$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/EKnH2C6dgGiBmuUpG0l-xKxQWVs.roa File: EKnH2C6dgGiBmuUpG0l-xKxQWVs.roa (raw, json) Hash identifier: eEqx/yycSkYt80lIgsfiWW/+Lf3L1cVcwTX5ZCbe0g0= Subject key identifier: 10:A9:C7:D8:2E:9D:80:68:81:9A:E5:29:1B:49:7E:C4:AC:50:59:5B Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Certificate serial: 1149 Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/EKnH2C6dgGiBmuUpG0l-xKxQWVs.roa Signing time: Mon 26 Aug 2024 05:20:51 +0000 ROA not before: Mon 26 Aug 2024 05:20:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18464 IP address blocks: 103.127.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4425 (0x1149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Validity Not Before: Aug 26 05:20:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=10A9C7D82E9D8068819AE5291B497EC4AC50595B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d4:20:8a:fa:5f:7d:7b:d7:ec:e2:8b:a2:28: b5:c3:e7:3f:23:ac:55:aa:04:10:cd:b2:01:bb:b0: 07:ad:48:4d:28:75:fd:f0:de:32:a8:4f:a9:94:f5: 26:84:d2:f2:9a:5a:cb:92:7a:60:0f:67:24:ff:95: 40:a6:e7:13:d8:44:98:46:7b:25:27:7e:66:de:eb: 2d:69:fa:4c:5d:4b:7f:8c:b2:6a:ec:23:36:b5:7f: 6a:02:20:1d:31:7c:8b:84:cc:8f:85:ce:75:b3:71: 7c:16:41:86:ba:57:ab:f6:ce:40:69:57:be:d0:73: 43:31:f2:43:dc:bb:ca:ea:15:ae:35:e1:12:62:a2: 39:b0:c9:3f:6f:38:fd:41:1a:0f:d2:a1:07:07:5a: c3:b2:b1:c2:7f:46:fb:ed:d9:96:bf:cf:97:ca:98: 29:e9:86:4f:46:21:94:15:06:12:fd:19:0c:ef:73: c6:0b:93:ef:c4:b0:16:7d:0c:6b:76:94:ee:bc:38: a7:f4:cf:93:56:a1:02:f9:97:14:ec:68:7c:6f:de: cf:9e:bd:16:b5:4a:75:bc:ea:d8:73:4b:ea:6c:c9: b2:76:79:ca:d4:d3:73:5c:ef:f2:3b:a6:64:20:c7: 9d:74:2a:1d:ef:c7:d7:57:8f:d8:28:e4:f5:2a:eb: d5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A9:C7:D8:2E:9D:80:68:81:9A:E5:29:1B:49:7E:C4:AC:50:59:5B X509v3 Authority Key Identifier: keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/EKnH2C6dgGiBmuUpG0l-xKxQWVs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.242.0/24 Signature Algorithm: sha256WithRSAEncryption 43:d3:a6:9c:a3:d4:75:eb:40:e4:d3:b7:41:3e:b8:df:f2:62: b9:88:26:8c:e8:cb:09:6a:78:0a:6f:50:4d:02:ad:9f:fa:ff: c9:b5:92:98:00:34:9e:31:8f:6b:93:17:ab:f2:6d:09:cd:37: 84:9b:07:5e:f2:9f:7d:5a:c8:34:be:df:90:a6:3f:de:09:b5: d3:4f:bf:51:3d:4b:3b:d9:e8:35:a8:60:04:48:25:23:60:1b: 09:e8:7c:29:a3:8f:32:5b:7d:aa:dc:00:a1:30:07:fc:9c:57: 7b:b4:46:34:19:b2:0e:d7:ea:bc:f9:df:ff:cc:9b:8f:73:05: 96:e9:57:d8:72:31:c2:8e:ce:ba:74:f4:dc:33:c9:c4:f2:6c: 0a:02:48:2f:46:d8:68:7f:1a:ff:a6:4d:9e:63:15:ca:a7:da: d9:4b:74:16:22:fa:91:eb:41:93:45:e2:4d:f3:f4:bb:58:ea: 54:45:93:b3:7d:a1:78:b1:75:6e:84:86:6b:8b:0d:16:a5:db: b9:bc:43:34:df:5e:f3:2d:5b:73:78:2c:cd:ba:31:8e:c8:44: 20:37:b2:47:9e:5e:c4:83:41:f6:19:16:85:dd:81:c3:cd:8c: 05:c4:83:00:58:0b:3b:b9:67:ac:bb:d6:4e:68:35:ca:de:7d: 3e:dd:2d:25 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEUkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3 MjFDNUREMzQ1OURGRjg1MzQ4RjFCMzlEREE5REQ1MDU4NjIzNDAeFw0yNDA4MjYw NTIwNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDEwQTlDN0Q4MkU5RDgw Njg4MTlBRTUyOTFCNDk3RUM0QUM1MDU5NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ1CCK+l99e9fs4ouiKLXD5z8jrFWqBBDNsgG7sAetSE0odf3w 3jKoT6mU9SaE0vKaWsuSemAPZyT/lUCm5xPYRJhGeyUnfmbe6y1p+kxdS3+Msmrs Iza1f2oCIB0xfIuEzI+FznWzcXwWQYa6V6v2zkBpV77Qc0Mx8kPcu8rqFa414RJi ojmwyT9vOP1BGg/SoQcHWsOyscJ/Rvvt2Za/z5fKmCnphk9GIZQVBhL9GQzvc8YL k+/EsBZ9DGt2lO68OKf0z5NWoQL5lxTsaHxv3s+evRa1SnW86thzS+psybJ2ecrU 03Nc7/I7pmQgx510Kh3vx9dXj9go5PUq69XHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUEKnH2C6dgGiBmuUpG0l+xKxQWVswHwYDVR0jBBgwFoAUTnIcXdNFnf+FNI8b Od2p3VBYYjQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkcvVG5JY1hkTkZuZi1GTkk4Yk9kMnAzVkJZWWpRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9UbkljWGRORm5mLUZOSThiT2QycDNWQllZalEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HSklORy9FS25IMkM2ZGdHaUJt dVVwRzBsLXhLeFFXVnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/yMA0GCSqGSIb3DQEBCwUAA4IBAQBD06aco9R160Dk07dBPrjf8mK5iCaM 6MsJangKb1BNAq2f+v/JtZKYADSeMY9rkxer8m0JzTeEmwde8p99Wsg0vt+Qpj/e CbXTT79RPUs72eg1qGAESCUjYBsJ6Hwpo48yW32q3AChMAf8nFd7tEY0GbIO1+q8 +d//zJuPcwWW6VfYcjHCjs66dPTcM8nE8mwKAkgvRthofxr/pk2eYxXKp9rZS3QW IvqR60GTReJN8/S7WOpURZOzfaF4sXVuhIZriw0Wpdu5vEM0317zLVtzeCzNujGO yEQgN7JHnl7Eg0H2GRaF3YHDzYwFxIMAWAs7uWesu9ZOaDXK3n0+3S0l -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:09 2024 by rpki-client on console-ams.rpki-client.org