$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/J6vsSGUUbPkTNqPcDwCekwv8BoU.roa File: J6vsSGUUbPkTNqPcDwCekwv8BoU.roa (raw, json) Hash identifier: VB6mAJYT6VIzyBwNY1u+1RyjNcaOSNsJ1ZMoZ8TTDu4= Subject key identifier: 27:AB:EC:48:65:14:6C:F9:13:36:A3:DC:0F:00:9E:93:0B:FC:06:85 Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908 Certificate serial: 088C Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/J6vsSGUUbPkTNqPcDwCekwv8BoU.roa Signing time: Fri 01 Sep 2023 09:00:48 +0000 ROA not before: Fri 01 Sep 2023 09:00:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131666 IP address blocks: 103.144.34.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:28:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2188 (0x88c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908 Validity Not Before: Sep 1 09:00:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=27ABEC4865146CF91336A3DC0F009E930BFC0685 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:dc:f2:27:8c:fe:74:8f:91:00:75:02:b5: 80:ab:dd:6d:30:5d:c7:b7:ac:ff:70:24:fd:9a:4d: e5:36:3d:55:80:6c:29:1a:80:23:09:8c:d5:a4:31: 75:4c:19:46:63:bf:47:b4:4e:6b:ff:84:c5:f6:d2: a7:20:d7:c7:9c:75:3b:7c:81:90:2d:9b:ea:03:1b: f2:eb:c8:f7:99:29:51:e2:0d:55:1e:02:e7:c3:b7: d5:ca:f7:7a:d4:7e:e1:87:b8:bb:eb:eb:0d:b2:55: de:4e:d3:ed:60:e8:db:2a:dd:82:28:51:60:1a:3b: cd:fc:84:f4:84:fb:9d:34:a6:9d:de:6a:0b:2d:f5: 1a:40:6a:3b:8c:a1:af:8f:7a:cb:9f:08:0b:23:16: b1:e9:57:98:37:ce:2b:45:b3:4a:98:ef:82:24:e2: 2c:39:e1:9d:37:98:37:29:ba:45:8e:bc:2f:18:1b: 49:73:b9:e1:f1:8a:2c:f6:d9:bf:ea:02:7d:e9:16: c7:ee:be:63:04:d2:6d:24:f9:fb:9c:17:1d:4e:27: 06:0e:be:71:7e:bd:aa:91:be:9e:0f:8d:e5:15:59: ae:52:91:43:48:93:d4:e1:20:38:98:15:15:18:c2: 1b:17:63:9c:65:ad:53:79:b9:10:87:8e:92:90:bd: 37:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:AB:EC:48:65:14:6C:F9:13:36:A3:DC:0F:00:9E:93:0B:FC:06:85 X509v3 Authority Key Identifier: keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/J6vsSGUUbPkTNqPcDwCekwv8BoU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.144.34.0/23 Signature Algorithm: sha256WithRSAEncryption 55:f1:82:c2:44:d0:a8:1e:f8:27:22:62:ee:c8:5d:fa:b6:e9: 12:78:d1:28:61:f6:3b:11:1c:ca:59:c2:fa:65:6e:ca:3a:e9: b9:da:ea:a2:78:2e:b9:e0:b9:ce:ec:da:8d:2f:cd:d5:2b:78: bf:57:e6:a4:47:25:46:75:e0:fc:31:76:bf:0c:13:27:85:f4: 26:b0:06:91:25:cd:b3:72:04:a9:5d:6d:74:8a:67:c2:d8:4c: c0:7b:8e:e7:c2:da:a8:6c:ad:dd:cf:76:d2:97:e2:77:4b:8b: 11:60:37:d9:af:2f:08:f3:d3:69:22:eb:a0:cb:fd:c5:74:c7: 9f:c6:33:bf:27:a6:c9:41:06:e5:dd:af:1e:c0:34:18:5b:cb: 0a:f1:b8:d1:58:42:ae:bc:5e:85:4a:e3:ef:8a:09:31:01:4e: 79:e2:3d:69:ba:e2:15:53:3e:ca:f0:01:68:2e:3d:82:d7:52: 46:fd:15:9d:f0:82:29:85:e4:07:d0:ba:44:21:13:38:4c:6c: 14:d4:c4:8e:c5:b9:fe:13:96:98:96:2f:01:19:a7:60:b0:e3: 7a:91:5e:65:f9:c4:88:17:b8:cb:89:77:42:85:ef:ef:2b:b6: c0:cc:82:7c:be:9b:df:d3:ae:03:59:58:8d:4e:f7:a9:9f:20: 97:a4:ad:c0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCIwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMz RDVCRjc5QjQ1QzczMEVEMTQxQ0I1MzlBNTA4RDAxQUEzMDkwODAeFw0yMzA5MDEw OTAwNDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI3QUJFQzQ4NjUxNDZD RjkxMzM2QTNEQzBGMDA5RTkzMEJGQzA2ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTfdzyJ4z+dI+RAHUCtYCr3W0wXce3rP9wJP2aTeU2PVWAbCka gCMJjNWkMXVMGUZjv0e0Tmv/hMX20qcg18ecdTt8gZAtm+oDG/LryPeZKVHiDVUe AufDt9XK93rUfuGHuLvr6w2yVd5O0+1g6Nsq3YIoUWAaO838hPSE+500pp3eagst 9RpAajuMoa+PesufCAsjFrHpV5g3zitFs0qY74Ik4iw54Z03mDcpukWOvC8YG0lz ueHxiiz22b/qAn3pFsfuvmME0m0k+fucFx1OJwYOvnF+vaqRvp4PjeUVWa5SkUNI k9ThIDiYFRUYwhsXY5xlrVN5uRCHjpKQvTdLAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUJ6vsSGUUbPkTNqPcDwCekwv8BoUwHwYDVR0jBBgwFoAUgz1b95tFxzDtFBy1 OaUI0BqjCQgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL2d6 MWI5NXRGeHpEdEZCeTFPYVVJMEJxakNRZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev Z3oxYjk1dEZ4ekR0RkJ5MU9hVUkwQnFqQ1FnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSFNUL0o2dnNTR1VVYlBrVE5xUGNEd0Nla3d2 OEJvVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnkCIwDQYJ KoZIhvcNAQELBQADggEBAFXxgsJE0Kge+CciYu7IXfq26RJ40Shh9jsRHMpZwvpl bso66bna6qJ4Lrnguc7s2o0vzdUreL9X5qRHJUZ14Pwxdr8MEyeF9CawBpElzbNy BKldbXSKZ8LYTMB7jufC2qhsrd3PdtKX4ndLixFgN9mvLwjz02ki66DL/cV0x5/G M78npslBBuXdrx7ANBhbywrxuNFYQq68XoVK4++KCTEBTnniPWm64hVTPsrwAWgu PYLXUkb9FZ3wgimF5AfQukQhEzhMbBTUxI7Fuf4TlpiWLwEZp2Cw43qRXmX5xIgX uMuJd0KF7+8rtsDMgny+m9/TrgNZWI1O96mfIJekrcA= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:45 2024 by rpki-client on console-ams.rpki-client.org