$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PIINET/K8viJ5xN6j6sMAHy9juMj_PcDNw.roa File: K8viJ5xN6j6sMAHy9juMj_PcDNw.roa (raw, json) Hash identifier: 2SkxxZ2QmZ99rihciZcuXG7ZqD1dhM5qGH1aeot4dpE= Subject key identifier: 2B:CB:E2:27:9C:4D:EA:3E:AC:30:01:F2:F6:3B:8C:8F:F3:DC:0C:DC Certificate issuer: /CN=69797BDE8D0581FA299D8E1420ED2957C4208A07 Certificate serial: 0C0A Authority key identifier: 69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/K8viJ5xN6j6sMAHy9juMj_PcDNw.roa Signing time: Mon 26 Aug 2024 05:24:03 +0000 ROA not before: Mon 26 Aug 2024 05:24:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17710 IP address blocks: 103.234.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3082 (0xc0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=69797BDE8D0581FA299D8E1420ED2957C4208A07 Validity Not Before: Aug 26 05:24:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2BCBE2279C4DEA3EAC3001F2F63B8C8FF3DC0CDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d9:2c:4a:6f:e4:53:6b:7d:80:22:d5:21:cd: b5:52:e2:28:b1:46:ad:62:56:99:af:ff:be:ba:f7: a3:e8:6d:fb:c7:ce:7a:0b:8a:2f:af:46:88:cc:6d: ce:54:fe:10:75:d8:2e:56:2a:06:01:29:16:7c:9d: 64:03:bd:87:16:cf:ae:59:03:a7:8f:b3:a1:58:a2: 66:5a:1c:70:37:21:29:54:cf:6e:36:80:7d:12:55: 0c:f9:e9:98:a8:d0:43:e7:c1:1d:f4:ab:c7:44:f2: c4:84:c9:1c:75:a2:6f:34:58:51:f9:91:d0:c3:9e: 4b:01:3c:3a:8c:c1:9d:32:6b:93:57:0b:aa:1a:94: 2f:87:1a:68:d5:72:bb:b6:9f:26:7a:ad:91:01:97: 4d:bd:c6:fc:78:09:08:25:4c:f0:bb:2a:37:07:d9: 45:fc:96:81:65:29:2b:ca:f8:a1:6f:4b:e4:32:07: e4:8c:9d:99:b0:ef:50:f7:25:ed:bd:7a:50:23:5e: cd:98:9b:90:22:4a:ea:a1:61:99:b3:44:f4:04:ff: 78:a5:0e:b3:ca:10:dc:1e:71:e9:e8:30:99:bb:8d: cb:af:03:f2:1b:d0:88:16:58:ab:82:af:9b:01:be: 09:6d:05:18:8d:ed:37:5e:2f:56:9a:4b:3a:9b:d2: 41:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:CB:E2:27:9C:4D:EA:3E:AC:30:01:F2:F6:3B:8C:8F:F3:DC:0C:DC X509v3 Authority Key Identifier: keyid:69:79:7B:DE:8D:05:81:FA:29:9D:8E:14:20:ED:29:57:C4:20:8A:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/aXl73o0FgfopnY4UIO0pV8Qgigc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aXl73o0FgfopnY4UIO0pV8Qgigc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PIINET/K8viJ5xN6j6sMAHy9juMj_PcDNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.80.0/22 Signature Algorithm: sha256WithRSAEncryption ad:5f:4a:42:d5:46:ed:bc:75:f7:8c:33:5f:25:99:f3:9a:50: b4:72:dd:12:8e:df:f8:f7:b1:dd:0e:cc:dd:d6:14:f2:19:22: 69:dd:f9:3d:24:af:20:c3:38:91:c4:66:36:c8:63:d0:b6:d3: 53:de:ef:42:38:46:3c:5d:35:6c:70:5d:78:58:0c:09:cd:2b: 08:ef:6a:4f:7a:af:45:29:91:bb:cd:89:f0:37:68:d6:20:b4: b9:ef:62:5b:ca:8d:b0:5e:12:34:b5:dc:e0:91:77:dc:94:94: b3:43:d7:a6:e2:60:46:4d:ee:7a:4c:94:2d:5f:80:45:51:ac: 38:05:de:5d:a6:e5:51:74:e2:09:34:95:d3:a2:58:34:2e:f3: 6c:c2:71:a1:69:d0:c1:b4:72:59:81:92:68:7b:89:03:cb:3b: 7b:88:cb:bd:b3:84:7a:bc:a0:f1:18:57:e8:ca:73:84:8f:b3: cc:b5:2a:08:0c:3b:9d:6f:8e:be:7b:d8:49:09:4c:b9:c1:1f: 6b:89:4c:25:d2:9e:eb:52:21:ad:b8:93:b0:d2:3f:9c:2b:34: 31:80:60:af:3c:2f:1b:27:bb:e4:6f:ab:17:77:96:12:a3:ff: 57:cf:df:fe:5c:ef:07:0b:84:41:88:bf:58:b4:e7:dc:25:72: c4:16:c3:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDAowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk3 OTdCREU4RDA1ODFGQTI5OUQ4RTE0MjBFRDI5NTdDNDIwOEEwNzAeFw0yNDA4MjYw NTI0MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCQ0JFMjI3OUM0REVB M0VBQzMwMDFGMkY2M0I4QzhGRjNEQzBDREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCb2SxKb+RTa32AItUhzbVS4iixRq1iVpmv/76696PobfvHznoL ii+vRojMbc5U/hB12C5WKgYBKRZ8nWQDvYcWz65ZA6ePs6FYomZaHHA3ISlUz242 gH0SVQz56Zio0EPnwR30q8dE8sSEyRx1om80WFH5kdDDnksBPDqMwZ0ya5NXC6oa lC+HGmjVcru2nyZ6rZEBl029xvx4CQglTPC7KjcH2UX8loFlKSvK+KFvS+QyB+SM nZmw71D3Je29elAjXs2Ym5AiSuqhYZmzRPQE/3ilDrPKENwecenoMJm7jcuvA/Ib 0IgWWKuCr5sBvgltBRiN7TdeL1aaSzqb0kFLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUK8viJ5xN6j6sMAHy9juMj/PcDNwwHwYDVR0jBBgwFoAUaXl73o0FgfopnY4U IO0pV8QgigcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVU L2FYbDczbzBGZ2ZvcG5ZNFVJTzBwVjhRZ2lnYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvYVhsNzNvMEZnZm9wblk0VUlPMHBWOFFnaWdjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvUElJTkVUL0s4dmlKNXhONmo2c01BSHk5 anVNal9QY0ROdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn 6lAwDQYJKoZIhvcNAQELBQADggEBAK1fSkLVRu28dfeMM18lmfOaULRy3RKO3/j3 sd0OzN3WFPIZImnd+T0kryDDOJHEZjbIY9C201Pe70I4RjxdNWxwXXhYDAnNKwjv ak96r0UpkbvNifA3aNYgtLnvYlvKjbBeEjS13OCRd9yUlLND16biYEZN7npMlC1f gEVRrDgF3l2m5VF04gk0ldOiWDQu82zCcaFp0MG0clmBkmh7iQPLO3uIy72zhHq8 oPEYV+jKc4SPs8y1KggMO51vjr572EkJTLnBH2uJTCXSnutSIa24k7DSP5wrNDGA YK88Lxsnu+Rvqxd3lhKj/1fP3/5c7wcLhEGIv1i059wlcsQWwyk= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org