$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/6Kbh5ThzLPmWUXSiFCS0QbRjXJs.roa File: 6Kbh5ThzLPmWUXSiFCS0QbRjXJs.roa (raw, json) Hash identifier: 2RiFeppLudLv7gxsl4BOKNdfiXCHyf4oa6bvhdR6Rcg= Subject key identifier: E8:A6:E1:E5:38:73:2C:F9:96:51:74:A2:14:24:B4:41:B4:63:5C:9B Certificate issuer: /CN=6E181085902F896294602D8B121C1E2E22B58CE7 Certificate serial: 110F Authority key identifier: 6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/6Kbh5ThzLPmWUXSiFCS0QbRjXJs.roa Signing time: Mon 26 Aug 2024 05:21:08 +0000 ROA not before: Mon 26 Aug 2024 05:21:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 396982 IP address blocks: 103.125.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4367 (0x110f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E181085902F896294602D8B121C1E2E22B58CE7 Validity Not Before: Aug 26 05:21:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E8A6E1E538732CF9965174A21424B441B4635C9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:01:98:fe:84:4b:06:6d:0b:b1:0b:d3:f9: 47:6a:41:c6:e2:f9:60:ec:d7:40:45:7d:67:ca:f5: 82:37:62:6f:f2:1d:a3:c3:c0:0a:85:fd:03:ac:1b: 48:ab:95:3c:66:61:ff:44:fb:c2:fb:4d:ad:38:c9: db:c5:5f:6b:14:15:c6:36:53:e0:36:a8:4c:db:24: a5:9e:66:61:18:27:7f:95:cc:30:25:c8:65:a4:a4: 20:76:31:de:0b:b9:db:ff:a0:5b:94:db:6e:ed:9e: 4f:20:3e:f6:a0:9a:8c:6f:79:5e:26:ed:fe:ec:88: 1e:49:96:fd:b4:b4:f4:7a:3f:02:4c:fb:7a:54:fa: 4c:bc:d6:d8:5f:a7:39:d4:26:01:05:5f:51:a2:76: 28:54:f3:38:7b:c0:28:26:42:04:54:6b:c1:b9:03: e4:20:6e:4e:cc:72:a9:42:da:08:ee:2d:d4:22:3b: 57:a9:f8:f3:91:8b:b1:3a:0c:e2:d0:f0:89:b1:60: 56:ce:73:ca:1f:e7:ce:04:3d:dd:98:32:5b:e3:6c: f7:db:45:4d:aa:30:25:50:eb:ed:b0:41:e0:fd:fa: 46:07:d6:56:9d:2d:ab:9b:8f:a2:09:c9:e1:2a:ad: fb:b6:e2:1e:b4:4a:8b:ad:bc:ac:19:80:25:52:29: 7c:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:A6:E1:E5:38:73:2C:F9:96:51:74:A2:14:24:B4:41:B4:63:5C:9B X509v3 Authority Key Identifier: keyid:6E:18:10:85:90:2F:89:62:94:60:2D:8B:12:1C:1E:2E:22:B5:8C:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/bhgQhZAviWKUYC2LEhweLiK1jOc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bhgQhZAviWKUYC2LEhweLiK1jOc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MLYTICS/6Kbh5ThzLPmWUXSiFCS0QbRjXJs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.125.224.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:c2:fa:c9:4a:e0:10:a9:2b:c3:92:a6:9e:14:f6:71:c4:90: 25:1e:f6:56:30:45:f5:05:a9:b3:71:b7:47:90:51:2d:e7:9a: 28:63:e0:e9:5a:f0:b7:a4:2b:ec:6a:11:0b:fc:e2:fb:eb:e9: 63:68:88:81:d6:1b:f8:69:d0:be:4b:4e:a3:36:77:4c:86:b2: b4:16:9a:1e:50:7a:4f:ec:72:b2:7c:25:3b:e1:5e:c0:3c:b1: 04:b5:b8:74:4c:a1:1c:f1:f1:86:21:93:8f:c5:1f:c6:ac:e4: f5:28:1c:6c:f4:4c:ca:80:1c:73:fb:a6:88:a1:1c:96:9a:12: 0c:67:68:4b:ad:9d:f0:b3:5b:fc:05:ff:f8:41:6a:4d:7e:7a: 5f:29:3c:74:28:3e:98:2c:bc:b8:32:f7:d3:2c:fb:dd:b7:67: 8b:b8:41:63:9a:85:65:ce:40:94:08:db:e2:5e:3a:bc:07:95: 35:73:f2:b3:0f:74:3f:02:78:93:3f:77:19:30:6f:5e:aa:09: b5:05:21:25:85:8d:fc:d6:70:bf:c4:1a:e6:04:15:cf:b7:38: 28:7f:f9:48:ec:86:63:7b:4d:9a:c6:e3:91:dc:c0:85:8f:79: bd:28:6a:a1:d1:f2:c7:50:3e:2e:bf:2a:33:d0:df:60:0c:4c: 2d:86:59:d3 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEQ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUx ODEwODU5MDJGODk2Mjk0NjAyRDhCMTIxQzFFMkUyMkI1OENFNzAeFw0yNDA4MjYw NTIxMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4QTZFMUU1Mzg3MzJD Rjk5NjUxNzRBMjE0MjRCNDQxQjQ2MzVDOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYYAGY/oRLBm0LsQvT+UdqQcbi+WDs10BFfWfK9YI3Ym/yHaPD wAqF/QOsG0irlTxmYf9E+8L7Ta04ydvFX2sUFcY2U+A2qEzbJKWeZmEYJ3+VzDAl yGWkpCB2Md4Ludv/oFuU227tnk8gPvagmoxveV4m7f7siB5Jlv20tPR6PwJM+3pU +ky81thfpznUJgEFX1GidihU8zh7wCgmQgRUa8G5A+Qgbk7McqlC2gjuLdQiO1ep +PORi7E6DOLQ8ImxYFbOc8of584EPd2YMlvjbPfbRU2qMCVQ6+2wQeD9+kYH1lad Laubj6IJyeEqrfu24h60SoutvKwZgCVSKXwvAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU6Kbh5ThzLPmWUXSiFCS0QbRjXJswHwYDVR0jBBgwFoAUbhgQhZAviWKUYC2L EhweLiK1jOcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUxZVElD Uy9iaGdRaFpBdmlXS1VZQzJMRWh3ZUxpSzFqT2MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2JoZ1FoWkF2aVdLVVlDMkxFaHdlTGlLMWpPYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL01MWVRJQ1MvNktiaDVUaHpMUG1XVVhT aUZDUzBRYlJqWEpzLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd94DANBgkqhkiG9w0BAQsFAAOCAQEAf8L6yUrgEKkrw5KmnhT2ccSQJR72VjBF 9QWps3G3R5BRLeeaKGPg6Vrwt6Qr7GoRC/zi++vpY2iIgdYb+GnQvktOozZ3TIay tBaaHlB6T+xysnwlO+FewDyxBLW4dEyhHPHxhiGTj8Ufxqzk9SgcbPRMyoAcc/um iKEclpoSDGdoS62d8LNb/AX/+EFqTX56Xyk8dCg+mCy8uDL30yz73bdni7hBY5qF Zc5AlAjb4l46vAeVNXPysw90PwJ4kz93GTBvXqoJtQUhJYWN/NZwv8Qa5gQVz7c4 KH/5SOyGY3tNmsbjkdzAhY95vShqodHyx1A+Lr8qM9DfYAxMLYZZ0w== -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:15 2024 by rpki-client on console-ams.rpki-client.org