$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/BjSSZy8_RowvIw31AtvPAfDEFEw.roa File: BjSSZy8_RowvIw31AtvPAfDEFEw.roa (raw, json) Hash identifier: 4ONNB8RsfqgDXFOZxzUYnLenmNtlQ2pPie2vFLuFDYw= Subject key identifier: 06:34:92:67:2F:3F:46:8C:2F:23:0D:F5:02:DB:CF:01:F0:C4:14:4C Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 1360 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/BjSSZy8_RowvIw31AtvPAfDEFEw.roa Signing time: Mon 26 Aug 2024 05:25:30 +0000 ROA not before: Mon 26 Aug 2024 05:25:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 202525 IP address blocks: 103.123.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4960 (0x1360) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Aug 26 05:25:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=063492672F3F468C2F230DF502DBCF01F0C4144C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:21:94:ad:12:ba:04:94:38:fe:22:5b:96:d7: 1c:9c:ad:45:48:e7:b7:ff:25:6d:b5:4e:0b:32:0f: 66:6d:7a:68:2b:16:bf:79:1e:80:f3:43:67:cb:74: fa:9e:11:1e:52:d4:56:89:e2:c6:68:5f:57:20:0a: c8:c1:a7:df:60:1f:8f:54:47:60:f1:8d:25:69:05: 1f:dd:aa:94:61:16:4d:ec:29:55:4a:02:24:6c:9a: dc:0b:c1:97:d9:63:d3:70:76:60:e5:db:4a:e6:24: 82:80:aa:05:56:e3:bf:1f:96:63:6c:f4:7c:24:24: b1:fd:66:24:76:48:d8:de:fe:2b:9a:bd:51:30:e6: db:43:a9:fe:f9:41:dd:d9:d3:d9:25:1a:2a:94:fa: 41:13:ef:b5:ee:3d:58:e2:09:66:ff:f7:60:bd:53: 4d:b5:7c:c2:ae:d0:cf:04:d8:03:86:c8:b4:ab:ed: 41:7e:0c:50:c3:88:76:d1:86:dd:c0:9c:ef:b9:3c: 49:e7:75:bf:29:fc:5f:88:a7:c5:61:67:38:d0:d8: 01:ae:c8:2b:71:d8:9e:85:20:b1:5f:4a:16:0a:3a: 47:ea:39:3a:49:06:a7:c5:13:12:33:f0:d1:9a:53: 2e:ad:cb:67:97:a2:67:89:3b:d7:7d:47:f9:05:4b: 1f:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:34:92:67:2F:3F:46:8C:2F:23:0D:F5:02:DB:CF:01:F0:C4:14:4C X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/BjSSZy8_RowvIw31AtvPAfDEFEw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.216.0/24 Signature Algorithm: sha256WithRSAEncryption 89:85:88:fd:a7:0d:0e:55:80:11:46:1e:77:5b:64:e7:95:89: 3a:3e:63:05:26:2e:fe:6d:c4:d7:5f:a1:70:b8:1a:37:6e:8d: da:91:83:fb:23:0b:f3:a6:9b:2c:38:04:79:d1:4f:27:07:74: c3:26:67:f2:1c:62:e9:82:3d:5f:0f:a0:69:e3:15:b8:03:f0: b7:e9:ad:9a:61:a1:52:a6:38:d3:b4:3c:a5:71:3f:98:22:38: bf:2e:37:df:c3:aa:6a:98:44:c2:b3:af:e1:2e:74:49:b8:b1: fc:f4:40:59:75:b3:96:17:ad:21:18:93:1e:7c:c9:ad:9b:f6: 9a:db:0e:35:aa:47:58:ea:6f:cd:47:3a:0e:9e:bf:f1:aa:27: 17:09:73:1b:15:19:6f:08:37:d0:cd:e5:2f:8b:df:03:b0:7b: 09:7d:f5:73:ac:68:7c:d5:a1:e0:df:b6:60:34:20:b4:ed:9b: 65:7c:db:74:14:09:70:d8:ea:c3:21:82:63:1a:74:7e:e3:03: ed:de:33:7f:e4:08:8c:a8:62:a9:d3:fd:69:6e:c8:db:95:a3: 8a:8c:24:ba:d4:6a:69:de:d5:da:62:3b:f6:e1:fe:ad:7a:2f: cc:ae:e2:39:78:12:37:51:bf:33:96:18:1e:10:88:38:a5:b3: 0a:db:74:13 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE2AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA4MjYw NTI1MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2MzQ5MjY3MkYzRjQ2 OEMyRjIzMERGNTAyREJDRjAxRjBDNDE0NEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMIZStEroElDj+IluW1xycrUVI57f/JW21TgsyD2ZtemgrFr95 HoDzQ2fLdPqeER5S1FaJ4sZoX1cgCsjBp99gH49UR2DxjSVpBR/dqpRhFk3sKVVK AiRsmtwLwZfZY9NwdmDl20rmJIKAqgVW478flmNs9HwkJLH9ZiR2SNje/iuavVEw 5ttDqf75Qd3Z09klGiqU+kET77XuPVjiCWb/92C9U021fMKu0M8E2AOGyLSr7UF+ DFDDiHbRht3AnO+5PEnndb8p/F+Ip8VhZzjQ2AGuyCtx2J6FILFfShYKOkfqOTpJ BqfFExIz8NGaUy6ty2eXomeJO9d9R/kFSx/3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUBjSSZy8/RowvIw31AtvPAfDEFEwwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9CalNTWnk4X1Jvd3ZJdzMxQXR2 UEFmREVGRXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vY MA0GCSqGSIb3DQEBCwUAA4IBAQCJhYj9pw0OVYARRh53W2TnlYk6PmMFJi7+bcTX X6FwuBo3bo3akYP7IwvzppssOAR50U8nB3TDJmfyHGLpgj1fD6Bp4xW4A/C36a2a YaFSpjjTtDylcT+YIji/Ljffw6pqmETCs6/hLnRJuLH89EBZdbOWF60hGJMefMmt m/aa2w41qkdY6m/NRzoOnr/xqicXCXMbFRlvCDfQzeUvi98DsHsJffVzrGh81aHg 37ZgNCC07ZtlfNt0FAlw2OrDIYJjGnR+4wPt3jN/5AiMqGKp0/1pbsjblaOKjCS6 1Gpp3tXaYjv24f6tei/MruI5eBI3Ub8zlhgeEIg4pbMK23QT -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org