$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/jvROaNlwxzy_43ho6UyKXmDAaEA.roa File: jvROaNlwxzy_43ho6UyKXmDAaEA.roa (raw, json) Hash identifier: y3KRxdnVwVVmlyOGx6qMz7gPRxIAzDMebhd/V3US04s= Subject key identifier: 8E:F4:4E:68:D9:70:C7:3C:BF:E3:78:68:E9:4C:8A:5E:60:C0:68:40 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 136B Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/jvROaNlwxzy_43ho6UyKXmDAaEA.roa Signing time: Mon 26 Aug 2024 05:25:34 +0000 ROA not before: Mon 26 Aug 2024 05:25:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 202525 IP address blocks: 103.123.217.0/24 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4971 (0x136b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Aug 26 05:25:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8EF44E68D970C73CBFE37868E94C8A5E60C06840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:64:50:2c:a4:37:0f:83:9f:c9:6e:7b:f9:1f: 79:05:e8:9f:ea:5e:33:81:73:e7:a4:98:f3:9f:96: 50:ac:e2:a5:29:4b:f0:1b:60:c6:e7:72:1b:53:45: a7:75:d9:e4:0a:86:e0:36:19:3d:d7:dc:14:04:19: 66:16:cb:72:96:ba:30:fa:07:6b:af:02:22:c4:76: c1:aa:7c:23:99:40:0d:0e:ae:e5:47:d9:56:12:ed: 84:1f:d6:c6:1d:41:52:b5:a0:51:43:ea:b8:62:6c: 5c:d2:6f:bb:7c:1b:c7:e5:4e:79:23:de:c6:f0:30: c2:8e:2a:fa:c9:7b:00:a5:6c:33:ec:e1:a6:7c:93: df:4f:a9:7f:64:cd:24:30:2f:f3:38:a1:d4:bd:64: 3d:66:09:3d:0c:55:4f:95:2c:ed:df:82:a1:9a:84: dc:1e:fb:3c:8e:7e:29:99:c3:23:7c:a5:cc:f4:4a: c2:ac:3f:6b:27:54:98:b7:6a:fa:5b:9c:b8:c4:f9: c2:a1:56:6c:a3:b1:14:50:f4:31:ad:8c:e7:69:76: 89:18:73:aa:2b:7b:19:43:59:92:9f:4b:77:f8:cf: e0:0a:35:58:0d:d2:fc:d5:42:38:fe:29:fc:25:11: 3f:a3:b2:18:fd:e0:56:8a:c5:32:f4:9e:fd:be:d0: a8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:F4:4E:68:D9:70:C7:3C:BF:E3:78:68:E9:4C:8A:5E:60:C0:68:40 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/jvROaNlwxzy_43ho6UyKXmDAaEA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.217.0/24 Signature Algorithm: sha256WithRSAEncryption 77:c2:5f:b9:13:5a:46:ce:cb:64:c3:f0:b5:96:c4:2b:a1:7d: 23:de:5f:3a:04:af:16:28:bf:41:d9:e5:98:26:60:60:d2:55: 2e:fe:7f:f3:1f:79:d1:68:ea:c3:a3:c6:db:74:97:1b:ae:3d: 9f:8b:d5:5b:8d:0a:b6:75:05:0b:00:11:56:09:03:6c:99:5d: 90:3c:95:fd:a6:48:c3:f2:1f:1d:5e:34:a8:ef:15:32:ce:4e: 0a:8f:5f:0c:c0:21:23:e4:b6:cf:4b:82:68:8a:ae:fa:f3:27: d6:79:11:42:ba:68:4c:2c:10:17:c0:16:55:5c:1c:32:e8:c2: 81:c8:2f:be:20:8c:6a:57:5e:41:d1:bf:8b:07:77:17:fc:87: 4b:fa:ba:13:7f:62:bf:30:92:30:d1:aa:62:0b:f9:3a:72:9f: 0e:64:f7:53:93:df:00:83:fe:b4:50:b7:ae:d0:14:aa:df:53: 35:cf:b6:b3:3d:0f:cc:01:a0:04:5b:09:9c:12:61:46:40:04: 4a:90:30:94:7b:f0:0a:f4:55:22:6d:2d:aa:15:e1:9d:e3:bc: 88:e4:dd:b4:78:f7:3b:92:66:d2:39:bd:3e:13:ad:f9:c8:ab: f6:73:3d:c9:87:a1:2e:1b:38:c0:7f:81:7b:a7:c7:2e:cb:79: fa:c9:21:8e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICE2swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDA4MjYw NTI1MzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFRjQ0RTY4RDk3MEM3 M0NCRkUzNzg2OEU5NEM4QTVFNjBDMDY4NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpZFAspDcPg5/Jbnv5H3kF6J/qXjOBc+ekmPOfllCs4qUpS/Ab YMbnchtTRad12eQKhuA2GT3X3BQEGWYWy3KWujD6B2uvAiLEdsGqfCOZQA0OruVH 2VYS7YQf1sYdQVK1oFFD6rhibFzSb7t8G8flTnkj3sbwMMKOKvrJewClbDPs4aZ8 k99PqX9kzSQwL/M4odS9ZD1mCT0MVU+VLO3fgqGahNwe+zyOfimZwyN8pcz0SsKs P2snVJi3avpbnLjE+cKhVmyjsRRQ9DGtjOdpdokYc6orexlDWZKfS3f4z+AKNVgN 0vzVQjj+KfwlET+jshj94FaKxTL0nv2+0KgRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUjvROaNlwxzy/43ho6UyKXmDAaEAwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9qdlJPYU5sd3h6eV80M2hvNlV5 S1htREFhRUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ3vZ MA0GCSqGSIb3DQEBCwUAA4IBAQB3wl+5E1pGzstkw/C1lsQroX0j3l86BK8WKL9B 2eWYJmBg0lUu/n/zH3nRaOrDo8bbdJcbrj2fi9VbjQq2dQULABFWCQNsmV2QPJX9 pkjD8h8dXjSo7xUyzk4Kj18MwCEj5LbPS4Joiq768yfWeRFCumhMLBAXwBZVXBwy 6MKByC++IIxqV15B0b+LB3cX/IdL+roTf2K/MJIw0apiC/k6cp8OZPdTk98Ag/60 ULeu0BSq31M1z7azPQ/MAaAEWwmcEmFGQARKkDCUe/AK9FUibS2qFeGd47yI5N20 ePc7kmbSOb0+E635yKv2cz3Jh6EuGzjAf4F7p8cuy3n6ySGO -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:13 2024 by rpki-client on console-fra.rpki-client.org