$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/tyKMza2yDxwTMIaa4zD3EOUGy7U.roa File: tyKMza2yDxwTMIaa4zD3EOUGy7U.roa (raw, json) Hash identifier: 9w+cZgd4kbSz0wOszAs+a6GoSbPvauRTW69vupoue08= Subject key identifier: B7:22:8C:CD:AD:B2:0F:1C:13:30:86:9A:E3:30:F7:10:E5:06:CB:B5 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0F13 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/tyKMza2yDxwTMIaa4zD3EOUGy7U.roa Signing time: Mon 26 Aug 2024 05:12:43 +0000 ROA not before: Mon 26 Aug 2024 05:12:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24168 IP address blocks: 103.136.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3859 (0xf13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 26 05:12:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B7228CCDADB20F1C1330869AE330F710E506CBB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ce:56:f0:de:e4:41:90:b6:5a:31:a8:1c:d3: f7:ea:e1:e5:f7:d3:0d:5b:f7:7d:f4:23:80:7d:96: 72:b6:d0:47:8d:a1:ef:ae:d3:c8:2c:e8:78:bc:95: 2f:5b:13:ba:1e:52:ac:7f:0e:02:f0:1e:59:89:51: 7d:e0:e4:47:b3:74:6b:9e:fd:ed:85:78:fa:13:7d: 9b:2b:d8:4a:a9:35:60:e1:4d:24:0a:8e:f6:0b:50: ce:f6:08:d3:6f:3e:3a:a0:b2:54:a5:d8:b0:d7:a4: 27:11:56:3c:21:8e:28:0d:cb:82:34:10:c9:ab:a9: 71:63:f1:1c:41:80:6a:40:59:c7:96:a0:3a:56:44: 6e:a2:87:b8:0a:3b:48:a6:79:91:31:47:91:90:e7: 06:35:bd:6e:05:57:38:0c:2a:e4:52:0b:e0:14:a5: 67:0b:3f:9f:ba:2c:02:82:cc:ed:e8:83:64:d9:87: f3:ae:d9:b8:c7:cc:07:0d:1e:96:27:62:5a:6e:7b: 7a:c6:9a:d4:9a:31:a6:a3:bf:6c:63:46:23:e6:d9: 3d:92:0a:d8:18:a2:01:01:40:07:a7:6e:82:d8:6c: 2d:15:46:3d:0c:71:ac:09:c0:0a:b1:fe:3d:ae:03: 28:10:3d:9a:2a:62:09:6b:45:e6:83:fd:38:f1:ac: fb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:22:8C:CD:AD:B2:0F:1C:13:30:86:9A:E3:30:F7:10:E5:06:CB:B5 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/tyKMza2yDxwTMIaa4zD3EOUGy7U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:53:64:ff:3c:be:6d:a0:07:47:f4:8d:75:04:d6:ff:a7:08: b6:b9:2a:d5:5d:2c:1a:6a:eb:15:fc:32:aa:db:52:f2:43:26: 40:9a:cc:42:e0:9f:10:4a:16:94:53:09:2a:68:1c:63:ec:ef: 37:36:16:82:d6:20:85:e3:d0:3c:bd:38:4a:76:d4:b9:f2:9f: ba:39:8e:08:d9:2a:9d:0c:26:f4:25:91:6c:f5:c8:e0:eb:33: 9e:e5:2e:a6:7d:bb:97:5d:c3:56:29:62:79:56:5d:ac:01:b3: e9:cd:51:dc:6c:77:9b:78:67:67:46:21:7e:5a:5f:36:02:4e: b0:a3:13:e4:40:63:89:2d:3f:4c:5a:3f:b4:4e:2c:0e:47:61: df:c7:83:19:c0:2a:42:47:16:20:38:71:72:24:31:32:e4:42: 26:66:9e:17:5f:18:b8:26:fd:3d:d0:08:58:ac:c3:dd:2b:6e: a7:d4:26:5e:4a:0d:e5:12:c7:46:c8:84:4a:be:d1:fb:e8:bf: 53:c6:72:23:5a:45:78:1a:cf:4d:73:02:ab:19:6a:f2:58:12: 44:47:13:a7:7d:a0:c8:65:e7:be:ba:93:42:00:47:f6:92:fa: 1e:9a:09:c3:5e:6d:39:99:26:0c:bf:8e:d8:0d:73:58:aa:8e: 05:be:93:b6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNDA4MjYw NTEyNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3MjI4Q0NEQURCMjBG MUMxMzMwODY5QUUzMzBGNzEwRTUwNkNCQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwzlbw3uRBkLZaMagc0/fq4eX30w1b9330I4B9lnK20EeNoe+u 08gs6Hi8lS9bE7oeUqx/DgLwHlmJUX3g5EezdGue/e2FePoTfZsr2EqpNWDhTSQK jvYLUM72CNNvPjqgslSl2LDXpCcRVjwhjigNy4I0EMmrqXFj8RxBgGpAWceWoDpW RG6ih7gKO0imeZExR5GQ5wY1vW4FVzgMKuRSC+AUpWcLP5+6LAKCzO3og2TZh/Ou 2bjHzAcNHpYnYlpue3rGmtSaMaajv2xjRiPm2T2SCtgYogEBQAenboLYbC0VRj0M cawJwAqx/j2uAygQPZoqYglrReaD/TjxrPvZAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUtyKMza2yDxwTMIaa4zD3EOUGy7UwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL3R5S016YTJ5RHh3VE1JYWE0ekQzRU9V R3k3VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ KoZIhvcNAQELBQADggEBAI9TZP88vm2gB0f0jXUE1v+nCLa5KtVdLBpq6xX8Mqrb UvJDJkCazELgnxBKFpRTCSpoHGPs7zc2FoLWIIXj0Dy9OEp21Lnyn7o5jgjZKp0M JvQlkWz1yODrM57lLqZ9u5ddw1YpYnlWXawBs+nNUdxsd5t4Z2dGIX5aXzYCTrCj E+RAY4ktP0xaP7ROLA5HYd/HgxnAKkJHFiA4cXIkMTLkQiZmnhdfGLgm/T3QCFis w90rbqfUJl5KDeUSx0bIhEq+0fvov1PGciNaRXgaz01zAqsZavJYEkRHE6d9oMhl 5766k0IAR/aS+h6aCcNebTmZJgy/jtgNc1iqjgW+k7Y= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:03 2024 by rpki-client on console-ams.rpki-client.org