$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/_PkrdeQ5IU2SfLFdtmIptA7FVqM.roa File: _PkrdeQ5IU2SfLFdtmIptA7FVqM.roa (raw, json) Hash identifier: vWyv653uLUOoVboQvZH7bDh5EdQFuQyj+cjh6+VtbCM= Subject key identifier: FC:F9:2B:75:E4:39:21:4D:92:7C:B1:5D:B6:62:29:B4:0E:C5:56:A3 Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803 Certificate serial: 0B Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/_PkrdeQ5IU2SfLFdtmIptA7FVqM.roa Signing time: Mon 25 Mar 2024 15:19:20 +0000 ROA not before: Mon 25 Mar 2024 15:19:20 +0000 ROA not after: Fri 21 Mar 2025 15:30:27 +0000 asID: 152609 IP address blocks: 157.20.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11 (0xb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803 Validity Not Before: Mar 25 15:19:20 2024 GMT Not After : Mar 21 15:30:27 2025 GMT Subject: CN=FCF92B75E439214D927CB15DB66229B40EC556A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:82:3a:6a:be:3e:95:ad:cb:a9:c6:26:b5:b6: d8:13:78:ba:50:bf:18:92:84:26:0f:99:23:d2:5e: 92:e5:ee:94:7c:a2:87:87:dc:dc:c6:cd:0f:1c:c6: da:da:ff:c2:39:40:75:ce:2c:e9:c9:83:20:19:49: be:43:8f:a0:47:7e:21:09:d9:06:8c:09:96:3f:ea: ac:74:1a:02:68:1b:b3:9c:32:1b:97:22:e9:b6:ab: 58:a0:d1:e0:37:54:85:79:77:0e:48:51:a2:74:76: 73:21:48:b5:62:54:af:de:e6:0d:a8:a9:5d:5e:d7: 95:84:24:95:fc:38:66:04:ab:27:f9:21:75:65:e9: a4:bf:49:ad:09:d6:60:69:29:ba:0d:b1:72:11:90: b1:29:28:ee:08:c0:29:e8:e9:34:4b:35:0e:88:b0: 67:9f:bd:c7:f9:f0:04:d2:b0:e8:52:69:65:76:8d: fd:4c:04:ad:e0:57:18:57:44:37:e3:1c:41:23:d7: 17:4d:53:af:1d:f0:1d:ae:41:24:75:9e:bd:0c:2e: dc:bb:b0:87:44:ad:b3:b6:bf:7a:1f:ea:f1:b4:ee: 0a:3d:3c:f1:d0:7f:56:7d:94:c4:bb:4e:5f:ef:94: d8:af:cd:85:87:6c:6c:22:80:32:b9:b0:51:9d:ed: 2a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:F9:2B:75:E4:39:21:4D:92:7C:B1:5D:B6:62:29:B4:0E:C5:56:A3 X509v3 Authority Key Identifier: keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/_PkrdeQ5IU2SfLFdtmIptA7FVqM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 157.20.248.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:bd:1a:ca:5f:ad:e4:76:dd:e1:c2:d6:8a:e2:e0:7c:f6:e2: 34:3f:eb:91:40:0a:3a:de:23:8c:d3:bf:b7:9d:50:4a:72:ff: 63:c7:10:00:70:9e:ef:5a:7f:38:1d:3c:9f:d9:14:8c:c2:c6: 78:7d:ba:bc:20:3e:15:e7:e3:f0:45:2e:68:00:61:b0:a6:12: 53:62:8a:e0:48:5f:32:ea:99:c4:82:fb:a6:38:d5:9a:dd:12: d3:1c:a4:d2:df:a4:71:aa:4e:4c:64:32:24:8b:e2:2d:9d:71: bf:98:69:d5:21:9a:f2:ac:8d:83:61:86:79:1d:16:97:b9:b4: 42:1e:f5:85:fd:32:27:10:a4:54:c3:49:6a:19:1e:fc:91:1f: 78:1d:b1:e6:5d:a2:91:ed:87:5b:df:37:87:97:ff:45:cf:e1: dc:ad:ff:cf:65:89:55:e4:6e:01:da:ff:1a:77:04:9f:16:81: 69:01:b1:bf:76:6d:0b:1a:a5:d1:11:1b:b5:fe:ab:35:c0:44: 50:96:32:10:b4:45:05:b1:19:55:29:c8:bb:fa:bf:00:15:bc: ed:9d:46:3d:42:94:60:82:a2:c4:80:7f:ad:90:5d:c7:70:b0: e5:fb:39:8e:32:29:88:6b:91:a5:1f:0a:8a:9c:2e:eb:f7:c7: 87:f3:af:37 -----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIBCzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGMzNB NzJBQUY3OTgxMDVCQjI3N0YwOTQ0NThFNDY0QjQ2NTlGODAzMB4XDTI0MDMyNTE1 MTkyMFoXDTI1MDMyMTE1MzAyN1owMzExMC8GA1UEAxMoRkNGOTJCNzVFNDM5MjE0 RDkyN0NCMTVEQjY2MjI5QjQwRUM1NTZBMzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL2COmq+PpWty6nGJrW22BN4ulC/GJKEJg+ZI9JekuXulHyih4fc 3MbNDxzG2tr/wjlAdc4s6cmDIBlJvkOPoEd+IQnZBowJlj/qrHQaAmgbs5wyG5ci 6barWKDR4DdUhXl3DkhRonR2cyFItWJUr97mDaipXV7XlYQklfw4ZgSrJ/khdWXp pL9JrQnWYGkpug2xchGQsSko7gjAKejpNEs1DoiwZ5+9x/nwBNKw6FJpZXaN/UwE reBXGFdEN+McQSPXF01Trx3wHa5BJHWevQwu3Luwh0Sts7a/eh/q8bTuCj088dB/ Vn2UxLtOX++U2K/NhYdsbCKAMrmwUZ3tKvMCAwEAAaOCAeowggHmMB0GA1UdDgQW BBT8+St15DkhTZJ8sV22Yim0DsVWozAfBgNVHSMEGDAWgBTzOnKq95gQW7J38JRF jkZLRln4AzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JQU1ULzh6 cHlxdmVZRUZ1eWRfQ1VSWTVHUzBaWi1BTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev OHpweXF2ZVlFRnV5ZF9DVVJZNUdTMFpaLUFNLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC9fUGtyZGVRNUlVMlNmTEZkdG1JcHRB N0ZWcU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAnRT4MA0G CSqGSIb3DQEBCwUAA4IBAQA/vRrKX63kdt3hwtaK4uB89uI0P+uRQAo63iOM07+3 nVBKcv9jxxAAcJ7vWn84HTyf2RSMwsZ4fbq8ID4V5+PwRS5oAGGwphJTYorgSF8y 6pnEgvumONWa3RLTHKTS36Rxqk5MZDIki+ItnXG/mGnVIZryrI2DYYZ5HRaXubRC HvWF/TInEKRUw0lqGR78kR94HbHmXaKR7Ydb3zeHl/9Fz+Hcrf/PZYlV5G4B2v8a dwSfFoFpAbG/dm0LGqXRERu1/qs1wERQljIQtEUFsRlVKci7+r8AFbztnUY9QpRg gqLEgH+tkF3HcLDl+zmOMimIa5GlHwqKnC7r98eH8683 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org