$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa File: RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa (raw, json) Hash identifier: BttQ6CynP32CswJMNujK9AEdOI2l+QrSEBAlO71pp5g= Subject key identifier: 44:24:B4:12:9D:A7:20:6E:52:C7:F0:43:85:A3:9F:3D:E9:F9:09:33 Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 0120 Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa Signing time: Fri 13 Sep 2024 08:19:40 +0000 ROA not before: Fri 13 Sep 2024 08:19:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.123.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 288 (0x120) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Sep 13 08:19:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4424B4129DA7206E52C7F04385A39F3DE9F90933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ae:9e:9f:1b:b7:37:d8:2b:a8:37:89:ec:65: 8b:41:b9:d6:76:61:d3:23:04:32:4f:76:b4:94:b1: ff:54:74:f4:48:24:f0:7b:e0:46:0d:52:8c:85:fc: 5f:40:7d:aa:b7:04:d5:fc:5e:d4:0b:ba:c9:37:38: 07:9f:9d:a0:96:b9:2a:bb:66:dd:ab:11:fb:e7:3e: 4b:c7:55:36:e8:d3:26:7e:e1:cc:1a:d2:73:00:b3: d0:44:74:e6:6e:1a:fa:63:ec:03:18:79:53:de:da: b5:41:88:59:8f:8a:a7:08:ef:b3:a4:f1:e9:40:03: 6c:31:3a:86:3d:9d:1b:fe:b2:19:8a:08:dd:7b:01: de:50:82:59:1a:87:a5:1d:ca:2b:3b:ce:ea:3c:30: b8:e7:80:0e:cc:36:d9:8a:93:80:6f:e0:ea:9e:12: ec:2e:47:f6:78:5b:b2:34:67:4c:a6:ee:c1:e0:41: 6d:e0:82:71:91:c1:ef:f0:1d:ee:11:9c:ba:7d:b6: 39:9e:67:e4:f6:17:99:89:93:78:d1:2f:db:73:1b: 8e:09:81:24:23:6f:b2:ab:27:ab:46:ce:13:e4:8c: 75:3d:bd:7c:ee:d6:e6:80:5a:fb:2e:b0:4d:b8:88: bf:b2:f5:4b:2e:bf:98:bc:dd:9e:e6:12:6b:12:c5: 3d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:24:B4:12:9D:A7:20:6E:52:C7:F0:43:85:A3:9F:3D:E9:F9:09:33 X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/RCS0Ep2nIG5Sx_BDhaOfPen5CTM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.132.0/22 Signature Algorithm: sha256WithRSAEncryption cf:cc:29:f4:b4:03:e7:8c:6a:7f:a3:d9:f9:e6:8a:08:a5:7f: b7:7f:ac:e2:03:90:d3:a3:06:5a:19:d8:ad:b5:44:1b:2f:68: a7:61:41:60:34:af:07:ce:0e:e0:5f:de:43:a2:d4:92:9e:16: 3d:be:87:32:be:01:71:4c:34:c7:a1:af:2f:a8:ce:e1:a1:c6: b1:f7:3f:bc:3c:a5:76:74:21:3e:a1:db:7e:15:88:9c:84:7a: 61:b4:a0:56:b4:88:19:03:4a:99:9d:4b:1a:0b:49:ed:ed:c3: 72:cc:35:be:87:54:90:84:42:88:d0:66:85:b2:0a:8f:83:46: f5:0c:a6:db:d5:fd:4c:78:fd:2f:01:ed:d5:d7:42:0b:62:84: b3:ca:6f:d4:a4:d8:6d:55:68:c9:1b:2b:54:72:76:8f:76:d2: 0d:fc:b3:80:25:d6:f7:e5:55:7a:6f:3d:ca:7d:cf:36:08:fa: da:df:0d:44:31:39:55:36:ff:f9:4c:c7:88:06:c2:a6:13:7a: a9:2f:d6:2b:51:7a:1a:de:bc:42:5f:74:30:93:9a:66:b1:71: 82:a8:24:33:d7:d4:fa:7f:be:b3:67:3c:fa:d2:0a:e9:ae:75: c0:a1:8e:a9:cf:81:3a:31:49:96:52:79:df:ec:09:8d:84:c5: 7c:cc:5a:9f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICASAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNDA5MTMw ODE5NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ0MjRCNDEyOURBNzIw NkU1MkM3RjA0Mzg1QTM5RjNERTlGOTA5MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkrp6fG7c32CuoN4nsZYtBudZ2YdMjBDJPdrSUsf9UdPRIJPB7 4EYNUoyF/F9Afaq3BNX8XtQLusk3OAefnaCWuSq7Zt2rEfvnPkvHVTbo0yZ+4cwa 0nMAs9BEdOZuGvpj7AMYeVPe2rVBiFmPiqcI77Ok8elAA2wxOoY9nRv+shmKCN17 Ad5Qglkah6Udyis7zuo8MLjngA7MNtmKk4Bv4OqeEuwuR/Z4W7I0Z0ym7sHgQW3g gnGRwe/wHe4RnLp9tjmeZ+T2F5mJk3jRL9tzG44JgSQjb7KrJ6tGzhPkjHU9vXzu 1uaAWvsusE24iL+y9Usuv5i83Z7mEmsSxT0lAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQURCS0Ep2nIG5Sx/BDhaOfPen5CTMwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcvUkNTMEVwMm5JRzVTeF9C RGhhT2ZQZW41Q1RNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Amd7hDANBgkqhkiG9w0BAQsFAAOCAQEAz8wp9LQD54xqf6PZ+eaKCKV/t3+s4gOQ 06MGWhnYrbVEGy9op2FBYDSvB84O4F/eQ6LUkp4WPb6HMr4BcUw0x6GvL6jO4aHG sfc/vDyldnQhPqHbfhWInIR6YbSgVrSIGQNKmZ1LGgtJ7e3Dcsw1vodUkIRCiNBm hbIKj4NG9Qym29X9THj9LwHt1ddCC2KEs8pv1KTYbVVoyRsrVHJ2j3bSDfyzgCXW 9+VVem89yn3PNgj62t8NRDE5VTb/+UzHiAbCphN6qS/WK1F6Gt68Ql90MJOaZrFx gqgkM9fU+n++s2c8+tIK6a51wKGOqc+BOjFJllJ53+wJjYTFfMxanw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:39 2024 by rpki-client on console-ams.rpki-client.org