$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/3NeF_ln-VnMZmc-hCBb5zzihrZs.roa File: 3NeF_ln-VnMZmc-hCBb5zzihrZs.roa (raw, json) Hash identifier: ++zJk4Pfd3pzUKelLn1snr8tEUMl905IsBFn8PeMo/c= Subject key identifier: DC:D7:85:FE:59:FE:56:73:19:99:CF:A1:08:16:F9:CF:38:A1:AD:9B Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Certificate serial: 0C5A Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/3NeF_ln-VnMZmc-hCBb5zzihrZs.roa Signing time: Mon 26 Aug 2024 05:27:40 +0000 ROA not before: Mon 26 Aug 2024 05:27:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131590 IP address blocks: 103.227.224.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3162 (0xc5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Validity Not Before: Aug 26 05:27:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DCD785FE59FE56731999CFA10816F9CF38A1AD9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:98:da:d7:b3:5a:a0:61:a2:5d:f2:e2:66:39: 9d:1c:03:97:9e:d5:a0:a8:ea:28:40:e9:4a:f6:e2: 87:37:57:75:30:54:bb:67:7c:58:43:03:1f:c9:11: f9:9a:94:b9:ba:3f:da:43:f5:85:b2:a3:86:b4:ba: f7:a3:f3:5f:6b:a7:b3:54:35:e3:7f:f7:6f:56:f7: ec:ef:64:84:3b:8a:c6:79:38:48:4b:af:cc:f5:21: 28:72:b8:f1:73:8e:0c:51:02:2c:78:bc:c5:29:fe: 41:92:a7:d1:af:7f:0c:ed:38:5d:c0:f0:c5:1a:f5: 80:07:2c:69:bc:5a:1d:49:16:95:a1:65:58:4d:55: bf:56:59:a6:66:a0:1b:f3:a6:02:7b:20:00:d6:c2: 19:42:23:3f:70:57:e0:e3:6b:49:fc:bc:b9:32:9f: 3f:f5:5e:fe:e0:ae:0e:f6:69:b2:ed:45:d3:9c:d6: 76:f4:ba:92:d0:34:24:e3:13:75:93:21:3f:3c:26: 5f:8a:fa:29:ed:ee:58:b5:db:14:8c:bf:74:4c:48: 37:36:27:a0:2e:0f:a4:93:f9:39:30:76:2a:8e:8f: 01:79:60:26:74:14:d8:9f:b7:b1:ef:f3:51:5a:19: 0c:e1:14:a4:68:d5:e2:61:47:68:7f:ce:d6:2e:6d: f0:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:D7:85:FE:59:FE:56:73:19:99:CF:A1:08:16:F9:CF:38:A1:AD:9B X509v3 Authority Key Identifier: keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/3NeF_ln-VnMZmc-hCBb5zzihrZs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.227.224.0/23 Signature Algorithm: sha256WithRSAEncryption d3:20:60:22:d3:21:ec:6f:04:29:8a:d5:7f:fb:7a:4f:bb:70: 52:44:cd:78:9d:fd:b2:71:dd:6d:85:6d:fd:53:17:71:99:02: 1e:fa:63:37:de:ac:3e:8c:40:80:c2:81:b6:b4:d7:4c:dd:c2: e7:de:dc:85:c8:83:a1:63:69:4d:7b:91:c3:98:29:1f:78:d5: 07:b3:14:c5:5d:86:04:c7:33:4f:26:32:ff:0f:01:52:73:09: 46:e1:8c:01:6b:8d:a0:d8:94:46:56:26:2b:30:5f:bc:0c:8e: 35:99:99:59:67:79:f1:71:9a:3c:b2:99:91:dc:fb:fb:e6:a8: 4b:26:c7:57:d2:4e:66:fd:18:c8:ef:5a:db:ce:82:c4:da:e0: d7:65:b0:aa:8f:c3:81:0d:a6:da:0b:0d:b5:74:66:6a:2f:5f: 79:98:22:c4:fc:37:bc:7a:09:66:2c:cc:8f:f8:b9:12:6f:7e: 40:ed:2b:06:76:d1:ca:e3:31:6f:d9:a8:98:77:f2:b4:0d:03: 2b:a5:7f:1a:1a:12:af:3f:c4:4e:46:d8:fd:ba:20:12:4f:bc: fa:7a:58:af:af:fa:f6:ca:42:e9:46:47:36:06:2e:72:64:3e: ab:8b:27:87:8a:e2:3e:68:dc:6f:f5:ea:dc:53:97:8d:2d:fa: 2f:55:b8:72 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDFowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4 MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yNDA4MjYw NTI3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDRDc4NUZFNTlGRTU2 NzMxOTk5Q0ZBMTA4MTZGOUNGMzhBMUFEOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWmNrXs1qgYaJd8uJmOZ0cA5ee1aCo6ihA6Ur24oc3V3UwVLtn fFhDAx/JEfmalLm6P9pD9YWyo4a0uvej819rp7NUNeN/929W9+zvZIQ7isZ5OEhL r8z1IShyuPFzjgxRAix4vMUp/kGSp9GvfwztOF3A8MUa9YAHLGm8Wh1JFpWhZVhN Vb9WWaZmoBvzpgJ7IADWwhlCIz9wV+Dja0n8vLkynz/1Xv7grg72abLtRdOc1nb0 upLQNCTjE3WTIT88Jl+K+int7li12xSMv3RMSDc2J6AuD6ST+TkwdiqOjwF5YCZ0 FNift7Hv81FaGQzhFKRo1eJhR2h/ztYubfDxAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU3NeF/ln+VnMZmc+hCBb5zzihrZswHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0 NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0 S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVENCLzNOZUZfbG4tVm5NWm1jLWhDQmI1enpp aHJacy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn4+AwDQYJ KoZIhvcNAQELBQADggEBANMgYCLTIexvBCmK1X/7ek+7cFJEzXid/bJx3W2Fbf1T F3GZAh76YzferD6MQIDCgba010zdwufe3IXIg6FjaU17kcOYKR941QezFMVdhgTH M08mMv8PAVJzCUbhjAFrjaDYlEZWJiswX7wMjjWZmVlnefFxmjyymZHc+/vmqEsm x1fSTmb9GMjvWtvOgsTa4NdlsKqPw4ENptoLDbV0ZmovX3mYIsT8N7x6CWYszI/4 uRJvfkDtKwZ20crjMW/ZqJh38rQNAyulfxoaEq8/xE5G2P26IBJPvPp6WK+v+vbK QulGRzYGLnJkPquLJ4eK4j5o3G/16txTl40t+i9VuHI= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:45 2024 by rpki-client on console-fra.rpki-client.org