$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJING/Wi6zDAMe9wPRdrTBV4XVcccuFaA.roa File: Wi6zDAMe9wPRdrTBV4XVcccuFaA.roa (raw, json) Hash identifier: qx/hUmiQygVfJ6V2ku7zhFkjlOGFTuuM3M9okSqtAQw= Subject key identifier: 5A:2E:B3:0C:03:1E:F7:03:D1:76:B4:C1:57:85:D5:71:C7:2E:15:A0 Certificate issuer: /CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Certificate serial: 1146 Authority key identifier: 4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/Wi6zDAMe9wPRdrTBV4XVcccuFaA.roa Signing time: Mon 26 Aug 2024 05:20:50 +0000 ROA not before: Mon 26 Aug 2024 05:20:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18464 IP address blocks: 103.127.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4422 (0x1146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E721C5DD3459DFF85348F1B39DDA9DD50586234 Validity Not Before: Aug 26 05:20:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5A2EB30C031EF703D176B4C15785D571C72E15A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f0:be:29:5c:9e:44:ad:88:7c:f0:4b:5c:19: 5e:dd:a7:34:8d:b9:b0:35:66:94:d6:53:dd:5f:2e: 22:a7:dd:40:8e:e1:a2:99:37:4e:f8:6b:04:30:9f: 92:6f:4e:ad:0a:f8:19:02:4d:c9:a8:89:36:79:ab: 53:5a:5e:c6:e8:95:6d:8d:07:af:ad:18:fd:bc:fc: 24:8e:0d:80:0b:f0:86:b0:c5:2f:22:af:95:84:f7: e7:0a:14:06:bc:3e:07:b4:43:cc:89:96:7a:f7:08: 21:6d:fc:86:70:c6:f9:1a:4a:e1:5b:5b:93:43:1d: f0:68:e7:ba:9f:c6:24:e5:b5:93:4a:1b:fe:a1:23: f9:43:00:d3:3e:21:27:e6:f0:a9:1a:a4:85:9e:2d: 3f:fe:88:11:17:2d:a6:c5:54:1e:35:94:a0:5c:bc: 43:66:93:e1:e8:18:e5:5d:65:97:0f:03:32:86:d0: cb:6d:4d:6c:b8:ba:43:51:e6:f3:1b:01:78:7b:30: 28:60:0a:0f:50:55:40:0c:32:14:98:ef:78:37:39: 3d:1e:af:ea:4c:12:85:f3:77:ce:50:d5:99:cb:94: a1:13:f3:c6:47:e1:2c:e7:9a:80:d3:6e:b1:e9:29: f8:3e:2c:16:5e:ab:1e:07:ee:e8:25:76:ba:5f:2b: b5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:2E:B3:0C:03:1E:F7:03:D1:76:B4:C1:57:85:D5:71:C7:2E:15:A0 X509v3 Authority Key Identifier: keyid:4E:72:1C:5D:D3:45:9D:FF:85:34:8F:1B:39:DD:A9:DD:50:58:62:34 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TnIcXdNFnf-FNI8bOd2p3VBYYjQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJING/Wi6zDAMe9wPRdrTBV4XVcccuFaA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.243.0/24 Signature Algorithm: sha256WithRSAEncryption 63:b6:6f:b7:29:58:31:c3:d3:71:75:95:61:c2:3a:fd:95:4a: f4:29:c8:5c:38:d0:7f:c5:82:c0:56:2f:60:14:c2:ff:e7:4e: a6:7a:af:34:6f:49:e3:80:a2:4f:fa:db:68:7f:43:44:a6:bc: f9:27:c7:b1:81:74:20:3b:79:8b:0c:45:3e:b3:4a:23:cf:75: 04:82:02:c0:a6:8a:32:d8:3d:3c:b8:28:21:7c:15:37:92:1e: f2:8e:0f:c0:c8:60:ea:f2:89:fc:06:19:6d:6f:2d:ae:92:26: 72:2d:e1:a2:f6:64:a4:a7:51:7e:4a:2d:fc:f3:5d:ec:0e:90: 45:0d:1b:cc:a1:f0:24:cc:c5:5c:05:f4:88:74:47:7a:2f:0b: fb:1c:a2:d8:9a:66:3b:0e:92:42:e1:e3:94:bd:b9:e8:10:c3: 30:cf:38:c8:01:6e:32:d9:24:ec:55:8d:f4:e0:18:0a:61:89: fc:c7:fd:ba:3b:7a:b2:3a:98:c2:fe:aa:45:52:27:9b:96:e3: 27:4a:73:59:e3:cd:33:6a:d4:a6:6c:1d:a0:c9:54:4e:2a:15: a2:cc:2c:be:ef:52:b4:02:ae:13:c9:07:bd:c5:c3:94:26:ec: 15:8d:f4:1a:94:2c:35:7b:e6:0b:38:32:5b:b0:7e:e7:e0:fc: 54:2d:0c:62 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEUYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEU3 MjFDNUREMzQ1OURGRjg1MzQ4RjFCMzlEREE5REQ1MDU4NjIzNDAeFw0yNDA4MjYw NTIwNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVBMkVCMzBDMDMxRUY3 MDNEMTc2QjRDMTU3ODVENTcxQzcyRTE1QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE8L4pXJ5ErYh88EtcGV7dpzSNubA1ZpTWU91fLiKn3UCO4aKZ N074awQwn5JvTq0K+BkCTcmoiTZ5q1NaXsbolW2NB6+tGP28/CSODYAL8IawxS8i r5WE9+cKFAa8Pge0Q8yJlnr3CCFt/IZwxvkaSuFbW5NDHfBo57qfxiTltZNKG/6h I/lDANM+ISfm8KkapIWeLT/+iBEXLabFVB41lKBcvENmk+HoGOVdZZcPAzKG0Mtt TWy4ukNR5vMbAXh7MChgCg9QVUAMMhSY73g3OT0er+pMEoXzd85Q1ZnLlKET88ZH 4SznmoDTbrHpKfg+LBZeqx4H7ugldrpfK7WjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUWi6zDAMe9wPRdrTBV4XVcccuFaAwHwYDVR0jBBgwFoAUTnIcXdNFnf+FNI8b Od2p3VBYYjQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkcvVG5JY1hkTkZuZi1GTkk4Yk9kMnAzVkJZWWpRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9UbkljWGRORm5mLUZOSThiT2QycDNWQllZalEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NSU5HSklORy9XaTZ6REFNZTl3UFJk clRCVjRYVmNjY3VGYUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/zMA0GCSqGSIb3DQEBCwUAA4IBAQBjtm+3KVgxw9NxdZVhwjr9lUr0Kchc ONB/xYLAVi9gFML/506meq80b0njgKJP+ttof0NEprz5J8exgXQgO3mLDEU+s0oj z3UEggLApooy2D08uCghfBU3kh7yjg/AyGDq8on8Bhltby2ukiZyLeGi9mSkp1F+ Si38813sDpBFDRvMofAkzMVcBfSIdEd6Lwv7HKLYmmY7DpJC4eOUvbnoEMMwzzjI AW4y2STsVY304BgKYYn8x/26O3qyOpjC/qpFUiebluMnSnNZ480zatSmbB2gyVRO KhWizCy+71K0Aq4TyQe9xcOUJuwVjfQalCw1e+YLODJbsH7n4PxULQxi -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:09 2024 by rpki-client on console-ams.rpki-client.org