$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DQWL/s4D0c3s3194_Q3xVOTfS8obSlvo.roa File: s4D0c3s3194_Q3xVOTfS8obSlvo.roa (raw, json) Hash identifier: Z4e2c6VC/Y/Xdxptub4WrXRACaq7HmocVuuNqINtyMw= Subject key identifier: B3:80:F4:73:7B:37:D7:DE:3F:43:7C:55:39:37:D2:F2:86:D2:96:FA Certificate issuer: /CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D Certificate serial: 0813 Authority key identifier: 7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/s4D0c3s3194_Q3xVOTfS8obSlvo.roa Signing time: Mon 26 Aug 2024 05:12:35 +0000 ROA not before: Mon 26 Aug 2024 05:12:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131678 IP address blocks: 103.149.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2067 (0x813) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7CBA374F4F7A0D1E6CB59F8A7B564066C67DD19D Validity Not Before: Aug 26 05:12:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B380F4737B37D7DE3F437C553937D2F286D296FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:da:7f:55:3a:47:33:59:a2:37:25:dd:01:60: be:6a:78:03:fb:88:0c:d3:2e:d3:64:a2:dc:90:23: 74:fa:f1:9f:08:a9:90:ac:a7:3d:dc:61:2a:18:a6: c6:37:4a:25:dd:0b:cf:7e:11:b3:a2:fc:ee:e3:4c: d4:cb:1d:c3:9e:19:15:a3:7e:0c:3a:9d:b5:b6:85: f5:ec:18:86:7b:16:bf:7d:93:e5:f7:39:3d:4c:98: 72:6b:db:ea:14:53:b2:ae:d7:a4:ce:0b:57:cb:67: 89:dc:f5:4a:6c:89:1e:b2:4b:61:72:31:cb:bb:0f: 35:70:dd:e7:e0:06:a9:b3:d2:dd:04:08:20:5a:e0: a2:f4:1a:26:31:b9:8f:e6:a4:72:63:fa:51:18:fd: bc:8a:c2:13:bf:5c:e7:4f:bd:b3:a9:b3:28:7e:a5: 94:b4:dd:22:15:d8:63:52:09:a0:54:51:d0:1d:d5: 87:c8:19:8e:bb:7b:63:22:e3:03:b0:86:10:4b:80: c6:ff:92:57:26:78:5c:73:23:fe:02:2a:70:ee:1e: ed:77:a2:02:e5:51:91:41:df:2b:d1:31:96:2e:57: d4:51:40:e0:14:62:06:a4:f6:bd:cf:da:61:ab:75: ee:fd:6a:84:3c:99:10:6c:e3:df:b3:72:21:f7:e4: 5c:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:80:F4:73:7B:37:D7:DE:3F:43:7C:55:39:37:D2:F2:86:D2:96:FA X509v3 Authority Key Identifier: keyid:7C:BA:37:4F:4F:7A:0D:1E:6C:B5:9F:8A:7B:56:40:66:C6:7D:D1:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fLo3T096DR5stZ-Ke1ZAZsZ90Z0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DQWL/s4D0c3s3194_Q3xVOTfS8obSlvo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.149.67.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:fb:34:80:a2:51:f6:fc:19:68:d9:0b:e1:39:7c:8b:2e:91: 02:7c:a1:0a:1f:67:08:38:a6:07:20:fc:a4:39:ed:87:94:12: a5:9a:7a:81:a3:09:13:75:90:21:e7:57:74:26:0d:f4:d2:73: 82:7a:a6:64:23:4f:d4:94:33:0a:29:87:ca:83:08:e3:a6:a0: b0:5b:f1:fe:96:a8:37:30:55:d6:fc:ac:02:da:be:04:1f:4b: 06:85:a3:42:ed:62:7a:c1:b5:50:82:11:4f:0f:7e:8f:59:31: b0:fe:76:06:43:35:b7:a8:76:a7:dc:85:a4:30:42:03:d6:89: 9c:2c:9e:69:24:d4:7f:c3:41:c1:60:67:3e:cc:bb:d0:a3:61: 05:1f:8b:46:58:77:d5:55:df:5d:6e:ff:5c:16:7e:f1:e6:80: df:d5:34:33:41:25:13:b6:7a:35:59:01:07:f1:d9:67:92:ee: 82:d3:8f:23:9c:e7:98:4a:59:09:db:45:af:43:2f:62:47:e3: d5:e9:39:7c:25:9f:be:dc:40:f3:82:6e:b3:78:6e:12:b4:b1: 17:10:48:2f:c7:03:76:d2:05:b4:20:cc:55:b0:7f:5c:52:fc: 07:d5:ed:e1:16:5b:82:19:4a:f0:f4:b5:c1:5c:56:f7:25:fe: 76:0c:54:c4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICCBMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0NC QTM3NEY0RjdBMEQxRTZDQjU5RjhBN0I1NjQwNjZDNjdERDE5RDAeFw0yNDA4MjYw NTEyMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzODBGNDczN0IzN0Q3 REUzRjQzN0M1NTM5MzdEMkYyODZEMjk2RkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC82n9VOkczWaI3Jd0BYL5qeAP7iAzTLtNkotyQI3T68Z8IqZCs pz3cYSoYpsY3SiXdC89+EbOi/O7jTNTLHcOeGRWjfgw6nbW2hfXsGIZ7Fr99k+X3 OT1MmHJr2+oUU7Ku16TOC1fLZ4nc9UpsiR6yS2FyMcu7DzVw3efgBqmz0t0ECCBa 4KL0GiYxuY/mpHJj+lEY/byKwhO/XOdPvbOpsyh+pZS03SIV2GNSCaBUUdAd1YfI GY67e2Mi4wOwhhBLgMb/klcmeFxzI/4CKnDuHu13ogLlUZFB3yvRMZYuV9RRQOAU Ygak9r3P2mGrde79aoQ8mRBs49+zciH35Fy5AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUs4D0c3s3194/Q3xVOTfS8obSlvowHwYDVR0jBBgwFoAUfLo3T096DR5stZ+K e1ZAZsZ90Z0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFFXTC9m TG8zVDA5NkRSNXN0Wi1LZTFaQVpzWjkwWjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2ZMbzNUMDk2RFI1c3RaLUtlMVpBWnNaOTBaMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0RRV0wvczREMGMzczMxOTRfUTN4Vk9UZlM4 b2JTbHZvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeVQzAN BgkqhkiG9w0BAQsFAAOCAQEAP/s0gKJR9vwZaNkL4Tl8iy6RAnyhCh9nCDimByD8 pDnth5QSpZp6gaMJE3WQIedXdCYN9NJzgnqmZCNP1JQzCimHyoMI46agsFvx/pao NzBV1vysAtq+BB9LBoWjQu1iesG1UIIRTw9+j1kxsP52BkM1t6h2p9yFpDBCA9aJ nCyeaSTUf8NBwWBnPsy70KNhBR+LRlh31VXfXW7/XBZ+8eaA39U0M0ElE7Z6NVkB B/HZZ5LugtOPI5znmEpZCdtFr0MvYkfj1ek5fCWfvtxA84Jus3huErSxFxBIL8cD dtIFtCDMVbB/XFL8B9Xt4RZbghlK8PS1wVxW9yX+dgxUxA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org