$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FISC/saWrDYigByAZ64j4g1jzeurioIc.roa File: saWrDYigByAZ64j4g1jzeurioIc.roa (raw, json) Hash identifier: 0xuLdoOLcK41ickxsIHOF0HhS+z5WHL9iBMtM74j1cc= Subject key identifier: B1:A5:AB:0D:88:A0:07:20:19:EB:88:F8:83:58:F3:7A:EA:E2:A0:87 Certificate issuer: /CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Certificate serial: 0C35 Authority key identifier: F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/saWrDYigByAZ64j4g1jzeurioIc.roa Signing time: Mon 26 Aug 2024 05:16:56 +0000 ROA not before: Mon 26 Aug 2024 05:16:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131588 IP address blocks: 103.229.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3125 (0xc35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F0CE10BD7C2B39A03A70C302BA2B08652C0807D2 Validity Not Before: Aug 26 05:16:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B1A5AB0D88A0072019EB88F88358F37AEAE2A087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:20:08:1f:07:2b:d2:54:17:04:7c:76:ac:b5: 08:79:cc:ee:a2:f1:0c:57:01:1a:2c:5e:fd:b5:2f: 78:3f:14:79:47:38:f0:ae:7e:0b:b8:06:25:7c:e9: 65:12:ef:e7:5d:03:f5:8e:94:9f:c8:8e:23:94:c9: 4e:fb:fa:ae:f8:af:40:9c:47:26:db:f1:3b:33:96: 10:e6:7f:5c:79:9b:1e:b8:ad:b7:72:58:d1:cc:27: 17:d9:2e:15:a6:0d:a7:9a:17:db:84:00:78:e2:ba: 0f:7c:c7:cb:27:d9:93:ca:2a:4a:fa:b1:90:83:38: 98:88:12:47:2c:0e:80:ee:27:5b:aa:c9:4b:4b:87: 7e:9a:b3:e8:a6:e2:85:cc:0b:4e:95:e6:4c:50:db: 87:97:a6:92:54:6d:a6:d1:87:f7:99:f1:66:2a:02: c2:d6:e8:df:84:6a:79:45:c2:dc:3d:ca:6a:b0:7f: 4f:64:69:72:a6:f9:7f:6d:c5:b0:67:ea:1e:8d:3e: 4b:c8:84:89:95:36:9c:8f:d0:11:90:ca:7b:39:ad: bd:eb:39:1e:d1:63:cf:13:f8:1a:e0:7b:e6:b2:30: 79:81:f4:83:e6:25:bc:b8:cb:d8:52:76:b3:6f:da: ee:34:f0:f4:47:32:7a:8f:5d:3e:63:fe:b9:86:68: 76:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A5:AB:0D:88:A0:07:20:19:EB:88:F8:83:58:F3:7A:EA:E2:A0:87 X509v3 Authority Key Identifier: keyid:F0:CE:10:BD:7C:2B:39:A0:3A:70:C3:02:BA:2B:08:65:2C:08:07:D2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/8M4QvXwrOaA6cMMCuisIZSwIB9I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8M4QvXwrOaA6cMMCuisIZSwIB9I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FISC/saWrDYigByAZ64j4g1jzeurioIc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.229.134.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:8a:58:05:84:7a:73:95:44:3a:68:35:5a:0f:75:e2:3f:54: 52:11:4e:a6:3d:62:1c:f4:c6:07:a9:81:5b:40:69:d8:80:9e: 9f:a3:0e:ad:8f:ca:a7:ec:47:00:6f:41:c3:fb:46:22:21:c4: 35:17:ec:38:42:93:56:7b:f0:4c:1b:aa:33:04:8f:48:6d:ad: ed:e3:27:f3:fe:f7:f3:71:2b:28:e4:e8:40:05:d9:a2:dd:9e: 98:6d:ef:89:44:43:c5:2d:a1:ec:a9:8a:1f:eb:6e:bb:8c:7c: 09:d8:3a:b8:2b:30:9b:82:ea:00:0c:1f:42:3f:bd:66:f5:1d: 85:9b:87:94:c8:61:67:fe:b4:96:cf:5a:93:1f:22:dd:be:43: a1:0a:19:2f:47:5e:2a:93:42:18:e9:fd:93:d6:64:ef:14:c5: 47:5f:06:14:39:4e:9b:57:0d:fb:e7:49:1b:13:74:55:01:2c: 43:5c:6e:6c:6b:f1:da:b1:e8:3f:a6:87:08:ce:e9:28:36:49: 07:84:31:6f:65:be:81:b4:46:ad:8e:59:46:3a:af:49:8b:cd: 0e:26:47:9e:0b:1a:36:1a:93:31:49:b8:32:8b:fc:85:7d:6d: ed:3a:a1:b9:a8:b0:46:77:94:0a:5c:2a:6c:6c:a7:80:05:fb: 19:a1:f2:53 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDDUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjBD RTEwQkQ3QzJCMzlBMDNBNzBDMzAyQkEyQjA4NjUyQzA4MDdEMjAeFw0yNDA4MjYw NTE2NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxQTVBQjBEODhBMDA3 MjAxOUVCODhGODgzNThGMzdBRUFFMkEwODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFIAgfByvSVBcEfHastQh5zO6i8QxXARosXv21L3g/FHlHOPCu fgu4BiV86WUS7+ddA/WOlJ/IjiOUyU77+q74r0CcRybb8TszlhDmf1x5mx64rbdy WNHMJxfZLhWmDaeaF9uEAHjiug98x8sn2ZPKKkr6sZCDOJiIEkcsDoDuJ1uqyUtL h36as+im4oXMC06V5kxQ24eXppJUbabRh/eZ8WYqAsLW6N+EanlFwtw9ymqwf09k aXKm+X9txbBn6h6NPkvIhImVNpyP0BGQyns5rb3rOR7RY88T+Brge+ayMHmB9IPm Jby4y9hSdrNv2u408PRHMnqPXT5j/rmGaHZlAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUsaWrDYigByAZ64j4g1jzeurioIcwHwYDVR0jBBgwFoAU8M4QvXwrOaA6cMMC uisIZSwIB9IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRklTQy84 TTRRdlh3ck9hQTZjTU1DdWlzSVpTd0lCOUkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzhNNFF2WHdyT2FBNmNNTUN1aXNJWlN3SUI5SS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZJU0Mvc2FXckRZaWdCeUFaNjRqNGcxanpl dXJpb0ljLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGflhjAN BgkqhkiG9w0BAQsFAAOCAQEAXIpYBYR6c5VEOmg1Wg914j9UUhFOpj1iHPTGB6mB W0Bp2ICen6MOrY/Kp+xHAG9Bw/tGIiHENRfsOEKTVnvwTBuqMwSPSG2t7eMn8/73 83ErKOToQAXZot2emG3viURDxS2h7KmKH+tuu4x8Cdg6uCswm4LqAAwfQj+9ZvUd hZuHlMhhZ/60ls9akx8i3b5DoQoZL0deKpNCGOn9k9Zk7xTFR18GFDlOm1cN++dJ GxN0VQEsQ1xubGvx2rHoP6aHCM7pKDZJB4Qxb2W+gbRGrY5ZRjqvSYvNDiZHngsa NhqTMUm4Mov8hX1t7TqhuaiwRneUClwqbGyngAX7GaHyUw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org