$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/1ZsBw48JGzvIR3fSJKy27u50ukk.roa File: 1ZsBw48JGzvIR3fSJKy27u50ukk.roa (raw, json) Hash identifier: 01ObNjiikq7cliaZ77selaoiDxzzvIKz9GmMfrspfE8= Subject key identifier: D5:9B:01:C3:8F:09:1B:3B:C8:47:77:D2:24:AC:B6:EE:EE:74:BA:49 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 135C Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/1ZsBw48JGzvIR3fSJKy27u50ukk.roa Signing time: Mon 26 Aug 2024 05:25:30 +0000 ROA not before: Mon 26 Aug 2024 05:25:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131631 IP address blocks: 103.123.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4956 (0x135c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Aug 26 05:25:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D59B01C38F091B3BC84777D224ACB6EEEE74BA49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c5:d8:17:3a:dc:a1:a5:72:c7:e6:de:52:42: 00:9f:52:2d:4e:9b:2d:5d:68:f0:00:98:b8:54:a8: fb:37:2f:35:fa:96:c1:e4:64:d6:4d:b8:01:5d:48: ba:3e:2a:43:84:e0:a0:ad:4d:6d:35:18:71:63:40: ef:d3:34:df:e9:dd:87:53:b2:64:56:e2:ed:19:2c: aa:d8:21:f0:ba:aa:23:fe:3a:f2:a8:77:d6:c9:b4: 31:ca:39:5b:b6:f2:3d:c4:dc:61:a9:9d:59:5f:14: 97:4a:38:ab:e3:5b:c0:a9:97:cb:0e:ac:8f:2e:79: 9e:65:27:30:c5:08:64:d4:50:e2:bb:11:81:05:9d: 43:29:1a:8d:b7:ec:08:9a:9f:4f:84:ec:53:f8:82: 38:5c:7f:e7:17:3a:16:57:38:df:f1:a4:bf:52:e5: b1:25:ef:fa:f1:e1:e7:63:3e:95:55:f5:99:39:3b: 27:46:09:88:99:0b:b9:f6:3d:41:e4:51:11:cb:0e: 13:e1:2f:56:51:ec:f3:f1:ce:9a:59:bb:bf:08:23: 8b:c8:87:10:f3:a7:e9:d0:03:a0:65:ae:f0:dc:27: 00:e4:56:63:1d:3e:48:ca:49:c8:2d:46:9b:99:c5: c5:de:01:c3:f0:d0:89:37:cc:52:dc:6c:d6:34:34: e2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9B:01:C3:8F:09:1B:3B:C8:47:77:D2:24:AC:B6:EE:EE:74:BA:49 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/1ZsBw48JGzvIR3fSJKy27u50ukk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.219.0/24 Signature Algorithm: sha256WithRSAEncryption cb:fa:82:44:95:34:3b:ea:35:cb:0d:dc:b7:d1:13:c7:fa:6e: b3:0d:c6:af:c5:fd:85:cb:6d:f1:de:f7:99:5d:51:7a:67:45: 19:fc:61:70:be:4c:97:47:e2:fb:c3:46:98:7f:96:68:a7:f5: c8:ec:00:c8:e5:85:f7:c3:08:b6:90:55:b2:ec:4c:05:27:9c: 97:9d:3a:7a:d0:ab:3b:2e:50:88:ea:ec:5e:6a:b8:ba:5f:84: 0a:08:96:65:68:49:b8:b0:2d:eb:0f:71:7b:87:12:b6:64:8c: 2e:d4:75:bd:d9:04:3c:56:01:f5:63:ba:dd:b8:34:66:b7:7d: b2:c6:46:0f:45:73:51:bc:c3:73:02:6b:a7:96:38:44:68:14: eb:a8:fd:95:3e:c9:5a:8c:fc:52:ac:8a:41:20:80:29:9c:c6: 05:08:57:0a:bf:37:06:5b:e2:63:d4:04:27:a8:de:86:3f:b9: fc:2f:e5:05:a4:cc:e9:6a:53:61:c4:93:bd:eb:7a:14:a4:7f: 3c:2f:d4:1b:ef:4c:44:a4:25:05:96:a6:7b:f0:1c:ff:87:db: db:d1:ae:14:c5:74:fc:0f:e2:3b:b3:2c:64:2f:32:f1:39:5f: d5:f1:f1:bf:d6:20:7b:79:9e:ad:93:ff:fb:d7:9e:e9:a7:91: e4:ff:1e:37 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA4MjYw NTI1MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1OUIwMUMzOEYwOTFC M0JDODQ3NzdEMjI0QUNCNkVFRUU3NEJBNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4xdgXOtyhpXLH5t5SQgCfUi1Omy1daPAAmLhUqPs3LzX6lsHk ZNZNuAFdSLo+KkOE4KCtTW01GHFjQO/TNN/p3YdTsmRW4u0ZLKrYIfC6qiP+OvKo d9bJtDHKOVu28j3E3GGpnVlfFJdKOKvjW8Cpl8sOrI8ueZ5lJzDFCGTUUOK7EYEF nUMpGo237Aian0+E7FP4gjhcf+cXOhZXON/xpL9S5bEl7/rx4edjPpVV9Zk5OydG CYiZC7n2PUHkURHLDhPhL1ZR7PPxzppZu78II4vIhxDzp+nQA6BlrvDcJwDkVmMd PkjKScgtRpuZxcXeAcPw0Ik3zFLcbNY0NOJtAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU1ZsBw48JGzvIR3fSJKy27u50ukkwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC8xWnNCdzQ4Skd6dklSM2ZTSkt5 Mjd1NTB1a2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vb MA0GCSqGSIb3DQEBCwUAA4IBAQDL+oJElTQ76jXLDdy30RPH+m6zDcavxf2Fy23x 3veZXVF6Z0UZ/GFwvkyXR+L7w0aYf5Zop/XI7ADI5YX3wwi2kFWy7EwFJ5yXnTp6 0Ks7LlCI6uxeari6X4QKCJZlaEm4sC3rD3F7hxK2ZIwu1HW92QQ8VgH1Y7rduDRm t32yxkYPRXNRvMNzAmunljhEaBTrqP2VPslajPxSrIpBIIApnMYFCFcKvzcGW+Jj 1AQnqN6GP7n8L+UFpMzpalNhxJO963oUpH88L9Qb70xEpCUFlqZ78Bz/h9vb0a4U xXT8D+I7syxkLzLxOV/V8fG/1iB7eZ6tk//7157pp5Hk/x43 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org