$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/_18mvRMypvE6fZGaMRfgrh7sXeE.roa File: _18mvRMypvE6fZGaMRfgrh7sXeE.roa (raw, json) Hash identifier: cHsQFhTL7h19mo+JHiMlAjv7tsbvDMgFNBk97VCIZd4= Subject key identifier: FF:5F:26:BD:13:32:A6:F1:3A:7D:91:9A:31:17:E0:AE:1E:EC:5D:E1 Certificate issuer: /CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Certificate serial: 03 Authority key identifier: 9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/_18mvRMypvE6fZGaMRfgrh7sXeE.roa Signing time: Tue 15 Oct 2024 07:23:35 +0000 ROA not before: Tue 15 Oct 2024 07:23:35 +0000 ROA not after: Tue 14 Oct 2025 15:30:23 +0000 asID: 134823 IP address blocks: 160.191.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 07:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Validity Not Before: Oct 15 07:23:35 2024 GMT Not After : Oct 14 15:30:23 2025 GMT Subject: CN=FF5F26BD1332A6F13A7D919A3117E0AE1EEC5DE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:60:c9:f1:ea:49:49:39:d1:d5:d9:23:2b:1a: f0:b6:5d:cc:be:62:1f:27:a7:d2:e0:ac:26:02:1a: a5:cc:cd:51:80:1e:f0:79:a0:4f:1f:b7:2b:93:0c: 2d:e3:2f:1e:9b:a9:96:11:34:b8:49:94:30:5f:7d: 23:e0:79:42:eb:70:47:b2:8a:66:9c:0b:bc:fe:2d: 47:7d:70:3f:c1:a4:f6:9f:f8:6a:66:3b:86:40:57: 1e:46:0c:e9:b6:d4:7f:ea:65:42:9e:14:59:55:4f: 4e:18:f0:d0:db:cc:e1:99:7b:0c:17:39:99:9f:9e: 2d:4e:e4:05:83:51:e8:c6:3f:31:c1:cf:0a:e9:89: ce:ba:45:5d:0d:b8:08:92:4a:20:23:99:9a:53:16: 7d:66:f5:77:80:e4:1d:b2:f9:0b:f6:56:9f:79:0a: f8:54:82:b6:e1:9b:3b:b9:5f:1e:7c:95:3d:5a:46: 8c:b1:20:fb:c2:de:93:54:82:ad:99:5d:f0:87:6c: 4e:6b:8c:79:9c:75:36:af:8d:fe:5e:1c:3e:6c:5a: 2b:3b:ae:4d:69:46:b2:e0:52:6d:eb:18:3a:29:cd: 57:a7:aa:35:fc:51:25:15:05:24:b3:22:96:29:a4: 40:1e:4a:52:9e:ca:3a:66:bd:84:bc:62:5a:6b:93: 97:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:5F:26:BD:13:32:A6:F1:3A:7D:91:9A:31:17:E0:AE:1E:EC:5D:E1 X509v3 Authority Key Identifier: keyid:9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/_18mvRMypvE6fZGaMRfgrh7sXeE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.4.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:94:24:5d:f7:73:cb:59:1d:00:d3:18:cf:85:15:54:07:08: 9b:50:cc:5b:d3:f8:07:8f:f7:76:f8:f3:12:e5:6f:80:b2:74: 3e:f4:1e:df:bf:bc:ac:d1:1d:3b:89:b9:cc:f6:95:0d:f1:0a: d8:a2:2c:7d:73:25:da:16:8b:81:a4:78:67:cb:1f:32:96:d3: 9b:a0:65:1a:11:6c:7a:c7:c9:03:da:df:3d:c8:7b:8d:1b:b3: 66:c7:2b:9c:e2:8c:20:a5:71:7f:57:48:98:c7:55:e3:9f:ca: dc:af:33:1a:79:b3:0e:21:15:90:c5:d6:6b:c2:52:7c:22:b0: 25:75:46:1b:ea:70:d6:59:92:0b:8e:83:b9:4a:83:84:c8:91: de:14:5c:1d:55:be:71:c7:ef:b2:92:ec:9f:30:33:ff:24:8f: 9d:fd:22:e9:42:06:b5:f7:64:a9:6d:79:8e:97:92:f4:3a:75: 42:7d:24:9f:ba:35:7b:90:a8:87:cf:0e:5e:ca:36:9c:1c:07: 8e:51:ee:a8:2e:ef:5b:39:72:b7:46:05:6d:a4:a2:70:4f:a3: 89:91:04:fc:b5:6c:43:a7:b7:b9:59:4f:a1:d0:3b:0e:29:87: de:b9:b6:20:97:fa:ed:7d:e2:4e:b9:23:91:36:56:16:d0:f3: a3:fd:fd:17 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgIBAzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5QTBD QzBCQjYzMUQxNTEzMTAyMzg0OTA4M0Q5NDFBMkRCQ0RGQTY1MB4XDTI0MTAxNTA3 MjMzNVoXDTI1MTAxNDE1MzAyM1owMzExMC8GA1UEAxMoRkY1RjI2QkQxMzMyQTZG MTNBN0Q5MTlBMzExN0UwQUUxRUVDNURFMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMNgyfHqSUk50dXZIysa8LZdzL5iHyen0uCsJgIapczNUYAe8Hmg Tx+3K5MMLeMvHpuplhE0uEmUMF99I+B5QutwR7KKZpwLvP4tR31wP8Gk9p/4amY7 hkBXHkYM6bbUf+plQp4UWVVPThjw0NvM4Zl7DBc5mZ+eLU7kBYNR6MY/McHPCumJ zrpFXQ24CJJKICOZmlMWfWb1d4DkHbL5C/ZWn3kK+FSCtuGbO7lfHnyVPVpGjLEg +8Lek1SCrZld8IdsTmuMeZx1Nq+N/l4cPmxaKzuuTWlGsuBSbesYOinNV6eqNfxR JRUFJLMilimkQB5KUp7KOma9hLxiWmuTl7sCAwEAAaOCAewwggHoMB0GA1UdDgQW BBT/Xya9EzKm8Tp9kZoxF+CuHuxd4TAfBgNVHSMEGDAWgBSaDMC7Yx0VExAjhJCD 2UGi2836ZTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTVlLTC9t Z3pBdTJNZEZSTVFJNFNRZzlsQm90dk4tbVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L21nekF1Mk1kRlJNUUk0U1FnOWxCb3R2Ti1tVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0lNWUtML18xOG12Uk15cHZFNmZaR2FNUmZn cmg3c1hlRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAGgvwQw DQYJKoZIhvcNAQELBQADggEBAFqUJF33c8tZHQDTGM+FFVQHCJtQzFvT+AeP93b4 8xLlb4CydD70Ht+/vKzRHTuJucz2lQ3xCtiiLH1zJdoWi4GkeGfLHzKW05ugZRoR bHrHyQPa3z3Ie40bs2bHK5zijCClcX9XSJjHVeOfytyvMxp5sw4hFZDF1mvCUnwi sCV1RhvqcNZZkguOg7lKg4TIkd4UXB1VvnHH77KS7J8wM/8kj539IulCBrX3ZKlt eY6XkvQ6dUJ9JJ+6NXuQqIfPDl7KNpwcB45R7qgu71s5crdGBW2konBPo4mRBPy1 bEOnt7lZT6HQOw4ph965tiCX+u194k65I5E2VhbQ86P9/Rc= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:33 2024 by rpki-client on console-ams.rpki-client.org