$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/aM5VB07LCzTwgo2pwLz4cSH4Q40.roa File: aM5VB07LCzTwgo2pwLz4cSH4Q40.roa (raw, json) Hash identifier: RaZStbPqLBDRD86ZzZdCrOlYKsccyBuYh+Avp1rSQ4Q= Subject key identifier: 68:CE:55:07:4E:CB:0B:34:F0:82:8D:A9:C0:BC:F8:71:21:F8:43:8D Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 02AF Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/aM5VB07LCzTwgo2pwLz4cSH4Q40.roa Signing time: Mon 26 Aug 2024 05:19:01 +0000 ROA not before: Mon 26 Aug 2024 05:19:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38042 IP address blocks: 103.177.32.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 687 (0x2af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Aug 26 05:19:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=68CE55074ECB0B34F0828DA9C0BCF87121F8438D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:69:13:d4:18:4f:11:a2:a7:15:b8:8f:70:f7: b6:8a:d9:16:c5:57:19:92:62:6b:cf:be:eb:54:1a: d9:07:ba:82:84:33:6b:30:e3:fd:91:e0:2b:8d:e4: 3b:0b:aa:20:5a:8a:e0:b4:93:80:b6:68:ab:c3:27: ef:7c:ee:ed:4d:aa:d6:e6:9b:a9:8e:75:b0:2b:54: 0e:8b:2d:91:27:85:31:0a:db:5e:9f:be:2f:2b:c2: 38:e5:49:aa:97:dc:76:a5:30:24:d5:36:9a:ea:11: 1c:06:ba:02:f8:0e:9b:d6:dc:19:36:43:14:c9:18: ed:5e:ea:83:b7:d9:38:01:77:ee:2d:17:80:e5:fe: da:7e:67:4e:ac:6d:79:a3:34:62:b5:c5:bd:bf:0a: 9f:5a:ab:11:99:a4:87:a8:92:39:4c:f6:01:1f:92: f5:60:59:07:d8:04:c0:22:93:39:15:d0:30:08:73: eb:b6:ec:ca:96:59:26:c2:2f:99:a4:b1:85:b6:f0: 36:ec:2e:3a:96:3f:2a:f3:37:b2:81:85:71:ae:1b: 91:d0:73:64:33:08:01:0c:3d:12:49:dc:e2:c4:fb: 16:1f:64:83:58:72:e5:72:34:fc:e0:02:20:e4:57: 45:63:1e:94:8f:17:2b:3c:5c:e9:24:6d:a1:eb:13: c9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:CE:55:07:4E:CB:0B:34:F0:82:8D:A9:C0:BC:F8:71:21:F8:43:8D X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/aM5VB07LCzTwgo2pwLz4cSH4Q40.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.177.32.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:22:7e:88:ec:57:b4:31:2a:17:37:03:5d:e4:e9:1e:43:ad: d1:d6:c5:7b:5f:39:2e:71:a0:55:e5:6e:e2:99:06:3f:26:5a: f5:c7:97:fb:db:48:4d:55:20:d5:62:25:b6:98:90:13:e7:7f: bd:e8:ef:af:3e:bb:33:59:4f:69:30:55:40:bd:dc:af:a6:13: 24:74:35:30:a0:56:2c:2d:c9:0c:aa:cb:39:10:eb:de:bd:a7: ff:97:6f:06:97:fa:61:8b:a9:34:51:cb:ab:fd:44:41:04:35: 17:87:e6:db:8d:6d:01:8e:4e:18:a2:ba:fc:e5:69:44:22:27: 5e:57:e2:6c:42:28:17:58:4e:71:00:f3:30:6e:95:e6:2b:38: 2a:74:2c:1d:ec:cf:a0:5f:0e:ec:3d:b1:6b:4b:9d:83:22:19: 4f:41:ed:e6:c5:11:fd:43:22:d3:8f:5a:ee:f9:b4:2e:3d:29: be:75:0a:b1:49:72:bd:59:c7:b4:7a:c7:f6:5c:7a:6d:86:74: 73:51:3b:a4:2b:c9:dd:30:ed:07:c6:d4:b2:8f:e7:8a:12:bd: ce:b3:36:04:2c:1a:28:fa:1f:7c:f0:f2:fb:d0:9b:8f:b1:4c: a9:63:04:a1:f4:ad:84:47:60:9f:5c:e8:b7:64:32:a9:1b:db: 81:bb:b4:db -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAq8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNDA4MjYw NTE5MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4Q0U1NTA3NEVDQjBC MzRGMDgyOERBOUMwQkNGODcxMjFGODQzOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgaRPUGE8RoqcVuI9w97aK2RbFVxmSYmvPvutUGtkHuoKEM2sw 4/2R4CuN5DsLqiBaiuC0k4C2aKvDJ+987u1Nqtbmm6mOdbArVA6LLZEnhTEK216f vi8rwjjlSaqX3HalMCTVNprqERwGugL4DpvW3Bk2QxTJGO1e6oO32TgBd+4tF4Dl /tp+Z06sbXmjNGK1xb2/Cp9aqxGZpIeokjlM9gEfkvVgWQfYBMAikzkV0DAIc+u2 7MqWWSbCL5mksYW28DbsLjqWPyrzN7KBhXGuG5HQc2QzCAEMPRJJ3OLE+xYfZINY cuVyNPzgAiDkV0VjHpSPFys8XOkkbaHrE8mfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUaM5VB07LCzTwgo2pwLz4cSH4Q40wHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy9hTTVWQjA3TEN6VHdnbzJwd0x6 NGNTSDRRNDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ7Eg MA0GCSqGSIb3DQEBCwUAA4IBAQAKIn6I7Fe0MSoXNwNd5OkeQ63R1sV7XzkucaBV 5W7imQY/Jlr1x5f720hNVSDVYiW2mJAT53+96O+vPrszWU9pMFVAvdyvphMkdDUw oFYsLckMqss5EOvevaf/l28Gl/phi6k0Ucur/URBBDUXh+bbjW0Bjk4Yorr85WlE IideV+JsQigXWE5xAPMwbpXmKzgqdCwd7M+gXw7sPbFrS52DIhlPQe3mxRH9QyLT j1ru+bQuPSm+dQqxSXK9Wce0esf2XHpthnRzUTukK8ndMO0HxtSyj+eKEr3OszYE LBoo+h988PL70JuPsUypYwSh9K2ER2CfXOi3ZDKpG9uBu7Tb -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org