$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISTVC/PKLQyx4IIFsSNfgVWDbHMWFXkiY.roa File: PKLQyx4IIFsSNfgVWDbHMWFXkiY.roa (raw, json) Hash identifier: 0P/QiR8NF4fJuZC2QZNBOE6ZkxOvmkuYgrpXwyfl4j4= Subject key identifier: 3C:A2:D0:CB:1E:08:20:5B:12:35:F8:15:58:36:C7:31:61:57:92:26 Certificate issuer: /CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Certificate serial: 02BE Authority key identifier: 68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/PKLQyx4IIFsSNfgVWDbHMWFXkiY.roa Signing time: Mon 26 Aug 2024 05:19:10 +0000 ROA not before: Mon 26 Aug 2024 05:19:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9920 IP address blocks: 103.173.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 702 (0x2be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6887985DB19E5FD82F962B420ECC0FC4ED730D02 Validity Not Before: Aug 26 05:19:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CA2D0CB1E08205B1235F8155836C73161579226 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4a:8a:54:8a:f5:65:6e:af:77:9c:b6:a5:7d: ff:14:5a:9f:18:55:93:b1:f3:38:e6:5b:71:66:dd: d4:49:2a:5f:79:80:0d:f9:c2:02:a8:5b:b6:93:19: 9c:7b:20:7e:ab:99:7e:0b:4c:d9:41:ff:c7:d2:a1: de:46:47:cf:15:83:5c:b6:22:ae:e4:dc:49:ac:b9: e1:fa:71:3c:a9:9b:b1:78:f2:75:13:27:9b:16:b4: cd:94:eb:11:ea:da:f4:7b:a4:c6:8b:24:44:60:25: 30:7c:b3:05:e0:09:e6:88:a8:21:cc:1a:f2:4d:68: a3:b0:82:f3:bd:64:93:c2:b2:fa:32:da:f3:b2:31: 3d:9d:dc:88:78:39:90:2f:e3:93:e1:1e:aa:8f:77: 84:28:68:fe:42:ce:a8:81:37:d2:6a:7a:fb:d7:8c: d9:7a:b6:34:2d:75:8a:f0:c0:6a:8d:92:61:1e:3a: 70:b4:3a:c0:f3:c9:f7:de:27:21:56:00:51:48:81: 5b:de:68:91:40:1b:d7:7d:1b:e2:01:cd:68:f5:c3: e6:23:52:ce:af:a0:25:66:e2:ba:12:a3:3b:d5:40: 10:72:12:17:9d:45:18:7b:32:12:60:4d:f8:b9:86: 04:b9:ac:0a:de:13:bb:5a:50:a2:3f:5d:63:a2:48: 27:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:A2:D0:CB:1E:08:20:5B:12:35:F8:15:58:36:C7:31:61:57:92:26 X509v3 Authority Key Identifier: keyid:68:87:98:5D:B1:9E:5F:D8:2F:96:2B:42:0E:CC:0F:C4:ED:73:0D:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/aIeYXbGeX9gvlitCDswPxO1zDQI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aIeYXbGeX9gvlitCDswPxO1zDQI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISTVC/PKLQyx4IIFsSNfgVWDbHMWFXkiY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.173.95.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:0a:42:56:b4:71:79:0b:16:09:d6:2e:29:e7:37:c6:c2:bd: 42:ad:1c:48:89:02:1e:dd:9e:fd:af:5c:4f:96:17:a4:fe:68: dc:f4:c0:d1:3d:d9:1e:8f:7b:b5:af:e1:2d:21:89:a3:1b:65: 3b:8f:c8:d1:69:8c:7f:9c:60:c6:67:be:b3:dd:b5:36:54:5a: 71:5d:53:df:56:c9:30:c9:dd:b4:1d:c4:45:82:af:26:1c:ef: ca:d3:64:e6:a4:0b:ba:0b:bb:fb:7e:c1:ed:96:31:11:df:77: 5a:68:06:64:2b:d3:b8:a8:b3:d4:89:4e:fb:f5:8a:43:6c:e5: b3:4f:86:02:f8:7f:f5:ec:64:4d:53:43:16:76:a3:b5:0c:e6: 42:c0:20:7e:75:9f:94:cc:0e:c1:3e:51:d5:89:66:7a:8a:c0: 7d:33:6a:4a:13:6f:8b:63:4b:38:cf:94:d8:04:fc:23:25:de: 82:29:d9:22:ca:1b:ad:72:de:21:26:84:b4:bd:96:1c:8d:09: b2:b1:b8:fe:fd:98:ce:1d:ce:2e:e2:b3:0c:a9:18:9d:c7:84: 29:c9:8d:38:1a:a0:f3:23:5a:eb:28:01:39:3c:3e:ed:66:01: 95:d3:a7:52:8a:47:e9:0f:5e:bf:51:03:d5:54:54:e3:d9:1e: c6:73:40:a4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAr4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjg4 Nzk4NURCMTlFNUZEODJGOTYyQjQyMEVDQzBGQzRFRDczMEQwMjAeFw0yNDA4MjYw NTE5MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDQTJEMENCMUUwODIw NUIxMjM1RjgxNTU4MzZDNzMxNjE1NzkyMjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPSopUivVlbq93nLalff8UWp8YVZOx8zjmW3Fm3dRJKl95gA35 wgKoW7aTGZx7IH6rmX4LTNlB/8fSod5GR88Vg1y2Iq7k3EmsueH6cTypm7F48nUT J5sWtM2U6xHq2vR7pMaLJERgJTB8swXgCeaIqCHMGvJNaKOwgvO9ZJPCsvoy2vOy MT2d3Ih4OZAv45PhHqqPd4QoaP5CzqiBN9JqevvXjNl6tjQtdYrwwGqNkmEeOnC0 OsDzyffeJyFWAFFIgVveaJFAG9d9G+IBzWj1w+YjUs6voCVm4roSozvVQBByEhed RRh7MhJgTfi5hgS5rAreE7taUKI/XWOiSCfLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUPKLQyx4IIFsSNfgVWDbHMWFXkiYwHwYDVR0jBBgwFoAUaIeYXbGeX9gvlitC DswPxO1zDQIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNUVkMv YUllWVhiR2VYOWd2bGl0Q0Rzd1B4TzF6RFFJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hSWVZWGJHZVg5Z3ZsaXRDRHN3UHhPMXpEUUkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JU1RWQy9QS0xReXg0SUlGc1NOZmdWV0Ri SE1XRlhraVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ61f MA0GCSqGSIb3DQEBCwUAA4IBAQCbCkJWtHF5CxYJ1i4p5zfGwr1CrRxIiQIe3Z79 r1xPlhek/mjc9MDRPdkej3u1r+EtIYmjG2U7j8jRaYx/nGDGZ76z3bU2VFpxXVPf Vskwyd20HcRFgq8mHO/K02TmpAu6C7v7fsHtljER33daaAZkK9O4qLPUiU779YpD bOWzT4YC+H/17GRNU0MWdqO1DOZCwCB+dZ+UzA7BPlHViWZ6isB9M2pKE2+LY0s4 z5TYBPwjJd6CKdkiyhutct4hJoS0vZYcjQmysbj+/ZjOHc4u4rMMqRidx4QpyY04 GqDzI1rrKAE5PD7tZgGV06dSikfpD16/UQPVVFTj2R7Gc0Ck -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org