$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/bJb00xs51HmNix5KqVn57fYCL7o.roa File: bJb00xs51HmNix5KqVn57fYCL7o.roa (raw, json) Hash identifier: da3xe1pUUWYTbybVYCxh+noMNMnSvFdufchLG0OWGmc= Subject key identifier: 6C:96:F4:D3:1B:39:D4:79:8D:8B:1E:4A:A9:59:F9:ED:F6:02:2F:BA Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0CD7 Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/bJb00xs51HmNix5KqVn57fYCL7o.roa Signing time: Mon 26 Aug 2024 05:26:17 +0000 ROA not before: Mon 26 Aug 2024 05:26:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 103.234.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3287 (0xcd7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 26 05:26:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6C96F4D31B39D4798D8B1E4AA959F9EDF6022FBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:df:75:84:50:ac:d5:5e:19:24:4e:6a:89:23: 27:be:b9:b0:ea:f1:86:89:e6:bc:4e:27:9f:de:3e: 38:74:39:cd:8d:3e:94:30:e9:27:58:67:02:e1:b0: 08:f3:6a:c0:d2:89:27:34:69:26:cd:a7:6a:c8:6e: 75:45:be:03:63:20:9e:1b:92:e6:fb:84:68:01:e4: a6:de:29:40:cc:b8:3b:e2:ec:f0:1a:42:b7:51:31: 5d:09:7e:2d:23:0b:5b:18:f3:9d:7e:87:8b:9e:99: 7a:69:1d:e3:cb:42:ed:51:df:50:9d:69:22:a1:1b: 04:da:64:6a:b5:cc:7a:97:4d:58:15:44:a3:1d:0d: 28:b0:cd:a9:71:c9:c0:d3:36:c4:b1:b1:dd:54:42: f8:82:b0:ed:fe:18:b7:22:04:77:d9:d6:28:01:13: 77:9f:a8:18:81:7d:03:7f:c9:38:e0:f3:30:16:81: 06:96:4f:84:e0:42:8f:0b:a8:67:95:16:08:81:1c: 30:bb:aa:39:24:fa:6d:38:2c:cd:26:fe:08:02:d6: 15:fb:f5:a6:04:b2:16:e2:a4:74:36:74:40:66:96: 05:10:b7:03:4f:9c:49:53:55:c6:18:a1:13:26:4c: e3:f4:2f:b3:c6:47:a1:10:a3:d7:37:18:f1:ca:63: 1b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:96:F4:D3:1B:39:D4:79:8D:8B:1E:4A:A9:59:F9:ED:F6:02:2F:BA X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/bJb00xs51HmNix5KqVn57fYCL7o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.234.228.0/22 Signature Algorithm: sha256WithRSAEncryption bb:ed:ff:1f:ab:23:3a:7e:50:29:5b:8d:42:19:3b:78:ec:4d: 12:2d:48:28:65:cc:39:c1:a3:c8:ba:24:56:24:d4:0f:5f:4e: 22:84:4a:58:0a:f0:17:92:5e:7d:d7:e0:e0:5d:55:07:e1:81: 18:10:30:c2:3d:a9:07:df:97:f6:56:53:e9:6d:eb:d1:c9:ac: c9:43:2f:85:d3:42:8b:46:fd:31:b0:02:a3:3c:9a:1c:aa:2e: 6e:7f:e1:60:e3:3f:98:0b:e6:4b:5f:4a:ad:42:6b:77:fd:ce: 89:50:2e:6a:ef:8f:30:67:ea:e8:4f:4b:0b:41:58:3b:32:5a: bf:be:4f:9c:ee:38:74:4c:03:ae:93:2f:33:a4:01:84:41:c3: e1:cc:9f:55:1c:61:d3:bc:a5:89:5e:f3:3e:34:c5:6f:c6:90: 3b:9f:ed:97:35:50:ab:7d:33:77:ef:4a:f7:86:a5:dc:e0:8b: c8:d7:dd:1c:2b:a2:da:be:83:af:4d:21:37:a5:83:60:63:17: e5:ff:64:76:12:71:f4:59:81:40:92:a6:51:0b:3d:5c:50:1b: 04:e0:07:4a:29:fa:82:35:3a:05:40:b9:5d:66:46:4d:8d:31: ba:2a:a0:80:63:00:2a:63:66:d2:34:19:68:20:62:3c:7e:02: cc:33:c0:5b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDA4MjYw NTI2MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDOTZGNEQzMUIzOUQ0 Nzk4RDhCMUU0QUE5NTlGOUVERjYwMjJGQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC433WEUKzVXhkkTmqJIye+ubDq8YaJ5rxOJ5/ePjh0Oc2NPpQw 6SdYZwLhsAjzasDSiSc0aSbNp2rIbnVFvgNjIJ4bkub7hGgB5KbeKUDMuDvi7PAa QrdRMV0Jfi0jC1sY851+h4uemXppHePLQu1R31CdaSKhGwTaZGq1zHqXTVgVRKMd DSiwzalxycDTNsSxsd1UQviCsO3+GLciBHfZ1igBE3efqBiBfQN/yTjg8zAWgQaW T4TgQo8LqGeVFgiBHDC7qjkk+m04LM0m/ggC1hX79aYEshbipHQ2dEBmlgUQtwNP nElTVcYYoRMmTOP0L7PGR6EQo9c3GPHKYxv/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUbJb00xs51HmNix5KqVn57fYCL7owHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9iSmIwMHhzNTFIbU5peDVLcVZu NTdmWUNMN28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+rk MA0GCSqGSIb3DQEBCwUAA4IBAQC77f8fqyM6flApW41CGTt47E0SLUgoZcw5waPI uiRWJNQPX04ihEpYCvAXkl591+DgXVUH4YEYEDDCPakH35f2VlPpbevRyazJQy+F 00KLRv0xsAKjPJocqi5uf+Fg4z+YC+ZLX0qtQmt3/c6JUC5q748wZ+roT0sLQVg7 Mlq/vk+c7jh0TAOuky8zpAGEQcPhzJ9VHGHTvKWJXvM+NMVvxpA7n+2XNVCrfTN3 70r3hqXc4IvI190cK6LavoOvTSE3pYNgYxfl/2R2EnH0WYFAkqZRCz1cUBsE4AdK KfqCNToFQLldZkZNjTG6KqCAYwAqY2bSNBloIGI8fgLMM8Bb -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org