$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/b10pSRAcElHfm9ufgwjUoR-wv2Q.roa File: b10pSRAcElHfm9ufgwjUoR-wv2Q.roa (raw, json) Hash identifier: EtJI9GWJU9tRyjVkokZd94rVu5nA5Ej2j3xr4QQk4C4= Subject key identifier: 6F:5D:29:49:10:1C:12:51:DF:9B:DB:9F:83:08:D4:A1:1F:B0:BF:64 Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0C23 Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/b10pSRAcElHfm9ufgwjUoR-wv2Q.roa Signing time: Mon 26 Aug 2024 05:20:43 +0000 ROA not before: Mon 26 Aug 2024 05:20:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131587 IP address blocks: 103.228.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3107 (0xc23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: Aug 26 05:20:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6F5D2949101C1251DF9BDB9F8308D4A11FB0BF64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:12:14:87:11:59:6c:1f:99:94:e3:5b:f7: 91:5a:5d:ce:f3:41:18:15:1e:aa:fd:45:da:55:94: 74:a8:84:4a:51:6e:33:42:42:b6:8a:a1:ba:01:8e: 59:86:3c:ca:c7:e1:31:6c:f4:bc:9c:4a:63:ce:0c: b7:b9:8d:1f:ce:d3:ca:44:5d:ab:59:d1:80:82:8c: 35:cf:c4:a0:77:72:e6:fc:81:18:20:13:c4:7a:56: 6b:62:ca:07:40:1f:2b:12:54:5a:92:79:ef:ef:c8: 00:b8:02:c3:9e:29:3a:bd:5f:b8:ee:3d:95:08:1a: fe:74:2e:40:17:ee:08:a8:07:b6:de:8f:cc:25:ea: 4a:47:5e:0a:36:ee:b2:e4:46:27:40:19:14:2f:dd: 69:b3:60:fa:8d:6f:e1:bc:80:46:2e:b8:47:60:d4: 1c:85:f3:1d:1d:a1:64:f2:49:5c:15:76:5f:dc:08: 9a:f3:18:bb:84:7e:da:c8:28:d0:eb:2d:43:15:e8: 20:96:7a:3c:7a:cc:45:d8:3d:f7:be:61:8f:49:5d: d3:1f:9a:27:6e:5a:29:f0:99:7d:30:32:87:05:1d: e6:04:4f:e3:72:19:0c:a1:82:21:3b:ce:c0:80:08: be:30:a0:95:b8:87:ea:63:96:66:d4:39:cd:cf:08: a1:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:5D:29:49:10:1C:12:51:DF:9B:DB:9F:83:08:D4:A1:1F:B0:BF:64 X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/b10pSRAcElHfm9ufgwjUoR-wv2Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.228.216.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:4f:4d:57:39:2b:a8:26:58:e4:45:ad:69:fb:d1:2c:de:a6: 4f:e0:cf:37:39:6a:2e:89:8f:74:d0:3c:18:76:df:81:a1:80: e6:54:45:a8:b3:0d:7f:63:4e:1a:08:38:34:3b:1d:09:02:01: 2d:7b:58:af:99:9e:30:b7:8f:70:42:b2:a1:7d:dc:37:39:ef: 02:8e:f3:5b:ba:33:11:73:3d:d7:98:52:8c:b4:3c:c5:d2:73: 58:01:7b:02:17:9f:9e:8a:29:78:8d:df:f9:c4:3a:61:35:30: e0:41:34:d5:74:aa:af:9c:34:28:ae:5e:43:36:75:46:bf:d8: 94:56:a2:b4:fb:c9:25:b9:b0:ed:56:91:f8:26:63:d3:e6:83: 6f:72:1e:f6:3d:2b:c5:21:37:8d:fd:c8:a5:1b:5b:90:3c:7d: 59:44:a4:6d:2b:71:64:1b:4e:d7:ef:c1:34:1e:a6:69:78:a5: 5b:f1:36:5d:36:04:15:25:f1:8c:c8:81:1b:43:89:27:f7:8f: b4:79:68:e0:0e:1c:0a:35:36:60:fe:7b:4f:5b:88:ef:a5:27: 97:ec:a4:a1:b8:6d:76:bb:0d:eb:86:39:72:11:fa:11:63:42: ec:0e:b6:72:63:ea:ef:99:22:c3:07:65:53:d6:16:8b:b8:d0: 3e:c6:91:5c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDCMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNDA4MjYw NTIwNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGNUQyOTQ5MTAxQzEy NTFERjlCREI5RjgzMDhENEExMUZCMEJGNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1YxIUhxFZbB+ZlONb95FaXc7zQRgVHqr9RdpVlHSohEpRbjNC QraKoboBjlmGPMrH4TFs9LycSmPODLe5jR/O08pEXatZ0YCCjDXPxKB3cub8gRgg E8R6VmtiygdAHysSVFqSee/vyAC4AsOeKTq9X7juPZUIGv50LkAX7gioB7bej8wl 6kpHXgo27rLkRidAGRQv3WmzYPqNb+G8gEYuuEdg1ByF8x0doWTySVwVdl/cCJrz GLuEftrIKNDrLUMV6CCWejx6zEXYPfe+YY9JXdMfmiduWinwmX0wMocFHeYET+Ny GQyhgiE7zsCACL4woJW4h+pjlmbUOc3PCKHJAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUb10pSRAcElHfm9ufgwjUoR+wv2QwHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy9iMTBwU1JBY0VsSGZt OXVmZ3dqVW9SLXd2MlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ+TYMA0GCSqGSIb3DQEBCwUAA4IBAQAOT01XOSuoJljkRa1p+9Es3qZP4M83 OWouiY900DwYdt+BoYDmVEWosw1/Y04aCDg0Ox0JAgEte1ivmZ4wt49wQrKhfdw3 Oe8CjvNbujMRcz3XmFKMtDzF0nNYAXsCF5+eiil4jd/5xDphNTDgQTTVdKqvnDQo rl5DNnVGv9iUVqK0+8klubDtVpH4JmPT5oNvch72PSvFITeN/cilG1uQPH1ZRKRt K3FkG07X78E0HqZpeKVb8TZdNgQVJfGMyIEbQ4kn94+0eWjgDhwKNTZg/ntPW4jv pSeX7KShuG12uw3rhjlyEfoRY0LsDrZyY+rvmSLDB2VT1haLuNA+xpFc -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:09 2024 by rpki-client on console-ams.rpki-client.org