$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/CCeuI3MtheWEh_pjUyjTaxIdAGw.roa File: CCeuI3MtheWEh_pjUyjTaxIdAGw.roa (raw, json) Hash identifier: sYwWTWKYgxROok2VKcY4i694nWyAqdR6w5x8xpAOIpc= Subject key identifier: 08:27:AE:23:73:2D:85:E5:84:87:FA:63:53:28:D3:6B:12:1D:00:6C Certificate issuer: /CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42 Certificate serial: F0 Authority key identifier: CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/CCeuI3MtheWEh_pjUyjTaxIdAGw.roa Signing time: Wed 04 Sep 2024 09:16:38 +0000 ROA not before: Wed 04 Sep 2024 09:16:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.99.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42 Validity Not Before: Sep 4 09:16:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0827AE23732D85E58487FA635328D36B121D006C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:8d:9a:39:33:e9:81:9e:50:a1:67:fc:e1:35: 93:f3:92:bd:be:8d:d3:bc:ac:52:c4:7c:1f:07:e4: 92:34:c9:19:ec:08:ad:af:2b:ec:89:39:9b:5f:50: 7f:7b:91:68:e4:77:66:ae:73:41:0e:ab:50:b6:20: 16:fd:e3:bc:05:98:7d:c0:ed:f3:3c:ef:27:e6:5b: 14:07:6c:f8:95:67:2f:b4:e6:ef:b6:11:b7:ab:64: 47:7b:3d:5e:17:7d:1d:86:9a:96:9b:1b:2f:22:16: 74:c2:90:41:7a:0e:0e:32:3a:96:1a:51:15:b0:54: 01:52:50:47:56:96:37:5d:87:a4:15:1a:4a:ba:a2: 43:d2:00:dc:4f:a2:b5:20:98:cc:3c:9c:62:66:fa: 7b:5d:9b:26:17:43:b5:27:af:84:cb:c6:bd:29:ac: e9:e6:99:f5:66:16:75:2b:e4:ad:49:9c:b1:53:b3: 6d:90:ee:0f:9e:70:b8:46:6e:d3:dd:ba:3f:96:fa: eb:39:2c:a6:d9:fa:1e:d5:08:2f:1d:db:41:52:13: 99:82:2f:4c:2e:fa:bc:e4:15:12:aa:95:7e:3e:d9: f4:fc:0b:f8:9e:79:6a:2d:db:63:33:3a:55:0a:dc: 95:25:5c:05:a8:72:4a:0e:0f:57:81:6a:fa:98:03: 4e:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:27:AE:23:73:2D:85:E5:84:87:FA:63:53:28:D3:6B:12:1D:00:6C X509v3 Authority Key Identifier: keyid:CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/CCeuI3MtheWEh_pjUyjTaxIdAGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.99.142.0/23 Signature Algorithm: sha256WithRSAEncryption 23:f3:de:ab:fc:3b:4c:68:b4:15:b3:2c:43:c2:55:a3:50:c7: a3:94:2a:a3:b7:72:94:93:6c:94:df:ce:db:17:72:2a:f4:1a: 48:5e:f5:7e:b4:11:a9:a9:31:40:63:1d:b5:c6:fc:b9:d2:aa: b9:bf:cc:67:03:16:47:b6:0a:e0:43:30:d1:5d:c5:42:ff:10: e3:7c:05:61:38:68:0b:38:70:1c:5a:6d:25:de:62:ee:94:dd: b5:0e:f9:5c:58:01:0d:90:3c:0d:8f:e2:76:3c:d3:06:be:35: af:68:9a:ce:fd:2c:46:d1:d9:e1:59:93:1e:55:8e:dd:f3:50: d5:55:cf:c7:ab:db:d9:56:d8:30:71:0a:98:b6:c3:42:9a:0b: 24:15:a4:33:bf:51:e3:62:ea:40:91:17:20:f8:39:1a:3b:82: 2a:df:b0:e4:35:e8:e5:69:d8:f4:6a:5a:2f:6e:fa:01:3a:ce: 1a:57:ce:43:55:51:aa:62:5a:af:ae:dc:f7:ab:71:1d:07:d5: 76:63:8a:b3:68:1e:d3:7d:f7:62:4e:69:f8:71:ad:fd:2a:64: 8e:20:ea:cf:c1:e6:09:e4:49:46:31:40:b2:ea:31:34:3e:04: a1:19:35:d8:af:8e:61:b3:e0:bb:65:6d:7c:fa:45:0e:86:28: 7e:a2:ee:2d -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FB ODQwNUNCRDhDRTZBRTFFQTNBOURBQTY3Nzk3NTZFQzZFREM0MjAeFw0yNDA5MDQw OTE2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA4MjdBRTIzNzMyRDg1 RTU4NDg3RkE2MzUzMjhEMzZCMTIxRDAwNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3jZo5M+mBnlChZ/zhNZPzkr2+jdO8rFLEfB8H5JI0yRnsCK2v K+yJOZtfUH97kWjkd2auc0EOq1C2IBb947wFmH3A7fM87yfmWxQHbPiVZy+05u+2 EberZEd7PV4XfR2GmpabGy8iFnTCkEF6Dg4yOpYaURWwVAFSUEdWljddh6QVGkq6 okPSANxPorUgmMw8nGJm+ntdmyYXQ7Unr4TLxr0prOnmmfVmFnUr5K1JnLFTs22Q 7g+ecLhGbtPduj+W+us5LKbZ+h7VCC8d20FSE5mCL0wu+rzkFRKqlX4+2fT8C/ie eWot22MzOlUK3JUlXAWockoOD1eBavqYA06NAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUCCeuI3MtheWEh/pjUyjTaxIdAGwwHwYDVR0jBBgwFoAUyqhAXL2M5q4eo6na pneXVuxu3EIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFVBTkdE RVhJQS95cWhBWEwyTTVxNGVvNm5hcG5lWFZ1eHUzRUkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3lxaEFYTDJNNXE0ZW82bmFwbmVYVnV4dTNFSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hVQU5HREVYSUEvQ0NldUkzTXRo ZVdFaF9walV5alRheElkQUd3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWdjjjANBgkqhkiG9w0BAQsFAAOCAQEAI/Peq/w7TGi0FbMsQ8JVo1DH o5Qqo7dylJNslN/O2xdyKvQaSF71frQRqakxQGMdtcb8udKqub/MZwMWR7YK4EMw 0V3FQv8Q43wFYThoCzhwHFptJd5i7pTdtQ75XFgBDZA8DY/idjzTBr41r2iazv0s RtHZ4VmTHlWO3fNQ1VXPx6vb2VbYMHEKmLbDQpoLJBWkM79R42LqQJEXIPg5GjuC Kt+w5DXo5WnY9GpaL276ATrOGlfOQ1VRqmJar67c96txHQfVdmOKs2ge0333Yk5p +HGt/SpkjiDqz8HmCeRJRjFAsuoxND4EoRk12K+OYbPgu2VtfPpFDoYofqLuLQ== -----END CERTIFICATE-----Generated at Fri Sep 20 08:12:12 2024 by rpki-client on console-fra.rpki-client.org