$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/EdBsi2I2di8A0qZ_zPyPpj1il5A.roa File: EdBsi2I2di8A0qZ_zPyPpj1il5A.roa (raw, json) Hash identifier: vu1/5SkYxZd0RiTGNv787bkqO3e13vht/WpB4c5LafM= Subject key identifier: 11:D0:6C:8B:62:36:76:2F:00:D2:A6:7F:CC:FC:8F:A6:3D:62:97:90 Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Certificate serial: 085F Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/EdBsi2I2di8A0qZ_zPyPpj1il5A.roa Signing time: Mon 26 Aug 2024 05:24:10 +0000 ROA not before: Mon 26 Aug 2024 05:24:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18178 IP address blocks: 103.148.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 15:49:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2143 (0x85f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Validity Not Before: Aug 26 05:24:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=11D06C8B6236762F00D2A67FCCFC8FA63D629790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ee:a3:76:79:d1:99:4e:e8:6c:9b:d6:65:df: 40:f4:8b:c4:b3:69:87:4b:f7:f1:6b:ce:11:77:19: 61:8c:5c:47:20:11:87:cc:1e:c7:dc:d8:1e:7d:a6: c2:bc:35:a4:37:b0:ad:e8:8c:5a:84:86:78:8e:3c: 68:bf:5c:fe:24:96:72:6d:4f:22:02:f1:60:14:10: ee:a4:3c:8c:84:c4:f3:16:99:97:1a:3b:87:c4:f3: fb:7c:76:42:57:8d:98:23:36:36:70:a0:87:21:2d: 66:6f:ee:1a:6e:18:99:9b:ad:58:c0:de:5a:41:ce: 50:61:00:b2:bc:e6:24:21:d5:60:c1:aa:27:25:eb: d7:8d:d7:de:20:be:40:29:18:eb:9f:30:3f:23:5a: f5:53:22:ea:68:7c:7c:48:44:8d:29:56:ab:29:17: 1a:68:e9:04:36:56:12:03:7f:8f:c5:b8:57:19:aa: 15:62:d0:aa:c4:ad:52:b2:af:74:86:0b:4c:6b:ab: e1:f9:be:18:a8:7b:45:19:39:8b:ea:3b:cf:dd:3c: 10:ce:c3:a2:7a:b4:70:08:3e:b1:36:67:25:da:65: 67:72:77:f1:ad:a5:53:a6:2a:e7:15:b8:eb:0b:5d: da:20:81:6f:80:38:cb:35:d2:82:df:5b:f8:2b:85: 42:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D0:6C:8B:62:36:76:2F:00:D2:A6:7F:CC:FC:8F:A6:3D:62:97:90 X509v3 Authority Key Identifier: keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/EdBsi2I2di8A0qZ_zPyPpj1il5A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.148.72.0/23 Signature Algorithm: sha256WithRSAEncryption a9:e6:b0:7b:ea:42:96:e6:0e:65:67:d2:23:60:85:ed:c0:ba: 2c:f8:3c:e8:2e:39:12:07:8b:e6:c5:5c:86:4c:cc:08:29:0e: cd:d8:72:1f:e2:9f:03:b6:50:07:6c:77:5f:3d:b8:ad:96:2d: 04:7b:0d:89:b7:7e:4b:94:25:00:a9:e2:44:32:d3:96:6f:98: fe:ef:5b:d8:7e:cb:fd:c5:1e:63:6c:85:af:67:eb:9c:ee:02: e9:31:35:93:d4:3b:00:90:ec:41:4f:39:6b:d7:c2:a7:e2:99: 85:cc:37:fd:9a:6d:2c:b7:65:37:bc:96:28:7d:77:34:e3:81: ac:87:94:ec:69:57:c1:ad:88:d4:6d:5a:70:fe:7f:f1:f0:6c: 2e:9d:cb:e8:85:8f:61:bf:18:41:12:a7:cc:ef:f0:5e:39:df: 0e:62:3e:e7:5e:54:ae:7d:2f:16:9a:ce:a7:62:93:f6:3e:c8: ee:be:ff:14:43:3e:37:80:4b:a8:32:99:1d:37:f9:ca:80:c7: 78:cc:f9:1d:89:8b:87:0d:5b:18:1e:d5:9a:0a:be:a3:c5:0c: 39:a6:f3:32:05:0c:58:ba:a6:64:2d:86:7e:4f:ba:59:8f:8f: ca:98:5d:e5:84:13:a2:dc:84:8b:70:02:dc:7b:03:4b:6b:da: c9:ec:36:2b -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yNDA4MjYw NTI0MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDExRDA2QzhCNjIzNjc2 MkYwMEQyQTY3RkNDRkM4RkE2M0Q2Mjk3OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI7qN2edGZTuhsm9Zl30D0i8SzaYdL9/FrzhF3GWGMXEcgEYfM Hsfc2B59psK8NaQ3sK3ojFqEhniOPGi/XP4klnJtTyIC8WAUEO6kPIyExPMWmZca O4fE8/t8dkJXjZgjNjZwoIchLWZv7hpuGJmbrVjA3lpBzlBhALK85iQh1WDBqicl 69eN194gvkApGOufMD8jWvVTIupofHxIRI0pVqspFxpo6QQ2VhIDf4/FuFcZqhVi 0KrErVKyr3SGC0xrq+H5vhioe0UZOYvqO8/dPBDOw6J6tHAIPrE2ZyXaZWdyd/Gt pVOmKucVuOsLXdoggW+AOMs10oLfW/grhULbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUEdBsi2I2di8A0qZ/zPyPpj1il5AwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL0VkQnNpMkkyZGk4QTBxWl96UHlQcGox aWw1QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEgwDQYJ KoZIhvcNAQELBQADggEBAKnmsHvqQpbmDmVn0iNghe3Auiz4POguORIHi+bFXIZM zAgpDs3Ych/inwO2UAdsd189uK2WLQR7DYm3fkuUJQCp4kQy05ZvmP7vW9h+y/3F HmNsha9n65zuAukxNZPUOwCQ7EFPOWvXwqfimYXMN/2abSy3ZTe8lih9dzTjgayH lOxpV8GtiNRtWnD+f/HwbC6dy+iFj2G/GEESp8zv8F453w5iPudeVK59Lxaazqdi k/Y+yO6+/xRDPjeAS6gymR03+cqAx3jM+R2Ji4cNWxge1ZoKvqPFDDmm8zIFDFi6 pmQthn5PulmPj8qYXeWEE6LchItwAtx7A0tr2snsNis= -----END CERTIFICATE-----Generated at Fri Sep 20 14:32:19 2024 by rpki-client on console-fra.rpki-client.org