$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FANTASY/BMe3NS4q9yyFJ7ImD0Vu86fltcc.roa File: BMe3NS4q9yyFJ7ImD0Vu86fltcc.roa (raw, json) Hash identifier: PH9wrAHdhIb8I3Cco4+M1z+pcA8YvxRFADV2GW34Qss= Subject key identifier: 04:C7:B7:35:2E:2A:F7:2C:85:27:B2:26:0F:45:6E:F3:A7:E5:B5:C7 Certificate issuer: /CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Certificate serial: 09B6 Authority key identifier: 59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/BMe3NS4q9yyFJ7ImD0Vu86fltcc.roa Signing time: Mon 26 Aug 2024 05:15:39 +0000 ROA not before: Mon 26 Aug 2024 05:15:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131671 IP address blocks: 103.146.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2486 (0x9b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59DEF2CF828F0D9AB6AD94F426131764D254CC5C Validity Not Before: Aug 26 05:15:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=04C7B7352E2AF72C8527B2260F456EF3A7E5B5C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5c:6a:94:10:55:c3:b9:66:e4:37:6d:64:79: 49:f1:97:07:bb:b8:2d:73:84:84:2c:26:aa:12:bd: 8a:56:bf:1c:70:89:dd:b6:ed:9c:dc:74:cd:0e:84: 85:49:6d:06:56:90:10:94:31:c5:68:4b:af:41:15: 0d:23:0d:13:dc:8e:d8:df:bd:df:45:0b:4b:3c:6f: 9d:54:58:d4:bd:c5:ed:96:f5:1f:8d:d7:d5:bf:b0: cb:55:3e:76:d8:d8:40:7b:b4:82:63:0e:a4:aa:f0: 84:c6:c4:98:cd:c5:0c:9a:ae:a4:44:6d:a5:3a:80: bc:3d:b6:e3:98:d3:7c:b2:b7:01:32:d1:8a:be:63: 7e:36:ce:47:fe:96:0e:1a:e7:68:72:de:80:dd:2d: de:e5:c3:7a:94:66:4f:37:2b:d4:05:c8:01:81:43: d5:2f:9c:39:69:9a:2e:c1:39:0c:78:1d:a3:11:ec: 55:1a:a5:88:c8:df:08:dc:7d:e7:63:a0:37:78:8b: 8b:19:40:dd:81:6d:f3:83:93:74:fc:68:9c:32:59: 97:36:b0:9a:f2:c1:48:0c:d3:4a:d7:35:29:3a:4c: 44:72:0a:0f:b4:76:cb:f2:ee:1f:77:b2:03:27:20: ef:18:13:fe:e5:a4:ae:f2:cc:56:db:01:5d:b1:07: 72:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C7:B7:35:2E:2A:F7:2C:85:27:B2:26:0F:45:6E:F3:A7:E5:B5:C7 X509v3 Authority Key Identifier: keyid:59:DE:F2:CF:82:8F:0D:9A:B6:AD:94:F4:26:13:17:64:D2:54:CC:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Wd7yz4KPDZq2rZT0JhMXZNJUzFw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FANTASY/BMe3NS4q9yyFJ7ImD0Vu86fltcc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.146.212.0/24 Signature Algorithm: sha256WithRSAEncryption 58:92:f8:b1:2d:73:20:75:5f:d8:43:c2:14:aa:7e:47:b9:ca: c8:74:4f:17:5d:0d:b2:4b:6f:a2:6b:18:d4:9c:48:a0:d9:2e: 8f:5f:85:81:bb:41:c1:bc:38:a2:a0:50:65:9b:4b:11:f6:23: f2:53:a5:eb:83:f6:8b:88:16:cc:53:7a:4f:95:77:c0:7e:e2: c1:e5:81:cb:9e:e0:8d:f2:f9:54:36:ee:95:66:2b:61:5d:df: b5:c0:0b:60:ca:bf:51:24:2c:66:73:f0:de:cb:85:8d:54:92: 23:89:b5:ed:b8:09:3a:51:82:e8:fc:fa:83:35:74:d9:58:ce: 3b:6b:02:a6:20:d7:db:fd:7b:12:e2:ba:7c:0a:d5:a0:ff:78: b0:e5:fa:53:03:a6:1e:67:82:14:0a:23:3d:3d:6a:f5:2b:a8: c3:73:ce:df:90:da:53:71:cc:1a:54:05:3b:47:e5:06:e3:af: f7:90:d7:45:e7:61:e3:dc:06:c4:43:df:e9:d9:c1:20:1e:b5: 31:c8:87:a4:7a:0c:07:ab:98:5c:9e:a9:42:53:aa:ff:78:60: 9a:d9:1b:0b:8c:56:83:64:e2:1f:ca:32:f5:ff:ed:c4:92:2f: ae:22:c5:ad:32:1d:26:1b:69:c8:8e:00:8e:97:6a:fa:d9:b3: 3a:85:33:5e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTlE RUYyQ0Y4MjhGMEQ5QUI2QUQ5NEY0MjYxMzE3NjREMjU0Q0M1QzAeFw0yNDA4MjYw NTE1MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0QzdCNzM1MkUyQUY3 MkM4NTI3QjIyNjBGNDU2RUYzQTdFNUI1QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbXGqUEFXDuWbkN21keUnxlwe7uC1zhIQsJqoSvYpWvxxwid22 7ZzcdM0OhIVJbQZWkBCUMcVoS69BFQ0jDRPcjtjfvd9FC0s8b51UWNS9xe2W9R+N 19W/sMtVPnbY2EB7tIJjDqSq8ITGxJjNxQyarqREbaU6gLw9tuOY03yytwEy0Yq+ Y342zkf+lg4a52hy3oDdLd7lw3qUZk83K9QFyAGBQ9UvnDlpmi7BOQx4HaMR7FUa pYjI3wjcfedjoDd4i4sZQN2BbfODk3T8aJwyWZc2sJrywUgM00rXNSk6TERyCg+0 dsvy7h93sgMnIO8YE/7lpK7yzFbbAV2xB3JbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUBMe3NS4q9yyFJ7ImD0Vu86fltccwHwYDVR0jBBgwFoAUWd7yz4KPDZq2rZT0 JhMXZNJUzFwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFOVEFT WS9XZDd5ejRLUERacTJyWlQwSmhNWFpOSlV6RncuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1dkN3l6NEtQRFpxMnJaVDBKaE1YWk5KVXpGdy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTlRBU1kvQk1lM05TNHE5eXlGSjdJ bUQwVnU4NmZsdGNjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGeS1DANBgkqhkiG9w0BAQsFAAOCAQEAWJL4sS1zIHVf2EPCFKp+R7nKyHRPF10N sktvomsY1JxIoNkuj1+FgbtBwbw4oqBQZZtLEfYj8lOl64P2i4gWzFN6T5V3wH7i weWBy57gjfL5VDbulWYrYV3ftcALYMq/USQsZnPw3suFjVSSI4m17bgJOlGC6Pz6 gzV02VjOO2sCpiDX2/17EuK6fArVoP94sOX6UwOmHmeCFAojPT1q9Suow3PO35Da U3HMGlQFO0flBuOv95DXRedh49wGxEPf6dnBIB61MciHpHoMB6uYXJ6pQlOq/3hg mtkbC4xWg2TiH8oy9f/txJIvriLFrTIdJhtpyI4Ajpdq+tmzOoUzXg== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:04 2024 by rpki-client on console-ams.rpki-client.org