$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/DirWu83cYzL98mOP4FpakrlYQew.roa File: DirWu83cYzL98mOP4FpakrlYQew.roa (raw, json) Hash identifier: kN3d3cmfVjju+rJbvdWPepSkzLmsIRTmKV6iNSwWUAs= Subject key identifier: 0E:2A:D6:BB:CD:DC:63:32:FD:F2:63:8F:E0:5A:5A:92:B9:58:41:EC Certificate issuer: /CN=5B6B6F9DD4E2976144344002CF16293A0CA0A7D5 Certificate serial: 0104 Authority key identifier: 5B:6B:6F:9D:D4:E2:97:61:44:34:40:02:CF:16:29:3A:0C:A0:A7:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/W2tvndTil2FENEACzxYpOgygp9U.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/DirWu83cYzL98mOP4FpakrlYQew.roa Signing time: Mon 26 Aug 2024 05:15:36 +0000 ROA not before: Mon 26 Aug 2024 05:15:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.255.40.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/W2tvndTil2FENEACzxYpOgygp9U.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/W2tvndTil2FENEACzxYpOgygp9U.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/W2tvndTil2FENEACzxYpOgygp9U.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B6B6F9DD4E2976144344002CF16293A0CA0A7D5 Validity Not Before: Aug 26 05:15:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0E2AD6BBCDDC6332FDF2638FE05A5A92B95841EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:09:d7:d3:9d:42:e6:94:e2:d1:17:fd:d3:59: 48:2f:a2:f0:2f:da:05:e5:73:45:af:99:d2:05:10: ff:79:ca:e1:6c:b1:3d:7d:16:9b:1a:98:7c:d2:5e: 4f:81:6d:65:35:2f:d7:df:fe:82:18:a3:7e:50:f0: de:3e:2e:ca:5b:cb:53:68:1d:95:94:50:f3:8a:51: 6c:8b:a0:f9:09:59:80:55:f1:22:aa:52:fd:23:1c: c7:47:c3:9a:18:4e:21:41:fa:66:d8:e4:31:54:01: 61:ca:94:0c:20:a5:ca:ca:3b:34:b5:f7:32:36:08: f2:7c:34:16:53:e0:c9:b4:99:22:74:28:8c:2a:06: 90:63:ea:d7:8f:97:84:34:20:7d:ad:3c:92:e0:6d: 7f:96:b7:5d:b4:53:8f:c1:3a:dd:ff:64:bc:79:9c: e3:96:a7:34:50:ed:56:4b:09:7f:01:37:4c:10:11: a1:75:fc:75:09:33:29:14:60:ed:64:0c:f9:0e:c7: ae:cb:99:67:bb:12:cc:f7:6d:89:29:98:d8:cd:59: 88:8c:7b:ff:d3:db:f7:69:77:8b:4e:12:a0:4c:29: 9f:e0:e1:57:df:f5:41:6e:89:96:0c:95:b3:1f:f4: e6:a9:b1:53:9f:7e:08:1f:4d:9b:67:27:4c:8d:d1: e6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:2A:D6:BB:CD:DC:63:32:FD:F2:63:8F:E0:5A:5A:92:B9:58:41:EC X509v3 Authority Key Identifier: keyid:5B:6B:6F:9D:D4:E2:97:61:44:34:40:02:CF:16:29:3A:0C:A0:A7:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/W2tvndTil2FENEACzxYpOgygp9U.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/W2tvndTil2FENEACzxYpOgygp9U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASIA/DirWu83cYzL98mOP4FpakrlYQew.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.255.40.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:7f:73:4c:3a:d4:36:6d:e9:2e:cf:0f:9a:bb:ff:95:0c:8e: 9a:50:53:73:93:18:61:42:5f:18:a8:bc:00:3e:4e:7f:44:c4: e6:22:93:04:d6:02:3b:f2:fc:09:ef:ce:97:9f:ac:69:ae:0a: ee:81:33:3f:c7:eb:65:41:17:2a:cf:fa:05:54:cf:bb:65:a2: 09:9f:85:6a:4d:30:95:e6:c3:bc:1c:4a:87:43:a9:f0:6b:73: 27:61:13:f6:e8:54:b1:41:aa:4e:90:dc:7d:7d:63:55:ac:cf: 89:b8:f8:1a:79:1f:5c:ec:ce:3f:c4:d7:2c:b3:0f:f3:e9:d1: 1b:91:03:55:5f:cb:af:57:3e:18:9f:93:f6:35:f6:be:dd:50: 71:70:3f:bf:4a:c5:6f:5e:c8:b8:2a:de:ca:2d:b6:e2:75:b2: 55:02:cb:08:e7:f6:33:dc:c4:7c:b1:1f:f7:e9:c2:54:10:64: 35:af:fc:b1:2c:56:0d:28:b7:df:0e:ae:b8:f7:84:29:ca:3b: 02:a5:43:7e:f0:5b:d4:59:41:e9:f3:6a:e2:a7:3d:c0:1e:0b: 6a:0e:96:99:97:6f:1a:f7:51:0d:20:92:27:9b:a6:b3:50:e5: a3:9c:aa:29:c2:dd:5a:ff:22:ab:d3:34:fc:18:27:2d:3f:bd: 02:1c:b9:71 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUI2 QjZGOURENEUyOTc2MTQ0MzQ0MDAyQ0YxNjI5M0EwQ0EwQTdENTAeFw0yNDA4MjYw NTE1MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFMkFENkJCQ0REQzYz MzJGREYyNjM4RkUwNUE1QTkyQjk1ODQxRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNCdfTnULmlOLRF/3TWUgvovAv2gXlc0WvmdIFEP95yuFssT19 FpsamHzSXk+BbWU1L9ff/oIYo35Q8N4+Lspby1NoHZWUUPOKUWyLoPkJWYBV8SKq Uv0jHMdHw5oYTiFB+mbY5DFUAWHKlAwgpcrKOzS19zI2CPJ8NBZT4Mm0mSJ0KIwq BpBj6tePl4Q0IH2tPJLgbX+Wt120U4/BOt3/ZLx5nOOWpzRQ7VZLCX8BN0wQEaF1 /HUJMykUYO1kDPkOx67LmWe7Esz3bYkpmNjNWYiMe//T2/dpd4tOEqBMKZ/g4Vff 9UFuiZYMlbMf9OapsVOffggfTZtnJ0yN0ea/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUDirWu83cYzL98mOP4FpakrlYQewwHwYDVR0jBBgwFoAUW2tvndTil2FENEAC zxYpOgygp9UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT SUEvVzJ0dm5kVGlsMkZFTkVBQ3p4WXBPZ3lncDlVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9XMnR2bmRUaWwyRkVORUFDenhZcE9neWdwOVUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9GQU5UQVNJQS9EaXJXdTgzY1l6TDk4 bU9QNEZwYWtybFlRZXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ/8oMA0GCSqGSIb3DQEBCwUAA4IBAQBef3NMOtQ2bekuzw+au/+VDI6aUFNz kxhhQl8YqLwAPk5/RMTmIpME1gI78vwJ786Xn6xprgrugTM/x+tlQRcqz/oFVM+7 ZaIJn4VqTTCV5sO8HEqHQ6nwa3MnYRP26FSxQapOkNx9fWNVrM+JuPgaeR9c7M4/ xNcssw/z6dEbkQNVX8uvVz4Yn5P2Nfa+3VBxcD+/SsVvXsi4Kt7KLbbidbJVAssI 5/Yz3MR8sR/36cJUEGQ1r/yxLFYNKLffDq6494QpyjsCpUN+8FvUWUHp82ripz3A HgtqDpaZl28a91ENIJInm6azUOWjnKopwt1a/yKr0zT8GCctP70CHLlx -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:40 2024 by rpki-client on console-ams.rpki-client.org