$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/rauX3i9kp6uIIMwUuOpoofXcH5o.roa File: rauX3i9kp6uIIMwUuOpoofXcH5o.roa (raw, json) Hash identifier: GZ84550sedLKQPF5q5032ZdeAlBivyn/3qSTq0R8ixw= Subject key identifier: AD:AB:97:DE:2F:64:A7:AB:88:20:CC:14:B8:EA:68:A1:F5:DC:1F:9A Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0F15 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/rauX3i9kp6uIIMwUuOpoofXcH5o.roa Signing time: Mon 26 Aug 2024 05:12:44 +0000 ROA not before: Mon 26 Aug 2024 05:12:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24168 IP address blocks: 103.136.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3861 (0xf15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 26 05:12:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ADAB97DE2F64A7AB8820CC14B8EA68A1F5DC1F9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b5:94:4c:05:2e:dc:ab:cc:3d:66:a8:05:b1: c6:2a:56:83:68:59:fe:61:34:72:67:32:bb:7c:b0: 34:d2:5f:99:0c:40:93:5b:af:b9:84:ae:53:b6:85: 5f:77:f4:65:d4:df:28:da:55:79:4f:ab:9d:bc:8b: eb:03:29:9c:94:cb:1f:c0:f9:38:0b:cc:29:df:b9: 65:3b:ff:38:c8:6a:0c:31:0f:66:78:49:a1:b1:05: 06:b7:20:ac:3f:af:a8:70:eb:cc:95:f7:b3:6c:89: 9c:1e:17:44:4f:55:eb:b8:28:4c:9c:8f:a4:09:91: 41:70:b0:40:cd:0a:83:38:96:74:9f:da:e1:bf:ff: 9e:67:7c:d5:8d:df:94:32:24:e7:0f:d7:dd:2e:74: ba:45:5f:60:e3:57:a9:23:25:30:0d:cd:f7:0e:dc: b9:4e:95:83:2b:f7:3f:60:db:03:39:d8:20:8f:d2: d1:bc:0e:90:26:b6:57:ad:18:d5:13:f3:50:f9:52: e7:78:0a:b4:09:b9:32:93:1a:57:69:39:61:54:f9: 57:5b:25:70:0a:2b:47:f2:15:54:09:ce:39:dd:64: 25:39:0b:12:2f:cf:b9:af:2b:82:ac:53:11:67:4a: cc:47:82:6f:e4:88:24:6d:91:73:72:8c:e3:c9:eb: 4c:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:AB:97:DE:2F:64:A7:AB:88:20:CC:14:B8:EA:68:A1:F5:DC:1F:9A X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/rauX3i9kp6uIIMwUuOpoofXcH5o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 75:29:54:66:c5:7b:2e:dc:2c:5d:12:81:27:2a:4e:4a:9d:18: fa:c4:c0:b8:7b:c8:b7:cb:2a:a3:f3:b3:08:0a:6d:8b:5a:0b: dd:a1:41:e9:ab:1f:29:9e:c7:b3:ad:f2:82:b5:8a:a5:50:95: ab:3d:6e:36:4f:e7:b6:31:f5:0a:4a:52:64:20:9d:f3:72:0f: 60:cb:fc:7c:5e:30:95:43:de:ef:e3:54:92:62:46:17:d7:ca: e4:e4:f0:7f:1e:20:e6:dd:8b:9e:85:92:9e:b8:4e:5a:f8:bc: 89:ac:fb:21:b8:c6:46:f3:cd:4d:e3:95:b0:da:50:39:d3:b7: 47:74:1a:7d:17:24:c2:e4:e8:75:7d:fd:fd:a7:be:25:47:ac: 72:41:b0:33:c4:bd:89:ec:6b:61:a9:12:03:32:fb:68:62:9f: ad:e4:a2:f9:81:48:15:51:49:3d:cd:97:2f:cb:a0:45:3a:c5: 43:2e:de:a2:b1:2b:7b:20:f9:e9:b5:ea:14:3a:da:5f:54:d1: 2e:47:6f:16:57:bd:dd:6e:4f:a5:09:db:f7:fa:d7:66:87:55: 7e:d4:0f:fc:60:da:c8:62:2e:4c:12:c1:f8:d9:c3:4e:4b:e6: 8f:5d:02:93:c8:d8:61:28:9a:bb:f5:8d:a0:ca:e0:c0:fd:35: 50:37:58:e0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNDA4MjYw NTEyNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFEQUI5N0RFMkY2NEE3 QUI4ODIwQ0MxNEI4RUE2OEExRjVEQzFGOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDftZRMBS7cq8w9ZqgFscYqVoNoWf5hNHJnMrt8sDTSX5kMQJNb r7mErlO2hV939GXU3yjaVXlPq528i+sDKZyUyx/A+TgLzCnfuWU7/zjIagwxD2Z4 SaGxBQa3IKw/r6hw68yV97NsiZweF0RPVeu4KEycj6QJkUFwsEDNCoM4lnSf2uG/ /55nfNWN35QyJOcP190udLpFX2DjV6kjJTANzfcO3LlOlYMr9z9g2wM52CCP0tG8 DpAmtletGNUT81D5Uud4CrQJuTKTGldpOWFU+VdbJXAKK0fyFVQJzjndZCU5CxIv z7mvK4KsUxFnSsxHgm/kiCRtkXNyjOPJ60w5AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUrauX3i9kp6uIIMwUuOpoofXcH5owHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL3JhdVgzaTlrcDZ1SUlNd1V1T3Bvb2ZY Y0g1by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBAHUpVGbFey7cLF0SgScqTkqdGPrEwLh7yLfLKqPzswgK bYtaC92hQemrHymex7Ot8oK1iqVQlas9bjZP57Yx9QpKUmQgnfNyD2DL/HxeMJVD 3u/jVJJiRhfXyuTk8H8eIObdi56Fkp64Tlr4vIms+yG4xkbzzU3jlbDaUDnTt0d0 Gn0XJMLk6HV9/f2nviVHrHJBsDPEvYnsa2GpEgMy+2hin63kovmBSBVRST3Nly/L oEU6xUMu3qKxK3sg+em16hQ62l9U0S5HbxZXvd1uT6UJ2/f612aHVX7UD/xg2shi LkwSwfjZw05L5o9dApPI2GEomrv1jaDK4MD9NVA3WOA= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:03 2024 by rpki-client on console-ams.rpki-client.org