$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SECUNET/Ss00zURaX6Bg-GRCM3F6DcY8iI0.roa File: Ss00zURaX6Bg-GRCM3F6DcY8iI0.roa (raw, json) Hash identifier: VH1aYsw/qkvTYW/9/fOKO0gu99ZD3sYtffcaTPFhJ0A= Subject key identifier: 4A:CD:34:CD:44:5A:5F:A0:60:F8:64:42:33:71:7A:0D:C6:3C:88:8D Certificate issuer: /CN=3F4E063886AD351FF822805AF8D569944B8DE517 Certificate serial: 013E Authority key identifier: 3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/Ss00zURaX6Bg-GRCM3F6DcY8iI0.roa Signing time: Wed 18 Sep 2024 05:20:11 +0000 ROA not before: Wed 18 Sep 2024 05:20:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7538 IP address blocks: 103.198.152.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 318 (0x13e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F4E063886AD351FF822805AF8D569944B8DE517 Validity Not Before: Sep 18 05:20:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4ACD34CD445A5FA060F8644233717A0DC63C888D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:19:f1:64:14:38:a2:2b:9c:ad:e1:dc:35: 11:91:c0:f5:31:52:4e:db:13:ea:68:32:90:90:2f: 3b:c6:9e:66:04:19:46:4d:79:98:e0:a0:9f:b5:a9: 5b:f0:68:c2:c2:c7:ca:3c:59:b0:68:68:ba:d5:b9: c1:fc:24:53:68:28:fa:64:61:45:5f:f8:64:a0:54: d8:6f:5e:4d:6f:10:b3:6e:f4:15:c4:7a:95:5e:2c: ed:fc:68:f6:c0:b5:a5:dc:37:ae:40:d8:9a:82:1b: 3d:5b:33:68:aa:2f:53:19:8c:24:f6:7c:53:a1:ba: b5:03:49:71:8a:c3:5f:d4:0e:6a:93:5b:66:39:02: 48:9f:98:f5:5b:e1:b4:7b:bb:ad:15:72:73:8b:ec: 6f:9f:71:d6:08:d6:8b:20:41:a8:a7:4e:34:0e:f9: 81:bf:c2:9f:8b:98:25:d8:3b:c5:e6:18:94:6d:d5: 42:86:0d:20:9b:60:27:bf:7b:ab:34:72:39:b7:5b: a0:ee:28:b6:43:c9:f5:ce:7a:60:41:96:2e:0d:a9: b0:6e:0b:57:66:69:52:7a:c1:26:aa:73:9c:33:df: 39:9f:2f:5e:4c:7e:30:8a:8b:c4:8b:e1:46:90:58: c3:78:89:25:13:17:cb:c7:22:ab:c6:28:f4:5d:e0: 06:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:CD:34:CD:44:5A:5F:A0:60:F8:64:42:33:71:7A:0D:C6:3C:88:8D X509v3 Authority Key Identifier: keyid:3F:4E:06:38:86:AD:35:1F:F8:22:80:5A:F8:D5:69:94:4B:8D:E5:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/P04GOIatNR_4IoBa-NVplEuN5Rc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P04GOIatNR_4IoBa-NVplEuN5Rc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SECUNET/Ss00zURaX6Bg-GRCM3F6DcY8iI0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.198.152.0/23 Signature Algorithm: sha256WithRSAEncryption 18:30:6a:b2:c4:8a:b2:0d:58:19:64:0f:9a:e3:d0:9f:a1:02: 54:43:55:23:fa:30:8e:29:b4:30:c4:77:52:aa:5c:a0:40:bc: b9:65:a1:79:82:9a:eb:63:2c:45:56:31:e9:dc:47:f9:87:f7: aa:45:8b:f8:fa:4e:f9:da:9d:3f:e6:4b:48:13:49:79:79:8e: 14:8c:08:55:35:2d:16:c3:f5:c9:f3:0d:24:51:8f:1d:bb:b7: f3:74:9c:9b:1e:8d:30:47:92:87:af:f5:8c:c5:99:b5:30:d1: 24:2c:a9:33:fe:3d:bb:94:62:bc:21:41:53:c0:61:d2:46:32: dd:c7:48:7f:bb:b5:a9:9b:ea:63:e2:f1:dc:17:31:60:68:84: a1:92:29:8f:3d:a8:7c:7e:74:4a:77:67:dd:98:36:a5:06:8b: 35:af:4a:16:68:85:e2:63:6d:3d:ea:b3:60:ea:6b:35:a6:10: 8d:56:92:ff:d3:62:f3:96:a1:45:01:0e:8f:8d:38:cc:03:45: af:da:65:03:e3:e9:11:1c:b6:3e:de:f5:cf:7f:11:16:8e:47: 08:11:89:0b:86:37:ea:41:5b:9d:59:75:6f:ed:50:d1:f6:8e: af:04:ac:b2:37:a8:8e:92:e2:40:73:39:70:1a:0b:e0:7d:33: 7f:09:e5:46 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICAT4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y0 RTA2Mzg4NkFEMzUxRkY4MjI4MDVBRjhENTY5OTQ0QjhERTUxNzAeFw0yNDA5MTgw NTIwMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRBQ0QzNENENDQ1QTVG QTA2MEY4NjQ0MjMzNzE3QTBEQzYzQzg4OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7UhnxZBQ4oiucreHcNRGRwPUxUk7bE+poMpCQLzvGnmYEGUZN eZjgoJ+1qVvwaMLCx8o8WbBoaLrVucH8JFNoKPpkYUVf+GSgVNhvXk1vELNu9BXE epVeLO38aPbAtaXcN65A2JqCGz1bM2iqL1MZjCT2fFOhurUDSXGKw1/UDmqTW2Y5 AkifmPVb4bR7u60VcnOL7G+fcdYI1osgQainTjQO+YG/wp+LmCXYO8XmGJRt1UKG DSCbYCe/e6s0cjm3W6DuKLZDyfXOemBBli4NqbBuC1dmaVJ6wSaqc5wz3zmfL15M fjCKi8SL4UaQWMN4iSUTF8vHIqvGKPRd4AYdAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUSs00zURaX6Bg+GRCM3F6DcY8iI0wHwYDVR0jBBgwFoAUP04GOIatNR/4IoBa +NVplEuN5RcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0VDVU5F VC9QMDRHT0lhdE5SXzRJb0JhLU5WcGxFdU41UmMuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1AwNEdPSWF0TlJfNElvQmEtTlZwbEV1TjVSYy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NFQ1VORVQvU3MwMHpVUmFYNkJnLUdS Q00zRjZEY1k4aUkwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfGmDANBgkqhkiG9w0BAQsFAAOCAQEAGDBqssSKsg1YGWQPmuPQn6ECVENVI/ow jim0MMR3UqpcoEC8uWWheYKa62MsRVYx6dxH+Yf3qkWL+PpO+dqdP+ZLSBNJeXmO FIwIVTUtFsP1yfMNJFGPHbu383Scmx6NMEeSh6/1jMWZtTDRJCypM/49u5RivCFB U8Bh0kYy3cdIf7u1qZvqY+Lx3BcxYGiEoZIpjz2ofH50Sndn3Zg2pQaLNa9KFmiF 4mNtPeqzYOprNaYQjVaS/9Ni85ahRQEOj404zANFr9plA+PpERy2Pt71z38RFo5H CBGJC4Y36kFbnVl1b+1Q0faOrwSssjeojpLiQHM5cBoL4H0zfwnlRg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org