$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/6p-hA4WwRLrKGQxGFviBOzXcDBg.roa File: 6p-hA4WwRLrKGQxGFviBOzXcDBg.roa (raw, json) Hash identifier: O6y6WVSc09CE0hm6As9fFbCZVbhoPG4+vEMgWp9QlMo= Subject key identifier: EA:9F:A1:03:85:B0:44:BA:CA:19:0C:46:16:F8:81:3B:35:DC:0C:18 Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908 Certificate serial: 0983 Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/6p-hA4WwRLrKGQxGFviBOzXcDBg.roa Signing time: Mon 26 Aug 2024 05:18:43 +0000 ROA not before: Mon 26 Aug 2024 05:18:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131666 IP address blocks: 103.144.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2435 (0x983) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908 Validity Not Before: Aug 26 05:18:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EA9FA10385B044BACA190C4616F8813B35DC0C18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:38:35:63:08:64:c3:0c:32:8c:69:86:35:ce: f8:49:14:95:aa:28:bf:08:d4:35:d1:9b:3c:8b:48: ef:4b:7d:37:df:ca:73:4c:53:45:07:0f:39:6c:23: 69:67:9d:30:48:cd:73:4d:1e:7e:2d:8a:cb:61:7c: 12:d0:62:80:35:3c:ec:f9:64:36:29:36:fe:8c:18: 9c:0b:46:4a:47:a7:eb:44:68:38:40:f1:35:aa:0d: fe:d3:fd:ff:ce:0c:55:47:16:12:23:23:29:60:14: 0e:23:16:b8:af:b5:b3:43:4c:90:53:45:9e:f0:7a: e9:3b:8e:67:5e:6f:00:b7:0c:56:04:62:8b:6f:26: 16:93:b2:57:1e:18:e6:d8:27:02:6c:e7:01:b9:60: f6:93:52:44:8c:21:41:8c:bc:e9:18:4f:e2:19:33: 8a:29:dd:65:71:77:5c:c1:46:81:83:cb:c2:4f:87: 09:cc:cf:b8:c5:97:96:82:49:70:16:62:d8:c9:fe: bf:01:00:d4:16:a3:dd:5a:40:e4:91:1a:ea:2c:93: a6:11:32:4a:cc:77:5f:0a:5b:fb:a4:d7:f9:cd:8b: 71:03:cf:f0:da:84:f5:96:6e:66:24:49:e4:32:72: f6:6c:b8:35:69:07:26:d3:f2:e3:8d:c2:65:82:2a: 5a:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9F:A1:03:85:B0:44:BA:CA:19:0C:46:16:F8:81:3B:35:DC:0C:18 X509v3 Authority Key Identifier: keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/6p-hA4WwRLrKGQxGFviBOzXcDBg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.144.34.0/23 Signature Algorithm: sha256WithRSAEncryption 12:05:c7:4d:9e:8e:49:fc:79:52:42:bc:2f:fc:89:35:8f:43: 0e:25:aa:62:c2:d7:ca:34:15:b6:0f:f6:33:59:73:9a:f7:71: 73:3e:47:d7:84:77:10:01:ae:e2:8b:2d:74:5b:90:cd:e0:82: 55:48:b4:a2:70:a3:a6:af:35:81:17:df:e4:dd:ff:10:e4:4a: cc:e6:3f:2a:a1:1d:53:cf:94:3c:dd:b0:87:88:4b:7d:bc:82: 8b:6a:9f:a3:62:05:3a:a8:9d:96:ea:ca:7a:8f:f6:d0:07:dc: 6e:c0:37:aa:d6:7b:53:93:4b:dd:f7:9f:8e:7d:d5:a1:93:ba: 28:85:e4:c4:9a:d7:e3:ec:90:4f:1a:1e:30:28:cd:81:62:ad: 50:a1:24:5f:d7:6b:45:5d:15:3d:04:f6:66:6b:ef:47:2e:5d: 0e:42:e7:3d:59:46:6c:be:4c:dd:10:10:89:eb:66:b1:75:7b: 24:31:dc:a4:df:4c:bf:15:a4:31:2b:60:c1:00:38:66:7b:aa: 5f:b1:b8:94:98:e0:02:a6:4b:13:d7:24:3d:0b:82:6a:3b:b0: 8e:cc:15:6c:90:e0:d2:04:1a:10:d3:7c:8d:ab:87:40:7d:01: 48:a0:14:c7:e1:7a:dc:0e:96:d6:66:7a:88:86:98:34:df:0b: 81:bf:3b:a4 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCYMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yNDA4MjYw NTE4NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVBOUZBMTAzODVCMDQ0 QkFDQTE5MEM0NjE2Rjg4MTNCMzVEQzBDMTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpODVjCGTDDDKMaYY1zvhJFJWqKL8I1DXRmzyLSO9LfTffynNM U0UHDzlsI2lnnTBIzXNNHn4tisthfBLQYoA1POz5ZDYpNv6MGJwLRkpHp+tEaDhA 8TWqDf7T/f/ODFVHFhIjIylgFA4jFrivtbNDTJBTRZ7weuk7jmdebwC3DFYEYotv JhaTslceGObYJwJs5wG5YPaTUkSMIUGMvOkYT+IZM4op3WVxd1zBRoGDy8JPhwnM z7jFl5aCSXAWYtjJ/r8BANQWo91aQOSRGuosk6YRMkrMd18KW/uk1/nNi3EDz/Da hPWWbmYkSeQycvZsuDVpBybT8uONwmWCKlqvAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU6p+hA4WwRLrKGQxGFviBOzXcDBgwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1 OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6 MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFNULzZwLWhBNFd3UkxyS0dReEdGdmlCT3pY Y0RCZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkCIwDQYJ KoZIhvcNAQELBQADggEBABIFx02ejkn8eVJCvC/8iTWPQw4lqmLC18o0FbYP9jNZ c5r3cXM+R9eEdxABruKLLXRbkM3gglVItKJwo6avNYEX3+Td/xDkSszmPyqhHVPP lDzdsIeIS328gotqn6NiBTqonZbqynqP9tAH3G7AN6rWe1OTS933n4591aGTuiiF 5MSa1+PskE8aHjAozYFirVChJF/Xa0VdFT0E9mZr70cuXQ5C5z1ZRmy+TN0QEInr ZrF1eyQx3KTfTL8VpDErYMEAOGZ7ql+xuJSY4AKmSxPXJD0Lgmo7sI7MFWyQ4NIE GhDTfI2rh0B9AUigFMfhetwOltZmeoiGmDTfC4G/O6Q= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org