$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/BKQwMkwwoK0SneKhRFdOVYV4oa4.roa File: BKQwMkwwoK0SneKhRFdOVYV4oa4.roa (raw, json) Hash identifier: na297qZWl0Qa1/vBFajJF6Z2wQlGx99bpIDjP4/kDNk= Subject key identifier: 04:A4:30:32:4C:30:A0:AD:12:9D:E2:A1:44:57:4E:55:85:78:A1:AE Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 015E Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/BKQwMkwwoK0SneKhRFdOVYV4oa4.roa Signing time: Mon 26 Aug 2024 05:23:38 +0000 ROA not before: Mon 26 Aug 2024 05:23:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 8075 IP address blocks: 103.131.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 06:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 350 (0x15e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Aug 26 05:23:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=04A430324C30A0AD129DE2A144574E558578A1AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e4:05:e2:3f:ae:84:1e:3c:d6:d7:4e:96:b7: 19:c9:2d:97:ef:15:1b:0f:a0:fc:73:41:ed:aa:d1: b8:69:e8:7f:5d:cf:c4:20:8e:a6:a7:38:0b:47:f5: d6:fb:90:ec:2c:d2:c9:5c:90:e9:2a:8f:93:d3:59: 75:90:99:09:60:21:f4:35:d4:7f:c7:fa:c6:1d:e2: 23:1f:bb:4b:5c:2f:d8:1e:8a:dd:1c:57:78:f1:0b: 96:bd:08:d8:43:aa:54:77:d7:85:cf:1b:d9:5f:b9: e5:d8:1b:ac:3d:85:8c:a2:b7:93:12:cf:0d:1d:e3: 9b:ec:8d:34:08:cc:54:26:dc:cc:56:31:09:0b:9b: 93:9a:9a:ae:94:12:8b:f6:98:f1:f6:1c:c2:9d:86: 5e:9a:1e:32:85:85:b1:18:3d:03:16:4f:3c:d7:de: 8f:a8:c5:66:94:9e:e8:b3:7e:5f:a8:bf:02:f2:d2: 0b:82:87:fc:cc:d5:e6:01:7f:67:09:9f:0d:1b:87: 58:bf:df:02:cc:a0:ca:c6:49:13:fe:56:f5:0a:00: b5:c8:40:32:2b:87:8f:28:ad:67:90:34:30:00:71: bf:86:57:30:06:b0:2c:39:80:9a:ea:2b:95:59:8a: 5d:e7:4e:30:79:6a:11:f7:e5:e9:61:98:92:1a:d0: 83:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:A4:30:32:4C:30:A0:AD:12:9D:E2:A1:44:57:4E:55:85:78:A1:AE X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/BKQwMkwwoK0SneKhRFdOVYV4oa4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.131.149.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:81:9f:a9:18:ce:42:a5:c7:6e:a4:f8:84:89:9f:ea:e9:6e: e8:7f:e3:23:a2:d0:70:c7:10:09:f4:77:ca:0e:83:05:6f:75: 79:29:1a:80:01:bc:e1:2f:05:e0:9a:77:33:7b:72:8e:8b:ff: ef:5f:99:75:f9:56:71:c5:73:79:16:0f:d6:0b:4e:43:8b:2b: 2e:db:5d:cb:6a:91:95:c4:57:ce:1d:63:ba:1e:6f:c9:0c:a6: aa:5e:3e:7e:ed:39:0b:56:48:40:76:1f:d7:dc:b1:03:10:a4: 42:d9:bf:df:5c:35:da:6f:0d:47:b4:a4:bd:8f:b3:26:a3:15: 49:a4:f5:47:1b:31:68:04:69:d9:f9:0c:38:42:50:ae:8e:46: eb:fa:7a:a3:e9:72:55:3c:80:da:85:54:ae:0e:d4:f2:63:cc: d4:7d:7e:11:f5:74:e7:15:be:5c:c1:62:4c:ef:5c:b5:27:91: 3b:1a:52:ad:0b:93:72:54:8f:31:93:59:6d:58:a1:98:ac:dc: 49:b1:ca:ba:bc:5c:66:71:de:b6:a5:ec:cb:6a:3e:b8:1a:83: cc:ef:dd:de:12:d3:25:ad:fa:6f:64:13:c0:f0:c4:3d:66:56: 2e:59:0a:b8:ff:88:4f:b8:db:28:5f:4c:79:a0:32:7a:12:53: 19:35:5c:22 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNDA4MjYw NTIzMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0QTQzMDMyNEMzMEEw QUQxMjlERTJBMTQ0NTc0RTU1ODU3OEExQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr5AXiP66EHjzW106WtxnJLZfvFRsPoPxzQe2q0bhp6H9dz8Qg jqanOAtH9db7kOws0slckOkqj5PTWXWQmQlgIfQ11H/H+sYd4iMfu0tcL9geit0c V3jxC5a9CNhDqlR314XPG9lfueXYG6w9hYyit5MSzw0d45vsjTQIzFQm3MxWMQkL m5Oamq6UEov2mPH2HMKdhl6aHjKFhbEYPQMWTzzX3o+oxWaUnuizfl+ovwLy0guC h/zM1eYBf2cJnw0bh1i/3wLMoMrGSRP+VvUKALXIQDIrh48orWeQNDAAcb+GVzAG sCw5gJrqK5VZil3nTjB5ahH35elhmJIa0IO9AgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUBKQwMkwwoK0SneKhRFdOVYV4oa4wHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFL0JLUXdNa3d3b0sw U25lS2hSRmRPVllWNG9hNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABng5UwDQYJKoZIhvcNAQELBQADggEBAEuBn6kYzkKlx26k+ISJn+rpbuh/ 4yOi0HDHEAn0d8oOgwVvdXkpGoABvOEvBeCadzN7co6L/+9fmXX5VnHFc3kWD9YL TkOLKy7bXctqkZXEV84dY7oeb8kMpqpePn7tOQtWSEB2H9fcsQMQpELZv99cNdpv DUe0pL2PsyajFUmk9UcbMWgEadn5DDhCUK6ORuv6eqPpclU8gNqFVK4O1PJjzNR9 fhH1dOcVvlzBYkzvXLUnkTsaUq0Lk3JUjzGTWW1YoZis3Emxyrq8XGZx3ral7Mtq Prgag8zv3d4S0yWt+m9kE8DwxD1mVi5ZCrj/iE+42yhfTHmgMnoSUxk1XCI= -----END CERTIFICATE-----Generated at Fri Nov 22 04:58:50 2024 by rpki-client on console-ams.rpki-client.org