$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MOBATW/whJbHLfwoehIZ7C678wd0YeO_IY.roa File: whJbHLfwoehIZ7C678wd0YeO_IY.roa (raw, json) Hash identifier: Ffr76d8t4Zlmc11ElTvQfSIaK3gZvhNbEWv/jHVSVHQ= Subject key identifier: C2:12:5B:1C:B7:F0:A1:E8:48:67:B0:BA:EF:CC:1D:D1:87:8E:FC:86 Certificate issuer: /CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158 Certificate serial: 1143 Authority key identifier: A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/whJbHLfwoehIZ7C678wd0YeO_IY.roa Signing time: Mon 26 Aug 2024 05:21:11 +0000 ROA not before: Mon 26 Aug 2024 05:21:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131634 IP address blocks: 103.127.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4419 (0x1143) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158 Validity Not Before: Aug 26 05:21:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C2125B1CB7F0A1E84867B0BAEFCC1DD1878EFC86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f0:67:d8:8d:b4:9f:35:dd:0b:80:96:36:19: 3d:ae:8d:98:15:bf:23:cf:d3:ac:41:a0:e4:fc:9f: d4:87:d9:1a:fb:e4:b4:65:e4:76:9d:8d:ba:5e:75: 0e:27:4d:71:be:68:19:f5:57:fa:0d:8a:36:da:05: f6:09:19:4b:c6:6d:19:8a:9d:43:e5:5d:6a:6d:62: 74:d2:2d:e6:76:4b:15:3c:f6:fd:bd:12:41:5e:d9: 91:70:11:fe:f5:9d:c1:11:09:d8:e3:0f:02:36:e1: f3:80:41:8c:0e:d6:f5:3a:be:dc:42:f6:11:2d:3d: 63:2f:3e:23:7e:80:44:da:e4:72:19:ae:9a:2d:c1: 15:14:37:c3:08:86:07:47:bf:20:77:f0:48:49:59: d4:89:b4:c9:f8:41:a3:48:1a:25:a8:1f:dc:80:0a: 38:b4:a8:7f:5a:f5:a4:a8:3e:64:2d:62:7a:d3:1a: be:82:65:6b:7e:a8:18:a0:fa:c1:2d:ef:56:1d:e2: 69:d9:c8:20:e0:0a:fb:cd:2f:c3:64:c6:ba:63:98: 15:45:a2:06:af:a6:0a:b3:ea:ec:63:d9:25:37:65: 26:0d:74:00:26:ba:aa:7d:b6:b0:29:36:b9:68:13: 95:4c:f5:d8:f6:51:ce:12:10:01:9e:fa:01:9b:21: 18:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:12:5B:1C:B7:F0:A1:E8:48:67:B0:BA:EF:CC:1D:D1:87:8E:FC:86 X509v3 Authority Key Identifier: keyid:A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/whJbHLfwoehIZ7C678wd0YeO_IY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.228.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:ff:17:45:93:18:46:5e:7e:d6:04:3a:b4:40:ed:f0:65:1d: d0:d6:a8:4f:b1:36:b5:27:6c:c6:2e:22:87:2a:36:84:76:15: 78:dd:00:33:21:92:8d:62:f1:2e:f6:f5:23:23:44:9b:77:ed: dc:53:54:8a:1f:82:e7:e6:2b:92:b7:ea:dd:fc:d1:54:63:52: 7c:10:1b:8f:fd:fd:68:e1:17:99:20:64:57:80:a4:68:9c:d5: 64:d1:15:6d:c0:9f:49:5a:e6:e9:31:29:d6:ff:b3:e2:7d:85: 0c:4f:ab:a1:04:56:7d:1e:6f:6e:ac:c8:01:31:4c:54:a6:0d: 66:c3:5d:57:90:89:cd:b2:d3:13:80:18:17:bc:16:0a:46:3e: f4:f5:2c:24:88:8e:d8:bb:72:17:49:24:05:5f:9c:8f:69:e7: 83:fa:77:ab:bf:54:c4:c8:a8:cd:f8:63:ba:86:1b:46:a0:1f: ac:9b:ea:8d:75:5a:ca:b6:cb:0e:8f:7e:3f:ad:9b:a0:9f:77: 36:ef:7b:d0:55:3b:5d:e9:0d:47:10:b8:ac:95:40:19:53:09: b8:46:fe:3f:86:05:42:6d:31:8f:c0:bd:58:c8:dd:15:61:d0: 81:e9:27:4a:4a:fc:7b:6e:5d:14:a0:4a:54:ba:77:6c:26:6e: f5:8e:78:25 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICEUMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTA1 RTY2Q0ZBNkY4QzBEQUFCRkIxQUY2RkEzMjE4NDI2MDQ0RjE1ODAeFw0yNDA4MjYw NTIxMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyMTI1QjFDQjdGMEEx RTg0ODY3QjBCQUVGQ0MxREQxODc4RUZDODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC98GfYjbSfNd0LgJY2GT2ujZgVvyPP06xBoOT8n9SH2Rr75LRl 5HadjbpedQ4nTXG+aBn1V/oNijbaBfYJGUvGbRmKnUPlXWptYnTSLeZ2SxU89v29 EkFe2ZFwEf71ncERCdjjDwI24fOAQYwO1vU6vtxC9hEtPWMvPiN+gETa5HIZrpot wRUUN8MIhgdHvyB38EhJWdSJtMn4QaNIGiWoH9yACji0qH9a9aSoPmQtYnrTGr6C ZWt+qBig+sEt71Yd4mnZyCDgCvvNL8NkxrpjmBVFogavpgqz6uxj2SU3ZSYNdAAm uqp9trApNrloE5VM9dj2Uc4SEAGe+gGbIRiVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwhJbHLfwoehIZ7C678wd0YeO/IYwHwYDVR0jBBgwFoAUoF5mz6b4wNqr+xr2 +jIYQmBE8VgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9CQVRX L29GNW16NmI0d05xci14cjItaklZUW1CRThWZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evb0Y1bXo2YjR3TnFyLXhyMi1qSVlRbUJFOFZnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9CQVRXL3doSmJITGZ3b2VoSVo3QzY3 OHdkMFllT19JWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn f+QwDQYJKoZIhvcNAQELBQADggEBAFr/F0WTGEZeftYEOrRA7fBlHdDWqE+xNrUn bMYuIocqNoR2FXjdADMhko1i8S729SMjRJt37dxTVIofgufmK5K36t380VRjUnwQ G4/9/WjhF5kgZFeApGic1WTRFW3An0la5ukxKdb/s+J9hQxPq6EEVn0eb26syAEx TFSmDWbDXVeQic2y0xOAGBe8FgpGPvT1LCSIjti7chdJJAVfnI9p54P6d6u/VMTI qM34Y7qGG0agH6yb6o11Wsq2yw6Pfj+tm6Cfdzbve9BVO13pDUcQuKyVQBlTCbhG /j+GBUJtMY/AvVjI3RVh0IHpJ0pK/HtuXRSgSlS6d2wmbvWOeCU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org