$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/009yp69y050S5_qeSffrCMAXEGU.roa File: 009yp69y050S5_qeSffrCMAXEGU.roa (raw, json) Hash identifier: vn9FDTctihggoU5D+bNlV4bW2WmTmc8eYzZPcl7k/5Q= Subject key identifier: D3:4F:72:A7:AF:72:D3:9D:12:E7:FA:9E:49:F7:EB:08:C0:17:10:65 Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07 Certificate serial: 0C0B Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/009yp69y050S5_qeSffrCMAXEGU.roa Signing time: Mon 26 Aug 2024 05:24:03 +0000 ROA not before: Mon 26 Aug 2024 05:24:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17710 IP address blocks: 103.234.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3083 (0xc0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07 Validity Not Before: Aug 26 05:24:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D34F72A7AF72D39D12E7FA9E49F7EB08C0171065 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c0:1d:67:f7:07:75:de:6a:b7:31:49:49:f2: 5d:2f:cd:d7:b1:1e:a3:44:a5:8b:80:b2:00:d9:58: 5b:8e:c5:e6:c0:2a:78:6c:5a:d2:c9:5a:c9:fe:c5: ca:f9:42:2e:5e:6d:fd:ac:a2:f1:f6:90:01:8a:5c: 77:67:fc:ca:6c:3b:ed:d1:da:f9:b5:ef:65:60:cb: 16:6d:11:ec:7f:6d:8e:95:65:68:20:50:3a:55:50: 31:fe:06:6b:cd:77:f3:6b:f3:82:2d:18:59:13:91: 35:5d:6a:97:96:82:71:c8:b7:b5:94:65:a4:7f:1c: b7:47:1e:6c:6a:32:04:0e:a4:4e:e1:ce:56:e3:b8: 75:9e:93:78:09:6f:8f:51:af:a1:c6:76:44:75:94: e0:ac:73:97:c0:33:78:62:f2:13:da:0e:ff:d0:83: 6d:ef:69:13:07:86:be:ab:72:7e:40:5d:46:14:55: 56:33:b6:70:f9:b0:9b:ff:e9:d5:c3:66:96:8f:a6: 09:38:91:3a:5b:7e:d7:52:03:c2:84:b9:f8:b8:e0: 1a:6c:48:83:3d:24:b8:f7:4b:be:be:e8:21:8c:1a: fd:45:b4:20:31:73:b9:2c:d2:fd:c6:b4:d0:f7:20: e4:b1:f6:c6:02:77:6d:86:fd:dc:31:9c:7a:99:69: 37:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:4F:72:A7:AF:72:D3:9D:12:E7:FA:9E:49:F7:EB:08:C0:17:10:65 X509v3 Authority Key Identifier: keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/009yp69y050S5_qeSffrCMAXEGU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.81.0/24 Signature Algorithm: sha256WithRSAEncryption 63:e0:f4:23:ae:0d:f9:1e:f0:3a:a0:31:06:ea:11:cc:e4:bf: e6:cb:a8:98:20:d0:97:71:c7:c4:28:ec:45:f2:ce:1d:14:d8: 63:ff:d9:b4:49:06:4c:2d:d4:86:2f:ae:42:81:55:0e:e6:eb: ce:87:69:4b:45:23:a0:46:84:ab:f0:71:d2:f0:90:45:b2:16: 22:ea:f7:f0:e6:44:98:db:41:f9:5e:69:af:2c:71:07:9d:79: 40:e6:b1:53:1e:57:56:b7:a3:96:48:2e:ae:b0:67:8d:ee:09: b5:e6:43:08:eb:c1:24:60:12:7f:61:d9:96:55:d3:c1:65:8e: 7c:56:84:aa:86:13:d6:6f:07:19:80:75:4a:db:d3:2e:93:19: d7:6c:99:f3:41:b7:b1:a9:ee:53:82:7f:24:71:4e:1b:6b:eb: df:37:33:6e:fb:43:78:09:e2:30:9d:b7:03:5c:b2:54:ee:2a: d9:d4:b7:12:e3:6a:f2:df:2a:47:c8:8f:3a:3e:a5:4a:8e:67: f5:8f:7a:17:5d:e8:e6:b7:2e:68:a9:b7:83:33:e8:dc:38:a8: 8b:e5:2c:c6:d0:89:da:a4:b4:e1:5d:9e:99:32:04:44:fe:b2: 66:d5:38:61:d1:3a:27:09:44:7d:05:27:82:66:d9:46:32:22: a7:7e:99:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDAswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk3 OTdCREU4RDA1ODFGQTI5OUQ4RTE0MjBFRDI5NTdDNDIwOEEwNzAeFw0yNDA4MjYw NTI0MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzNEY3MkE3QUY3MkQz OUQxMkU3RkE5RTQ5RjdFQjA4QzAxNzEwNjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGwB1n9wd13mq3MUlJ8l0vzdexHqNEpYuAsgDZWFuOxebAKnhs WtLJWsn+xcr5Qi5ebf2sovH2kAGKXHdn/MpsO+3R2vm172VgyxZtEex/bY6VZWgg UDpVUDH+BmvNd/Nr84ItGFkTkTVdapeWgnHIt7WUZaR/HLdHHmxqMgQOpE7hzlbj uHWek3gJb49Rr6HGdkR1lOCsc5fAM3hi8hPaDv/Qg23vaRMHhr6rcn5AXUYUVVYz tnD5sJv/6dXDZpaPpgk4kTpbftdSA8KEufi44BpsSIM9JLj3S76+6CGMGv1FtCAx c7ks0v3GtND3IOSx9sYCd22G/dwxnHqZaTf5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU009yp69y050S5/qeSffrCMAXEGUwHwYDVR0jBBgwFoAUaXl73o0FgfopnY4U IO0pV8QgigcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVU L2FYbDczbzBGZ2ZvcG5ZNFVJTzBwVjhRZ2lnYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvYVhsNzNvMEZnZm9wblk0VUlPMHBWOFFnaWdjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVULzAwOXlwNjl5MDUwUzVfcWVT ZmZyQ01BWEVHVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn 6lEwDQYJKoZIhvcNAQELBQADggEBAGPg9COuDfke8DqgMQbqEczkv+bLqJgg0Jdx x8Qo7EXyzh0U2GP/2bRJBkwt1IYvrkKBVQ7m686HaUtFI6BGhKvwcdLwkEWyFiLq 9/DmRJjbQfleaa8scQedeUDmsVMeV1a3o5ZILq6wZ43uCbXmQwjrwSRgEn9h2ZZV 08FljnxWhKqGE9ZvBxmAdUrb0y6TGddsmfNBt7Gp7lOCfyRxThtr6983M277Q3gJ 4jCdtwNcslTuKtnUtxLjavLfKkfIjzo+pUqOZ/WPehdd6Oa3Lmipt4Mz6Nw4qIvl LMbQidqktOFdnpkyBET+smbVOGHROicJRH0FJ4Jm2UYyIqd+mUU= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:12 2024 by rpki-client on console-ams.rpki-client.org