$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/xwyQT5Ws3t2bIkl9zOy2Ll5lL5w.roa File: xwyQT5Ws3t2bIkl9zOy2Ll5lL5w.roa (raw, json) Hash identifier: kpTXuGwITsPdlUo14F77+diRNLIZyI786a7+QaM700I= Subject key identifier: C7:0C:90:4F:95:AC:DE:DD:9B:22:49:7D:CC:EC:B6:2E:5E:65:2F:9C Certificate issuer: /CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D Certificate serial: 09A2 Authority key identifier: 0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/xwyQT5Ws3t2bIkl9zOy2Ll5lL5w.roa Signing time: Mon 26 Aug 2024 05:25:50 +0000 ROA not before: Mon 26 Aug 2024 05:25:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 48024 IP address blocks: 103.126.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/C9olxjD4_0bjB7GUzSqtHm0GMx0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/C9olxjD4_0bjB7GUzSqtHm0GMx0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2466 (0x9a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BDA25C630F8FF46E307B194CD2AAD1E6D06331D Validity Not Before: Aug 26 05:25:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C70C904F95ACDEDD9B22497DCCECB62E5E652F9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:25:87:17:e0:d9:66:0d:03:84:17:57:90:5b: 49:cb:b5:57:d1:c8:39:39:cc:2b:88:07:ef:a6:5a: 95:1a:1c:b0:39:3b:12:26:f9:63:31:f0:e7:53:0a: cc:8d:a9:17:54:87:ff:d3:35:07:90:83:3d:0f:75: 7b:9a:88:8a:4e:ce:27:a0:00:2b:a7:10:ac:1c:00: d1:e8:16:3b:56:60:93:36:99:ae:b0:98:7b:12:b0: e6:2c:52:73:0b:53:a0:77:e8:cb:f7:56:cb:12:e1: 7d:f3:65:9b:58:a0:95:35:68:e5:7d:d1:f0:eb:bf: 25:72:5c:24:29:5b:f3:f0:43:4e:ed:1a:af:c8:a5: 19:e3:be:15:50:8a:13:7a:4b:73:09:4b:25:ea:21: 67:ea:f5:96:da:da:b0:8b:cb:eb:6d:82:57:61:92: 61:93:9f:a0:dd:d7:b0:01:0e:55:e8:f2:78:c6:ee: 49:30:57:0e:79:8c:04:56:76:a9:44:60:2a:80:2d: 48:56:63:eb:de:54:1a:35:1d:a1:3e:d7:be:7d:13: 20:53:7a:f6:83:b4:e3:e3:61:fc:b1:d3:79:8b:db: ba:19:39:c9:04:bf:22:84:1f:46:20:32:c0:60:b6: ef:aa:f9:b2:d2:c2:da:9a:91:7f:92:8c:2b:19:f3: 82:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0C:90:4F:95:AC:DE:DD:9B:22:49:7D:CC:EC:B6:2E:5E:65:2F:9C X509v3 Authority Key Identifier: keyid:0B:DA:25:C6:30:F8:FF:46:E3:07:B1:94:CD:2A:AD:1E:6D:06:33:1D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/C9olxjD4_0bjB7GUzSqtHm0GMx0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/C9olxjD4_0bjB7GUzSqtHm0GMx0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHANGFU/xwyQT5Ws3t2bIkl9zOy2Ll5lL5w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.88.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f0:fa:50:0a:9b:3c:d3:0c:ef:17:c5:3e:29:6b:fd:6c:bb: c7:53:2b:24:84:c8:da:7a:ef:6f:28:46:ed:f1:14:ed:6b:4b: 12:52:54:00:9b:e5:ed:e1:05:b4:fe:df:b6:80:84:cf:8e:16: 40:e4:f8:13:32:16:b8:7c:a3:ce:b0:0b:a1:6c:21:cf:53:fd: 0d:06:d3:a1:b0:2e:a9:01:48:d4:fc:c9:55:12:d3:38:60:e4: f3:bc:c4:cd:fc:4c:b5:86:26:f8:52:73:48:e4:cb:a0:98:5a: 68:46:4f:e4:ca:b9:5c:82:3c:45:3e:ff:5d:5c:ac:07:a0:83: 41:64:e4:a6:5a:c9:fd:b6:96:6d:75:53:cc:11:d4:87:37:6a: c3:09:8b:10:13:0a:b0:c3:68:87:f5:83:44:27:6d:c2:a3:51: 14:93:8e:d0:3c:53:52:cd:dc:ce:16:48:56:64:a4:b9:53:ac: 62:d2:d0:3c:ae:00:ff:42:22:e4:51:24:97:4e:06:74:f1:34: b3:13:16:08:c9:12:9d:21:8d:d8:cf:35:10:19:a7:0b:0d:fe: db:6c:cf:4a:35:71:7f:a9:4e:0d:72:0f:75:28:dc:8a:3a:ca: ab:f4:b8:49:a1:89:f3:69:44:cf:98:a8:dd:ad:f0:d1:1c:36: d2:59:59:1d -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCaIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEJE QTI1QzYzMEY4RkY0NkUzMDdCMTk0Q0QyQUFEMUU2RDA2MzMxRDAeFw0yNDA4MjYw NTI1NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM3MEM5MDRGOTVBQ0RF REQ5QjIyNDk3RENDRUNCNjJFNUU2NTJGOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdJYcX4NlmDQOEF1eQW0nLtVfRyDk5zCuIB++mWpUaHLA5OxIm +WMx8OdTCsyNqRdUh//TNQeQgz0PdXuaiIpOziegACunEKwcANHoFjtWYJM2ma6w mHsSsOYsUnMLU6B36Mv3VssS4X3zZZtYoJU1aOV90fDrvyVyXCQpW/PwQ07tGq/I pRnjvhVQihN6S3MJSyXqIWfq9Zba2rCLy+ttgldhkmGTn6Dd17ABDlXo8njG7kkw Vw55jARWdqlEYCqALUhWY+veVBo1HaE+1759EyBTevaDtOPjYfyx03mL27oZOckE vyKEH0YgMsBgtu+q+bLSwtqakX+SjCsZ84ITAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUxwyQT5Ws3t2bIkl9zOy2Ll5lL5wwHwYDVR0jBBgwFoAUC9olxjD4/0bjB7GU zSqtHm0GMx0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hBTkdG VS9DOW9seGpENF8wYmpCN0dVelNxdEhtMEdNeDAuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0M5b2x4akQ0XzBiakI3R1V6U3F0SG0wR014MC5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NIQU5HRlUveHd5UVQ1V3MzdDJiSWts OXpPeTJMbDVsTDV3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd+WDANBgkqhkiG9w0BAQsFAAOCAQEAXvD6UAqbPNMM7xfFPilr/Wy7x1MrJITI 2nrvbyhG7fEU7WtLElJUAJvl7eEFtP7ftoCEz44WQOT4EzIWuHyjzrALoWwhz1P9 DQbTobAuqQFI1PzJVRLTOGDk87zEzfxMtYYm+FJzSOTLoJhaaEZP5Mq5XII8RT7/ XVysB6CDQWTkplrJ/baWbXVTzBHUhzdqwwmLEBMKsMNoh/WDRCdtwqNRFJOO0DxT Us3czhZIVmSkuVOsYtLQPK4A/0Ii5FEkl04GdPE0sxMWCMkSnSGN2M81EBmnCw3+ 22zPSjVxf6lODXIPdSjcijrKq/S4SaGJ82lEz5io3a3w0Rw20llZHQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org