$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/BcxswwGDClV7IxYt8x3yBkISV0o.roa File: BcxswwGDClV7IxYt8x3yBkISV0o.roa (raw, json) Hash identifier: PEcnkt6+zLXeFKCwchIxbx0zqXEpIk+7Yk6wnpfGk/c= Subject key identifier: 05:CC:6C:C3:01:83:0A:55:7B:23:16:2D:F3:1D:F2:06:42:12:57:4A Certificate issuer: /CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Certificate serial: F2 Authority key identifier: 55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/BcxswwGDClV7IxYt8x3yBkISV0o.roa Signing time: Wed 04 Sep 2024 09:17:19 +0000 ROA not before: Wed 04 Sep 2024 09:17:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.99.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Validity Not Before: Sep 4 09:17:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=05CC6CC301830A557B23162DF31DF2064212574A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d0:64:c1:b5:cf:3c:b1:c2:c2:46:5d:ec:b5: 78:86:07:52:f2:ab:cb:88:3f:e9:ae:ef:82:a2:46: 62:7b:90:a9:5e:f6:47:d4:a3:31:c2:a0:ba:00:90: 89:0b:97:f7:b4:80:e1:80:09:08:ea:72:0f:e0:b5: 2c:74:4b:36:9f:50:5b:26:df:a4:86:6d:92:37:4a: b9:4b:76:1e:26:e7:6a:d2:51:1e:82:04:61:d3:8f: ff:88:ac:66:4a:84:9a:58:b4:a8:38:08:e4:1d:94: 9b:02:ed:ab:be:81:e3:cf:36:8e:f5:b7:f3:13:cf: ea:74:35:08:35:78:01:3b:0f:60:f0:b5:47:51:a5: 34:e4:78:86:68:a0:e4:1f:ec:87:aa:05:fe:7c:6a: 59:1b:24:98:65:8e:20:4e:e2:02:de:86:b9:7d:30: 87:f0:95:93:0c:fd:ca:e3:72:6e:09:c4:d5:42:ca: 62:57:c1:04:7a:9c:bb:b1:47:aa:c0:98:81:46:6f: 8c:67:91:b5:0a:8d:71:29:bd:ec:ac:bc:78:44:b0: 92:49:85:fd:c9:8b:1d:82:59:53:50:22:67:03:1b: 9e:6e:12:45:9c:9b:a8:9b:13:6f:19:f9:6f:47:11: c8:de:31:ac:34:cb:60:7f:c1:c1:bb:34:db:7a:fd: c2:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CC:6C:C3:01:83:0A:55:7B:23:16:2D:F3:1D:F2:06:42:12:57:4A X509v3 Authority Key Identifier: keyid:55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/BcxswwGDClV7IxYt8x3yBkISV0o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.99.138.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:b1:4c:8a:f5:43:a9:7f:32:87:cc:d2:ed:ad:f5:7d:a7:9d: 14:1d:92:61:84:7c:88:50:ec:4e:32:4f:9f:ea:87:31:8b:8a: 47:3f:dd:d5:8d:54:da:45:9e:b6:93:5f:ee:f7:5c:05:47:2b: 79:4b:c0:1c:e0:24:52:04:d0:6f:5b:f4:a8:54:44:e2:e5:ab: d3:cc:10:e9:26:0c:ae:69:83:e9:b1:44:24:42:72:39:93:cd: 88:26:e8:af:66:7d:86:13:8d:83:bd:fd:d2:2b:e9:81:51:47: fa:39:11:33:3c:bd:73:84:d5:e6:87:07:45:7a:43:36:e7:df: ac:e8:89:6c:2e:f8:d3:2e:89:f7:6d:c0:cb:8b:93:8b:c6:fc: 8e:7b:af:2f:29:73:62:d0:77:08:40:52:d7:06:aa:e6:33:84: cc:36:e9:08:a6:d7:7e:ee:62:73:73:d5:de:cc:87:aa:8f:bd: 5f:46:ad:ca:a7:9d:76:76:eb:8d:35:0c:b1:6e:a1:af:35:0e: 3b:91:2a:02:0f:84:5c:b7:1a:f1:88:ee:c6:f3:19:be:7b:08: 7d:5e:1c:b1:b9:c7:ad:44:7e:24:36:5a:6a:14:4e:23:b9:9e: 62:29:c8:fb:f7:d2:62:8d:06:5c:23:d3:c2:33:4f:cb:0e:84: 62:53:51:b9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUw MUZFMEMzMDU2RjYxMTI2MUFDMUMwRURDNjdFMjM0NEQ3OTkzQTAeFw0yNDA5MDQw OTE3MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1Q0M2Q0MzMDE4MzBB NTU3QjIzMTYyREYzMURGMjA2NDIxMjU3NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE0GTBtc88scLCRl3stXiGB1Lyq8uIP+mu74KiRmJ7kKle9kfU ozHCoLoAkIkLl/e0gOGACQjqcg/gtSx0SzafUFsm36SGbZI3SrlLdh4m52rSUR6C BGHTj/+IrGZKhJpYtKg4COQdlJsC7au+gePPNo71t/MTz+p0NQg1eAE7D2DwtUdR pTTkeIZooOQf7IeqBf58alkbJJhljiBO4gLehrl9MIfwlZMM/crjcm4JxNVCymJX wQR6nLuxR6rAmIFGb4xnkbUKjXEpveysvHhEsJJJhf3Jix2CWVNQImcDG55uEkWc m6ibE28Z+W9HEcjeMaw0y2B/wcG7NNt6/cLxAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUBcxswwGDClV7IxYt8x3yBkISV0owHwYDVR0jBBgwFoAUVQH+DDBW9hEmGsHA 7cZ+I0TXmTowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElBTkdD QUkvVlFILUREQlc5aEVtR3NIQTdjWi1JMFRYbVRvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9WUUgtRERCVzloRW1Hc0hBN2NaLUkwVFhtVG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSUFOR0NBSS9CY3hzd3dHRENsVjdJ eFl0OHgzeUJrSVNWMG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ2OKMA0GCSqGSIb3DQEBCwUAA4IBAQBvsUyK9UOpfzKHzNLtrfV9p50UHZJh hHyIUOxOMk+f6ocxi4pHP93VjVTaRZ62k1/u91wFRyt5S8Ac4CRSBNBvW/SoVETi 5avTzBDpJgyuaYPpsUQkQnI5k82IJuivZn2GE42Dvf3SK+mBUUf6OREzPL1zhNXm hwdFekM259+s6IlsLvjTLon3bcDLi5OLxvyOe68vKXNi0HcIQFLXBqrmM4TMNukI ptd+7mJzc9XezIeqj71fRq3Kp512duuNNQyxbqGvNQ47kSoCD4RctxrxiO7G8xm+ ewh9XhyxucetRH4kNlpqFE4juZ5iKcj799JijQZcI9PCM0/LDoRiU1G5 -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:42 2024 by rpki-client on console-ams.rpki-client.org