: dd:9e:1e:1d:49:26:3b:e8:a3:50:54:af:49:93:11: 75:fd:6d:d2:ed:b8:81:88:43:b1:69:4d:58:0f:4c: 83:65:96:85:2d:ae:86:27:1f:b6:7e:b7:3c:8f:e9: 13:40:86:ad:bb:3a:f8:37:47:91:ed:a9:51:8f:8a: d3:9c:33:54:ea:5d:20:b2:5e:bf:55:66:2e:eb:22: dd:9d:40:34:72:09:92:ce:8d:0c:94:39:b3:0e:68: df:f8:82:8f:2d:d4:34:c4:c1:5a:e8:5c:71:e1:13: 62:63:48:79:a2:b4:9b:c3:65:0f:82:14:75:03:09: 35:6c:2e:f2:09:67:da:e8:f3:27:11:75:3c:57:86: b2:83:7b:c0:68:26:3d:56:de:7b:c9:db:cd:26:3c: e0:31:63:fe:f3:f2:22:d8:20:4e:9c:7d:b5:9e:0b: 02:d6:92:6f:2a:87:37:9b:21:49:50:9b:c6:c6:1f: 9f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:0A:4C:FE:EB:95:B4:4C:51:AF:8D:7E:48:6D:55:2E:E6:73:04:7C X509v3 Authority Key Identifier: keyid:27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/YQpM_uuVtExRr41-SG1VLuZzBHw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.160.226.0/23 Signature Algorithm: sha256WithRSAEncryption a9:dd:e2:95:87:0f:c3:cf:1c:7b:9f:8c:1b:c8:ea:32:0b:5c: 01:16:83:9e:1c:42:49:6a:e1:f0:44:3b:62:a0:e9:25:bd:e4: 5e:5d:03:ad:a8:ec:7f:38:3d:66:bc:6a:95:1b:99:9b:6f:e8: 86:38:32:6c:c9:64:95:9f:b8:11:8c:b6:47:26:a2:29:75:1a: cd:bb:4c:cd:dc:dc:07:be:7b:0d:a0:17:38:c4:6e:da:e9:cf: 85:8a:96:d0:33:0c:4a:af:73:0d:9f:23:e2:0a:fe:9b:b6:32: 6f:78:71:b1:00:61:b1:e7:36:2e:11:f3:e4:36:7a:0f:87:17: 1b:a2:50:8f:83:37:56:a4:d2:c8:70:dd:88:0d:be:2b:a5:e3: 2b:2c:c3:ec:da:aa:de:3f:0e:84:fa:99:b1:8f:19:7a:ce:05: 57:3a:01:ba:7e:6d:3d:51:b7:d4:92:6f:0e:fc:6a:ff:82:9a: da:66:77:f2:1f:f5:12:f6:63:32:85:09:d2:73:8b:f2:e8:fe: 9c:58:4c:f5:56:be:b0:e5:f5:e4:bd:cf:f2:23:ef:57:1d:63: a1:99:87:14:d3:5d:bc:53:81:6f:8b:d4:d9:8d:49:ee:d2:d3: 4c:e6:f4:fb:33:f3:f4:ef:aa:c6:8e:d9:81:ca:e7:f3:c1:bd: 04:82:55:d1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjc3 ODk1RTY0QkU0MUI3MTgyNjY0RTEzNDVDRDU3RTVEMzZBMUFGMjAeFw0yNDA4MjYw NTEyMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYxMEE0Q0ZFRUI5NUI0 NEM1MUFGOEQ3RTQ4NkQ1NTJFRTY3MzA0N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGS6RrTdZmhM/Dp28zU4yFfch9Y41bph9Fdor5BOlDLo1iE0Bj 4ilvtwb6ruRb8Y2qOCOHRtTx1oH7cN8+f/t/T6ahuFP0uM8N292eHh1JJjvoo1BU r0mTEXX9bdLtuIGIQ7FpTVgPTINlloUtroYnH7Z+tzyP6RNAhq27Ovg3R5HtqVGP itOcM1TqXSCyXr9VZi7rIt2dQDRyCZLOjQyUObMOaN/4go8t1DTEwVroXHHhE2Jj SHmitJvDZQ+CFHUDCTVsLvIJZ9ro8ycRdTxXhrKDe8BoJj1W3nvJ280mPOAxY/7z 8iLYIE6cfbWeCwLWkm8qhzebIUlQm8bGH59PAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYQpM/uuVtExRr41+SG1VLuZzBHwwHwYDVR0jBBgwFoAUJ3iV5kvkG3GCZk4T Rc1X5dNqGvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE5TTkVU L0ozaVY1a3ZrRzNHQ1prNFRSYzFYNWROcUd2SS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSjNpVjVrdmtHM0dDWms0VFJjMVg1ZE5xR3ZJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE5TTkVUL1lRcE1fdXVWdEV4UnI0MS1T RzFWTHVaekJIdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn oOIwDQYJKoZIhvcNAQELBQADggEBAKnd4pWHD8PPHHufjBvI6jILXAEWg54cQklq 4fBEO2Kg6SW95F5dA62o7H84PWa8apUbmZtv6IY4MmzJZJWfuBGMtkcmoil1Gs27 TM3c3Ae+ew2gFzjEbtrpz4WKltAzDEqvcw2fI+IK/pu2Mm94cbEAYbHnNi4R8+Q2 eg+HFxuiUI+DN1ak0shw3YgNviul4yssw+zaqt4/DoT6mbGPGXrOBVc6Abp+bT1R t9SSbw78av+Cmtpmd/If9RL2YzKFCdJzi/Lo/pxYTPVWvrDl9eS9z/Ij71cdY6GZ hxTTXbxTgW+L1NmNSe7S00zm9Psz8/TvqsaO2YHK5/PBvQSCVdE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org