$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/hVk2Y3ZABkpUuNXulYlGQZtEQYk.roa File: hVk2Y3ZABkpUuNXulYlGQZtEQYk.roa (raw, json) Hash identifier: OWgP1Go7Kj/Xr1vKdejJcsNpMFkJIzs5kkQD+gh02KM= Subject key identifier: 85:59:36:63:76:40:06:4A:54:B8:D5:EE:95:89:46:41:9B:44:41:89 Certificate issuer: /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Certificate serial: 113C Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/hVk2Y3ZABkpUuNXulYlGQZtEQYk.roa Signing time: Mon 26 Aug 2024 05:26:04 +0000 ROA not before: Mon 26 Aug 2024 05:26:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63897 IP address blocks: 103.127.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4412 (0x113c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF Validity Not Before: Aug 26 05:26:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=855936637640064A54B8D5EE958946419B444189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:65:82:b4:5c:2b:55:bc:9d:af:9f:5f:59:b8: 34:3c:f2:3e:3f:a5:37:f1:a5:24:fa:f5:2a:6f:fd: 99:d6:7f:a0:d0:d5:96:72:3f:47:13:ab:c6:16:17: 02:42:aa:bc:6d:53:6a:4c:e2:4e:58:44:73:67:61: e2:97:b9:5c:0f:84:65:b0:3f:78:56:4e:69:3b:98: 8c:b3:11:04:a2:e8:50:e6:29:95:12:bd:43:6b:75: dc:9b:3d:77:ae:1e:9d:c5:94:a5:42:f6:49:95:3e: 58:ea:56:d7:dc:24:21:1b:ad:56:b7:71:32:19:15: a3:38:08:5a:93:57:af:58:f1:12:95:1a:b0:0e:15: eb:e8:12:8e:67:4a:8b:b7:a4:1f:b5:52:6d:b8:c4: 07:ca:c8:29:67:8e:cd:2e:c0:89:f5:9f:7b:0d:47: be:7d:c0:0a:2b:77:7b:f1:1b:b4:ee:71:6d:17:9a: a9:7a:aa:21:ed:40:3a:4f:1c:cf:0c:37:45:db:f9: 2b:02:a3:0d:92:5e:ad:12:c5:2d:f3:28:cb:08:05: dd:80:bd:f0:ab:6e:43:b2:f6:c3:61:f8:87:00:30: 4e:87:f7:74:14:d1:cf:94:ba:ab:10:3e:df:ad:94: f5:78:80:06:b9:0e:ec:cf:a4:cb:41:ab:53:fa:04: 2c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:59:36:63:76:40:06:4A:54:B8:D5:EE:95:89:46:41:9B:44:41:89 X509v3 Authority Key Identifier: keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/hVk2Y3ZABkpUuNXulYlGQZtEQYk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.237.0/24 Signature Algorithm: sha256WithRSAEncryption 75:61:a0:c5:1e:bd:0d:dc:6f:a5:ce:8d:ae:1c:c7:6d:fd:e1: 99:b3:34:c5:7c:d5:5e:ce:83:2f:db:cb:27:2e:b2:6d:ff:39: 5b:73:0f:9a:d1:10:8a:87:90:80:ba:aa:d7:76:79:6f:d9:a2: 67:d2:3f:e3:17:b6:c3:3c:03:da:4f:d1:1b:14:b1:b3:7f:24: e0:1a:f4:7f:a5:44:ee:8a:fb:d1:5c:86:ed:5a:a4:7c:47:9d: 15:a2:7f:e4:75:43:2b:ff:22:f0:87:58:87:62:77:e5:fa:5d: 46:a6:7d:05:c9:4a:50:71:84:96:cd:9d:61:ea:3e:04:57:23: 8c:0d:e5:fa:3f:62:36:69:08:70:e6:f7:34:b8:b7:10:e0:e0: 2a:8b:89:42:38:27:63:1b:b1:e5:b8:79:76:a9:fc:cd:97:f3: ac:e2:f8:4f:71:c1:62:a9:56:28:67:7f:d2:d5:94:af:c0:57: fb:fb:c4:3d:2a:8d:a3:ba:65:4c:ca:f8:19:52:6e:90:1f:b7: 13:ad:88:1c:fc:35:e7:18:83:06:f0:4e:78:f3:10:68:53:83: cd:6c:11:a6:43:a1:6a:44:7b:72:4a:ba:e9:cc:9e:ca:66:15: df:f3:70:e4:f6:6e:51:48:df:9b:72:c7:9b:ba:19:68:86:0d: 55:74:2f:68 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICETwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUQx ODZGNjMxNEQ3QjU3MTNFRkZFQ0ZCOTNFQkMzRTgyMTk3RTJFRjAeFw0yNDA4MjYw NTI2MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1NTkzNjYzNzY0MDA2 NEE1NEI4RDVFRTk1ODk0NjQxOUI0NDQxODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRZYK0XCtVvJ2vn19ZuDQ88j4/pTfxpST69Spv/ZnWf6DQ1ZZy P0cTq8YWFwJCqrxtU2pM4k5YRHNnYeKXuVwPhGWwP3hWTmk7mIyzEQSi6FDmKZUS vUNrddybPXeuHp3FlKVC9kmVPljqVtfcJCEbrVa3cTIZFaM4CFqTV69Y8RKVGrAO FevoEo5nSou3pB+1Um24xAfKyClnjs0uwIn1n3sNR759wAord3vxG7TucW0Xmql6 qiHtQDpPHM8MN0Xb+SsCow2SXq0SxS3zKMsIBd2AvfCrbkOy9sNh+IcAME6H93QU 0c+UuqsQPt+tlPV4gAa5DuzPpMtBq1P6BCwPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhVk2Y3ZABkpUuNXulYlGQZtEQYkwHwYDVR0jBBgwFoAU7RhvYxTXtXE+/+z7 k+vD6CGX4u8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hVTllJ TkcvN1Jodll4VFh0WEUtXy16N2stdkQ2Q0dYNHU4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS83Umh2WXhUWHRYRS1fLXo3ay12RDZDR1g0dTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSFVOWUlORy9oVmsyWTNaQUJrcFV1 Tlh1bFlsR1FadEVRWWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAZ3/tMA0GCSqGSIb3DQEBCwUAA4IBAQB1YaDFHr0N3G+lzo2uHMdt/eGZszTF fNVezoMv28snLrJt/zlbcw+a0RCKh5CAuqrXdnlv2aJn0j/jF7bDPAPaT9EbFLGz fyTgGvR/pUTuivvRXIbtWqR8R50Von/kdUMr/yLwh1iHYnfl+l1Gpn0FyUpQcYSW zZ1h6j4EVyOMDeX6P2I2aQhw5vc0uLcQ4OAqi4lCOCdjG7HluHl2qfzNl/Os4vhP ccFiqVYoZ3/S1ZSvwFf7+8Q9Ko2jumVMyvgZUm6QH7cTrYgc/DXnGIMG8E548xBo U4PNbBGmQ6FqRHtySrrpzJ7KZhXf83Dk9m5RSN+bcsebuhlohg1VdC9o -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org