$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/iswC2QUr1QN9QcJ4y1w59oA2vhY.roa File: iswC2QUr1QN9QcJ4y1w59oA2vhY.roa (raw, json) Hash identifier: VhejUNH80eCZYyN37UE3IRm5NsWuxQ3BS56JhSr9INQ= Subject key identifier: 8A:CC:02:D9:05:2B:D5:03:7D:41:C2:78:CB:5C:39:F6:80:36:BE:16 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0E07 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/iswC2QUr1QN9QcJ4y1w59oA2vhY.roa Signing time: Fri 01 Sep 2023 08:36:23 +0000 ROA not before: Fri 01 Sep 2023 08:36:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18424 IP address blocks: 103.136.60.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 03 May 2024 11:39:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3591 (0xe07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Sep 1 08:36:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8ACC02D9052BD5037D41C278CB5C39F68036BE16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c4:a9:6a:0d:e7:62:be:dd:19:b1:12:67:6b: ef:f6:92:16:0b:c5:da:3c:c6:94:07:12:fb:4c:53: 56:79:a7:d4:3b:dc:1a:bf:aa:71:1d:b4:f3:6a:ae: 51:58:7d:6b:fd:99:f6:7b:f1:6c:e9:5e:0a:27:ea: 39:e8:37:78:2e:d3:ce:7d:1f:de:d6:4c:23:b5:64: 16:63:15:f9:10:89:10:b8:63:34:e3:78:7c:9e:0c: 3d:a7:91:09:02:8e:e4:bd:b7:e7:c5:4c:5c:0e:88: c7:6a:20:0d:a9:25:8c:84:65:50:ae:77:b6:d4:b9: ba:07:be:02:f5:7f:9f:48:68:d7:27:93:6a:89:a1: 04:97:1b:0e:ae:90:94:f3:b2:81:1a:7a:62:f3:10: 33:8e:ab:a9:8c:b2:b9:3a:7c:ee:84:6b:7d:0b:96: bc:8e:c9:d4:8f:e9:da:27:37:66:76:9d:a5:04:30: 26:f1:cc:e9:1a:3f:a9:6f:6c:f4:92:d7:9b:66:f5: 58:b3:fc:99:8a:89:2e:46:01:3d:ca:24:29:bc:7d: 27:95:73:55:be:b6:00:a4:57:c9:cc:89:41:c5:9a: c3:bc:16:b1:e4:0f:0a:68:1b:b5:d8:e0:d4:5a:8b: f9:13:78:3b:9c:5b:da:86:a9:87:09:5e:83:71:2c: d5:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:CC:02:D9:05:2B:D5:03:7D:41:C2:78:CB:5C:39:F6:80:36:BE:16 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/iswC2QUr1QN9QcJ4y1w59oA2vhY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 01:e7:3b:ab:9c:b0:0b:7a:b7:1b:17:90:fc:0a:54:d7:0e:a3: 4d:76:5e:6d:9c:3b:6a:c9:1f:45:ee:7c:70:78:66:ea:a1:e2: 8f:b8:89:aa:16:8f:5a:ac:35:9d:bd:5f:a8:c1:d0:c8:7c:aa: 44:69:47:c8:a7:ae:83:63:65:3a:5e:1f:02:ab:eb:33:02:cf: 3b:2b:03:91:6d:52:e6:8c:b4:13:51:47:60:45:38:6c:41:5a: 19:fc:6e:aa:9c:14:79:b6:3f:9d:f6:0d:15:c6:b2:55:80:b3: d5:81:da:54:c3:7b:37:b2:12:46:e2:d5:8b:0c:12:d6:b4:a7: 9b:7e:ab:5d:94:f1:41:0d:6d:c0:ad:2c:44:49:ad:25:b0:ae: 8f:3e:a3:3a:93:ad:71:44:6a:bc:41:0e:b4:8b:7f:a2:be:8c: 9d:af:d5:06:06:65:70:d5:56:1b:4a:62:c6:ca:ff:0f:36:02: fd:89:8a:46:e9:8d:86:85:a6:7c:a7:d0:7b:6b:25:3e:35:0b: e6:a5:54:05:63:f7:8f:63:ff:c0:22:c8:13:5a:65:b0:4e:01: d4:d6:5f:92:3f:dc:a3:88:25:19:ed:8a:92:a7:b1:57:c3:08: ed:b9:93:21:92:ea:6c:12:c0:f7:86:f9:47:1f:3e:ae:b0:a0: ec:bc:43:e5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDgcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yMzA5MDEw ODM2MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhBQ0MwMkQ5MDUyQkQ1 MDM3RDQxQzI3OENCNUMzOUY2ODAzNkJFMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjxKlqDedivt0ZsRJna+/2khYLxdo8xpQHEvtMU1Z5p9Q73Bq/ qnEdtPNqrlFYfWv9mfZ78WzpXgon6jnoN3gu0859H97WTCO1ZBZjFfkQiRC4YzTj eHyeDD2nkQkCjuS9t+fFTFwOiMdqIA2pJYyEZVCud7bUuboHvgL1f59IaNcnk2qJ oQSXGw6ukJTzsoEaemLzEDOOq6mMsrk6fO6Ea30LlryOydSP6donN2Z2naUEMCbx zOkaP6lvbPSS15tm9Viz/JmKiS5GAT3KJCm8fSeVc1W+tgCkV8nMiUHFmsO8FrHk DwpoG7XY4NRai/kTeDucW9qGqYcJXoNxLNWlAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUiswC2QUr1QN9QcJ4y1w59oA2vhYwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL2lzd0MyUVVyMVFOOVFjSjR5MXc1OW9B MnZoWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBAAHnO6ucsAt6txsXkPwKVNcOo012Xm2cO2rJH0XufHB4 Zuqh4o+4iaoWj1qsNZ29X6jB0Mh8qkRpR8inroNjZTpeHwKr6zMCzzsrA5FtUuaM tBNRR2BFOGxBWhn8bqqcFHm2P532DRXGslWAs9WB2lTDezeyEkbi1YsMEta0p5t+ q12U8UENbcCtLERJrSWwro8+ozqTrXFEarxBDrSLf6K+jJ2v1QYGZXDVVhtKYsbK /w82Av2JikbpjYaFpnyn0HtrJT41C+alVAVj949j/8AiyBNaZbBOAdTWX5I/3KOI JRntipKnsVfDCO25kyGS6mwSwPeG+UcfPq6woOy8Q+U= -----END CERTIFICATE-----Generated at Thu May 2 22:22:39 2024 by rpki-client on console-fra.rpki-client.org