$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/a9lzExMa0LuOFg7O6OK6RVP0XUE.roa File: a9lzExMa0LuOFg7O6OK6RVP0XUE.roa (raw, json) Hash identifier: yla1wZkndD6CC7jHp2JihNV6OGwrJH+WPa3WI0jvuLc= Subject key identifier: 6B:D9:73:13:13:1A:D0:BB:8E:16:0E:CE:E8:E2:BA:45:53:F4:5D:41 Certificate issuer: /CN=93D96B0699BEBA157D50548029BC117929AD20E7 Certificate serial: 015A Authority key identifier: 93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/a9lzExMa0LuOFg7O6OK6RVP0XUE.roa Signing time: Mon 26 Aug 2024 05:12:33 +0000 ROA not before: Mon 26 Aug 2024 05:12:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 103.118.148.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 346 (0x15a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=93D96B0699BEBA157D50548029BC117929AD20E7 Validity Not Before: Aug 26 05:12:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6BD97313131AD0BB8E160ECEE8E2BA4553F45D41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:14:b2:1e:d2:82:2f:f4:b8:8b:f6:56:82:7d: 46:7c:c9:2a:7c:a3:2b:b1:ad:d6:56:c7:8d:31:80: 67:79:b2:06:e1:16:08:da:ab:10:7d:61:fe:d7:94: 22:9d:90:14:2c:2f:52:ab:d7:07:45:58:ea:1c:26: 20:0f:1e:c3:b6:80:e0:ce:5a:cb:39:d2:92:db:70: 8a:01:ed:08:e1:9f:37:89:2f:c7:04:09:2d:53:89: e0:7c:6c:dc:b3:ff:f5:d4:66:a9:9a:2e:1b:e3:e9: 8a:a7:65:b3:03:8f:dd:04:27:ef:e9:39:fe:84:96: 0d:09:72:9a:69:79:6d:d4:fe:be:90:ea:5e:86:da: ba:f9:b2:8a:e1:6e:bc:ca:bd:f3:f7:e2:76:9c:fc: 8a:76:63:16:bb:f2:4a:80:58:dc:b9:95:b5:3b:79: 4f:d5:fa:40:0e:eb:7e:e5:78:a2:10:08:ee:23:79: db:33:a7:4e:d4:1d:9c:20:14:c7:4d:f8:55:ac:7e: 57:46:51:32:e2:f8:83:c9:8d:72:09:21:74:f6:91: e0:4d:1c:ee:a7:24:0d:bf:14:c6:60:b0:89:b3:bb: 3e:c4:73:32:18:01:36:1f:7b:36:c9:04:49:b0:94: dd:40:b7:dc:91:72:1b:23:95:bc:dc:a1:84:87:d0: b3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:D9:73:13:13:1A:D0:BB:8E:16:0E:CE:E8:E2:BA:45:53:F4:5D:41 X509v3 Authority Key Identifier: keyid:93:D9:6B:06:99:BE:BA:15:7D:50:54:80:29:BC:11:79:29:AD:20:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/k9lrBpm-uhV9UFSAKbwReSmtIOc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k9lrBpm-uhV9UFSAKbwReSmtIOc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOWNWIN/a9lzExMa0LuOFg7O6OK6RVP0XUE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.118.148.0/23 Signature Algorithm: sha256WithRSAEncryption 38:57:3e:80:06:0c:c0:98:d7:4f:6f:cd:42:24:fd:2f:c6:7d: 3d:d2:4f:d7:9b:a6:26:cd:f8:4f:e4:43:bb:2d:5b:5b:4a:00: bb:d5:a3:f0:83:da:d8:83:48:66:87:bf:b2:94:6f:de:9c:03: 09:a3:17:dd:c9:d0:c5:8e:48:c1:72:4c:f8:a5:fe:af:ab:c9: 7c:8b:bf:d3:61:9b:de:42:b0:cf:9b:9a:11:e5:14:da:6c:8b: c0:b9:76:78:ea:5f:71:2e:db:b0:3e:20:39:25:10:21:a3:73: 99:d3:02:1e:84:31:c9:e8:e1:06:18:a7:dd:13:58:75:4e:1d: 1d:4e:e9:7d:57:7a:9c:56:bf:3f:54:50:1f:17:81:90:57:fd: d4:bf:6b:45:e0:08:61:2e:3c:63:f8:d8:34:c4:da:dc:8a:ba: a6:5e:a1:a9:76:a4:94:30:c3:0c:38:3a:da:7f:fa:c5:fe:69: 43:0d:fc:19:6d:e5:78:69:73:22:a5:b4:96:50:4a:5d:47:bb: 9d:d2:9e:82:ab:8a:ef:a3:97:a8:1e:a0:9e:f4:17:e1:c6:c9: c5:8a:bc:d7:86:24:8f:1b:a0:c2:67:14:38:cd:f8:df:c1:b0: da:e8:d5:b5:07:f0:f4:94:8f:bd:53:b6:ce:4c:a1:fa:bd:cb: e4:90:a0:e1 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTNE OTZCMDY5OUJFQkExNTdENTA1NDgwMjlCQzExNzkyOUFEMjBFNzAeFw0yNDA4MjYw NTEyMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCRDk3MzEzMTMxQUQw QkI4RTE2MEVDRUU4RTJCQTQ1NTNGNDVENDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2FLIe0oIv9LiL9laCfUZ8ySp8oyuxrdZWx40xgGd5sgbhFgja qxB9Yf7XlCKdkBQsL1Kr1wdFWOocJiAPHsO2gODOWss50pLbcIoB7QjhnzeJL8cE CS1TieB8bNyz//XUZqmaLhvj6YqnZbMDj90EJ+/pOf6Elg0JcpppeW3U/r6Q6l6G 2rr5sorhbrzKvfP34nac/Ip2Yxa78kqAWNy5lbU7eU/V+kAO637leKIQCO4jedsz p07UHZwgFMdN+FWsfldGUTLi+IPJjXIJIXT2keBNHO6nJA2/FMZgsImzuz7EczIY ATYfezbJBEmwlN1At9yRchsjlbzcoYSH0LO7AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUa9lzExMa0LuOFg7O6OK6RVP0XUEwHwYDVR0jBBgwFoAUk9lrBpm+uhV9UFSA KbwReSmtIOcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9XTldJ Ti9rOWxyQnBtLXVoVjlVRlNBS2J3UmVTbXRJT2MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2s5bHJCcG0tdWhWOVVGU0FLYndSZVNtdElPYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0RPV05XSU4vYTlsekV4TWEwTHVPRmc3 TzZPSzZSVlAwWFVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWd2lDANBgkqhkiG9w0BAQsFAAOCAQEAOFc+gAYMwJjXT2/NQiT9L8Z9PdJP15um Js34T+RDuy1bW0oAu9Wj8IPa2INIZoe/spRv3pwDCaMX3cnQxY5IwXJM+KX+r6vJ fIu/02Gb3kKwz5uaEeUU2myLwLl2eOpfcS7bsD4gOSUQIaNzmdMCHoQxyejhBhin 3RNYdU4dHU7pfVd6nFa/P1RQHxeBkFf91L9rReAIYS48Y/jYNMTa3Iq6pl6hqXak lDDDDDg62n/6xf5pQw38GW3leGlzIqW0llBKXUe7ndKegquK76OXqB6gnvQX4cbJ xYq814YkjxugwmcUOM3438Gw2ujVtQfw9JSPvVO2zkyh+r3L5JCg4Q== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:03 2024 by rpki-client on console-ams.rpki-client.org