$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/v8dNQLjIN0pBSdAya5jKRwYxLPk.roa File: v8dNQLjIN0pBSdAya5jKRwYxLPk.roa (raw, json) Hash identifier: TiK7pJsM9KrYw0WOxL7Beb5JP1B4IRpQTQ3FBwpDGnM= Subject key identifier: BF:C7:4D:40:B8:C8:37:4A:41:49:D0:32:6B:98:CA:47:06:31:2C:F9 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0F19 Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/v8dNQLjIN0pBSdAya5jKRwYxLPk.roa Signing time: Mon 26 Aug 2024 05:12:45 +0000 ROA not before: Mon 26 Aug 2024 05:12:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 103.136.60.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3865 (0xf19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 26 05:12:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BFC74D40B8C8374A4149D0326B98CA4706312CF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cd:bc:19:52:44:1c:0d:cc:2e:47:b9:61:8b: 0e:22:9a:fc:5b:ce:a9:be:f3:af:40:87:7f:d1:ca: f3:4b:cc:3f:e4:83:4f:2b:14:59:88:7c:c2:77:6a: 30:66:6e:84:12:39:e6:7e:a9:1f:6d:bc:7c:77:c2: 84:0f:af:9a:4c:c5:e9:46:ed:9e:3c:b6:f8:6e:96: db:e7:a6:18:27:81:a7:20:05:0c:6a:81:24:05:5c: 8e:3d:73:17:48:c8:d8:82:d9:c5:b6:e9:03:5a:d5: 4b:91:db:35:fb:bd:a6:31:f5:af:ca:7b:0b:c2:02: 0e:23:89:21:61:79:c7:9c:96:18:65:6c:85:a9:c4: 37:0a:51:c9:33:99:6c:a4:3f:6f:12:98:f2:7d:17: fa:07:67:e3:8f:9a:44:b1:f4:f4:2c:90:95:71:e2: 70:7f:bf:93:cc:e9:0f:48:00:27:fb:7e:41:09:52: 54:b7:5e:7f:51:92:94:1a:47:0a:c0:5e:fc:95:79: cd:93:18:a5:84:19:78:2c:9d:18:6a:23:e6:50:82: c1:55:80:f6:ca:96:f0:49:9b:1b:34:5a:09:29:42: 1b:34:44:1f:b0:e2:24:50:eb:90:6a:89:82:dc:da: e1:6f:04:52:d8:ea:e4:75:3c:a7:c8:f1:17:15:d6: 8d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:C7:4D:40:B8:C8:37:4A:41:49:D0:32:6B:98:CA:47:06:31:2C:F9 X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/v8dNQLjIN0pBSdAya5jKRwYxLPk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:c4:6e:94:e4:5f:97:9d:02:4c:ae:67:31:56:85:df:97:ce: 22:67:a4:3a:2e:18:19:65:01:ef:ce:82:57:41:db:9e:86:79: 6b:e1:ce:4c:07:49:d1:9e:c1:3b:d3:34:5a:b7:3e:f6:f2:7c: 73:36:46:99:19:e1:c0:b6:d8:01:72:d7:28:e5:78:4e:81:38: 11:8d:d5:50:d7:f0:cd:ce:f0:ce:74:9c:0d:50:76:86:e8:43: f5:f7:42:a7:5a:d4:89:00:57:3a:3e:a7:14:54:3e:26:c2:ef: 5e:dd:7d:16:4c:dc:5e:6d:c8:85:d9:5f:ae:02:e0:a2:24:4b: 19:f1:8f:a3:76:b6:a2:86:87:aa:0f:29:38:97:8e:da:e8:e8: 09:ee:2d:ae:d1:2c:4c:77:69:b5:69:be:a4:82:3d:81:c8:c3: ab:4f:8a:0f:9f:48:29:b7:3a:ee:30:e9:44:a6:06:09:a1:e5: 25:76:c9:c9:3d:52:21:19:ae:18:82:bc:2b:bd:df:4e:d5:5d: ef:8d:60:c7:de:6e:99:52:06:85:6f:34:cd:a1:e0:55:49:4f: cf:e3:eb:84:62:c5:14:40:ef:e9:20:88:d0:a6:67:0a:ce:da: f7:92:5f:9e:40:ac:ae:38:23:ad:3d:4f:62:c4:15:65:65:78: b3:32:af:87 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNDA4MjYw NTEyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJGQzc0RDQwQjhDODM3 NEE0MTQ5RDAzMjZCOThDQTQ3MDYzMTJDRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7zbwZUkQcDcwuR7lhiw4imvxbzqm+869Ah3/RyvNLzD/kg08r FFmIfMJ3ajBmboQSOeZ+qR9tvHx3woQPr5pMxelG7Z48tvhultvnphgngacgBQxq gSQFXI49cxdIyNiC2cW26QNa1UuR2zX7vaYx9a/KewvCAg4jiSFhececlhhlbIWp xDcKUckzmWykP28SmPJ9F/oHZ+OPmkSx9PQskJVx4nB/v5PM6Q9IACf7fkEJUlS3 Xn9RkpQaRwrAXvyVec2TGKWEGXgsnRhqI+ZQgsFVgPbKlvBJmxs0WgkpQhs0RB+w 4iRQ65BqiYLc2uFvBFLY6uR1PKfI8RcV1o3jAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUv8dNQLjIN0pBSdAya5jKRwYxLPkwHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL3Y4ZE5RTGpJTjBwQlNkQXlhNWpLUndZ eExQay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFniDwwDQYJ KoZIhvcNAQELBQADggEBAE7EbpTkX5edAkyuZzFWhd+XziJnpDouGBllAe/OgldB 256GeWvhzkwHSdGewTvTNFq3PvbyfHM2RpkZ4cC22AFy1yjleE6BOBGN1VDX8M3O 8M50nA1QdoboQ/X3Qqda1IkAVzo+pxRUPibC717dfRZM3F5tyIXZX64C4KIkSxnx j6N2tqKGh6oPKTiXjtro6AnuLa7RLEx3abVpvqSCPYHIw6tPig+fSCm3Ou4w6USm Bgmh5SV2yck9UiEZrhiCvCu9307VXe+NYMfebplSBoVvNM2h4FVJT8/j64RixRRA 7+kgiNCmZwrO2veSX55ArK44I609T2LEFWVleLMyr4c= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org