$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GOEASY/TWbQ75kOtb8v9U4WNXu8UiESxYU.roa File: TWbQ75kOtb8v9U4WNXu8UiESxYU.roa (raw, json) Hash identifier: /ZAV0lFdHFw7Av6DNKmiGSIJewRhL/cLT1+JjINB6Uw= Subject key identifier: 4D:66:D0:EF:99:0E:B5:BF:2F:F5:4E:16:35:7B:BC:52:21:12:C5:85 Certificate issuer: /CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Certificate serial: 030D Authority key identifier: 66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/TWbQ75kOtb8v9U4WNXu8UiESxYU.roa Signing time: Mon 26 Aug 2024 05:17:05 +0000 ROA not before: Mon 26 Aug 2024 05:17:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.170.15.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 781 (0x30d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66B69E5B178B8C9444C4D64A6963B0BC9FA35762 Validity Not Before: Aug 26 05:17:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4D66D0EF990EB5BF2FF54E16357BBC522112C585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:cf:25:15:9c:0c:6c:52:98:76:a3:1f:d6:06: a5:54:b2:63:40:cf:9f:68:d4:80:b5:6d:e8:ab:69: e9:c8:27:8b:dc:fb:07:a6:a8:93:a5:68:a9:28:e9: 3a:38:72:6c:fa:1a:de:c5:5f:68:63:61:22:79:d3: 34:96:59:30:12:8a:d3:3c:35:df:89:44:f7:11:df: 49:b2:62:06:63:94:d6:8d:13:4b:12:21:52:76:b3: 26:f2:41:88:2d:a9:f2:60:6d:63:58:57:b6:5f:78: ca:af:e6:bf:42:94:51:3c:70:43:84:5d:23:07:bc: 51:0a:d3:98:4b:77:c8:6b:01:40:16:ea:83:f3:09: 40:62:3e:d0:50:81:c9:9d:1e:2c:87:4c:24:4c:f1: 85:cb:c5:1d:79:68:a6:ca:06:34:6b:0c:f3:8b:98: 92:18:3b:44:54:aa:e7:3c:d8:90:fb:8f:b7:50:51: 3a:8c:0e:f6:1d:8b:5b:2a:5e:a6:8b:e0:ea:00:f2: 8a:f9:ad:73:14:c8:44:8f:40:fd:23:8a:47:04:6b: 68:99:34:43:6f:a5:8d:11:82:d9:99:1c:1d:f0:55: 9c:7a:48:f0:94:0b:1c:87:e6:d3:e3:c9:c2:c2:16: 0e:6d:99:5a:e3:1f:dd:22:2f:1b:16:8a:0a:9d:e4: 75:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:66:D0:EF:99:0E:B5:BF:2F:F5:4E:16:35:7B:BC:52:21:12:C5:85 X509v3 Authority Key Identifier: keyid:66:B6:9E:5B:17:8B:8C:94:44:C4:D6:4A:69:63:B0:BC:9F:A3:57:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/ZraeWxeLjJRExNZKaWOwvJ-jV2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZraeWxeLjJRExNZKaWOwvJ-jV2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GOEASY/TWbQ75kOtb8v9U4WNXu8UiESxYU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.170.15.0/24 Signature Algorithm: sha256WithRSAEncryption 16:2f:76:2d:f5:ca:c8:29:87:25:fe:f3:2b:10:9a:10:47:d2: 13:ea:2c:73:d0:69:e4:dd:62:19:37:52:93:63:69:b9:ac:8a: f6:dc:a8:7d:1e:40:2d:ac:7a:3e:2c:fd:4c:4f:42:bd:d9:4c: d1:28:55:6a:e3:ce:f8:2d:9c:d9:98:a9:70:53:63:57:5a:00: 75:cc:5d:75:52:ed:2c:83:30:b9:36:24:e7:c0:60:c6:cc:3d: 3e:df:2b:00:7a:b9:74:f5:52:06:d7:b8:0b:28:fa:80:cf:e7: 68:97:41:2b:ff:77:a2:90:ec:27:ad:7b:8a:14:53:ca:27:f4: 4c:58:fb:a8:2e:19:9d:77:57:da:ad:30:9d:97:d4:ea:da:72: 47:9a:d7:73:a1:8e:dd:b8:8f:ec:44:63:23:42:16:20:29:a1: 25:03:d5:67:68:6b:94:0d:05:f6:9e:25:cf:9f:8b:ee:12:4d: 9e:19:4f:29:40:09:e5:1d:05:8d:b7:a6:25:47:b1:1c:e2:cf: 6f:51:b2:5c:71:b5:91:d5:1d:b7:0f:35:59:53:f8:12:71:fa: b9:f9:f4:a7:76:ff:c4:ba:14:c1:31:50:23:9e:6e:ae:ad:e9: 18:0b:24:7e:62:c1:a2:8b:bd:a2:12:7b:24:f7:a4:9d:f1:59: 16:ce:23:36 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAw0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjZC NjlFNUIxNzhCOEM5NDQ0QzRENjRBNjk2M0IwQkM5RkEzNTc2MjAeFw0yNDA4MjYw NTE3MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRENjZEMEVGOTkwRUI1 QkYyRkY1NEUxNjM1N0JCQzUyMjExMkM1ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVzyUVnAxsUph2ox/WBqVUsmNAz59o1IC1beiraenIJ4vc+wem qJOlaKko6To4cmz6Gt7FX2hjYSJ50zSWWTASitM8Nd+JRPcR30myYgZjlNaNE0sS IVJ2sybyQYgtqfJgbWNYV7ZfeMqv5r9ClFE8cEOEXSMHvFEK05hLd8hrAUAW6oPz CUBiPtBQgcmdHiyHTCRM8YXLxR15aKbKBjRrDPOLmJIYO0RUquc82JD7j7dQUTqM DvYdi1sqXqaL4OoA8or5rXMUyESPQP0jikcEa2iZNENvpY0RgtmZHB3wVZx6SPCU CxyH5tPjycLCFg5tmVrjH90iLxsWigqd5HUdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTWbQ75kOtb8v9U4WNXu8UiESxYUwHwYDVR0jBBgwFoAUZraeWxeLjJRExNZK aWOwvJ+jV2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZ L1pyYWVXeGVMakpSRXhOWkthV093dkotalYySS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvWnJhZVd4ZUxqSlJFeE5aS2FXT3d2Si1qVjJJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvR09FQVNZL1RXYlE3NWtPdGI4djlVNFdO WHU4VWlFU3hZVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn qg8wDQYJKoZIhvcNAQELBQADggEBABYvdi31ysgphyX+8ysQmhBH0hPqLHPQaeTd Yhk3UpNjabmsivbcqH0eQC2sej4s/UxPQr3ZTNEoVWrjzvgtnNmYqXBTY1daAHXM XXVS7SyDMLk2JOfAYMbMPT7fKwB6uXT1UgbXuAso+oDP52iXQSv/d6KQ7Cete4oU U8on9ExY+6guGZ13V9qtMJ2X1Orackea13Ohjt24j+xEYyNCFiApoSUD1Wdoa5QN BfaeJc+fi+4STZ4ZTylACeUdBY23piVHsRziz29RslxxtZHVHbcPNVlT+BJx+rn5 9Kd2/8S6FMExUCOebq6t6RgLJH5iwaKLvaISeyT3pJ3xWRbOIzY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org