$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/-ZKFdxOsfqc5Qc0LVGy5rGyjUa4.roa File: -ZKFdxOsfqc5Qc0LVGy5rGyjUa4.roa (raw, json) Hash identifier: VCabKnmw9qNHdfQMd+1e8lsId52XqeBFJZATgFsvNZ0= Subject key identifier: F9:92:85:77:13:AC:7E:A7:39:41:CD:0B:54:6C:B9:AC:6C:A3:51:AE Certificate issuer: /CN=3D685193B8FAF2537E5A1385E03D19FE89742A8B Certificate serial: 0BB9 Authority key identifier: 3D:68:51:93:B8:FA:F2:53:7E:5A:13:85:E0:3D:19:FE:89:74:2A:8B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PWhRk7j68lN-WhOF4D0Z_ol0Kos.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/-ZKFdxOsfqc5Qc0LVGy5rGyjUa4.roa Signing time: Mon 26 Aug 2024 05:20:14 +0000 ROA not before: Mon 26 Aug 2024 05:20:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9304 IP address blocks: 103.17.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/PWhRk7j68lN-WhOF4D0Z_ol0Kos.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/PWhRk7j68lN-WhOF4D0Z_ol0Kos.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PWhRk7j68lN-WhOF4D0Z_ol0Kos.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D685193B8FAF2537E5A1385E03D19FE89742A8B Validity Not Before: Aug 26 05:20:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F992857713AC7EA73941CD0B546CB9AC6CA351AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a9:52:2a:b4:d1:a5:a4:11:90:65:db:ee:97: 2b:24:90:8a:f4:dd:46:0e:fc:40:df:d5:a0:a3:58: 57:bb:af:15:ce:70:3e:7b:da:68:26:a9:47:15:9d: 12:c6:46:8f:0a:0b:6b:e3:9e:c4:e4:dc:90:d4:61: da:3c:84:c4:55:74:78:27:c3:de:97:66:ce:ca:1c: 53:20:a4:fa:99:6a:43:27:ae:b2:63:7d:65:88:a2: 79:45:b9:67:59:77:3f:5b:0e:ce:b9:37:a0:a0:a3: 08:f3:20:e9:06:4c:90:58:48:3e:85:fe:f7:50:98: d1:41:58:36:31:59:b3:c9:4f:ab:84:dd:37:81:65: 9e:96:c3:0d:34:38:67:cf:c8:d3:45:8b:13:79:30: 7c:1b:20:5c:c5:f6:53:98:da:3f:08:cb:fd:cf:dc: 9a:c7:c0:59:34:23:3d:b7:0b:70:ed:95:c6:4a:ba: 59:ca:8a:42:d4:78:cc:3e:11:ae:27:4a:e1:9a:7d: e1:6c:e1:7a:a2:71:41:8b:d5:3a:32:64:0b:39:e2: cb:d9:c5:58:65:60:9e:cc:72:08:bf:9e:86:88:28: 7d:da:e6:40:e0:1a:47:52:66:0a:c4:e0:2d:6f:4a: 2a:e2:3c:27:9f:b9:28:36:2f:be:76:ea:9b:44:ce: f0:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:92:85:77:13:AC:7E:A7:39:41:CD:0B:54:6C:B9:AC:6C:A3:51:AE X509v3 Authority Key Identifier: keyid:3D:68:51:93:B8:FA:F2:53:7E:5A:13:85:E0:3D:19:FE:89:74:2A:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/PWhRk7j68lN-WhOF4D0Z_ol0Kos.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PWhRk7j68lN-WhOF4D0Z_ol0Kos.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEOLCY/-ZKFdxOsfqc5Qc0LVGy5rGyjUa4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.17.240.0/22 Signature Algorithm: sha256WithRSAEncryption 85:d3:e4:1a:cd:a0:64:39:94:ae:d2:b3:d7:a2:dd:d4:bd:3e: 66:ed:14:32:32:7a:04:8d:55:95:36:43:61:6f:8c:e9:68:b0: 41:13:59:52:c4:d2:b0:4b:93:34:cc:0f:e1:be:30:53:70:5c: 57:a0:55:ee:45:1c:b7:1c:c9:fd:08:32:10:2f:ea:92:d6:ea: 96:25:ce:34:28:63:92:82:ac:34:9d:d5:32:20:33:5f:54:a6: 4e:b1:4f:b4:52:1d:1b:7c:5e:5e:40:c9:c5:2f:4d:94:58:15: c8:ec:ea:59:f2:bb:07:9e:10:be:4a:86:8a:29:22:08:bc:50: 3c:df:a8:eb:8f:5f:0b:68:50:82:6a:2f:1e:8b:a3:fa:86:81: 7a:65:07:f5:df:94:66:a6:1f:85:37:c8:c5:2a:d4:03:49:82: 6d:39:91:30:6f:f3:5d:09:6c:3a:40:22:a9:c1:06:82:d1:44: d1:ca:ac:df:9f:e1:52:12:bc:c3:76:8f:67:40:27:f9:74:71: b7:40:c6:24:b0:4e:71:d9:bd:fb:86:ba:7a:8d:ba:9b:c7:f3: b2:65:79:0c:2d:b1:a9:51:47:f3:03:f0:db:e0:eb:c8:25:67: 70:8c:cc:22:41:85:fe:ee:94:8e:71:7a:24:d9:8e:cf:43:34: ad:d0:c6:81 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Q2 ODUxOTNCOEZBRjI1MzdFNUExMzg1RTAzRDE5RkU4OTc0MkE4QjAeFw0yNDA4MjYw NTIwMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5OTI4NTc3MTNBQzdF QTczOTQxQ0QwQjU0NkNCOUFDNkNBMzUxQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPqVIqtNGlpBGQZdvulyskkIr03UYO/EDf1aCjWFe7rxXOcD57 2mgmqUcVnRLGRo8KC2vjnsTk3JDUYdo8hMRVdHgnw96XZs7KHFMgpPqZakMnrrJj fWWIonlFuWdZdz9bDs65N6CgowjzIOkGTJBYSD6F/vdQmNFBWDYxWbPJT6uE3TeB ZZ6Www00OGfPyNNFixN5MHwbIFzF9lOY2j8Iy/3P3JrHwFk0Iz23C3DtlcZKulnK ikLUeMw+Ea4nSuGafeFs4XqicUGL1ToyZAs54svZxVhlYJ7Mcgi/noaIKH3a5kDg GkdSZgrE4C1vSiriPCefuSg2L7526ptEzvDFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+ZKFdxOsfqc5Qc0LVGy5rGyjUa4wHwYDVR0jBBgwFoAUPWhRk7j68lN+WhOF 4D0Z/ol0KoswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVPTENZ L1BXaFJrN2o2OGxOLVdoT0Y0RDBaX29sMEtvcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUFdoUms3ajY4bE4tV2hPRjREMFpfb2wwS29zLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVPTENZLy1aS0ZkeE9zZnFjNVFjMExW R3k1ckd5alVhNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn EfAwDQYJKoZIhvcNAQELBQADggEBAIXT5BrNoGQ5lK7Ss9ei3dS9PmbtFDIyegSN VZU2Q2FvjOlosEETWVLE0rBLkzTMD+G+MFNwXFegVe5FHLccyf0IMhAv6pLW6pYl zjQoY5KCrDSd1TIgM19Upk6xT7RSHRt8Xl5AycUvTZRYFcjs6lnyuweeEL5Khoop Igi8UDzfqOuPXwtoUIJqLx6Lo/qGgXplB/XflGamH4U3yMUq1ANJgm05kTBv810J bDpAIqnBBoLRRNHKrN+f4VISvMN2j2dAJ/l0cbdAxiSwTnHZvfuGunqNupvH87Jl eQwtsalRR/MD8Nvg68glZ3CMzCJBhf7ulI5xeiTZjs9DNK3QxoE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org