$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/ZJbMuHKUZlNwnPDnPnpZs2KRzmQ.roa File: ZJbMuHKUZlNwnPDnPnpZs2KRzmQ.roa (raw, json) Hash identifier: X2fRvwTPmO59sL9LPMcc1wkklMX80RLehkrgB/o3KpY= Subject key identifier: 64:96:CC:B8:72:94:66:53:70:9C:F0:E7:3E:7A:59:B3:62:91:CE:64 Certificate issuer: /CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Certificate serial: 0BFD Authority key identifier: 34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/ZJbMuHKUZlNwnPDnPnpZs2KRzmQ.roa Signing time: Wed 06 Nov 2024 14:21:42 +0000 ROA not before: Wed 06 Nov 2024 14:21:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 395793 IP address blocks: 103.129.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3069 (0xbfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Validity Not Before: Nov 6 14:21:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6496CCB872946653709CF0E73E7A59B36291CE64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:78:38:88:b8:fd:42:62:bc:86:32:a2:c1:34: d1:d6:7a:77:f0:6b:2b:67:22:41:d8:77:81:7f:7d: 79:ca:01:fc:5e:5d:14:60:35:18:e2:0a:3f:5f:be: aa:24:eb:d4:82:1a:f7:51:ba:a4:1a:e4:81:f5:91: 63:6c:dd:44:03:da:53:02:78:65:eb:11:b6:2c:b8: 54:e8:22:8b:bb:ad:9e:6c:a5:bf:3d:9d:b7:21:8f: 84:4f:40:9b:0d:e7:99:50:eb:40:c3:a3:68:32:d9: d9:2b:8a:14:c6:21:8f:3a:80:ee:57:19:64:43:a8: e3:28:c7:0f:62:f9:1f:a8:5e:f1:ee:58:67:d8:37: 4b:fe:0d:65:ae:6f:79:68:8b:d2:72:4d:a2:f5:2c: 70:04:e3:5f:2e:6f:23:48:b2:65:ec:8f:8c:ec:e1: 72:55:50:fd:56:fb:27:cb:95:66:b3:5e:6e:49:2b: ff:ff:9e:94:9e:01:7e:e1:58:36:72:0f:c0:3f:18: 41:74:be:f1:f6:a8:30:10:22:65:84:18:c1:a4:0c: c2:77:a9:42:0d:52:d0:4e:69:ad:38:5a:e1:31:4b: 4f:e2:5f:2f:4c:c0:ee:51:76:af:7f:dc:c6:12:97: 70:fc:a5:15:53:9c:85:09:fa:14:94:10:63:24:bd: 85:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:96:CC:B8:72:94:66:53:70:9C:F0:E7:3E:7A:59:B3:62:91:CE:64 X509v3 Authority Key Identifier: keyid:34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/ZJbMuHKUZlNwnPDnPnpZs2KRzmQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.161.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:35:db:28:ec:6a:2b:76:55:3e:6b:2f:d3:e6:5a:ec:f6:39: 2a:c6:ad:b7:4e:ee:c7:e8:39:09:d2:82:53:94:f1:6b:04:86: a6:31:b8:46:45:ea:5e:41:38:b1:b3:6f:ee:00:43:ee:3c:ec: 1c:d7:40:92:4b:b2:f0:48:37:b3:64:f4:72:56:56:34:e2:e1: 96:7e:74:08:d7:5e:13:4b:40:d7:2a:4f:39:67:dd:e6:0a:0e: 48:9d:1b:f1:46:a8:04:3f:1a:2f:41:b7:8c:1f:43:9a:f6:3e: 22:40:71:46:e1:d6:31:cb:2b:e2:8d:f7:23:1e:93:cd:51:52: f9:a8:88:2a:d0:87:4e:61:93:c9:cd:3d:af:d4:2f:1a:93:a3: 9a:42:36:da:41:0f:95:5a:82:17:c4:ab:39:d1:54:e5:b8:74: 49:fe:c7:d6:ae:00:19:4b:5a:21:76:37:a2:2a:39:e6:e7:c7: b3:06:57:bd:53:70:45:f3:fd:bf:8e:e1:41:34:71:6f:86:d7: d3:ea:de:51:a4:24:16:cf:48:2f:b0:c7:b6:f4:99:2c:58:e0: cd:49:34:e3:4c:15:d2:5e:e0:a6:c8:8d:58:84:27:b7:e4:fd: 19:a0:3d:a9:38:6a:06:46:5c:7c:ff:de:b3:01:16:c7:38:87: 52:41:9a:02 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICC/0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRG NDc5NzRFNTUxQzIwMjM2QzNEODkzOTVGNTdGM0JBMDJCNTdCNzAeFw0yNDExMDYx NDIxNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0OTZDQ0I4NzI5NDY2 NTM3MDlDRjBFNzNFN0E1OUIzNjI5MUNFNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGeDiIuP1CYryGMqLBNNHWenfwaytnIkHYd4F/fXnKAfxeXRRg NRjiCj9fvqok69SCGvdRuqQa5IH1kWNs3UQD2lMCeGXrEbYsuFToIou7rZ5spb89 nbchj4RPQJsN55lQ60DDo2gy2dkrihTGIY86gO5XGWRDqOMoxw9i+R+oXvHuWGfY N0v+DWWub3loi9JyTaL1LHAE418ubyNIsmXsj4zs4XJVUP1W+yfLlWazXm5JK/// npSeAX7hWDZyD8A/GEF0vvH2qDAQImWEGMGkDMJ3qUINUtBOaa04WuExS0/iXy9M wO5Rdq9/3MYSl3D8pRVTnIUJ+hSUEGMkvYW5AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUZJbMuHKUZlNwnPDnPnpZs2KRzmQwHwYDVR0jBBgwFoAUNPR5dOVRwgI2w9iT lfV/O6ArV7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNM T1VEL05QUjVkT1ZSd2dJMnc5aVRsZlZfTzZBclY3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTlBSNWRPVlJ3Z0kydzlpVGxmVl9PNkFyVjdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNMT1VEL1pKYk11SEtVWmxO d25QRG5QbnBaczJLUnptUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABngaEwDQYJKoZIhvcNAQELBQADggEBAGs12yjsait2VT5rL9PmWuz2OSrG rbdO7sfoOQnSglOU8WsEhqYxuEZF6l5BOLGzb+4AQ+487BzXQJJLsvBIN7Nk9HJW VjTi4ZZ+dAjXXhNLQNcqTzln3eYKDkidG/FGqAQ/Gi9Bt4wfQ5r2PiJAcUbh1jHL K+KN9yMek81RUvmoiCrQh05hk8nNPa/ULxqTo5pCNtpBD5VaghfEqznRVOW4dEn+ x9auABlLWiF2N6IqOebnx7MGV71TcEXz/b+O4UE0cW+G19Pq3lGkJBbPSC+wx7b0 mSxY4M1JNONMFdJe4KbIjViEJ7fk/RmgPak4agZGXHz/3rMBFsc4h1JBmgI= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:34 2024 by rpki-client on console-ams.rpki-client.org