$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/ISyaE2KQMbt1mKsLopT1mrxiqpw.roa File: ISyaE2KQMbt1mKsLopT1mrxiqpw.roa (raw, json) Hash identifier: AKVkIMuRFNuT0iZ3LHQskz/eRu7qNZ+LYJCGMGK/yyM= Subject key identifier: 21:2C:9A:13:62:90:31:BB:75:98:AB:0B:A2:94:F5:9A:BC:62:AA:9C Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908 Certificate serial: 0985 Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/ISyaE2KQMbt1mKsLopT1mrxiqpw.roa Signing time: Mon 26 Aug 2024 05:18:43 +0000 ROA not before: Mon 26 Aug 2024 05:18:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131666 IP address blocks: 103.144.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2437 (0x985) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908 Validity Not Before: Aug 26 05:18:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=212C9A13629031BB7598AB0BA294F59ABC62AA9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a5:75:28:65:b5:27:72:ac:89:84:b0:16:1c: 88:24:71:c5:76:0e:28:1c:d6:fd:f0:1d:9a:86:54: d5:09:0b:e1:65:b7:25:3a:5f:cf:29:b8:49:5c:39: 8c:70:95:8a:04:1d:9a:65:e4:35:54:e1:8d:a4:40: f4:ae:6f:04:0b:e2:df:87:18:7c:bd:99:b2:41:2e: 43:06:2b:54:95:7c:6d:33:c7:75:60:8e:69:39:8e: 7c:77:ff:80:a5:d1:32:37:49:91:ab:6f:20:42:58: ab:74:8c:c4:4f:6a:3d:cc:c6:11:d8:fc:04:b9:10: 4b:54:8b:57:b9:0d:9d:ba:91:89:14:70:ec:6a:82: 72:6c:d4:e8:d7:13:80:da:ec:8c:e9:93:f9:f0:23: ca:62:a3:ac:c6:5a:96:a4:97:be:fe:53:cf:1d:e9: 1a:2b:76:c1:9d:e9:82:e8:38:f3:4b:e4:5a:c2:73: 98:9e:99:7c:12:f3:4f:e8:08:4a:2b:86:77:60:b5: 62:2d:41:7c:af:40:55:ac:21:5d:bc:ba:6b:98:42: 88:05:d2:e2:f1:c0:53:d1:88:69:4f:5c:9f:a7:7e: b9:6d:10:22:4c:44:87:95:08:a0:ae:b4:bb:ea:9e: 77:e9:56:0d:25:94:ca:84:5e:51:9d:6b:49:a8:30: 91:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:2C:9A:13:62:90:31:BB:75:98:AB:0B:A2:94:F5:9A:BC:62:AA:9C X509v3 Authority Key Identifier: keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/ISyaE2KQMbt1mKsLopT1mrxiqpw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.144.35.0/24 Signature Algorithm: sha256WithRSAEncryption 94:9d:5a:8d:98:e5:5d:a0:c3:79:26:6c:c8:4f:06:19:d6:ad: 0b:dc:59:a5:e4:49:c1:3d:6d:ea:ca:f5:3d:0e:e8:c4:db:db: 71:b2:e0:55:79:99:b6:95:c7:24:cc:be:3a:dc:e8:94:83:73: 7d:07:4f:f9:71:b6:fa:4f:4f:f5:fc:86:bb:37:6e:d3:72:8c: 75:ca:7e:29:b0:9d:56:4c:04:3a:9a:8d:37:3e:27:3e:04:b1: c0:51:16:44:e7:bd:b4:e5:8b:70:38:16:86:6a:96:1e:2a:eb: bf:31:91:86:07:b4:ec:d6:08:a9:16:a8:dc:6f:8f:21:b2:28: 54:ef:35:29:6d:e6:49:84:6a:fd:1a:56:ad:ff:2e:4b:18:08: e3:4d:5d:14:01:bb:8d:c4:3b:33:1a:72:83:6b:db:84:de:9a: 09:33:ca:61:cc:49:76:a9:db:4f:a2:64:65:d3:26:11:52:a3: f5:a7:ef:dc:6c:dc:f5:eb:3b:e4:ec:78:31:23:80:68:d6:bc: c2:a0:b4:3b:e0:6f:26:92:48:be:3d:1e:f5:71:3b:5a:c8:a8: 6e:02:fe:18:15:70:66:1c:4c:1f:ce:63:59:88:ef:2f:5e:c8: e5:1e:a4:ca:1b:27:e4:86:16:c5:71:44:22:a3:22:e6:21:90: d4:d1:ff:ce -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yNDA4MjYw NTE4NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIxMkM5QTEzNjI5MDMx QkI3NTk4QUIwQkEyOTRGNTlBQkM2MkFBOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcpXUoZbUncqyJhLAWHIgkccV2Digc1v3wHZqGVNUJC+FltyU6 X88puElcOYxwlYoEHZpl5DVU4Y2kQPSubwQL4t+HGHy9mbJBLkMGK1SVfG0zx3Vg jmk5jnx3/4Cl0TI3SZGrbyBCWKt0jMRPaj3MxhHY/AS5EEtUi1e5DZ26kYkUcOxq gnJs1OjXE4Da7Izpk/nwI8pio6zGWpakl77+U88d6RordsGd6YLoOPNL5FrCc5ie mXwS80/oCEorhndgtWItQXyvQFWsIV28umuYQogF0uLxwFPRiGlPXJ+nfrltECJM RIeVCKCutLvqnnfpVg0llMqEXlGda0moMJErAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUISyaE2KQMbt1mKsLopT1mrxiqpwwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1 OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6 MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL0lTeWFFMktRTWJ0MW1Lc0xvcFQxbXJ4 aXFwdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABnkCMwDQYJ KoZIhvcNAQELBQADggEBAJSdWo2Y5V2gw3kmbMhPBhnWrQvcWaXkScE9berK9T0O 6MTb23Gy4FV5mbaVxyTMvjrc6JSDc30HT/lxtvpPT/X8hrs3btNyjHXKfimwnVZM BDqajTc+Jz4EscBRFkTnvbTli3A4FoZqlh4q678xkYYHtOzWCKkWqNxvjyGyKFTv NSlt5kmEav0aVq3/LksYCONNXRQBu43EOzMacoNr24TemgkzymHMSXap20+iZGXT JhFSo/Wn79xs3PXrO+TseDEjgGjWvMKgtDvgbyaSSL49HvVxO1rIqG4C/hgVcGYc TB/OY1mI7y9eyOUepMobJ+SGFsVxRCKjIuYhkNTR/84= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:39 2024 by rpki-client on console-fra.rpki-client.org