$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/WrNo-lKOcx7rrKD74n3tcO5bhus.roa File: WrNo-lKOcx7rrKD74n3tcO5bhus.roa (raw, json) Hash identifier: VcO6iybEFZH7+Wd8gDwxfPoZ9CWJvwcT0eYrKXtgg2s= Subject key identifier: 5A:B3:68:FA:52:8E:73:1E:EB:AC:A0:FB:E2:7D:ED:70:EE:5B:86:EB Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 135A Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/WrNo-lKOcx7rrKD74n3tcO5bhus.roa Signing time: Mon 26 Aug 2024 05:25:30 +0000 ROA not before: Mon 26 Aug 2024 05:25:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 14618 IP address blocks: 103.123.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4954 (0x135a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Aug 26 05:25:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5AB368FA528E731EEBACA0FBE27DED70EE5B86EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d0:6b:40:01:61:d7:95:ab:25:36:2e:80:ae: 33:a7:4c:7c:d5:9d:d6:3b:37:4a:f6:33:76:0a:f9: 63:ee:51:5b:ca:9b:fc:dd:e8:f9:40:8b:42:08:9f: f6:e4:76:87:43:4e:47:4c:4a:de:8b:91:1a:f6:28: ae:03:be:5d:45:52:f2:fb:a8:57:c9:cb:44:8c:90: 46:48:96:fd:57:9f:0b:83:21:b6:65:44:b1:2a:9c: 66:03:60:55:63:c0:64:1c:c0:42:17:a9:59:7d:30: e9:95:6a:1c:b5:8b:5f:1c:2d:2b:83:87:81:6e:8b: fd:69:c2:e2:ef:16:90:dc:85:30:f3:35:57:3b:de: 19:ad:ff:37:d8:e4:0a:c1:4f:5f:9d:fd:5e:2a:32: 7b:18:38:21:d7:9b:f5:cd:a2:4d:8b:6e:6f:ee:00: ea:9b:56:51:f8:a0:46:39:82:ce:11:d1:b4:02:f5: 91:74:e0:01:f5:c4:20:a8:41:75:b9:57:fc:08:e4: 3c:47:49:95:fc:4c:a7:44:6a:3c:cc:32:39:e8:14: cb:0c:2a:45:6d:6e:8e:ee:f7:4f:74:08:5d:9a:76: 99:d9:56:bb:77:65:17:2a:f6:ca:ef:28:69:bb:a2: cf:5e:16:fc:d3:37:a0:67:4a:66:b8:e6:87:a1:05: f4:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:B3:68:FA:52:8E:73:1E:EB:AC:A0:FB:E2:7D:ED:70:EE:5B:86:EB X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/WrNo-lKOcx7rrKD74n3tcO5bhus.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.219.0/24 Signature Algorithm: sha256WithRSAEncryption 19:f8:ad:99:f3:88:65:24:39:ca:63:d4:3b:3c:51:c9:b1:aa: 03:85:08:2d:a0:75:2a:36:cf:0d:48:9a:02:ca:49:75:23:c5: 64:84:68:ab:28:0f:4f:91:69:7c:3b:2e:ac:7b:da:b6:8f:06: e7:32:1d:65:05:c4:bf:a3:a0:4f:73:dc:18:83:d4:b0:25:33: 4b:1c:fb:dc:be:9b:55:90:7b:dc:27:c9:d2:65:b5:8a:80:52: b5:ea:56:a8:75:5f:e1:cd:04:3d:fa:bc:16:d2:67:38:96:98: dd:de:53:6b:ce:70:a6:9a:96:3e:e6:3e:2e:d5:cc:a7:74:e7: ec:34:1d:79:c8:8c:89:a8:29:e5:d6:b9:d9:32:66:71:2e:0e: 4d:f7:c6:b2:9d:6a:4c:08:59:56:9c:55:8a:ba:51:1c:ec:37: 66:94:ad:51:0f:8d:f2:0a:16:f5:ca:fb:1d:16:a5:7a:9e:59: 93:c5:62:3a:83:dd:bd:11:14:26:a1:e4:0a:80:f0:fd:93:03: 0e:23:ff:bf:ed:bc:90:16:6c:33:84:c7:1c:27:c2:d9:0e:f9: f1:08:ee:aa:b6:96:26:5c:6c:b5:03:e8:0a:7a:d7:4e:7a:88: f3:39:70:6c:89:96:f6:92:6d:a3:23:22:e1:e1:58:09:f8:03: 29:70:e9:08 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA4MjYw NTI1MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVBQjM2OEZBNTI4RTcz MUVFQkFDQTBGQkUyN0RFRDcwRUU1Qjg2RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN0GtAAWHXlaslNi6ArjOnTHzVndY7N0r2M3YK+WPuUVvKm/zd 6PlAi0IIn/bkdodDTkdMSt6LkRr2KK4Dvl1FUvL7qFfJy0SMkEZIlv1XnwuDIbZl RLEqnGYDYFVjwGQcwEIXqVl9MOmVahy1i18cLSuDh4Fui/1pwuLvFpDchTDzNVc7 3hmt/zfY5ArBT1+d/V4qMnsYOCHXm/XNok2Lbm/uAOqbVlH4oEY5gs4R0bQC9ZF0 4AH1xCCoQXW5V/wI5DxHSZX8TKdEajzMMjnoFMsMKkVtbo7u9090CF2adpnZVrt3 ZRcq9srvKGm7os9eFvzTN6BnSma45oehBfTxAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUWrNo+lKOcx7rrKD74n3tcO5bhuswHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9Xck5vLWxLT2N4N3JyS0Q3NG4z dGNPNWJodXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vb MA0GCSqGSIb3DQEBCwUAA4IBAQAZ+K2Z84hlJDnKY9Q7PFHJsaoDhQgtoHUqNs8N SJoCykl1I8VkhGirKA9PkWl8Oy6se9q2jwbnMh1lBcS/o6BPc9wYg9SwJTNLHPvc vptVkHvcJ8nSZbWKgFK16laodV/hzQQ9+rwW0mc4lpjd3lNrznCmmpY+5j4u1cyn dOfsNB15yIyJqCnl1rnZMmZxLg5N98aynWpMCFlWnFWKulEc7DdmlK1RD43yChb1 yvsdFqV6nlmTxWI6g929ERQmoeQKgPD9kwMOI/+/7byQFmwzhMccJ8LZDvnxCO6q tpYmXGy1A+gKetdOeojzOXBsiZb2km2jIyLh4VgJ+AMpcOkI -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:17 2024 by rpki-client on console-ams.rpki-client.org