$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/uLK9rH0gyf9MmfBt7u3H6hCOUHg.roa File: uLK9rH0gyf9MmfBt7u3H6hCOUHg.roa (raw, json) Hash identifier: 8ETKW4WgcCJKCtwy3s+n7SR2bL7HgefMMH4KtqnPBU0= Subject key identifier: B8:B2:BD:AC:7D:20:C9:FF:4C:99:F0:6D:EE:ED:C7:EA:10:8E:50:78 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 101A Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uLK9rH0gyf9MmfBt7u3H6hCOUHg.roa Signing time: Mon 26 Aug 2024 05:16:04 +0000 ROA not before: Mon 26 Aug 2024 05:16:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 103.36.116.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4122 (0x101a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B8B2BDAC7D20C9FF4C99F06DEEEDC7EA108E5078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6a:31:46:00:99:ff:4f:d9:fa:40:76:ff:b0: 7e:03:51:ec:02:da:57:8f:ff:cb:3c:d3:4f:a7:45: 32:1d:72:1b:fd:35:bc:ac:bc:94:06:25:94:35:b9: ae:49:a0:0a:b3:93:aa:f2:2f:d9:45:e4:22:b4:51: 5f:4a:05:19:f5:6d:4a:96:6e:67:4b:b2:ba:57:73: 5c:d4:06:5f:65:c1:f8:c8:a8:30:61:c4:4b:c3:7a: 50:3f:1a:28:33:86:d6:57:4f:95:87:56:58:53:6f: f6:f3:5b:55:bc:7a:c1:bf:37:80:e9:44:00:b6:bb: 3b:42:84:74:3a:10:fd:66:71:38:ad:af:86:a8:38: 64:15:59:40:c7:f6:8e:39:88:89:4c:ad:7c:d4:6e: 77:0e:a5:42:07:16:94:6a:8e:a0:00:83:17:5b:e7: 1e:44:0d:13:ed:e3:f9:d8:d3:3c:46:66:ea:eb:5f: ef:04:be:6a:94:60:08:cf:bd:fc:97:97:c2:40:55: 47:4c:2b:68:9b:94:2f:06:ef:01:ae:4e:69:a0:ac: 5f:87:97:bc:d4:c3:f4:c1:fa:6b:ba:86:31:89:4f: 13:ef:6f:e3:dd:cb:88:b8:f1:29:0d:a7:c8:95:b2: 7e:25:9a:ef:ff:46:53:62:8c:6e:4c:89:b7:7a:c9: b1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B2:BD:AC:7D:20:C9:FF:4C:99:F0:6D:EE:ED:C7:EA:10:8E:50:78 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/uLK9rH0gyf9MmfBt7u3H6hCOUHg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.36.116.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:03:e9:69:4b:7e:b0:63:77:fc:99:f3:8b:22:e9:38:5d:ed: 0a:c5:99:ff:26:c2:ff:8f:3f:78:38:79:ab:2f:d1:be:3e:b1: d4:da:7e:14:11:c6:6d:95:fb:3a:7f:2e:47:ca:79:dd:de:7c: 74:63:76:16:c5:7d:37:d7:7f:ba:05:aa:a5:3d:b4:cf:35:c7: 52:87:f4:d7:e9:80:8e:8e:02:cf:20:fc:31:fc:af:2d:ce:fb: 61:60:d5:46:b0:b3:fb:7b:9e:69:52:1f:b9:2a:92:1e:8c:32: 1f:c7:82:f2:ba:f2:c4:0b:4a:17:3e:d8:df:ac:14:d8:19:98: 98:6f:16:75:57:8c:ef:73:d0:96:43:e7:30:c5:c8:8c:a6:d9: 91:fb:e5:b9:86:cb:7a:eb:8a:d3:6d:b2:da:69:37:12:ff:ec: ba:26:09:05:7e:4d:27:a1:28:aa:c4:65:f3:af:21:ce:83:d7: 1e:26:ed:ec:9d:7e:e4:1b:54:02:4f:83:82:eb:0f:bb:e2:a3: 0c:fd:a7:83:d2:e7:7e:6b:00:61:fe:77:f2:c7:0e:df:94:db: 4c:e8:66:de:c7:ae:81:e6:7c:21:b3:f3:2c:8f:f2:72:1c:b6: 65:2c:d7:b4:b3:47:c3:d5:37:b9:c9:51:66:14:85:3d:7f:2f: 05:5f:b4:22 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICEBowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4QjJCREFDN0QyMEM5 RkY0Qzk5RjA2REVFRURDN0VBMTA4RTUwNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfajFGAJn/T9n6QHb/sH4DUewC2leP/8s800+nRTIdchv9Nbys vJQGJZQ1ua5JoAqzk6ryL9lF5CK0UV9KBRn1bUqWbmdLsrpXc1zUBl9lwfjIqDBh xEvDelA/GigzhtZXT5WHVlhTb/bzW1W8esG/N4DpRAC2uztChHQ6EP1mcTitr4ao OGQVWUDH9o45iIlMrXzUbncOpUIHFpRqjqAAgxdb5x5EDRPt4/nY0zxGZurrX+8E vmqUYAjPvfyXl8JAVUdMK2iblC8G7wGuTmmgrF+Hl7zUw/TB+mu6hjGJTxPvb+Pd y4i48SkNp8iVsn4lmu//RlNijG5Mibd6ybFxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUuLK9rH0gyf9MmfBt7u3H6hCOUHgwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3VMSzlySDBneWY5TW1mQnQ3dTNINmhD T1VIZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJnJHQwDQYJ KoZIhvcNAQELBQADggEBAG4D6WlLfrBjd/yZ84si6Thd7QrFmf8mwv+PP3g4easv 0b4+sdTafhQRxm2V+zp/LkfKed3efHRjdhbFfTfXf7oFqqU9tM81x1KH9NfpgI6O As8g/DH8ry3O+2Fg1Uaws/t7nmlSH7kqkh6MMh/HgvK68sQLShc+2N+sFNgZmJhv FnVXjO9z0JZD5zDFyIym2ZH75bmGy3rritNtstppNxL/7LomCQV+TSehKKrEZfOv Ic6D1x4m7eydfuQbVAJPg4LrD7viowz9p4PS535rAGH+d/LHDt+U20zoZt7HroHm fCGz8yyP8nIctmUs17SzR8PVN7nJUWYUhT1/LwVftCI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org