$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/TVdN8RJq12CJuy2IDZLT7DzVtsk.roa File: TVdN8RJq12CJuy2IDZLT7DzVtsk.roa (raw, json) Hash identifier: 4yBTUJZPvFGMyBaqw+0xYX8RNrdrMaE85p89jugI5GI= Subject key identifier: 4D:57:4D:F1:12:6A:D7:60:89:BB:2D:88:0D:92:D3:EC:3C:D5:B6:C9 Certificate issuer: /CN=DDA2DA33DF9088B68EDC6F74EA8B1C0EEE2E26C1 Certificate serial: 01C5 Authority key identifier: DD:A2:DA:33:DF:90:88:B6:8E:DC:6F:74:EA:8B:1C:0E:EE:2E:26:C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3aLaM9-QiLaO3G906oscDu4uJsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/TVdN8RJq12CJuy2IDZLT7DzVtsk.roa Signing time: Mon 26 Aug 2024 05:26:02 +0000 ROA not before: Mon 26 Aug 2024 05:26:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63902 IP address blocks: 103.116.14.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/3aLaM9-QiLaO3G906oscDu4uJsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/3aLaM9-QiLaO3G906oscDu4uJsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3aLaM9-QiLaO3G906oscDu4uJsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DDA2DA33DF9088B68EDC6F74EA8B1C0EEE2E26C1 Validity Not Before: Aug 26 05:26:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4D574DF1126AD76089BB2D880D92D3EC3CD5B6C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:18:f3:bb:68:78:96:33:67:6c:c4:d8:2e:1d: de:e3:d5:07:2e:7b:9a:c8:02:cc:e5:4e:e3:35:4d: 4b:1e:6f:a3:c4:78:63:e5:29:a9:66:81:79:2b:0b: dd:8e:61:aa:f8:64:4f:84:4f:8f:7c:3c:1a:4e:89: bd:d5:30:de:0a:4e:ae:8c:64:b5:a1:d8:15:1d:61: a1:9e:1d:5d:dc:bf:d9:13:67:db:76:3e:cb:cc:60: a2:28:8f:a9:cf:90:3c:3a:74:4f:a9:56:20:8e:5f: 1b:b3:c1:b9:6f:4f:41:2d:16:94:aa:c4:f1:f8:d4: 56:b6:37:98:a2:1c:b7:91:bb:00:c1:46:31:d3:ca: 73:8a:7f:e8:3a:0f:d6:56:b5:72:f6:25:fd:db:31: d9:12:7d:ad:b6:26:45:73:03:41:f6:c7:e2:2f:26: 27:16:89:f3:57:55:91:bb:90:ab:6b:d6:00:6c:a5: 22:ed:be:37:3c:f3:08:9c:05:a5:f3:1c:51:47:30: 71:7e:85:96:a8:7f:ad:67:75:f9:3a:44:d8:f4:a1: 48:6e:d8:f3:07:8f:66:02:cb:cb:cf:33:f9:21:73: ca:84:49:f7:9c:4c:61:a6:64:1c:29:72:ff:32:ea: 46:4e:c2:79:1f:ce:89:0e:1f:e5:87:11:58:3d:ef: c4:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:57:4D:F1:12:6A:D7:60:89:BB:2D:88:0D:92:D3:EC:3C:D5:B6:C9 X509v3 Authority Key Identifier: keyid:DD:A2:DA:33:DF:90:88:B6:8E:DC:6F:74:EA:8B:1C:0E:EE:2E:26:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/3aLaM9-QiLaO3G906oscDu4uJsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3aLaM9-QiLaO3G906oscDu4uJsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINETEL/TVdN8RJq12CJuy2IDZLT7DzVtsk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.116.14.0/23 Signature Algorithm: sha256WithRSAEncryption b7:6a:b5:c0:7d:a6:04:2f:8f:55:00:94:8b:72:32:27:69:fb: 16:9b:b9:25:f1:67:f8:b2:03:22:5d:19:33:b6:23:8e:3b:ec: 48:0c:18:d4:52:82:7b:81:d1:63:96:34:b6:5c:34:4a:7a:cf: 8c:62:4b:16:83:6f:6d:d7:aa:fd:37:8c:dd:15:d6:26:97:f9: f1:1b:23:10:04:f5:3a:c5:7f:ce:14:17:92:2d:5a:25:d3:ff: 69:4b:64:c2:99:7f:ef:78:d9:be:3a:fd:f8:94:f6:97:98:97: a9:1f:34:ca:c1:e5:31:fc:6e:6a:fd:c9:43:c6:f9:bf:3a:7d: ca:52:c0:c9:58:3e:6a:79:d0:10:e7:59:97:c6:8b:4a:18:ce: 23:f9:90:94:18:8e:92:73:e2:ad:92:2f:b7:14:1f:ba:5e:ae: 26:1d:6b:c6:07:37:fb:50:f0:94:69:3b:cf:b8:d3:fd:13:3d: 98:db:3d:7e:ef:38:91:6b:0c:d3:0f:f7:fc:6e:9f:7c:a7:fd: 73:74:eb:32:3b:5c:b1:23:f4:01:35:4c:10:41:7f:bf:59:56: 0c:82:af:31:ea:03:45:e7:ab:35:48:da:86:cd:d3:73:a7:ca: 3f:af:a0:1d:34:ec:19:ac:7e:4d:f3:34:20:cd:0b:83:55:02: ff:d6:39:05 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRERB MkRBMzNERjkwODhCNjhFREM2Rjc0RUE4QjFDMEVFRTJFMjZDMTAeFw0yNDA4MjYw NTI2MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRENTc0REYxMTI2QUQ3 NjA4OUJCMkQ4ODBEOTJEM0VDM0NENUI2QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOGPO7aHiWM2dsxNguHd7j1Qcue5rIAszlTuM1TUseb6PEeGPl KalmgXkrC92OYar4ZE+ET498PBpOib3VMN4KTq6MZLWh2BUdYaGeHV3cv9kTZ9t2 PsvMYKIoj6nPkDw6dE+pViCOXxuzwblvT0EtFpSqxPH41Fa2N5iiHLeRuwDBRjHT ynOKf+g6D9ZWtXL2Jf3bMdkSfa22JkVzA0H2x+IvJicWifNXVZG7kKtr1gBspSLt vjc88wicBaXzHFFHMHF+hZaof61ndfk6RNj0oUhu2PMHj2YCy8vPM/khc8qESfec TGGmZBwpcv8y6kZOwnkfzokOH+WHEVg978T/AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUTVdN8RJq12CJuy2IDZLT7DzVtskwHwYDVR0jBBgwFoAU3aLaM9+QiLaO3G90 6oscDu4uJsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkVU RUwvM2FMYU05LVFpTGFPM0c5MDZvc2NEdTR1SnNFLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8zYUxhTTktUWlMYU8zRzkwNm9zY0R1NHVKc0UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElORVRFTC9UVmROOFJKcTEyQ0p1 eTJJRFpMVDdEelZ0c2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ3QOMA0GCSqGSIb3DQEBCwUAA4IBAQC3arXAfaYEL49VAJSLcjInafsWm7kl 8Wf4sgMiXRkztiOOO+xIDBjUUoJ7gdFjljS2XDRKes+MYksWg29t16r9N4zdFdYm l/nxGyMQBPU6xX/OFBeSLVol0/9pS2TCmX/veNm+Ov34lPaXmJepHzTKweUx/G5q /clDxvm/On3KUsDJWD5qedAQ51mXxotKGM4j+ZCUGI6Sc+Ktki+3FB+6Xq4mHWvG Bzf7UPCUaTvPuNP9Ez2Y2z1+7ziRawzTD/f8bp98p/1zdOsyO1yxI/QBNUwQQX+/ WVYMgq8x6gNF56s1SNqGzdNzp8o/r6AdNOwZrH5N8zQgzQuDVQL/1jkF -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org