$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QUEWU/HjtWr1_VQLzIhD0ktelV2UEZUTg.roa File: HjtWr1_VQLzIhD0ktelV2UEZUTg.roa (raw, json) Hash identifier: 3qBJXCoN+orvwlyThLztB+6DGSmYdlX4IgQlT2s+pAA= Subject key identifier: 1E:3B:56:AF:5F:D5:40:BC:C8:84:3D:24:B5:E9:55:D9:41:19:51:38 Certificate issuer: /CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Certificate serial: F7 Authority key identifier: 9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/HjtWr1_VQLzIhD0ktelV2UEZUTg.roa Signing time: Mon 26 Aug 2024 05:25:10 +0000 ROA not before: Mon 26 Aug 2024 05:25:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.69.54.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Validity Not Before: Aug 26 05:25:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E3B56AF5FD540BCC8843D24B5E955D941195138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:02:f2:59:30:4f:11:b3:57:46:d5:5c:ad:74: c7:9c:f8:ae:32:6f:00:df:af:9f:60:a3:8f:09:60: eb:1c:cc:5e:e0:42:9c:da:fa:80:b6:1f:c5:56:32: 65:4f:f4:d3:80:02:9f:14:3c:73:2f:33:aa:75:65: ab:b9:93:9e:b6:7a:9b:c8:06:02:1e:42:7a:ae:af: 19:49:19:62:fb:d8:dc:ef:b5:bb:a4:d7:8a:e7:10: 51:30:9c:3e:9a:87:a3:4b:9e:75:7c:d6:ca:63:5e: 4d:27:14:87:f7:40:ef:2e:a6:b6:6b:27:6c:da:60: c2:27:f6:80:58:d9:45:dc:7b:73:92:99:93:1f:dc: b8:14:2d:93:cd:be:70:5b:09:f8:bf:38:a7:d6:6f: 2b:99:b5:ac:e1:1c:2f:11:76:aa:e4:05:05:c3:15: 99:8d:44:a4:58:56:ae:7e:43:4d:22:4b:5c:47:88: fe:14:ab:54:80:8c:df:9a:b6:76:ba:12:59:a6:19: d4:34:c8:a1:af:3e:d0:f9:3b:ee:d5:d6:d4:17:76: 05:1f:ed:86:d8:4e:73:22:a6:01:6e:3e:53:b4:8d: 08:14:38:2b:2c:a4:9d:5c:ad:83:a3:fe:f5:d0:6e: 21:d0:b5:58:7c:53:9c:1d:17:57:2b:34:10:7a:05: c9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:3B:56:AF:5F:D5:40:BC:C8:84:3D:24:B5:E9:55:D9:41:19:51:38 X509v3 Authority Key Identifier: keyid:9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/HjtWr1_VQLzIhD0ktelV2UEZUTg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.54.0/23 Signature Algorithm: sha256WithRSAEncryption 60:59:1a:53:50:90:c2:ca:9e:48:43:3d:85:62:38:e8:9a:93: 39:23:02:ac:3e:34:cd:0d:15:49:99:ca:68:de:58:c9:41:48: 55:9b:63:56:0d:73:7b:b2:c9:a7:9f:9f:d5:9f:95:9d:7c:c6: 9f:49:35:f0:70:c1:a6:c8:0d:b3:45:00:b9:c3:cb:5d:d9:ad: e1:6c:d3:70:dd:c7:15:f7:c0:e9:86:4f:fb:f6:5e:02:fa:ca: cc:56:24:ee:bc:8d:58:bc:d1:0d:5f:ed:56:5e:c0:0c:ee:72: 17:95:ba:d1:85:92:9f:c5:ad:c9:ca:46:4c:c5:a7:26:fe:d7: 5a:71:e8:0f:dd:11:35:3f:ce:40:da:ea:65:c3:27:ad:48:d3: ac:ae:e8:6e:8f:ed:32:15:6e:85:7b:18:ee:d9:c3:2a:35:c8: a3:d2:f5:f3:50:7b:13:96:ee:bc:9a:5d:bd:75:3b:87:76:0a: b9:56:d7:f0:ab:16:d2:aa:ee:37:25:62:01:24:86:86:8f:d0: fa:70:51:17:90:c8:0a:f3:1e:e8:6c:94:e8:41:f5:28:97:4b: 02:05:37:9b:c2:61:f1:8d:2a:76:37:12:7a:7e:6d:e1:71:29: 88:54:e5:39:d5:20:9f:bd:ce:bc:f5:5b:61:19:b6:9d:39:cb: e3:cb:28:0b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQz RjY4QzcyNkY1OUIyODg2MzFBRkYzN0VBNEVENzZCQzJBOUVDNzAeFw0yNDA4MjYw NTI1MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFM0I1NkFGNUZENTQw QkNDODg0M0QyNEI1RTk1NUQ5NDExOTUxMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlAvJZME8Rs1dG1VytdMec+K4ybwDfr59go48JYOsczF7gQpza +oC2H8VWMmVP9NOAAp8UPHMvM6p1Zau5k562epvIBgIeQnqurxlJGWL72Nzvtbuk 14rnEFEwnD6ah6NLnnV81spjXk0nFIf3QO8uprZrJ2zaYMIn9oBY2UXce3OSmZMf 3LgULZPNvnBbCfi/OKfWbyuZtazhHC8RdqrkBQXDFZmNRKRYVq5+Q00iS1xHiP4U q1SAjN+atna6ElmmGdQ0yKGvPtD5O+7V1tQXdgUf7YbYTnMipgFuPlO0jQgUOCss pJ1crYOj/vXQbiHQtVh8U5wdF1crNBB6BckVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUHjtWr1/VQLzIhD0ktelV2UEZUTgwHwYDVR0jBBgwFoAUnT9oxyb1myiGMa/z fqTtdrwqnscwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUVVFV1Uv blQ5b3h5YjFteWlHTWFfemZxVHRkcndxbnNjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uVDlveHliMW15aUdNYV96ZnFUdGRyd3Fuc2MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9RVUVXVS9IanRXcjFfVlFMekloRDBrdGVs VjJVRVpVVGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0U2 MA0GCSqGSIb3DQEBCwUAA4IBAQBgWRpTUJDCyp5IQz2FYjjompM5IwKsPjTNDRVJ mcpo3ljJQUhVm2NWDXN7ssmnn5/Vn5WdfMafSTXwcMGmyA2zRQC5w8td2a3hbNNw 3ccV98Dphk/79l4C+srMViTuvI1YvNENX+1WXsAM7nIXlbrRhZKfxa3JykZMxacm /tdacegP3RE1P85A2uplwyetSNOsruhuj+0yFW6Fexju2cMqNcij0vXzUHsTlu68 ml29dTuHdgq5VtfwqxbSqu43JWIBJIaGj9D6cFEXkMgK8x7obJToQfUol0sCBTeb wmHxjSp2NxJ6fm3hcSmIVOU51SCfvc689VthGbadOcvjyygL -----END CERTIFICATE-----Generated at Fri Sep 20 08:12:15 2024 by rpki-client on console-fra.rpki-client.org