$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/17UnWxjNwEavn9_VVRPUP43VXFo.roa File: 17UnWxjNwEavn9_VVRPUP43VXFo.roa (raw, json) Hash identifier: au6v9lY2Vc6S1SGOrc30DZNgVKYv/JGfHdgSFpX+1AE= Subject key identifier: D7:B5:27:5B:18:CD:C0:46:AF:9F:DF:D5:55:13:D4:3F:8D:D5:5C:5A Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Certificate serial: 0DC6 Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/17UnWxjNwEavn9_VVRPUP43VXFo.roa Signing time: Mon 26 Aug 2024 05:23:14 +0000 ROA not before: Mon 26 Aug 2024 05:23:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 40065 IP address blocks: 103.138.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Validity Not Before: Aug 26 05:23:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7B5275B18CDC046AF9FDFD55513D43F8DD55C5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8d:9e:a5:a8:7f:fb:d2:b8:c4:b5:5b:d7:36: 0a:ad:fa:87:6e:30:df:a2:5f:2d:ad:11:f1:c7:9c: 5f:5e:ae:f0:36:bd:24:44:1b:b7:d4:86:b8:04:e6: d7:34:7d:19:9c:06:86:46:01:8a:5e:10:42:11:28: bc:f3:f2:0e:0d:6f:50:fc:fc:8c:25:39:ee:81:39: 1a:32:0e:98:a7:98:20:39:1c:00:ec:d0:3a:c3:58: ad:fd:f9:0d:51:3e:8a:d0:49:55:2f:2e:93:a8:b4: cc:0d:bd:fc:a7:7b:5a:b5:1a:bb:e4:96:d5:72:f4: d8:28:4e:fa:69:5c:9f:c0:58:26:1f:18:10:fe:5f: ad:a1:a2:37:6a:f2:c0:6e:4a:8d:fd:a4:1d:41:c4: b9:58:e1:1c:a3:2c:ea:f1:17:60:15:3f:9e:90:99: 42:70:a6:37:f0:e9:7d:39:ef:b4:5d:e7:1c:63:c9: ec:9a:eb:fa:a9:ba:cf:eb:51:5d:b2:dd:a9:42:f9: b4:39:28:8f:ac:bc:77:b1:7b:d5:ca:33:12:1d:81: 79:a4:ca:fb:1e:97:a9:19:ab:36:fe:8e:d0:70:49: 05:0a:cc:fb:46:cf:c3:ef:c7:e7:8a:d3:29:78:2f: 3f:7b:e3:76:48:02:6b:f1:49:f5:49:cf:81:8f:06: f5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:B5:27:5B:18:CD:C0:46:AF:9F:DF:D5:55:13:D4:3F:8D:D5:5C:5A X509v3 Authority Key Identifier: keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/17UnWxjNwEavn9_VVRPUP43VXFo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.138.194.0/23 Signature Algorithm: sha256WithRSAEncryption 62:8c:43:13:3a:36:af:ed:5a:b9:88:de:44:db:53:c0:30:8d: 26:21:0b:73:37:22:0c:6e:7e:31:56:4d:0a:ee:14:64:6d:ab: 36:5b:c5:40:58:ab:31:ec:60:0a:7a:aa:9c:40:ce:bd:60:c0: f4:b1:92:0a:ec:aa:52:cd:71:c5:9e:b5:3b:b3:65:52:5b:a4: 1b:cb:cf:eb:4c:54:19:7c:0d:2d:8b:d2:73:6c:f0:23:24:f7: 34:f3:6c:79:37:82:02:50:ac:4b:3c:30:2a:ea:d2:9f:eb:ba: 63:49:98:68:55:5b:f9:f5:af:ce:c2:c9:41:2a:42:cc:6e:11: 52:8e:70:4b:89:80:c3:91:fb:00:45:dd:b8:34:58:3e:9e:4e: 08:c8:f5:ef:40:e9:dd:3e:de:37:f9:f2:b0:d1:4f:8f:3b:a4: 7a:2e:7d:5f:92:fd:bf:2c:7e:01:92:04:94:e8:ac:81:46:ca: 37:a4:ff:dd:57:90:7e:c8:da:33:a0:c7:fa:8b:5c:05:c6:3f: b4:f7:16:84:47:c1:4c:11:8a:19:e9:c9:ff:71:ea:42:e8:83: 0e:29:7a:31:05:2b:c7:02:a5:51:4b:01:3a:ec:42:8a:1d:49: f5:66:55:50:7f:4a:49:98:9b:5c:e9:c2:bc:e3:0e:8c:6c:1a: 96:26:71:68 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTU5 RDVGODk3Mjc2RjBERUM4NTdFN0UyREVERDY0OTg3NkU4QTQ4MjAeFw0yNDA4MjYw NTIzMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3QjUyNzVCMThDREMw NDZBRjlGREZENTU1MTNENDNGOERENTVDNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8jZ6lqH/70rjEtVvXNgqt+oduMN+iXy2tEfHHnF9ervA2vSRE G7fUhrgE5tc0fRmcBoZGAYpeEEIRKLzz8g4Nb1D8/IwlOe6BORoyDpinmCA5HADs 0DrDWK39+Q1RPorQSVUvLpOotMwNvfyne1q1GrvkltVy9NgoTvppXJ/AWCYfGBD+ X62hojdq8sBuSo39pB1BxLlY4RyjLOrxF2AVP56QmUJwpjfw6X0577Rd5xxjyeya 6/qpus/rUV2y3alC+bQ5KI+svHexe9XKMxIdgXmkyvsel6kZqzb+jtBwSQUKzPtG z8Pvx+eK0yl4Lz9743ZIAmvxSfVJz4GPBvXrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU17UnWxjNwEavn9/VVRPUP43VXFowHwYDVR0jBBgwFoAUFZ1fiXJ28N7IV+fi 3t1kmHbopIIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9SREFU Vy9GWjFmaVhKMjhON0lWLWZpM3Qxa21IYm9wSUkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0ZaMWZpWEoyOE43SVYtZmkzdDFrbUhib3BJSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PUkRBVFcvMTdVbld4ak53RWF2bjlf VlZSUFVQNDNWWEZvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeKwjANBgkqhkiG9w0BAQsFAAOCAQEAYoxDEzo2r+1auYjeRNtTwDCNJiELczci DG5+MVZNCu4UZG2rNlvFQFirMexgCnqqnEDOvWDA9LGSCuyqUs1xxZ61O7NlUluk G8vP60xUGXwNLYvSc2zwIyT3NPNseTeCAlCsSzwwKurSn+u6Y0mYaFVb+fWvzsLJ QSpCzG4RUo5wS4mAw5H7AEXduDRYPp5OCMj170Dp3T7eN/nysNFPjzukei59X5L9 vyx+AZIElOisgUbKN6T/3VeQfsjaM6DH+otcBcY/tPcWhEfBTBGKGenJ/3HqQuiD Dil6MQUrxwKlUUsBOuxCih1J9WZVUH9KSZibXOnCvOMOjGwaliZxaA== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org