$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Wo0Bh6RdKBEOqhHfoo-dpBUzxCU.roa File: Wo0Bh6RdKBEOqhHfoo-dpBUzxCU.roa (raw, json) Hash identifier: yipTf1UzCj1TD4ag68G5O3e6RNHHYrzYC9eN0toK2GI= Subject key identifier: 5A:8D:01:87:A4:5D:28:11:0E:AA:11:DF:A2:8F:9D:A4:15:33:C4:25 Certificate issuer: /CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB Certificate serial: 0830 Authority key identifier: 2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Wo0Bh6RdKBEOqhHfoo-dpBUzxCU.roa Signing time: Mon 26 Aug 2024 05:23:41 +0000 ROA not before: Mon 26 Aug 2024 05:23:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131677 IP address blocks: 103.149.64.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2096 (0x830) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DEF2B3C3A9A1B53C16C1C70E5511AD5903284FB Validity Not Before: Aug 26 05:23:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5A8D0187A45D28110EAA11DFA28F9DA41533C425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a5:74:b1:6f:19:48:36:67:a8:03:7d:60:39: 53:70:25:af:94:e3:a7:04:2d:53:5b:85:e4:22:64: 68:bd:1d:29:93:05:b3:5d:96:33:52:41:41:4e:16: a7:c0:c9:63:08:09:84:f7:8e:e7:bb:f3:d8:b2:cd: 99:5f:95:93:ce:e0:4d:56:53:9b:ea:46:b1:76:4e: 96:5c:2c:13:62:53:8b:f6:2e:7e:36:85:ce:9d:d8: 2b:7e:a2:c3:15:7a:37:e7:0b:f1:53:d8:b4:7e:1a: 1f:6e:d8:26:ec:96:6a:58:22:ed:ae:95:bc:27:3e: f1:fc:af:91:67:5a:59:62:3a:d1:69:ba:9b:8f:2a: ce:47:ab:4e:50:33:fb:73:5a:b0:22:44:bf:b1:0d: 53:4e:31:3f:ff:9f:0b:49:ce:07:8f:5d:d7:49:99: 55:64:02:5a:2f:8c:1b:f3:03:79:4d:82:54:9d:e1: fb:8f:4d:42:80:e1:cf:1a:f2:26:dd:d4:34:20:55: b5:81:ab:94:17:ba:96:b6:c8:fd:9d:fc:2e:f6:95: b6:50:a2:b5:8e:e4:78:68:d8:e0:14:00:30:08:16: 76:64:4e:f0:d7:6e:3e:de:91:2f:3d:35:0d:33:ae: f1:38:02:10:c7:34:4e:0e:4a:0c:0e:bd:3c:0a:dc: 32:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8D:01:87:A4:5D:28:11:0E:AA:11:DF:A2:8F:9D:A4:15:33:C4:25 X509v3 Authority Key Identifier: keyid:2D:EF:2B:3C:3A:9A:1B:53:C1:6C:1C:70:E5:51:1A:D5:90:32:84:FB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Le8rPDqaG1PBbBxw5VEa1ZAyhPs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENFOR/Wo0Bh6RdKBEOqhHfoo-dpBUzxCU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.149.64.0/23 Signature Algorithm: sha256WithRSAEncryption 88:58:42:d9:49:fa:0a:b4:67:bb:af:3e:60:5d:99:b8:46:fd: 2d:8b:51:ec:bf:b1:7c:36:2a:5f:2f:92:d2:b3:fd:87:de:5a: d7:63:c9:ec:a3:6a:0d:f2:cf:bb:e5:1c:25:b3:ee:9f:1d:1a: 07:11:b0:01:b4:ba:d6:02:97:e9:f3:a0:ba:2b:79:5b:80:81: ad:24:e6:31:07:a6:ac:4c:92:8a:bc:ff:55:25:df:f6:65:91: 34:f0:11:2a:73:8f:18:9c:bc:d3:e0:41:3d:39:75:f0:f2:fc: a5:a1:e0:8c:33:f0:bd:d1:78:3c:3d:d8:83:ae:5d:f9:1f:5b: b4:e4:70:3c:82:87:2a:2f:f6:0b:00:7c:a2:14:28:ce:44:9b: 77:6c:99:cc:e5:00:89:2e:28:20:95:31:0e:4e:b9:d8:11:c2: 40:8d:b4:3b:80:87:9a:5e:05:f0:f4:9c:03:12:70:ac:a1:31: 08:98:d4:0a:8c:d0:1a:63:07:9f:f5:12:6f:8f:43:93:be:6b: 33:9c:cf:82:b3:4b:bd:b4:d4:f7:f2:56:ff:82:68:5a:34:58: 6e:f1:06:86:4f:de:cc:4c:5e:a8:0e:b1:21:4a:9e:5f:7b:0b: b7:76:d1:a9:ac:5b:76:bc:75:93:44:02:62:06:a6:27:70:12: be:6c:af:58 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCDAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRF RjJCM0MzQTlBMUI1M0MxNkMxQzcwRTU1MTFBRDU5MDMyODRGQjAeFw0yNDA4MjYw NTIzNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVBOEQwMTg3QTQ1RDI4 MTEwRUFBMTFERkEyOEY5REE0MTUzM0M0MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxpXSxbxlINmeoA31gOVNwJa+U46cELVNbheQiZGi9HSmTBbNd ljNSQUFOFqfAyWMICYT3jue789iyzZlflZPO4E1WU5vqRrF2TpZcLBNiU4v2Ln42 hc6d2Ct+osMVejfnC/FT2LR+Gh9u2CbslmpYIu2ulbwnPvH8r5FnWlliOtFpupuP Ks5Hq05QM/tzWrAiRL+xDVNOMT//nwtJzgePXddJmVVkAlovjBvzA3lNglSd4fuP TUKA4c8a8ibd1DQgVbWBq5QXupa2yP2d/C72lbZQorWO5Hho2OAUADAIFnZkTvDX bj7ekS89NQ0zrvE4AhDHNE4OSgwOvTwK3DK3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUWo0Bh6RdKBEOqhHfoo+dpBUzxCUwHwYDVR0jBBgwFoAULe8rPDqaG1PBbBxw 5VEa1ZAyhPswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTkZP Ui9MZThyUERxYUcxUEJiQnh3NVZFYTFaQXloUHMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0xlOHJQRHFhRzFQQmJCeHc1VkVhMVpBeWhQcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL09QRU5GT1IvV28wQmg2UmRLQkVPcWhI Zm9vLWRwQlV6eENVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWeVQDANBgkqhkiG9w0BAQsFAAOCAQEAiFhC2Un6CrRnu68+YF2ZuEb9LYtR7L+x fDYqXy+S0rP9h95a12PJ7KNqDfLPu+UcJbPunx0aBxGwAbS61gKX6fOguit5W4CB rSTmMQemrEySirz/VSXf9mWRNPARKnOPGJy80+BBPTl18PL8paHgjDPwvdF4PD3Y g65d+R9btORwPIKHKi/2CwB8ohQozkSbd2yZzOUAiS4oIJUxDk652BHCQI20O4CH ml4F8PScAxJwrKExCJjUCozQGmMHn/USb49Dk75rM5zPgrNLvbTU9/JW/4JoWjRY bvEGhk/ezExeqA6xIUqeX3sLt3bRqaxbdrx1k0QCYgamJ3ASvmyvWA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org