$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/y1yavDbNyRtXc9bcDhsc5lHeENc.roa File: y1yavDbNyRtXc9bcDhsc5lHeENc.roa (raw, json) Hash identifier: BV7wkZgLIn/4r4fCxqVWMt7quTexeyc7xaKf7UBUlCk= Subject key identifier: CB:5C:9A:BC:36:CD:C9:1B:57:73:D6:DC:0E:1B:1C:E6:51:DE:10:D7 Certificate issuer: /CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Certificate serial: 0BFF Authority key identifier: 34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/y1yavDbNyRtXc9bcDhsc5lHeENc.roa Signing time: Wed 06 Nov 2024 14:22:17 +0000 ROA not before: Wed 06 Nov 2024 14:22:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 395793 IP address blocks: 103.129.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3071 (0xbff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34F47974E551C20236C3D89395F57F3BA02B57B7 Validity Not Before: Nov 6 14:22:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CB5C9ABC36CDC91B5773D6DC0E1B1CE651DE10D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:46:b2:42:da:81:49:46:83:45:45:97:64:99: 20:bb:92:94:a8:6d:17:36:a6:ae:08:a9:2f:4b:10: 35:23:40:82:e8:5a:f8:9e:de:8a:d0:d9:10:05:73: e3:ab:0e:31:bb:4f:32:e6:89:b4:ab:88:af:f6:ca: 34:06:db:f2:3e:e6:63:83:94:4d:39:13:26:d8:d4: b6:37:36:f5:89:50:9d:1f:c3:59:31:53:29:75:e7: f8:bb:8d:e0:68:ca:3c:21:21:33:82:f8:1c:16:19: 75:11:36:6c:79:89:31:5f:e0:cd:71:14:87:98:a4: ac:d7:44:f7:04:1b:9e:f6:a2:4c:59:19:84:09:49: 2a:00:75:69:43:aa:cc:eb:1f:e5:74:f1:09:8b:7f: be:40:57:c8:f6:52:cc:fa:f4:1e:ab:2e:8d:3b:88: 16:4b:26:1e:ea:0f:3d:99:62:cb:c3:5d:32:15:43: c8:b2:0a:c2:e9:48:3d:35:01:1b:e9:d5:cd:bc:da: 07:73:c3:fa:33:e4:e3:83:9a:e3:92:43:f2:92:6a: 33:18:31:d6:34:5f:44:63:cd:53:42:b9:86:8d:fb: 41:18:e6:0e:9b:94:3d:c4:68:9e:9c:3a:1c:19:9f: 65:6e:f2:22:44:ee:bf:bd:55:93:94:29:93:7e:94: 29:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:5C:9A:BC:36:CD:C9:1B:57:73:D6:DC:0E:1B:1C:E6:51:DE:10:D7 X509v3 Authority Key Identifier: keyid:34:F4:79:74:E5:51:C2:02:36:C3:D8:93:95:F5:7F:3B:A0:2B:57:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/NPR5dOVRwgI2w9iTlfV_O6ArV7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NPR5dOVRwgI2w9iTlfV_O6ArV7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORICLOUD/y1yavDbNyRtXc9bcDhsc5lHeENc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.162.0/24 Signature Algorithm: sha256WithRSAEncryption 44:b1:69:7d:5f:36:d4:bc:8f:84:5f:89:8a:08:46:91:d1:ec: 24:ff:74:25:1d:fe:da:e4:43:a6:89:53:d3:80:44:0b:a5:3c: b4:f2:2d:ac:34:71:38:2d:50:82:a8:b1:3e:09:7d:02:a5:56: c4:a7:b3:49:b5:37:a9:4e:8d:d6:da:f8:57:8f:8d:f5:be:31: 11:e0:f2:d3:b2:3e:aa:81:3c:ca:1c:a4:f7:aa:36:25:c2:b7: 38:2f:36:98:dc:f2:9e:d2:c8:54:d6:da:70:be:5c:14:92:3c: 63:88:c1:1a:66:41:a9:2e:10:81:4c:11:bc:f0:8b:b7:70:ef: f1:b5:03:f5:fa:ae:8f:0d:78:0a:9a:46:80:e4:89:64:f5:e9: f7:a6:c5:1b:09:ef:b8:66:62:06:c6:97:36:06:10:b0:90:9d: 1c:46:9e:a3:c9:ec:83:f9:f8:05:e6:5c:59:dc:31:b0:24:2b: 80:fb:bc:f0:94:ed:f6:d8:2c:c2:ad:3f:27:90:a0:77:b0:64: c3:16:60:5e:7d:fe:84:0b:75:12:16:c0:06:fd:d9:5c:65:9f: 75:0c:88:1d:87:a1:14:a0:9f:ac:9c:e4:0f:e1:88:c2:5b:cf: 6d:d0:09:44:27:2d:26:de:6a:be:2d:36:2b:01:2c:4e:e8:89: 82:48:e1:a0 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICC/8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRG NDc5NzRFNTUxQzIwMjM2QzNEODkzOTVGNTdGM0JBMDJCNTdCNzAeFw0yNDExMDYx NDIyMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCNUM5QUJDMzZDREM5 MUI1NzczRDZEQzBFMUIxQ0U2NTFERTEwRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXRrJC2oFJRoNFRZdkmSC7kpSobRc2pq4IqS9LEDUjQILoWvie 3orQ2RAFc+OrDjG7TzLmibSriK/2yjQG2/I+5mODlE05EybY1LY3NvWJUJ0fw1kx Uyl15/i7jeBoyjwhITOC+BwWGXURNmx5iTFf4M1xFIeYpKzXRPcEG572okxZGYQJ SSoAdWlDqszrH+V08QmLf75AV8j2Usz69B6rLo07iBZLJh7qDz2ZYsvDXTIVQ8iy CsLpSD01ARvp1c282gdzw/oz5OODmuOSQ/KSajMYMdY0X0RjzVNCuYaN+0EY5g6b lD3EaJ6cOhwZn2Vu8iJE7r+9VZOUKZN+lCmbAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUy1yavDbNyRtXc9bcDhsc5lHeENcwHwYDVR0jBBgwFoAUNPR5dOVRwgI2w9iT lfV/O6ArV7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNM T1VEL05QUjVkT1ZSd2dJMnc5aVRsZlZfTzZBclY3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTlBSNWRPVlJ3Z0kydzlpVGxmVl9PNkFyVjdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9SSUNMT1VEL3kxeWF2RGJOeVJ0 WGM5YmNEaHNjNWxIZUVOYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABngaIwDQYJKoZIhvcNAQELBQADggEBAESxaX1fNtS8j4RfiYoIRpHR7CT/ dCUd/trkQ6aJU9OARAulPLTyLaw0cTgtUIKosT4JfQKlVsSns0m1N6lOjdba+FeP jfW+MRHg8tOyPqqBPMocpPeqNiXCtzgvNpjc8p7SyFTW2nC+XBSSPGOIwRpmQaku EIFMEbzwi7dw7/G1A/X6ro8NeAqaRoDkiWT16femxRsJ77hmYgbGlzYGELCQnRxG nqPJ7IP5+AXmXFncMbAkK4D7vPCU7fbYLMKtPyeQoHewZMMWYF59/oQLdRIWwAb9 2Vxln3UMiB2HoRSgn6yc5A/hiMJbz23QCUQnLSbear4tNisBLE7oiYJI4aA= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:34 2024 by rpki-client on console-ams.rpki-client.org