$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDC/jUxkRUlTpRc4BAMGp1NyqxQon60.roa File: jUxkRUlTpRc4BAMGp1NyqxQon60.roa (raw, json) Hash identifier: HKDpSwbj7dz3U66tmvBHs++3mM9W80/cjWXnuVrkw+M= Subject key identifier: 8D:4C:64:45:49:53:A5:17:38:04:03:06:A7:53:72:AB:14:28:9F:AD Certificate issuer: /CN=063F818DACB171B835415ABD278993922F3CDC5D Certificate serial: 0135 Authority key identifier: 06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/jUxkRUlTpRc4BAMGp1NyqxQon60.roa Signing time: Mon 26 Aug 2024 05:27:45 +0000 ROA not before: Mon 26 Aug 2024 05:27:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 201217 IP address blocks: 103.220.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=063F818DACB171B835415ABD278993922F3CDC5D Validity Not Before: Aug 26 05:27:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D4C64454953A51738040306A75372AB14289FAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:20:01:5b:5e:73:10:b2:bd:20:f0:2a:97:c4: a8:24:4d:5f:ee:68:3d:04:a8:4f:30:af:96:6b:ce: c9:11:82:74:89:ca:b2:c9:1f:61:b3:6f:df:9c:63: fe:89:74:02:44:b6:d9:59:5d:23:62:7e:8d:bf:c5: 1b:24:97:bd:cc:e2:21:8e:1a:9e:af:bf:40:d2:7f: 0a:c2:41:87:82:46:5e:35:df:84:52:56:7a:64:7a: 66:f0:95:e6:ab:57:c8:3e:b3:07:3e:f9:24:f9:95: dc:6c:25:c5:5d:b0:8a:d4:ce:de:d6:15:e4:67:83: 02:2d:67:ab:f0:c7:a3:c8:90:5e:08:e6:08:55:dc: 6d:89:09:88:c5:7f:48:09:f7:4b:88:94:b3:11:b0: 67:56:2e:8a:0d:07:57:ae:9d:44:17:6c:8d:99:60: 0d:68:85:9b:94:39:3a:ca:30:80:f8:86:45:8b:d0: 76:f0:5a:ae:e8:eb:ca:18:f0:48:92:7b:94:b8:98: 61:17:da:ac:f0:69:8d:a1:90:f0:0e:cd:e1:19:b3: 0b:73:e2:e7:a9:ea:20:e6:94:1e:f3:c4:d8:ca:c2: dc:c6:08:a5:ef:11:f1:62:7d:ab:74:a4:e7:a2:e3: 6f:a9:8e:10:f1:8b:08:a6:7c:7c:9d:17:1c:08:0c: be:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:4C:64:45:49:53:A5:17:38:04:03:06:A7:53:72:AB:14:28:9F:AD X509v3 Authority Key Identifier: keyid:06:3F:81:8D:AC:B1:71:B8:35:41:5A:BD:27:89:93:92:2F:3C:DC:5D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/Bj-Bjayxcbg1QVq9J4mTki883F0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Bj-Bjayxcbg1QVq9J4mTki883F0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDC/jUxkRUlTpRc4BAMGp1NyqxQon60.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.220.218.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:c3:b7:c8:84:e7:8b:32:cc:e7:e9:be:91:5c:2e:37:45:37: af:f8:89:71:25:b3:6a:5c:37:82:e9:0d:02:ad:d3:10:1f:2d: d8:a6:ed:79:87:f7:54:64:30:e2:22:28:36:15:cc:cc:84:e1: 64:a9:56:6b:8b:dd:5a:5e:cb:29:b4:c1:fa:7b:5e:0c:c9:ac: 1f:e7:f9:da:a2:43:4f:48:1d:66:89:10:d6:20:ea:ce:93:41: 1e:ba:b8:f8:77:11:f6:c4:a6:03:92:50:02:69:38:83:51:7d: 30:9c:a6:63:4a:f2:fc:b5:20:ff:52:6d:6e:74:d8:ae:92:ae: d0:b2:38:98:0d:1c:01:f9:d2:26:36:cd:05:49:e2:23:59:9c: df:07:7f:d3:b5:4d:d2:a8:a9:54:28:9c:c5:bf:de:ad:f9:11: d1:a6:bb:67:a9:8f:74:87:6b:a4:ec:67:f6:01:f1:d5:de:66: 84:1f:57:f2:3b:c3:1f:ce:2f:36:24:c8:8c:2c:24:03:6c:2e: 97:85:9a:cd:0a:ca:41:8c:ad:2c:ad:a6:8c:ae:2f:40:59:2f: c3:be:5b:33:82:7e:4b:26:20:02:2c:68:4e:d9:c5:1f:77:d3: fb:24:aa:e3:fa:6d:08:56:fe:b4:a7:92:19:4e:cf:de:e1:71: 9e:e0:22:30 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDYz RjgxOERBQ0IxNzFCODM1NDE1QUJEMjc4OTkzOTIyRjNDREM1RDAeFw0yNDA4MjYw NTI3NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhENEM2NDQ1NDk1M0E1 MTczODA0MDMwNkE3NTM3MkFCMTQyODlGQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiIAFbXnMQsr0g8CqXxKgkTV/uaD0EqE8wr5ZrzskRgnSJyrLJ H2Gzb9+cY/6JdAJEttlZXSNifo2/xRskl73M4iGOGp6vv0DSfwrCQYeCRl4134RS VnpkembwlearV8g+swc++ST5ldxsJcVdsIrUzt7WFeRngwItZ6vwx6PIkF4I5ghV 3G2JCYjFf0gJ90uIlLMRsGdWLooNB1eunUQXbI2ZYA1ohZuUOTrKMID4hkWL0Hbw Wq7o68oY8EiSe5S4mGEX2qzwaY2hkPAOzeEZswtz4uep6iDmlB7zxNjKwtzGCKXv EfFifat0pOei42+pjhDxiwimfHydFxwIDL4lAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUjUxkRUlTpRc4BAMGp1NyqxQon60wHwYDVR0jBBgwFoAUBj+Bjayxcbg1QVq9 J4mTki883F0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVERDL0Jq LUJqYXl4Y2JnMVFWcTlKNG1Ua2k4ODNGMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev QmotQmpheXhjYmcxUVZxOUo0bVRraTg4M0YwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVERDL2pVeGtSVWxUcFJjNEJBTUdwMU55cXhR b242MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn3NowDQYJ KoZIhvcNAQELBQADggEBAIzDt8iE54syzOfpvpFcLjdFN6/4iXEls2pcN4LpDQKt 0xAfLdim7XmH91RkMOIiKDYVzMyE4WSpVmuL3Vpeyym0wfp7XgzJrB/n+dqiQ09I HWaJENYg6s6TQR66uPh3EfbEpgOSUAJpOINRfTCcpmNK8vy1IP9SbW502K6SrtCy OJgNHAH50iY2zQVJ4iNZnN8Hf9O1TdKoqVQonMW/3q35EdGmu2epj3SHa6TsZ/YB 8dXeZoQfV/I7wx/OLzYkyIwsJANsLpeFms0KykGMrSytpoyuL0BZL8O+WzOCfksm IAIsaE7ZxR930/skquP6bQhW/rSnkhlOz97hcZ7gIjA= -----END CERTIFICATE-----Generated at Fri Nov 22 08:22:26 2024 by rpki-client on console-fra.rpki-client.org