$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/BaSLJy0IfHPhMncFrgCW1BbnZaM.roa File: BaSLJy0IfHPhMncFrgCW1BbnZaM.roa (raw, json) Hash identifier: xVPB44mid6QkvY0XfTVF5LBBb/N66bmFBHqHYtIsOyk= Subject key identifier: 05:A4:8B:27:2D:08:7C:73:E1:32:77:05:AE:00:96:D4:16:E7:65:A3 Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 030E Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/BaSLJy0IfHPhMncFrgCW1BbnZaM.roa Signing time: Mon 26 Aug 2024 05:17:05 +0000 ROA not before: Mon 26 Aug 2024 05:17:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.170.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 782 (0x30e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Aug 26 05:17:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=05A48B272D087C73E1327705AE0096D416E765A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f5:12:85:ac:33:78:31:82:34:a7:fa:25:4e: b4:9d:db:58:b3:b1:a9:d2:a9:98:ec:b9:19:12:fa: 0a:eb:d7:41:71:be:0b:af:b9:10:ab:22:b9:ae:50: 26:8d:e0:bb:c3:ff:20:21:24:97:1e:66:0c:af:79: 9f:c7:19:ac:e5:1d:18:5e:e7:a7:17:63:6a:31:21: 57:a6:1b:b0:a8:bf:84:92:27:a1:ba:8a:73:bd:a1: 8e:81:a5:d9:1a:6d:b6:56:b9:3c:cf:e9:20:8c:64: 01:99:76:7b:b4:9f:4e:9d:09:48:d0:d9:d8:ca:aa: cb:9e:42:97:73:5e:2b:82:db:e8:8e:d3:5f:c2:af: 8c:83:63:5d:47:dc:04:37:37:59:02:ab:3b:26:33: 5f:b6:e2:76:fa:f7:46:f1:a3:bf:5e:1b:a0:21:24: e5:61:79:da:6b:74:b1:54:bb:72:da:e1:dc:88:bd: ab:7c:39:35:e8:45:28:39:c1:63:e5:0d:6f:f8:ab: db:68:9b:82:a2:19:5a:6c:ad:04:8d:47:e5:c5:d2: d2:64:67:48:1f:a7:06:14:02:45:93:69:5d:57:dc: d7:98:30:3f:77:75:80:e9:a3:e4:87:c4:c2:08:64: cd:0a:9b:3a:67:1f:8f:ea:e3:39:0b:ca:c5:a0:be: 55:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A4:8B:27:2D:08:7C:73:E1:32:77:05:AE:00:96:D4:16:E7:65:A3 X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/BaSLJy0IfHPhMncFrgCW1BbnZaM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.14.0/23 Signature Algorithm: sha256WithRSAEncryption 52:62:b0:30:b6:0a:4e:b0:73:9d:de:fa:fa:dd:4a:ce:bf:b4: 11:61:37:c2:c5:4e:42:80:45:ff:c1:73:59:f0:cb:aa:46:9a: 93:d5:50:ab:f6:17:cc:20:02:5c:1c:56:04:82:f9:3f:96:35: a6:06:53:af:61:3f:2a:8f:ca:ef:2e:1a:f9:a0:4e:41:56:9c: bd:14:24:22:71:52:b5:f2:66:f5:bb:d8:09:fc:29:bb:f3:d5: 0b:03:f9:d5:dc:37:a3:2e:91:02:77:b5:73:a0:c7:0c:2d:f3: 94:98:d4:0e:66:ef:86:26:7a:b4:94:b1:99:8a:c4:ee:60:f2: 0d:86:2c:9f:8f:4d:4a:e3:d4:ae:86:48:09:1d:37:ef:fd:bc: 34:49:84:93:5b:db:ab:92:8d:b8:db:af:d7:ce:ab:94:5b:47: 98:bb:b3:81:28:fb:f7:47:2c:5e:ec:73:bd:85:91:c2:c9:6f: 7d:f4:e8:82:68:4b:16:00:22:d6:b7:af:da:d5:b0:84:4b:42: 45:dd:af:36:9f:f1:1b:f2:11:cb:b2:b7:1c:33:fd:9f:58:e9: 1e:56:2e:f3:5e:b1:05:1b:11:bf:96:80:f9:11:ff:12:33:17: a9:49:d6:6b:54:3c:ce:22:6a:e2:6b:e4:40:3b:bb:2a:93:3d: 5a:47:86:2d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAw4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yNDA4MjYw NTE3MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1QTQ4QjI3MkQwODdD NzNFMTMyNzcwNUFFMDA5NkQ0MTZFNzY1QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/9RKFrDN4MYI0p/olTrSd21izsanSqZjsuRkS+grr10Fxvguv uRCrIrmuUCaN4LvD/yAhJJceZgyveZ/HGazlHRhe56cXY2oxIVemG7Cov4SSJ6G6 inO9oY6BpdkabbZWuTzP6SCMZAGZdnu0n06dCUjQ2djKqsueQpdzXiuC2+iO01/C r4yDY11H3AQ3N1kCqzsmM1+24nb690bxo79eG6AhJOVhedprdLFUu3La4dyIvat8 OTXoRSg5wWPlDW/4q9tom4KiGVpsrQSNR+XF0tJkZ0gfpwYUAkWTaV1X3NeYMD93 dYDpo+SHxMIIZM0KmzpnH4/q4zkLysWgvlX1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBaSLJy0IfHPhMncFrgCW1BbnZaMwHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZL0JhU0xKeTBJZkhQaE1uY0Zy Z0NXMUJiblphTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn qg4wDQYJKoZIhvcNAQELBQADggEBAFJisDC2Ck6wc53e+vrdSs6/tBFhN8LFTkKA Rf/Bc1nwy6pGmpPVUKv2F8wgAlwcVgSC+T+WNaYGU69hPyqPyu8uGvmgTkFWnL0U JCJxUrXyZvW72An8Kbvz1QsD+dXcN6MukQJ3tXOgxwwt85SY1A5m74YmerSUsZmK xO5g8g2GLJ+PTUrj1K6GSAkdN+/9vDRJhJNb26uSjbjbr9fOq5RbR5i7s4Eo+/dH LF7sc72FkcLJb3306IJoSxYAIta3r9rVsIRLQkXdrzaf8RvyEcuytxwz/Z9Y6R5W LvNesQUbEb+WgPkR/xIzF6lJ1mtUPM4iauJr5EA7uyqTPVpHhi0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org