$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/6WbHkUvc7KoAfTa_eAUOOaJhOB4.roa File: 6WbHkUvc7KoAfTa_eAUOOaJhOB4.roa (raw, json) Hash identifier: Somfl3JwiuhbIgQ5SGrv+E0pOcxyzNtTsAbBmxJo8bA= Subject key identifier: E9:66:C7:91:4B:DC:EC:AA:00:7D:36:BF:78:05:0E:39:A2:61:38:1E Certificate issuer: /CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Certificate serial: 099F Authority key identifier: 6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/6WbHkUvc7KoAfTa_eAUOOaJhOB4.roa Signing time: Mon 26 Aug 2024 05:23:45 +0000 ROA not before: Mon 26 Aug 2024 05:23:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131674 IP address blocks: 103.147.130.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2463 (0x99f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6E398C52CC2A079DA90148210AC85328C11BBE96 Validity Not Before: Aug 26 05:23:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E966C7914BDCECAA007D36BF78050E39A261381E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4f:79:c7:e2:b5:9e:4f:e7:f1:38:b9:a2:6b: 2f:21:a7:57:da:85:7c:ff:d2:96:69:96:7e:d4:cf: d8:19:2a:58:6e:c8:b5:a1:72:06:07:90:e0:ce:1d: 58:3f:72:5a:6b:23:41:e3:a8:2c:42:36:5d:ac:15: 55:58:08:ca:44:66:ef:80:3a:36:53:c8:a0:7a:29: fd:d0:20:bd:b5:3e:68:8c:99:13:8b:2c:3b:d2:7a: 48:09:4e:df:80:3d:15:a6:bb:3c:18:50:d3:48:e7: 6b:00:8f:5c:f5:46:c4:2b:63:b0:ec:27:08:29:4b: 0a:2c:72:5b:65:6d:26:46:39:90:4d:3b:42:9b:06: 90:89:e0:a5:d4:c1:ab:b4:e2:a1:57:78:6e:43:6b: aa:d1:46:be:4e:a6:f9:71:7d:17:c3:d1:51:5c:0b: 19:64:2b:e9:16:c0:b1:a9:3d:92:24:94:7b:7b:fe: dd:c3:46:55:07:1d:74:b8:e9:3d:97:b7:19:6f:f4: d1:5a:f4:a1:1b:4c:77:d3:21:27:29:e6:31:9e:3f: a5:71:01:7d:12:de:35:ee:60:79:73:77:02:bd:b1: ac:4c:ed:bb:14:49:48:9b:dc:4b:5c:42:ac:24:95: 52:b0:40:8e:32:b6:92:36:f6:b2:80:9c:7e:26:8b: 0d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:66:C7:91:4B:DC:EC:AA:00:7D:36:BF:78:05:0E:39:A2:61:38:1E X509v3 Authority Key Identifier: keyid:6E:39:8C:52:CC:2A:07:9D:A9:01:48:21:0A:C8:53:28:C1:1B:BE:96 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/bjmMUswqB52pAUghCshTKMEbvpY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bjmMUswqB52pAUghCshTKMEbvpY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPENRICH/6WbHkUvc7KoAfTa_eAUOOaJhOB4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.147.130.0/23 Signature Algorithm: sha256WithRSAEncryption a3:50:72:6d:5f:e4:da:ac:61:b6:e7:95:0a:be:4b:58:ef:f6: a9:74:2d:53:90:fa:09:77:14:b9:f4:cb:99:da:67:99:44:12: 8a:a9:5e:55:fc:39:c3:b9:f2:ed:11:17:78:df:f9:a9:3f:78: 39:ee:cb:bf:13:81:82:d7:8f:f8:ed:16:1e:8d:91:95:ce:db: c6:39:12:e1:56:b4:97:8c:57:65:54:27:b4:fb:0a:5c:b9:30: 53:dd:03:5c:ca:ff:69:92:06:88:88:3a:f2:63:df:52:af:45: f0:b9:79:a8:a6:06:af:68:6d:e0:6c:41:55:0e:ec:9e:47:86: c3:5e:89:92:ee:2f:a9:ec:4b:db:5c:66:95:f3:09:44:e5:1c: 61:d5:6b:b5:05:a3:f5:38:3c:79:d6:be:f3:d7:b7:f7:00:8e: 53:80:55:b7:2c:1e:9e:b3:2c:d0:00:5d:3e:d5:78:13:f4:e0: c1:a0:35:fe:0d:93:cb:7e:b5:1b:46:48:e9:ff:82:ab:00:a0: 45:77:d1:c7:82:dd:78:13:29:66:77:98:18:ef:2d:9f:9d:1f: b6:2b:0e:e1:20:48:23:c1:4e:cb:c7:ab:b7:1e:a4:ae:31:66: fc:00:98:6a:36:06:f7:54:32:e7:95:f3:cc:48:3b:f0:72:f4: ec:ef:52:ce -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICCZ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkUz OThDNTJDQzJBMDc5REE5MDE0ODIxMEFDODUzMjhDMTFCQkU5NjAeFw0yNDA4MjYw NTIzNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5NjZDNzkxNEJEQ0VD QUEwMDdEMzZCRjc4MDUwRTM5QTI2MTM4MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpT3nH4rWeT+fxOLmiay8hp1fahXz/0pZpln7Uz9gZKlhuyLWh cgYHkODOHVg/clprI0HjqCxCNl2sFVVYCMpEZu+AOjZTyKB6Kf3QIL21PmiMmROL LDvSekgJTt+APRWmuzwYUNNI52sAj1z1RsQrY7DsJwgpSwoscltlbSZGOZBNO0Kb BpCJ4KXUwau04qFXeG5Da6rRRr5OpvlxfRfD0VFcCxlkK+kWwLGpPZIklHt7/t3D RlUHHXS46T2Xtxlv9NFa9KEbTHfTIScp5jGeP6VxAX0S3jXuYHlzdwK9saxM7bsU SUib3EtcQqwklVKwQI4ytpI29rKAnH4miw37AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU6WbHkUvc7KoAfTa/eAUOOaJhOB4wHwYDVR0jBBgwFoAUbjmMUswqB52pAUgh CshTKMEbvpYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTlJJ Q0gvYmptTVVzd3FCNTJwQVVnaENzaFRLTUVidnBZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9iam1NVXN3cUI1MnBBVWdoQ3NoVEtNRWJ2cFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9PUEVOUklDSC82V2JIa1V2YzdLb0Fm VGFfZUFVT09hSmhPQjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ5OCMA0GCSqGSIb3DQEBCwUAA4IBAQCjUHJtX+TarGG255UKvktY7/apdC1T kPoJdxS59MuZ2meZRBKKqV5V/DnDufLtERd43/mpP3g57su/E4GC14/47RYejZGV ztvGORLhVrSXjFdlVCe0+wpcuTBT3QNcyv9pkgaIiDryY99Sr0XwuXmopgavaG3g bEFVDuyeR4bDXomS7i+p7EvbXGaV8wlE5Rxh1Wu1BaP1ODx51r7z17f3AI5TgFW3 LB6esyzQAF0+1XgT9ODBoDX+DZPLfrUbRkjp/4KrAKBFd9HHgt14Eylmd5gY7y2f nR+2Kw7hIEgjwU7Lx6u3HqSuMWb8AJhqNgb3VDLnlfPMSDvwcvTs71LO -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org