$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/jOeZs7RuAOXSd9cOnAt0ixaNCfU.roa File: jOeZs7RuAOXSd9cOnAt0ixaNCfU.roa (raw, json) Hash identifier: H/rwCyzfC/w8lgkODWDof/PDGLtECnvI4O0qGH5r+Io= Subject key identifier: 8C:E7:99:B3:B4:6E:00:E5:D2:77:D7:0E:9C:0B:74:8B:16:8D:09:F5 Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Certificate serial: 0DC5 Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/jOeZs7RuAOXSd9cOnAt0ixaNCfU.roa Signing time: Mon 26 Aug 2024 05:23:14 +0000 ROA not before: Mon 26 Aug 2024 05:23:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.138.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Validity Not Before: Aug 26 05:23:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8CE799B3B46E00E5D277D70E9C0B748B168D09F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:82:aa:f9:d6:21:ad:d8:38:83:5a:c1:82:aa: 25:87:65:5f:86:d1:6b:d9:e8:8c:d7:db:46:4e:80: b9:90:97:92:91:34:2d:89:5c:bf:f4:3e:2c:01:82: 27:24:fc:1c:ef:c5:70:77:1e:2e:e1:74:63:98:4b: 84:41:b8:90:62:67:32:ab:3e:7a:5a:75:45:55:b5: b0:88:24:bd:0c:c8:d9:c3:8d:28:3a:25:f3:0a:ef: 46:a0:49:2d:46:68:cb:6a:a2:1e:c1:c3:7b:42:85: 43:c3:30:db:6d:a9:d1:34:8d:55:8c:f2:a3:1b:b3: 15:f5:2c:08:ac:e2:61:22:b3:71:b3:4a:2c:9f:27: 36:8e:bc:da:df:e2:64:14:1a:b4:9f:7f:85:75:a4: 1d:b4:17:a2:61:cb:52:07:c8:32:60:69:21:19:fc: bf:da:75:a9:78:ff:b5:9b:e5:6e:76:d1:56:d9:d3: c7:89:0c:42:d2:4d:91:9f:b7:09:38:11:02:13:ae: 35:09:d7:4b:24:52:60:b4:84:ce:e2:d0:9f:85:e4: a3:8c:7e:6c:99:e9:8e:78:93:a8:96:d4:96:41:3a: ac:18:2d:b0:43:e1:d7:dc:0d:a5:e8:6b:b3:93:f3: 3c:2e:6b:4a:41:a8:2b:90:05:e0:e3:ee:b9:f0:2e: 53:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:E7:99:B3:B4:6E:00:E5:D2:77:D7:0E:9C:0B:74:8B:16:8D:09:F5 X509v3 Authority Key Identifier: keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/jOeZs7RuAOXSd9cOnAt0ixaNCfU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.138.194.0/23 Signature Algorithm: sha256WithRSAEncryption 07:60:f6:26:91:be:b4:2f:57:00:1b:47:f1:e4:d7:64:78:41: 91:5c:48:db:ba:b0:3c:5a:86:be:69:e3:ae:df:7d:3d:c9:82: de:79:37:89:c5:b8:eb:a2:61:aa:a4:a5:fa:cc:bc:72:6c:20: 06:f8:95:3a:2b:f7:65:8f:24:08:43:83:2c:b3:0f:75:31:95: e9:42:b1:52:5b:b0:2b:9a:4f:01:0d:d3:3e:05:04:49:5e:af: fd:b0:f2:ce:c5:62:cd:ca:05:47:1a:0a:61:a3:2f:33:15:e8: 7e:81:7a:8e:47:e7:b0:8c:0e:77:f5:10:06:36:8f:e1:35:8e: c4:ea:ea:d2:ab:ab:46:aa:9a:c5:82:70:f8:49:09:b5:d3:b3: 67:67:6c:85:3c:9d:a2:58:a7:b9:5a:36:38:92:37:ec:ba:85: 85:a5:af:63:22:fc:d5:88:4b:b4:62:90:1b:52:8f:d1:45:c7: 26:a3:a7:9b:6d:e6:43:71:0a:03:f6:71:96:da:85:57:f8:4c: f6:90:72:4b:ec:5c:87:ca:8d:e0:f2:31:79:26:2c:39:fa:6f: ec:c3:7d:2a:3e:61:d8:7c:38:f6:19:50:1d:61:b0:17:cb:ad: 5c:04:e5:5c:b0:94:ad:6e:c5:8d:86:5f:ae:53:0b:dc:0d:77: 0c:a5:76:bf -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTU5 RDVGODk3Mjc2RjBERUM4NTdFN0UyREVERDY0OTg3NkU4QTQ4MjAeFw0yNDA4MjYw NTIzMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDRTc5OUIzQjQ2RTAw RTVEMjc3RDcwRTlDMEI3NDhCMTY4RDA5RjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCygqr51iGt2DiDWsGCqiWHZV+G0WvZ6IzX20ZOgLmQl5KRNC2J XL/0PiwBgick/BzvxXB3Hi7hdGOYS4RBuJBiZzKrPnpadUVVtbCIJL0MyNnDjSg6 JfMK70agSS1GaMtqoh7Bw3tChUPDMNttqdE0jVWM8qMbsxX1LAis4mEis3GzSiyf JzaOvNrf4mQUGrSff4V1pB20F6Jhy1IHyDJgaSEZ/L/adal4/7Wb5W520VbZ08eJ DELSTZGftwk4EQITrjUJ10skUmC0hM7i0J+F5KOMfmyZ6Y54k6iW1JZBOqwYLbBD 4dfcDaXoa7OT8zwua0pBqCuQBeDj7rnwLlM7AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUjOeZs7RuAOXSd9cOnAt0ixaNCfUwHwYDVR0jBBgwFoAUFZ1fiXJ28N7IV+fi 3t1kmHbopIIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9SREFU Vy9GWjFmaVhKMjhON0lWLWZpM3Qxa21IYm9wSUkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0ZaMWZpWEoyOE43SVYtZmkzdDFrbUhib3BJSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PUkRBVFcvak9lWnM3UnVBT1hTZDlj T25BdDBpeGFOQ2ZVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeKwjANBgkqhkiG9w0BAQsFAAOCAQEAB2D2JpG+tC9XABtH8eTXZHhBkVxI27qw PFqGvmnjrt99PcmC3nk3icW466JhqqSl+sy8cmwgBviVOiv3ZY8kCEODLLMPdTGV 6UKxUluwK5pPAQ3TPgUESV6v/bDyzsVizcoFRxoKYaMvMxXofoF6jkfnsIwOd/UQ BjaP4TWOxOrq0qurRqqaxYJw+EkJtdOzZ2dshTydolinuVo2OJI37LqFhaWvYyL8 1YhLtGKQG1KP0UXHJqOnm23mQ3EKA/ZxltqFV/hM9pByS+xch8qN4PIxeSYsOfpv 7MN9Kj5h2Hw49hlQHWGwF8utXATlXLCUrW7FjYZfrlML3A13DKV2vw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org