$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/iS3k3bwLRHPFRc8SErrUzFKf5-U.roa File: iS3k3bwLRHPFRc8SErrUzFKf5-U.roa (raw, json) Hash identifier: pSeYnd6lkojNXP7xP9sNHgzFgy4R9kgS3VaSwUcy5Lg= Subject key identifier: 89:2D:E4:DD:BC:0B:44:73:C5:45:CF:12:12:BA:D4:CC:52:9F:E7:E5 Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Certificate serial: 0C34 Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/iS3k3bwLRHPFRc8SErrUzFKf5-U.roa Signing time: Mon 26 Aug 2024 05:16:55 +0000 ROA not before: Mon 26 Aug 2024 05:16:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131588 IP address blocks: 103.229.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3124 (0xc34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Validity Not Before: Aug 26 05:16:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=892DE4DDBC0B4473C545CF1212BAD4CC529FE7E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:fb:85:f3:82:12:7d:64:cb:ea:e6:f3:8d:d1: a6:78:e5:d0:08:8a:d6:9b:8c:a6:7b:07:3c:43:6d: 04:03:79:a0:ac:27:d5:f7:df:aa:08:f4:ca:7d:2d: a2:f3:ea:64:17:2c:92:b7:35:1e:a0:03:a5:10:6e: dc:31:c6:4f:db:f4:9c:43:5a:02:bc:cc:61:c4:30: 25:13:2e:75:2c:a1:c0:9c:f0:15:24:97:91:68:1d: 86:36:36:e1:bd:5d:c7:6a:06:f4:62:cd:60:5c:6d: 69:17:ae:9f:ae:e4:81:a8:78:c4:23:b0:67:ae:3f: 84:bd:d4:db:89:87:c7:b6:d1:4e:d4:b8:2e:3a:3c: db:ce:bf:cc:fb:bf:67:36:bf:6b:2b:ad:4d:82:54: cc:7b:67:b7:5d:4c:77:14:0e:c6:6a:b6:1e:2e:a0: db:49:e8:dc:41:b6:bf:ca:80:38:23:c1:0d:60:28: 98:17:ab:52:3f:98:ea:96:4a:7d:e2:32:ba:00:c1: 83:e4:74:0b:56:e7:de:38:50:0c:e6:72:9f:85:b1: 70:51:7d:d9:22:3d:cc:f4:77:63:69:4e:dc:65:4e: fa:28:ac:ee:0f:58:08:b3:ea:67:2a:d9:4f:e6:e3: e3:61:b8:2f:a5:b6:ac:5d:42:8b:d2:33:0b:bb:f3: 30:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:2D:E4:DD:BC:0B:44:73:C5:45:CF:12:12:BA:D4:CC:52:9F:E7:E5 X509v3 Authority Key Identifier: keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/iS3k3bwLRHPFRc8SErrUzFKf5-U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.132.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:27:ed:c7:75:8e:33:a0:d2:d7:22:20:cd:4e:9e:a9:ac:5d: d4:5e:bf:9b:79:a7:fe:8a:b7:85:63:07:86:33:69:2e:b5:8d: 64:2c:4b:7b:c7:d0:bf:a1:5c:6b:e2:83:b1:50:e8:cd:eb:d4: bd:03:90:84:d8:86:84:d3:65:aa:e3:1c:21:7a:7c:3a:0b:50: 94:0c:4c:9f:c5:df:3c:e7:40:f4:35:ec:a3:17:ae:aa:38:9d: 99:a9:7b:b9:38:81:3d:e9:32:0e:45:30:4d:e2:ba:52:0d:a0: 1f:52:55:0a:71:3c:e5:68:22:e9:7c:64:e2:23:57:bd:a9:9b: 7b:be:99:ab:a7:f1:05:0d:3a:cc:7d:3c:1e:8d:6d:04:d0:52: c5:7e:0c:01:89:d0:b3:14:13:54:c4:03:5b:af:08:73:ae:3f: eb:86:d8:70:37:18:22:c4:ba:df:e9:ac:fd:39:3b:bf:64:18: 39:0e:3f:92:8e:0c:cc:6d:40:8e:d5:88:e2:52:d5:b0:ee:49: 05:64:e7:a6:e7:db:8a:28:00:22:af:ba:ad:42:35:80:e7:32: 4b:66:a9:b0:2f:d6:05:a3:4e:4e:8b:83:ac:d7:fe:f9:57:2d: f4:0e:38:01:35:3b:b4:0d:ec:31:26:08:be:11:54:f3:df:7d: c8:3e:3d:7b -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDDQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjBD RTEwQkQ3QzJCMzlBMDNBNzBDMzAyQkEyQjA4NjUyQzA4MDdEMjAeFw0yNDA4MjYw NTE2NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5MkRFNEREQkMwQjQ0 NzNDNTQ1Q0YxMjEyQkFENENDNTI5RkU3RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7+4XzghJ9ZMvq5vON0aZ45dAIitabjKZ7BzxDbQQDeaCsJ9X3 36oI9Mp9LaLz6mQXLJK3NR6gA6UQbtwxxk/b9JxDWgK8zGHEMCUTLnUsocCc8BUk l5FoHYY2NuG9XcdqBvRizWBcbWkXrp+u5IGoeMQjsGeuP4S91NuJh8e20U7UuC46 PNvOv8z7v2c2v2srrU2CVMx7Z7ddTHcUDsZqth4uoNtJ6NxBtr/KgDgjwQ1gKJgX q1I/mOqWSn3iMroAwYPkdAtW5944UAzmcp+FsXBRfdkiPcz0d2NpTtxlTvoorO4P WAiz6mcq2U/m4+NhuC+ltqxdQovSMwu78zBtAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUiS3k3bwLRHPFRc8SErrUzFKf5+UwHwYDVR0jBBgwFoAU8M4QvXwrOaA6cMMC uisIZSwIB9IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRklTQy84 TTRRdlh3ck9hQTZjTU1DdWlzSVpTd0lCOUkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzhNNFF2WHdyT2FBNmNNTUN1aXNJWlN3SUI5SS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZJU0MvaVMzazNid0xSSFBGUmM4U0VyclV6 RktmNS1VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGflhDAN BgkqhkiG9w0BAQsFAAOCAQEADSftx3WOM6DS1yIgzU6eqaxd1F6/m3mn/oq3hWMH hjNpLrWNZCxLe8fQv6Fca+KDsVDozevUvQOQhNiGhNNlquMcIXp8OgtQlAxMn8Xf POdA9DXsoxeuqjidmal7uTiBPekyDkUwTeK6Ug2gH1JVCnE85Wgi6Xxk4iNXvamb e76Zq6fxBQ06zH08Ho1tBNBSxX4MAYnQsxQTVMQDW68Ic64/64bYcDcYIsS63+ms /Tk7v2QYOQ4/ko4MzG1AjtWI4lLVsO5JBWTnpufbiigAIq+6rUI1gOcyS2apsC/W BaNOTouDrNf++Vct9A44ATU7tA3sMSYIvhFU8999yD49ew== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:06 2024 by rpki-client on console-ams.rpki-client.org