$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/INFORICH/H3a42uXTkN8RKOk9HOrPP1YGOCA.roa File: H3a42uXTkN8RKOk9HOrPP1YGOCA.roa (raw, json) Hash identifier: ZlSrk/ZpFqX3ECE3mu/VdRncRFgvh7jyYlo4aei7cqQ= Subject key identifier: 1F:76:B8:DA:E5:D3:90:DF:11:28:E9:3D:1C:EA:CF:3F:56:06:38:20 Certificate issuer: /CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Certificate serial: 0506 Authority key identifier: 91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/H3a42uXTkN8RKOk9HOrPP1YGOCA.roa Signing time: Mon 26 Aug 2024 05:19:04 +0000 ROA not before: Mon 26 Aug 2024 05:19:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131674 IP address blocks: 103.152.252.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 15:54:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1286 (0x506) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9197E979AFBB1BEC2EFC2647207560561BE900B6 Validity Not Before: Aug 26 05:19:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1F76B8DAE5D390DF1128E93D1CEACF3F56063820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7a:c5:96:00:2d:b7:23:e6:a5:fb:99:d6:90: 83:a5:c4:76:05:a0:b9:2b:db:bb:63:72:9a:ea:c4: b9:2c:85:2b:0f:70:ef:b6:18:1d:74:de:9e:10:cf: 87:12:e6:3b:08:45:05:5f:2b:9f:e9:a1:6b:43:2c: f2:95:5d:5e:f0:5c:61:db:35:74:48:b8:15:0c:b3: 03:b0:ab:69:59:bd:2c:9d:d0:df:3a:4a:61:9a:1b: d6:38:4b:28:e3:51:dc:16:74:cc:15:a5:bc:03:38: 94:2c:be:1f:ba:d7:2d:0b:09:64:ba:f7:0e:29:fb: fb:d1:8d:f3:c1:db:08:d6:70:ae:98:89:be:98:74: 8e:80:c0:75:b8:be:37:4e:f1:fb:03:e7:97:73:75: a9:be:21:14:ac:a1:35:74:f3:5c:5a:f7:4d:cb:75: 1a:f6:15:e0:74:0c:9a:96:3d:fd:28:fd:cf:41:1a: 14:7f:37:6d:72:cf:87:f5:f3:a4:20:61:ab:69:63: a1:58:04:9d:65:87:52:21:0d:b7:5d:65:b6:1a:fd: 9d:19:b9:25:55:9b:f2:76:f8:61:25:58:71:6c:9b: 16:08:6f:93:b3:f9:3c:cb:9d:71:e2:be:71:43:00: 16:5b:95:95:99:ae:1d:32:f9:94:c6:74:f9:5b:b9: 3c:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:76:B8:DA:E5:D3:90:DF:11:28:E9:3D:1C:EA:CF:3F:56:06:38:20 X509v3 Authority Key Identifier: keyid:91:97:E9:79:AF:BB:1B:EC:2E:FC:26:47:20:75:60:56:1B:E9:00:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/kZfpea-7G-wu_CZHIHVgVhvpALY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kZfpea-7G-wu_CZHIHVgVhvpALY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/INFORICH/H3a42uXTkN8RKOk9HOrPP1YGOCA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.252.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:33:f6:a1:85:f3:85:26:39:06:b1:de:4e:73:52:03:50:f0: 33:e0:7b:c3:97:5b:63:14:51:3a:8b:52:36:b9:96:b9:0e:e9: e0:56:b0:e7:43:42:7c:4a:fa:0f:04:db:7d:09:35:df:9f:be: a8:ee:f7:31:02:4c:51:cb:81:ad:b4:79:31:7e:65:ba:94:52: 44:63:0f:a7:b5:cc:d8:2a:0c:4a:27:30:ad:15:44:d5:99:6f: 53:8e:cf:d5:4b:e5:90:0c:82:68:13:19:a6:91:b6:92:3a:bb: b8:47:3e:d7:06:16:06:52:0b:62:a6:3a:61:d1:c4:00:e1:d6: 80:33:02:14:26:07:38:d4:aa:7c:be:d8:34:f0:7c:e3:96:39: 9c:33:ba:66:1d:ff:94:ff:0c:56:30:db:42:d3:22:a5:5d:7f: bf:33:c2:ff:b5:e9:97:cc:f3:8d:56:61:ef:4b:a4:2f:e6:57: de:90:ea:b1:2a:e5:d7:3f:2e:79:7e:e2:ea:05:25:87:2e:6d: 96:6a:3a:7e:de:65:0c:03:a9:6f:d4:28:9d:a5:da:48:15:bb: 97:3c:a3:76:79:61:06:67:b3:8d:e6:c6:e0:fd:2d:24:c3:fe: 3d:7d:67:a0:f2:8e:78:ac:ef:eb:74:0a:62:1c:30:9b:83:05: 71:f7:b5:3f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICBQYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTE5 N0U5NzlBRkJCMUJFQzJFRkMyNjQ3MjA3NTYwNTYxQkU5MDBCNjAeFw0yNDA4MjYw NTE5MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFGNzZCOERBRTVEMzkw REYxMTI4RTkzRDFDRUFDRjNGNTYwNjM4MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTesWWAC23I+al+5nWkIOlxHYFoLkr27tjcprqxLkshSsPcO+2 GB103p4Qz4cS5jsIRQVfK5/poWtDLPKVXV7wXGHbNXRIuBUMswOwq2lZvSyd0N86 SmGaG9Y4SyjjUdwWdMwVpbwDOJQsvh+61y0LCWS69w4p+/vRjfPB2wjWcK6Yib6Y dI6AwHW4vjdO8fsD55dzdam+IRSsoTV081xa903LdRr2FeB0DJqWPf0o/c9BGhR/ N21yz4f186QgYatpY6FYBJ1lh1IhDbddZbYa/Z0ZuSVVm/J2+GElWHFsmxYIb5Oz +TzLnXHivnFDABZblZWZrh0y+ZTGdPlbuTyFAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUH3a42uXTkN8RKOk9HOrPP1YGOCAwHwYDVR0jBBgwFoAUkZfpea+7G+wu/CZH IHVgVhvpALYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU5GT1JJ Q0gva1pmcGVhLTdHLXd1X0NaSElIVmdWaHZwQUxZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9rWmZwZWEtN0ctd3VfQ1pISUhWZ1ZodnBBTFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTkZPUklDSC9IM2E0MnVYVGtOOFJL T2s5SE9yUFAxWUdPQ0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5j8MA0GCSqGSIb3DQEBCwUAA4IBAQBeM/ahhfOFJjkGsd5Oc1IDUPAz4HvD l1tjFFE6i1I2uZa5DungVrDnQ0J8SvoPBNt9CTXfn76o7vcxAkxRy4GttHkxfmW6 lFJEYw+ntczYKgxKJzCtFUTVmW9Tjs/VS+WQDIJoExmmkbaSOru4Rz7XBhYGUgti pjph0cQA4daAMwIUJgc41Kp8vtg08HzjljmcM7pmHf+U/wxWMNtC0yKlXX+/M8L/ temXzPONVmHvS6Qv5lfekOqxKuXXPy55fuLqBSWHLm2Wajp+3mUMA6lv1CidpdpI FbuXPKN2eWEGZ7ON5sbg/S0kw/49fWeg8o54rO/rdApiHDCbgwVx97U/ -----END CERTIFICATE-----Generated at Mon Nov 25 11:53:55 2024 by rpki-client on console-fra.rpki-client.org