$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/WHdraKqyvdtNOCxghNzgVfw8mxc.roa File: WHdraKqyvdtNOCxghNzgVfw8mxc.roa (raw, json) Hash identifier: /aNnDt0S8ng1hkGFYQRTi/A2GWsm1uU9X6xx4u+ZZak= Subject key identifier: 58:77:6B:68:AA:B2:BD:DB:4D:38:2C:60:84:DC:E0:55:FC:3C:9B:17 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0E09 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/WHdraKqyvdtNOCxghNzgVfw8mxc.roa Signing time: Fri 01 Sep 2023 08:36:24 +0000 ROA not before: Fri 01 Sep 2023 08:36:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131641 IP address blocks: 103.136.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 15:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3593 (0xe09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Sep 1 08:36:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=58776B68AAB2BDDB4D382C6084DCE055FC3C9B17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:cd:1d:8a:f3:37:1e:fc:e5:e9:1a:24:c4:31: 71:6d:5e:02:43:c6:df:a5:1a:93:9c:8b:29:f2:b6: d7:a1:d4:67:34:83:b7:f5:ee:04:2b:6e:6e:ea:bc: f6:23:3a:29:ca:79:c0:0f:67:d1:29:a4:e2:cd:d5: 5c:f1:f6:fd:11:1f:82:78:44:5a:96:a8:1c:42:ae: fe:8e:fe:02:38:f9:51:8e:3c:f2:f2:31:65:9e:4f: c0:3b:9a:1e:31:61:64:29:fa:8f:c2:2a:3c:53:e4: 9d:5a:2c:88:bc:12:6e:6f:b6:6a:3c:12:d7:b8:06: 25:d6:0c:6f:b8:f5:b6:41:47:76:0d:0b:4e:0f:d2: cd:a6:d2:17:87:6c:ed:d3:a0:51:c6:6c:10:ef:17: 4d:fa:86:6f:c0:ec:58:e2:b0:3c:b0:fe:4a:f5:bb: dc:5f:15:34:3b:f1:92:46:b1:3a:99:23:18:71:29: 86:63:60:a3:c3:2f:15:87:89:5b:6f:a9:52:79:cf: 7e:00:2a:a7:c5:f5:07:d5:db:b3:3f:78:81:16:ea: 82:44:34:57:1e:26:f3:da:77:c6:a2:25:23:73:8d: a3:b8:4a:90:cd:23:86:d3:ce:79:7c:8b:7d:dc:19: db:cc:ec:42:45:86:f0:3d:2a:a1:d3:fe:a0:a4:7f: 62:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:77:6B:68:AA:B2:BD:DB:4D:38:2C:60:84:DC:E0:55:FC:3C:9B:17 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/WHdraKqyvdtNOCxghNzgVfw8mxc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.61.0/24 Signature Algorithm: sha256WithRSAEncryption 83:16:69:01:42:4a:2a:e4:28:fd:d3:fb:8b:34:65:37:e8:f4: 66:07:ec:27:17:f3:05:31:d4:a1:1d:03:b2:bc:3d:61:09:2e: 67:f1:7a:10:27:b5:d8:b8:32:e8:df:69:fd:b5:52:a6:09:d0: 36:61:3d:ca:76:31:a9:4d:65:85:9f:df:c0:46:0e:a2:1d:ce: 7f:6a:48:2e:66:47:73:da:dd:24:cb:44:bf:50:ee:2f:0c:8c: 8c:a0:75:8f:6d:d3:0e:82:a1:7f:1f:85:14:32:a6:b1:fd:e4: 39:be:69:4a:4e:6a:9e:3e:9d:c2:f2:69:22:8f:42:50:f9:60: fe:26:ab:3d:5c:42:da:bc:74:2b:a8:10:ec:fb:da:35:56:2e: ba:75:26:b9:b0:6e:4f:59:18:bd:59:ea:07:e6:5d:a9:f5:50: f4:82:80:9e:5c:a2:f6:30:cb:06:d1:7d:ca:55:92:19:ea:52: 6b:7c:b7:c2:c5:8b:fd:2c:9a:dc:d2:40:85:13:e8:6f:cb:b8: 52:e3:cf:d5:e0:d7:c0:58:57:f4:cd:d5:fb:76:de:90:67:2b: 6e:33:58:2e:a4:81:27:a6:a6:37:aa:47:88:4d:14:0c:95:4c: 7e:12:4b:a4:c8:be:b1:02:a7:b5:6b:6f:ef:f5:b5:ee:52:8d: c9:89:4e:d3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDgkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw ODM2MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU4Nzc2QjY4QUFCMkJE REI0RDM4MkM2MDg0RENFMDU1RkMzQzlCMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKzR2K8zce/OXpGiTEMXFtXgJDxt+lGpOciynytteh1Gc0g7f1 7gQrbm7qvPYjOinKecAPZ9EppOLN1Vzx9v0RH4J4RFqWqBxCrv6O/gI4+VGOPPLy MWWeT8A7mh4xYWQp+o/CKjxT5J1aLIi8Em5vtmo8Ete4BiXWDG+49bZBR3YNC04P 0s2m0heHbO3ToFHGbBDvF036hm/A7FjisDyw/kr1u9xfFTQ78ZJGsTqZIxhxKYZj YKPDLxWHiVtvqVJ5z34AKqfF9QfV27M/eIEW6oJENFceJvPad8aiJSNzjaO4SpDN I4bTznl8i33cGdvM7EJFhvA9KqHT/qCkf2JpAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUWHdraKqyvdtNOCxghNzgVfw8mxcwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL1dIZHJhS3F5dmR0Tk9DeGdoTnpnVmZ3 OG14Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniD0wDQYJ KoZIhvcNAQELBQADggEBAIMWaQFCSirkKP3T+4s0ZTfo9GYH7CcX8wUx1KEdA7K8 PWEJLmfxehAntdi4Mujfaf21UqYJ0DZhPcp2MalNZYWf38BGDqIdzn9qSC5mR3Pa 3STLRL9Q7i8MjIygdY9t0w6CoX8fhRQyprH95Dm+aUpOap4+ncLyaSKPQlD5YP4m qz1cQtq8dCuoEOz72jVWLrp1Jrmwbk9ZGL1Z6gfmXan1UPSCgJ5covYwywbRfcpV khnqUmt8t8LFi/0smtzSQIUT6G/LuFLjz9Xg18BYV/TN1ft23pBnK24zWC6kgSem pjeqR4hNFAyVTH4SS6TIvrECp7Vrb+/1te5SjcmJTtM= -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:15 2024 by rpki-client on console-fra.rpki-client.org