$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/dfekttfBAGMViIwOi45b0LR3fPk.roa File: dfekttfBAGMViIwOi45b0LR3fPk.roa (raw, json) Hash identifier: 51vmEg6VFu5OCUI2dWkm1oA6f6sxsieYPgpltxwaY+k= Subject key identifier: 75:F7:A4:B6:D7:C1:00:63:15:88:8C:0E:8B:8E:5B:D0:B4:77:7C:F9 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 103F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dfekttfBAGMViIwOi45b0LR3fPk.roa Signing time: Mon 26 Aug 2024 05:16:13 +0000 ROA not before: Mon 26 Aug 2024 05:16:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 203.207.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4159 (0x103f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=75F7A4B6D7C1006315888C0E8B8E5BD0B4777CF9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:38:a1:a1:fb:de:70:5a:e5:f5:f6:c3:ce:56: ab:d4:c0:c1:b7:11:1a:cd:1c:cc:b0:19:fc:1f:21: b4:f4:d8:9d:d1:62:a7:c0:2a:c6:63:79:a2:09:28: 02:62:c5:ee:71:32:b7:22:7c:fe:c4:a3:9c:d0:17: 2f:42:12:b5:09:75:0f:87:7b:2b:38:b0:e5:f1:d5: bd:31:b6:1e:e1:cb:e4:19:4d:20:0a:45:af:f1:2a: 19:2c:4a:d0:a1:c6:df:4d:d5:54:4e:48:3a:17:24: 7b:fb:ab:5e:fc:78:38:01:78:de:69:eb:b0:28:d9: 0f:79:4d:3f:1f:69:6d:20:8e:ce:82:30:a9:d3:42: b5:2d:77:8d:2d:78:dd:dc:26:a6:c9:92:ad:db:05: 75:11:bb:97:be:01:e8:92:a1:31:74:f6:52:e4:5f: fc:c0:7b:bf:e2:10:04:5c:2d:f6:68:a8:c3:92:95: 92:56:85:90:ca:e2:33:fb:7e:31:cd:6a:34:30:ed: 75:52:07:9e:af:82:ee:1c:37:7e:0d:d4:b5:1a:91: f2:a8:64:db:ea:b4:f4:a9:ac:d8:83:e1:86:6b:eb: 6d:90:6a:a8:ea:a9:bf:31:95:96:a5:b2:6f:3c:ba: 04:be:77:fb:35:26:0d:5a:3d:1b:ca:5e:74:fe:c4: 01:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F7:A4:B6:D7:C1:00:63:15:88:8C:0E:8B:8E:5B:D0:B4:77:7C:F9 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/dfekttfBAGMViIwOi45b0LR3fPk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.207.32.0/20 Signature Algorithm: sha256WithRSAEncryption 08:ee:08:17:42:24:83:6e:43:6a:20:5c:7c:51:c7:d0:01:65: 11:60:5c:18:30:05:43:41:c2:ca:e8:80:10:8f:62:20:2a:34: 88:81:05:ed:ca:7d:f3:49:bd:f1:3f:0f:4b:ac:e3:68:b8:c2: 2a:46:c2:6a:40:5a:3a:dd:57:63:e5:5e:15:9f:4e:8d:09:fa: f2:3a:70:51:79:5e:58:0f:2d:eb:25:32:52:95:f5:22:cf:3f: 39:10:b3:bc:07:d8:fe:e9:45:ef:50:08:71:4d:7b:7c:21:37: 92:5a:ba:8a:59:20:49:e7:a3:e3:d7:3a:04:1b:d0:c4:61:3b: ff:8d:a2:a2:8c:ab:64:aa:b8:b1:e2:6a:a7:3a:d8:eb:e9:90: 29:cc:71:b8:1f:5c:91:bf:c3:c0:31:c8:ec:01:a4:7b:7c:12: c5:34:96:b2:e5:17:12:0f:5f:a1:f8:e7:3f:59:bc:31:85:ad: 06:22:fc:e6:f0:ea:79:b0:fa:80:22:4e:01:48:28:b5:ce:f6: c7:06:c0:ed:ac:a5:41:87:ea:cc:2d:48:cd:33:29:96:74:88: 56:43:bc:f7:b0:b2:91:2c:85:80:ee:31:98:a9:3e:fa:e1:ed: ba:19:90:f4:26:01:5b:c0:b1:ee:fb:5f:fb:36:6b:7e:97:b3: 44:09:94:d6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICED8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc1RjdBNEI2RDdDMTAw NjMxNTg4OEMwRThCOEU1QkQwQjQ3NzdDRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWOKGh+95wWuX19sPOVqvUwMG3ERrNHMywGfwfIbT02J3RYqfA KsZjeaIJKAJixe5xMrcifP7Eo5zQFy9CErUJdQ+Heys4sOXx1b0xth7hy+QZTSAK Ra/xKhksStChxt9N1VROSDoXJHv7q178eDgBeN5p67Ao2Q95TT8faW0gjs6CMKnT QrUtd40teN3cJqbJkq3bBXURu5e+AeiSoTF09lLkX/zAe7/iEARcLfZoqMOSlZJW hZDK4jP7fjHNajQw7XVSB56vgu4cN34N1LUakfKoZNvqtPSprNiD4YZr622Qaqjq qb8xlZalsm88ugS+d/s1Jg1aPRvKXnT+xAENAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUdfekttfBAGMViIwOi45b0LR3fPkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL2RmZWt0dGZCQUdNVmlJd09pNDViMExS M2ZQay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATLzyAwDQYJ KoZIhvcNAQELBQADggEBAAjuCBdCJINuQ2ogXHxRx9ABZRFgXBgwBUNBwsrogBCP YiAqNIiBBe3KffNJvfE/D0us42i4wipGwmpAWjrdV2PlXhWfTo0J+vI6cFF5XlgP LeslMlKV9SLPPzkQs7wH2P7pRe9QCHFNe3whN5JauopZIEnno+PXOgQb0MRhO/+N oqKMq2SquLHiaqc62OvpkCnMcbgfXJG/w8AxyOwBpHt8EsU0lrLlFxIPX6H45z9Z vDGFrQYi/Obw6nmw+oAiTgFIKLXO9scGwO2spUGH6swtSM0zKZZ0iFZDvPewspEs hYDuMZipPvrh7boZkPQmAVvAse77X/s2a36Xs0QJlNY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org