$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/xedW4iKso6LuvrEHP_2sgw-T3GA.roa File: xedW4iKso6LuvrEHP_2sgw-T3GA.roa (raw, json) Hash identifier: /FiKctAooLy1bvV+1xwNpyWlwz+PCJd+kO+siaBD9nw= Subject key identifier: C5:E7:56:E2:22:AC:A3:A2:EE:BE:B1:07:3F:FD:AC:83:0F:93:DC:60 Certificate issuer: /CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Certificate serial: 010E Authority key identifier: 02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/xedW4iKso6LuvrEHP_2sgw-T3GA.roa Signing time: Mon 26 Aug 2024 05:25:37 +0000 ROA not before: Mon 26 Aug 2024 05:25:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.208.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0264A41A741E5F00AED2BD7E4A7A42F5B1D758D5 Validity Not Before: Aug 26 05:25:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C5E756E222ACA3A2EEBEB1073FFDAC830F93DC60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:51:71:5a:70:44:20:aa:84:79:27:9a:fc:c0: be:25:ef:cd:ce:48:68:48:d5:d8:13:95:9e:d0:79: 1d:ed:74:aa:60:5c:84:e1:e4:5b:e9:d4:07:f2:69: ef:3b:50:d8:6a:0a:c5:ed:c5:fc:6b:d0:a4:2f:99: 79:02:0b:8d:79:a3:d6:9c:38:11:d3:96:ef:cf:b1: 86:65:5e:5c:32:e4:ae:64:4e:d1:d1:3a:e2:ce:30: 22:7b:99:e0:27:e1:8b:42:66:21:cc:2f:15:1f:e2: 0b:e0:b2:98:a1:91:a8:10:38:c4:d4:cc:ff:e9:6e: c7:3f:a3:6b:c0:79:1d:cb:31:df:66:46:a9:a1:72: 5e:c8:a5:98:7d:a1:b2:2e:2f:39:6d:9d:b1:de:99: c0:d3:b9:73:da:5e:4e:8c:f1:26:24:7a:65:b1:a8: 5a:24:a2:83:cf:8d:c8:6d:c5:a3:b6:56:0d:85:4b: 5b:88:6c:2f:24:b9:2c:15:94:74:b2:d1:b7:25:d2: 92:4a:39:cc:9a:44:bf:e9:df:f1:ab:3d:93:96:7e: fd:bc:43:98:de:fe:5d:bd:46:ac:19:bc:a2:c2:23: 97:4e:34:fd:52:85:42:14:95:51:65:7a:39:1e:e0: 64:1c:11:21:15:e7:7d:87:27:ab:b3:15:8b:77:4a: cf:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:E7:56:E2:22:AC:A3:A2:EE:BE:B1:07:3F:FD:AC:83:0F:93:DC:60 X509v3 Authority Key Identifier: keyid:02:64:A4:1A:74:1E:5F:00:AE:D2:BD:7E:4A:7A:42:F5:B1:D7:58:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/AmSkGnQeXwCu0r1-SnpC9bHXWNU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AmSkGnQeXwCu0r1-SnpC9bHXWNU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SDCL-TW/xedW4iKso6LuvrEHP_2sgw-T3GA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.208.196.0/23 Signature Algorithm: sha256WithRSAEncryption 02:b6:5e:6b:7e:e1:19:f2:2b:be:2e:a4:e5:ba:ee:24:13:73: c7:eb:6a:a3:ea:ac:4f:1d:70:50:68:9f:66:7a:fc:9f:3b:7b: c6:ac:8d:16:41:a5:58:bf:c3:d0:07:78:92:33:09:93:c1:59: b7:00:d2:da:86:58:c4:d1:17:97:eb:fe:9f:a2:d3:75:c2:e8: 3d:d0:73:c7:0b:3c:c4:af:53:d5:fb:19:14:25:a2:50:b2:47: ac:d3:79:ca:c6:00:2f:bd:82:6f:06:c1:50:2a:1b:6c:cc:93: 5e:e3:25:3a:86:58:5b:b6:83:c8:b5:bb:5f:00:30:0b:5e:d7: 5c:8a:06:35:e8:98:2b:2f:6f:af:d1:9e:54:1e:89:65:bd:36: b2:6c:ee:99:11:88:be:fe:f1:0a:72:f7:dd:98:12:57:c0:55: fc:47:9c:b6:7b:38:28:7b:75:e2:52:20:e1:48:62:c2:3b:35: 9e:ec:76:79:22:79:d8:16:74:b7:f1:ae:99:85:8c:0b:9a:42: d9:b6:07:64:d0:06:f9:58:cf:19:8a:18:8f:4e:14:2b:55:90: 6a:8a:7b:92:f1:86:b1:19:8e:2f:cc:79:20:b7:2a:45:fe:cb: a8:04:ed:a3:e1:e1:a5:83:43:78:5c:20:87:d1:3f:8c:9f:3d: 6e:25:89:c7 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDI2 NEE0MUE3NDFFNUYwMEFFRDJCRDdFNEE3QTQyRjVCMUQ3NThENTAeFw0yNDA4MjYw NTI1MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1RTc1NkUyMjJBQ0Ez QTJFRUJFQjEwNzNGRkRBQzgzMEY5M0RDNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAUXFacEQgqoR5J5r8wL4l783OSGhI1dgTlZ7QeR3tdKpgXITh 5Fvp1Afyae87UNhqCsXtxfxr0KQvmXkCC415o9acOBHTlu/PsYZlXlwy5K5kTtHR OuLOMCJ7meAn4YtCZiHMLxUf4gvgspihkagQOMTUzP/pbsc/o2vAeR3LMd9mRqmh cl7IpZh9obIuLzltnbHemcDTuXPaXk6M8SYkemWxqFokooPPjchtxaO2Vg2FS1uI bC8kuSwVlHSy0bcl0pJKOcyaRL/p3/GrPZOWfv28Q5je/l29RqwZvKLCI5dONP1S hUIUlVFlejke4GQcESEV532HJ6uzFYt3Ss9xAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxedW4iKso6LuvrEHP/2sgw+T3GAwHwYDVR0jBBgwFoAUAmSkGnQeXwCu0r1+ SnpC9bHXWNUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0RDTC1U Vy9BbVNrR25RZVh3Q3UwcjEtU25wQzliSFhXTlUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FtU2tHblFlWHdDdTByMS1TbnBDOWJIWFdOVS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NEQ0wtVFcveGVkVzRpS3NvNkx1dnJF SFBfMnNndy1UM0dBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfQxDANBgkqhkiG9w0BAQsFAAOCAQEAArZea37hGfIrvi6k5bruJBNzx+tqo+qs Tx1wUGifZnr8nzt7xqyNFkGlWL/D0Ad4kjMJk8FZtwDS2oZYxNEXl+v+n6LTdcLo PdBzxws8xK9T1fsZFCWiULJHrNN5ysYAL72CbwbBUCobbMyTXuMlOoZYW7aDyLW7 XwAwC17XXIoGNeiYKy9vr9GeVB6JZb02smzumRGIvv7xCnL33ZgSV8BV/Eectns4 KHt14lIg4Uhiwjs1nux2eSJ52BZ0t/GumYWMC5pC2bYHZNAG+VjPGYoYj04UK1WQ aop7kvGGsRmOL8x5ILcqRf7LqATto+HhpYNDeFwgh9E/jJ89biWJxw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:39 2024 by rpki-client on console-ams.rpki-client.org