$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa File: zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa (raw, json) Hash identifier: u1J3O2gLauABSMEFWScFVFWmmHZeOMJKXCdw4nCNcOU= Subject key identifier: CD:60:7B:66:79:B2:B0:9E:20:8F:3E:96:2D:BC:74:5C:65:67:AC:4E Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 0F1A Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa Signing time: Mon 26 Aug 2024 05:12:45 +0000 ROA not before: Mon 26 Aug 2024 05:12:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 103.136.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3866 (0xf1a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Aug 26 05:12:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CD607B6679B2B09E208F3E962DBC745C6567AC4E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:26:12:79:74:81:63:51:c3:0b:ab:f5:c8:26: bf:cb:5f:a4:25:1e:78:b0:4a:a6:04:d8:2c:f1:89: 0a:c9:e0:3d:0b:e3:dd:a9:5d:03:02:ab:fe:81:80: 72:3c:0f:98:0e:4b:39:1d:c2:77:96:fb:df:8e:01: f1:42:bf:a0:3d:a0:01:67:f9:73:61:0e:db:7e:5d: c3:2f:46:39:38:d6:aa:a2:91:db:13:b4:4f:35:81: 5e:36:9d:3b:3d:49:54:56:91:1b:0d:a9:0d:08:c5: 9b:d2:7a:64:ed:ac:3e:7b:ad:5e:6f:bf:5c:f8:bb: 05:0b:33:59:ab:d0:af:40:f5:1e:b4:d7:5e:fa:c9: 3a:0f:ba:b4:0b:a1:6e:77:75:06:b2:b6:a6:13:3f: 6f:7c:04:a8:13:b5:20:e7:a5:12:23:8b:f3:10:bb: 55:87:9b:19:93:e5:a2:7f:4e:75:42:2c:d6:9b:99: a8:78:84:2b:a1:bb:15:b8:11:be:c4:5d:be:12:bc: b4:8c:14:da:3d:95:4a:56:0c:6c:b2:3c:4a:9c:12: 48:b3:e5:62:e5:d9:e9:59:4f:87:66:46:bd:82:62: 33:4e:b6:42:34:72:a7:f0:61:85:9f:73:9d:44:49: eb:72:55:6b:e3:53:f1:c4:a9:59:69:be:76:15:e7: 27:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:60:7B:66:79:B2:B0:9E:20:8F:3E:96:2D:BC:74:5C:65:67:AC:4E X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/zWB7ZnmysJ4gjz6WLbx0XGVnrE4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.136.60.0/24 Signature Algorithm: sha256WithRSAEncryption 38:96:b0:9b:f4:46:46:3d:22:04:4e:ee:49:95:67:69:8e:ef: 1a:a6:90:f7:46:32:41:5a:b4:07:59:27:16:19:47:e8:2c:53: d3:bd:10:77:e1:d2:bc:c9:91:93:75:94:7d:2d:63:e8:55:be: 6a:88:f4:03:2a:a1:38:37:70:a4:7e:f8:e6:ce:7a:93:7c:a2: a7:68:a6:ad:40:c5:0f:3f:61:2b:64:2f:dd:75:55:34:f1:36: b3:a6:1f:31:74:00:16:45:8f:b5:87:e2:97:24:35:40:a5:d8: 00:7d:3f:4f:64:c1:46:84:e5:04:9b:f4:a7:6c:6f:f3:40:a6: a5:d1:a9:bc:ff:7f:d6:0b:f9:d2:3c:26:7b:a1:bb:df:fa:25: f6:e5:06:9c:cb:46:fa:4c:20:5a:db:94:17:3a:e1:b0:f7:13: 5b:6d:57:bf:aa:56:4f:57:eb:7b:ef:81:e6:b1:4a:d0:e0:b2: 18:6b:82:11:74:da:4e:31:05:3a:b1:9b:ef:a6:d1:d2:7b:d6: ed:09:e9:2b:5b:16:eb:4a:cc:00:f7:2a:68:96:42:c1:90:2c: 97:a6:2e:78:21:25:d8:3c:4a:be:b4:d6:6c:9d:c4:25:69:5d: a4:e8:25:d0:4c:72:ae:52:1d:87:c2:33:6a:c4:9c:44:d5:ac: 65:49:4d:00 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDxowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNDA4MjYw NTEyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENENjA3QjY2NzlCMkIw OUUyMDhGM0U5NjJEQkM3NDVDNjU2N0FDNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD0JhJ5dIFjUcMLq/XIJr/LX6QlHniwSqYE2CzxiQrJ4D0L492p XQMCq/6BgHI8D5gOSzkdwneW+9+OAfFCv6A9oAFn+XNhDtt+XcMvRjk41qqikdsT tE81gV42nTs9SVRWkRsNqQ0IxZvSemTtrD57rV5vv1z4uwULM1mr0K9A9R601176 yToPurQLoW53dQaytqYTP298BKgTtSDnpRIji/MQu1WHmxmT5aJ/TnVCLNabmah4 hCuhuxW4Eb7EXb4SvLSMFNo9lUpWDGyyPEqcEkiz5WLl2elZT4dmRr2CYjNOtkI0 cqfwYYWfc51ESetyVWvjU/HEqVlpvnYV5yeNAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUzWB7ZnmysJ4gjz6WLbx0XGVnrE4wHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdUL3pXQjdabm15c0o0Z2p6NldMYngwWEdW bnJFNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABniDwwDQYJ KoZIhvcNAQELBQADggEBADiWsJv0RkY9IgRO7kmVZ2mO7xqmkPdGMkFatAdZJxYZ R+gsU9O9EHfh0rzJkZN1lH0tY+hVvmqI9AMqoTg3cKR++ObOepN8oqdopq1AxQ8/ YStkL911VTTxNrOmHzF0ABZFj7WH4pckNUCl2AB9P09kwUaE5QSb9Kdsb/NApqXR qbz/f9YL+dI8Jnuhu9/6JfblBpzLRvpMIFrblBc64bD3E1ttV7+qVk9X63vvgeax StDgshhrghF02k4xBTqxm++m0dJ71u0J6StbFutKzAD3KmiWQsGQLJemLnghJdg8 Sr601mydxCVpXaToJdBMcq5SHYfCM2rEnETVrGVJTQA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org