$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCL/75oXqIvEY5Jh9zaE33OWnUSxQk0.roa File: 75oXqIvEY5Jh9zaE33OWnUSxQk0.roa (raw, json) Hash identifier: eDIEU3TV2Z/Tib5Vdg/WTqs4Op2wyZg5Ta0FLVdwtmA= Subject key identifier: EF:9A:17:A8:8B:C4:63:92:61:F7:36:84:DF:73:96:9D:44:B1:42:4D Certificate issuer: /CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198 Certificate serial: 0D5D Authority key identifier: 0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/75oXqIvEY5Jh9zaE33OWnUSxQk0.roa Signing time: Mon 26 Aug 2024 05:23:29 +0000 ROA not before: Mon 26 Aug 2024 05:23:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 32242 IP address blocks: 103.140.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3421 (0xd5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198 Validity Not Before: Aug 26 05:23:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EF9A17A88BC4639261F73684DF73969D44B1424D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9b:b4:7f:b1:d9:2b:a9:ea:19:29:bb:db:a1: 83:2e:97:6d:71:18:f7:81:f2:ee:7e:7f:ea:28:02: ac:dd:09:92:ed:52:36:37:0c:7f:65:2f:ce:70:c6: 1c:71:87:a1:7c:28:78:f0:78:b2:9d:48:72:f1:ec: a8:3d:07:67:a6:e5:ed:24:32:88:76:75:04:32:86: fd:fd:78:6d:f5:24:78:da:e3:e9:5f:98:4f:27:87: 43:75:db:1d:62:84:d3:8c:0c:7f:0e:bc:09:5b:5b: e9:09:18:8e:a0:46:ba:75:df:92:3a:18:ae:8a:7e: cf:1c:42:02:08:68:9b:ab:22:6a:85:39:81:40:ce: c1:50:49:19:36:68:31:ea:7f:02:c5:47:8e:99:ed: 47:85:ef:85:c6:a1:6a:96:fd:07:a8:cb:f5:8f:71: 2c:a3:a0:d7:56:96:1a:6d:fb:39:5b:60:82:15:be: 24:73:51:4a:fd:18:86:3d:01:16:c9:d5:31:6a:f0: ca:d1:10:00:ba:42:a2:70:4d:ec:bc:6f:fb:94:14: 77:21:c7:92:78:52:74:e4:15:a3:3e:43:9c:cc:aa: ad:32:8d:db:3f:80:46:23:e4:03:2d:84:3e:84:53: f1:ba:ec:c3:88:db:bd:9b:70:3a:18:82:60:6b:44: e6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9A:17:A8:8B:C4:63:92:61:F7:36:84:DF:73:96:9D:44:B1:42:4D X509v3 Authority Key Identifier: keyid:0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/75oXqIvEY5Jh9zaE33OWnUSxQk0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.140.233.0/24 Signature Algorithm: sha256WithRSAEncryption 52:ac:e6:95:6b:38:3b:2a:13:00:a5:5e:f6:e7:be:10:6f:b9: 2b:7a:bd:20:37:cf:5b:b0:01:b8:5e:51:f6:ff:ac:c8:8b:46: af:bc:01:99:1b:de:7e:93:74:c2:4b:f8:17:c8:63:c3:72:2d: 21:53:b2:f5:12:18:30:10:04:92:30:10:43:fb:54:82:3e:4a: dd:02:56:98:e2:42:b0:d4:b2:65:da:ff:15:dc:88:26:1d:c5: 41:8f:d3:03:68:2a:dd:32:87:55:1c:d4:4a:67:a3:57:47:b3: 1b:39:49:e7:10:b9:d2:31:70:2b:7d:bb:02:34:a4:3a:75:33: 58:12:88:d3:00:a8:18:5c:b8:70:25:e9:d5:33:74:9f:19:24: 48:de:e1:a2:76:74:a1:d8:03:43:8f:e4:86:b2:07:f9:62:0b: ea:08:96:ac:b4:ad:e1:e3:0f:72:b4:f0:e9:0e:3a:e1:66:76: 47:26:b6:1e:14:55:46:5c:7e:2b:1b:f4:84:45:aa:e9:de:67: 0f:36:c4:bf:1a:44:b5:54:fd:82:fe:b5:22:87:70:bf:d5:39: 86:c5:39:16:0b:ce:3f:bf:be:3b:73:a3:e5:97:be:8b:19:88: 14:e4:a5:2c:9e:fd:ba:ed:9e:81:40:75:21:e3:2f:fa:a0:8f: b7:b8:ff:cf -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDV0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY3 RkI0MzAyRjIxRjMwMUFCMEVBRkM1QjgwMTg0QkVFRDNGQjE5ODAeFw0yNDA4MjYw NTIzMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGOUExN0E4OEJDNDYz OTI2MUY3MzY4NERGNzM5NjlENDRCMTQyNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRm7R/sdkrqeoZKbvboYMul21xGPeB8u5+f+ooAqzdCZLtUjY3 DH9lL85wxhxxh6F8KHjweLKdSHLx7Kg9B2em5e0kMoh2dQQyhv39eG31JHja4+lf mE8nh0N12x1ihNOMDH8OvAlbW+kJGI6gRrp135I6GK6Kfs8cQgIIaJurImqFOYFA zsFQSRk2aDHqfwLFR46Z7UeF74XGoWqW/Qeoy/WPcSyjoNdWlhpt+zlbYIIVviRz UUr9GIY9ARbJ1TFq8MrREAC6QqJwTey8b/uUFHchx5J4UnTkFaM+Q5zMqq0yjds/ gEYj5AMthD6EU/G67MOI272bcDoYgmBrRObdAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQU75oXqIvEY5Jh9zaE33OWnUSxQk0wHwYDVR0jBBgwFoAUD3+0MC8h8wGrDq/F uAGEvu0/sZgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDTC9E My0wTUM4aDh3R3JEcV9GdUFHRXZ1MF9zWmcuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0QzLTBNQzhoOHdHckRxX0Z1QUdFdnUwX3NaZy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0wvNzVvWHFJdkVZNUpoOXphRTMzT1du VVN4UWswLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAGeM6TAN BgkqhkiG9w0BAQsFAAOCAQEAUqzmlWs4OyoTAKVe9ue+EG+5K3q9IDfPW7ABuF5R 9v+syItGr7wBmRvefpN0wkv4F8hjw3ItIVOy9RIYMBAEkjAQQ/tUgj5K3QJWmOJC sNSyZdr/FdyIJh3FQY/TA2gq3TKHVRzUSmejV0ezGzlJ5xC50jFwK327AjSkOnUz WBKI0wCoGFy4cCXp1TN0nxkkSN7honZ0odgDQ4/khrIH+WIL6giWrLSt4eMPcrTw 6Q464WZ2Rya2HhRVRlx+Kxv0hEWq6d5nDzbEvxpEtVT9gv61Iodwv9U5hsU5FgvO P7++O3Oj5Ze+ixmIFOSlLJ79uu2egUB1IeMv+qCPt7j/zw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org