$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/AeSk5rq1wAr9K7pvJfmmMbuOv2A.roa File: AeSk5rq1wAr9K7pvJfmmMbuOv2A.roa (raw, json) Hash identifier: NzWiboIplrpqNMPp47J6nj++/jtk4lewfQl8eX4poMg= Subject key identifier: 01:E4:A4:E6:BA:B5:C0:0A:FD:2B:BA:6F:25:F9:A6:31:BB:8E:BF:60 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CD0 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/AeSk5rq1wAr9K7pvJfmmMbuOv2A.roa Signing time: Mon 26 Aug 2024 05:26:15 +0000 ROA not before: Mon 26 Aug 2024 05:26:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 103.234.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3280 (0xcd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=01E4A4E6BAB5C00AFD2BBA6F25F9A631BB8EBF60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:77:5b:aa:77:13:51:f8:04:aa:5e:14:6e:8e: 91:e9:81:6b:35:cb:8f:0a:6a:40:ce:58:f5:dc:73: cf:5f:c0:4e:7f:32:d0:5e:ff:d2:8b:da:ba:14:9c: 02:b1:36:26:48:4c:65:3f:1f:0e:4b:ab:02:76:fb: fd:17:dd:80:67:71:1b:60:06:ac:75:95:83:d7:1e: 2f:de:01:b2:2a:1c:bf:a2:41:d7:a9:44:64:fa:c0: 65:75:28:91:40:59:7a:23:1e:0f:c2:89:ba:30:a8: a7:a5:3f:2d:cc:1c:17:c3:d1:a9:ea:9c:14:f9:82: 8c:69:41:8f:0e:ca:89:e9:ed:d8:d1:5b:5c:3b:a7: e5:c0:5f:e6:af:bc:f4:05:a8:75:f3:9a:11:2b:5d: ee:d2:13:69:3d:a6:9e:ab:c1:bb:ed:fa:5f:28:89: ad:b5:70:b1:13:11:19:b5:d0:e3:7a:7c:54:7d:ae: 83:7e:f0:d4:37:c2:da:b8:3b:49:32:8e:bb:31:ee: 4f:90:9e:10:53:37:5c:b9:97:0d:3d:e3:d2:05:32: 21:02:1f:e5:54:74:87:4a:45:97:4b:f4:0d:15:cf: c8:2b:f8:61:40:f5:f0:25:fb:fb:f6:04:9b:d0:bc: d2:ef:c2:c5:6e:92:b4:a5:5b:7d:c5:73:0d:c9:52: 82:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:E4:A4:E6:BA:B5:C0:0A:FD:2B:BA:6F:25:F9:A6:31:BB:8E:BF:60 X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/AeSk5rq1wAr9K7pvJfmmMbuOv2A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.204.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:46:2d:48:87:d6:6c:08:01:4e:9e:29:b0:68:e3:6f:1a:6f: 8e:7f:3c:8e:6a:0a:e3:c1:0a:82:cd:70:f5:6f:e9:fd:03:ce: e2:1b:fe:48:cb:2c:9a:a3:8e:76:2d:47:2c:0d:62:9a:09:40: 69:ff:d9:dd:e6:a3:13:52:5f:9a:c4:db:c7:b0:40:e8:92:a0: ad:50:95:e6:3d:79:fb:4b:84:c2:42:33:51:cf:c4:5b:13:22: 0f:e4:75:69:18:30:64:a2:16:81:1f:da:04:56:33:bf:5b:6a: bf:03:e0:85:49:14:b7:fd:3a:ea:61:0e:97:c2:85:72:40:50: 5a:71:70:70:86:6d:18:ee:e6:6a:79:51:64:71:9a:50:6d:49: f2:9e:71:b6:15:d5:19:07:14:ac:ee:87:4d:88:fe:a7:ae:7f: 76:78:7c:27:37:63:22:0d:67:cf:d0:f8:40:2d:24:2b:5b:d1: f1:c7:56:a1:08:73:81:03:9d:61:02:f1:25:b0:da:59:56:fb: be:ef:20:2b:8e:5f:89:5d:65:f8:df:aa:18:e9:74:0c:d8:09: 48:86:50:b4:25:16:44:4a:c2:d8:3d:5b:2e:c1:90:92:01:59: 8d:5d:30:76:56:bb:3f:9b:75:d7:c7:61:f5:66:6a:11:6e:f5: 91:6f:4b:f9 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAxRTRBNEU2QkFCNUMw MEFGRDJCQkE2RjI1RjlBNjMxQkI4RUJGNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDd1uqdxNR+ASqXhRujpHpgWs1y48KakDOWPXcc89fwE5/MtBe /9KL2roUnAKxNiZITGU/Hw5LqwJ2+/0X3YBncRtgBqx1lYPXHi/eAbIqHL+iQdep RGT6wGV1KJFAWXojHg/CibowqKelPy3MHBfD0anqnBT5goxpQY8Oyonp7djRW1w7 p+XAX+avvPQFqHXzmhErXe7SE2k9pp6rwbvt+l8oia21cLETERm10ON6fFR9roN+ 8NQ3wtq4O0kyjrsx7k+QnhBTN1y5lw0949IFMiECH+VUdIdKRZdL9A0Vz8gr+GFA 9fAl+/v2BJvQvNLvwsVukrSlW33Fcw3JUoJ7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUAeSk5rq1wAr9K7pvJfmmMbuOv2AwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9BZVNrNXJxMXdBcjlLN3B2SmZt bU1idU92MkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+rM MA0GCSqGSIb3DQEBCwUAA4IBAQAeRi1Ih9ZsCAFOnimwaONvGm+OfzyOagrjwQqC zXD1b+n9A87iG/5Iyyyao452LUcsDWKaCUBp/9nd5qMTUl+axNvHsEDokqCtUJXm PXn7S4TCQjNRz8RbEyIP5HVpGDBkohaBH9oEVjO/W2q/A+CFSRS3/TrqYQ6XwoVy QFBacXBwhm0Y7uZqeVFkcZpQbUnynnG2FdUZBxSs7odNiP6nrn92eHwnN2MiDWfP 0PhALSQrW9Hxx1ahCHOBA51hAvElsNpZVvu+7yArjl+JXWX436oY6XQM2AlIhlC0 JRZESsLYPVsuwZCSAVmNXTB2Vrs/m3XXx2H1ZmoRbvWRb0v5 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org