$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/eYi1Kkoc3WcSyZFFojxDOknvhnM.roa File: eYi1Kkoc3WcSyZFFojxDOknvhnM.roa (raw, json) Hash identifier: Gf06sTgUYlVj1P0rhXuVBkSOMsoBv5BC6vtnAbh5Vto= Subject key identifier: 79:88:B5:2A:4A:1C:DD:67:12:C9:91:45:A2:3C:43:3A:49:EF:86:73 Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Certificate serial: 0280 Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/eYi1Kkoc3WcSyZFFojxDOknvhnM.roa Signing time: Mon 26 Aug 2024 05:19:08 +0000 ROA not before: Mon 26 Aug 2024 05:19:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 103.182.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF Validity Not Before: Aug 26 05:19:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7988B52A4A1CDD6712C99145A23C433A49EF8673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:50:6a:dc:ed:aa:72:cf:e8:07:ff:16:76:d7: 0d:b5:cb:8b:42:9e:55:32:0c:5f:7d:78:67:26:4b: cf:e8:78:28:d0:51:8a:4d:4d:f0:15:26:b3:70:2f: 9f:11:bd:c3:62:ac:79:be:cb:a2:4c:26:b3:34:cb: ab:f8:43:45:9a:3b:63:54:16:44:b1:59:af:85:f5: 51:dd:2f:88:ee:c5:7c:f8:62:c0:af:1c:1c:4d:bd: 84:38:2c:58:88:3d:7f:a2:f5:9a:98:54:b7:08:33: 2a:b7:40:8e:72:59:68:da:d9:d3:27:af:2c:2a:df: 78:3d:df:20:39:b9:23:32:d6:77:38:e3:28:f6:4c: d8:bc:89:ec:31:9d:6d:d5:6c:27:b7:6c:57:82:3a: 30:29:36:02:15:0f:aa:2b:f4:71:11:cc:99:6d:07: a9:33:a6:cd:2e:b8:ee:96:c0:0e:e9:8b:ef:d0:07: 0c:eb:9a:7a:c4:85:e5:ff:94:26:05:71:33:b7:cf: e5:09:df:74:52:6e:ed:91:b9:01:83:24:1e:6b:b7: 44:46:df:f9:46:97:37:9f:6c:90:2d:0f:34:ce:74: a2:ee:84:03:dd:70:7e:fb:15:5e:ab:d8:d9:c1:bc: 88:4f:8c:5e:a0:17:b2:d5:21:b6:26:fd:29:b4:67: 5a:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:88:B5:2A:4A:1C:DD:67:12:C9:91:45:A2:3C:43:3A:49:EF:86:73 X509v3 Authority Key Identifier: keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/eYi1Kkoc3WcSyZFFojxDOknvhnM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.182.227.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:52:27:df:45:65:02:82:79:22:61:1a:94:84:e9:4d:17:ee: 2d:42:51:5a:d2:f1:ba:36:03:44:e3:63:e1:cb:38:48:8f:b4: 13:c2:e5:a9:99:92:f3:f1:de:bc:aa:54:26:79:d6:0b:47:fb: 38:aa:e6:e5:d2:66:7d:15:90:a4:31:10:de:11:da:26:24:90: ea:41:8d:68:f8:49:c1:69:2f:0e:6d:64:af:2f:08:b8:1d:f3: 0c:12:4e:e2:2f:4e:da:c7:39:6f:4b:3b:65:b0:22:39:13:f2: 6c:bf:2e:f2:34:f8:5e:92:99:5a:7a:a2:c5:54:6a:9a:7f:fc: a2:0b:9a:af:1d:32:9d:01:cf:f8:50:10:e1:6a:14:a6:e7:20: f4:9b:d0:cb:a0:a5:67:8f:75:73:62:11:db:c3:7d:38:60:da: 41:f2:03:b2:76:e5:d3:50:e6:9c:f0:7e:f7:4c:b1:56:ef:ca: 9a:fd:bc:3c:60:ba:6a:ea:c0:eb:ce:39:bf:d3:83:a6:5c:e6: 6a:6d:54:2e:41:57:50:6a:b0:9b:71:40:a7:b8:92:c9:8d:36: da:19:0b:18:07:82:2a:af:70:fb:da:be:d1:0e:1a:65:b7:1f: 9b:59:8d:db:77:81:e5:29:60:01:1f:59:0f:2f:3a:c4:cb:b2: 2b:19:51:9b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNDA4MjYw NTE5MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5ODhCNTJBNEExQ0RE NjcxMkM5OTE0NUEyM0M0MzNBNDlFRjg2NzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRUGrc7apyz+gH/xZ21w21y4tCnlUyDF99eGcmS8/oeCjQUYpN TfAVJrNwL58RvcNirHm+y6JMJrM0y6v4Q0WaO2NUFkSxWa+F9VHdL4juxXz4YsCv HBxNvYQ4LFiIPX+i9ZqYVLcIMyq3QI5yWWja2dMnrywq33g93yA5uSMy1nc44yj2 TNi8iewxnW3VbCe3bFeCOjApNgIVD6or9HERzJltB6kzps0uuO6WwA7pi+/QBwzr mnrEheX/lCYFcTO3z+UJ33RSbu2RuQGDJB5rt0RG3/lGlzefbJAtDzTOdKLuhAPd cH77FV6r2NnBvIhPjF6gF7LVIbYm/Sm0Z1orAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUeYi1Kkoc3WcSyZFFojxDOknvhnMwHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL2VZaTFLa29jM1djU3laRkZv anhET2tudmhuTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn tuMwDQYJKoZIhvcNAQELBQADggEBAH5SJ99FZQKCeSJhGpSE6U0X7i1CUVrS8bo2 A0TjY+HLOEiPtBPC5amZkvPx3ryqVCZ51gtH+ziq5uXSZn0VkKQxEN4R2iYkkOpB jWj4ScFpLw5tZK8vCLgd8wwSTuIvTtrHOW9LO2WwIjkT8my/LvI0+F6SmVp6osVU app//KILmq8dMp0Bz/hQEOFqFKbnIPSb0MugpWePdXNiEdvDfThg2kHyA7J25dNQ 5pzwfvdMsVbvypr9vDxgumrqwOvOOb/Tg6Zc5mptVC5BV1BqsJtxQKe4ksmNNtoZ CxgHgiqvcPvavtEOGmW3H5tZjdt3geUpYAEfWQ8vOsTLsisZUZs= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:39 2024 by rpki-client on console-fra.rpki-client.org