$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/QUEWU/ky_mdx3HyLlgUfqTfVVtLrbxxns.roa File: ky_mdx3HyLlgUfqTfVVtLrbxxns.roa (raw, json) Hash identifier: 9rQ1BT/7XMJjeEYG8xuHbu13ZtJc5dH0cQxOF/vARN0= Subject key identifier: 93:2F:E6:77:1D:C7:C8:B9:60:51:FA:93:7D:55:6D:2E:B6:F1:C6:7B Certificate issuer: /CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Certificate serial: 010B Authority key identifier: 9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/ky_mdx3HyLlgUfqTfVVtLrbxxns.roa Signing time: Sun 22 Sep 2024 18:06:55 +0000 ROA not before: Sun 22 Sep 2024 18:06:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.69.54.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D3F68C726F59B288631AFF37EA4ED76BC2A9EC7 Validity Not Before: Sep 22 18:06:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=932FE6771DC7C8B96051FA937D556D2EB6F1C67B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:91:2b:cd:d5:46:97:03:bb:ab:ff:81:fd:ef: 3c:83:4c:df:b7:00:8f:ab:52:b1:a0:06:55:e4:87: c8:a7:9c:c3:4d:fa:89:d7:77:51:0d:bf:8f:a1:52: 0b:43:8f:f8:d3:77:cd:fb:50:04:0b:1c:6f:a3:62: 62:ac:5f:53:5b:c8:60:38:42:30:95:aa:da:f5:ed: 36:93:e4:5a:b0:b2:c6:c8:0b:0c:3a:6a:b9:91:f2: d1:0e:23:9c:9f:a5:18:05:13:68:20:2a:2f:82:49: 33:b5:44:a2:79:20:98:94:03:f9:e2:59:8b:b6:2a: 42:d4:8d:76:0b:5b:ad:f9:31:5c:28:cd:a6:a0:57: 21:be:b5:bb:73:37:e8:8f:6d:9a:a7:56:30:38:66: a4:e2:e6:56:7d:9b:fd:ce:a2:44:00:30:a8:d2:6d: 46:f2:f1:6a:57:88:e3:f4:5a:fe:8f:e2:03:64:51: d8:60:9b:97:82:35:bb:d4:aa:0f:c5:be:73:d3:4b: 9f:16:e5:e4:34:55:89:40:35:f0:b5:23:3d:5e:25: 79:bd:22:83:ae:f5:2a:b7:80:2a:3f:4c:41:05:a7: 62:f9:2e:ae:aa:0d:fc:71:8b:91:0d:38:a6:ca:d0: 79:18:1c:52:1a:96:a7:f4:9c:00:17:09:c4:c3:25: e5:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:2F:E6:77:1D:C7:C8:B9:60:51:FA:93:7D:55:6D:2E:B6:F1:C6:7B X509v3 Authority Key Identifier: keyid:9D:3F:68:C7:26:F5:9B:28:86:31:AF:F3:7E:A4:ED:76:BC:2A:9E:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/nT9oxyb1myiGMa_zfqTtdrwqnsc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/nT9oxyb1myiGMa_zfqTtdrwqnsc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QUEWU/ky_mdx3HyLlgUfqTfVVtLrbxxns.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.69.54.0/23 Signature Algorithm: sha256WithRSAEncryption 91:5b:65:48:e1:fd:91:75:96:ad:11:1f:0b:c9:18:bc:f5:b7: 06:1c:20:85:92:8c:2d:c6:77:de:92:55:97:70:e1:69:10:9b: e5:c1:fe:1d:41:26:fe:7d:e1:ff:3c:65:6f:da:2f:4a:3b:31: 91:70:2f:26:63:83:f0:f1:b1:08:44:a9:fd:8b:ee:46:a3:f7: 02:fa:13:d5:7b:6a:56:df:3b:9e:02:dc:06:6a:54:ed:ca:50: 9b:e7:a4:e7:2b:40:0a:34:34:b2:1b:ea:8a:72:b7:ad:1b:b5: 47:dc:f5:d5:4d:ea:8b:07:dc:5c:2d:65:2d:0d:96:c6:50:46: 90:1b:dc:8d:43:8b:7c:f1:ba:52:19:c2:65:b7:53:04:5e:5e: cc:b8:d7:c4:77:00:05:26:7a:0a:9b:b3:ab:37:28:9f:91:7b: af:0a:49:32:28:c0:8b:d8:39:91:d2:eb:64:18:98:af:bf:90: 19:67:dc:0a:b7:9a:c1:c2:c6:60:5a:a2:3e:f1:e7:6e:a9:97: 10:bf:8d:4a:90:48:83:79:43:5b:d2:31:c9:26:61:a5:36:6d: 27:73:02:d0:49:26:42:11:11:43:89:e0:8e:4f:8f:af:10:73: d8:9b:02:3d:4f:d0:51:db:b4:0a:e4:8d:25:03:1c:de:53:13: 84:ba:7c:f9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAQswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUQz RjY4QzcyNkY1OUIyODg2MzFBRkYzN0VBNEVENzZCQzJBOUVDNzAeFw0yNDA5MjIx ODA2NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkzMkZFNjc3MURDN0M4 Qjk2MDUxRkE5MzdENTU2RDJFQjZGMUM2N0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCukSvN1UaXA7ur/4H97zyDTN+3AI+rUrGgBlXkh8innMNN+onX d1ENv4+hUgtDj/jTd837UAQLHG+jYmKsX1NbyGA4QjCVqtr17TaT5FqwssbICww6 armR8tEOI5yfpRgFE2ggKi+CSTO1RKJ5IJiUA/niWYu2KkLUjXYLW635MVwozaag VyG+tbtzN+iPbZqnVjA4ZqTi5lZ9m/3OokQAMKjSbUby8WpXiOP0Wv6P4gNkUdhg m5eCNbvUqg/FvnPTS58W5eQ0VYlANfC1Iz1eJXm9IoOu9Sq3gCo/TEEFp2L5Lq6q Dfxxi5ENOKbK0HkYHFIalqf0nAAXCcTDJeXPAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUky/mdx3HyLlgUfqTfVVtLrbxxnswHwYDVR0jBBgwFoAUnT9oxyb1myiGMa/z fqTtdrwqnscwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUVVFV1Uv blQ5b3h5YjFteWlHTWFfemZxVHRkcndxbnNjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9uVDlveHliMW15aUdNYV96ZnFUdGRyd3Fuc2MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9RVUVXVS9reV9tZHgzSHlMbGdVZnFUZlZW dExyYnh4bnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ0U2 MA0GCSqGSIb3DQEBCwUAA4IBAQCRW2VI4f2RdZatER8LyRi89bcGHCCFkowtxnfe klWXcOFpEJvlwf4dQSb+feH/PGVv2i9KOzGRcC8mY4Pw8bEIRKn9i+5Go/cC+hPV e2pW3zueAtwGalTtylCb56TnK0AKNDSyG+qKcretG7VH3PXVTeqLB9xcLWUtDZbG UEaQG9yNQ4t88bpSGcJlt1MEXl7MuNfEdwAFJnoKm7OrNyifkXuvCkkyKMCL2DmR 0utkGJivv5AZZ9wKt5rBwsZgWqI+8eduqZcQv41KkEiDeUNb0jHJJmGlNm0ncwLQ SSZCERFDieCOT4+vEHPYmwI9T9BR27QK5I0lAxzeUxOEunz5 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:13 2024 by rpki-client on console-ams.rpki-client.org