$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/OmdASh_dKW8oRD92SCGLcywyX_8.roa File: OmdASh_dKW8oRD92SCGLcywyX_8.roa (raw, json) Hash identifier: VrqA6H/tsLKr3fLXrdIgD+7L6WAozfwbD2DTXprYTzo= Subject key identifier: 3A:67:40:4A:1F:DD:29:6F:28:44:3F:76:48:21:8B:73:2C:32:5F:FF Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E Certificate serial: 0C5F Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/OmdASh_dKW8oRD92SCGLcywyX_8.roa Signing time: Mon 26 Aug 2024 05:28:00 +0000 ROA not before: Mon 26 Aug 2024 05:28:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20473 IP address blocks: 103.129.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 06:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E Validity Not Before: Aug 26 05:28:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3A67404A1FDD296F28443F7648218B732C325FFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:da:ac:5c:49:33:0f:72:60:69:a4:d8:10:f7: 03:2e:63:cc:99:44:b1:b2:db:21:a1:f7:8d:0b:56: e2:0d:00:3a:3a:b2:15:04:e8:80:0f:1a:b6:fb:de: 2f:6f:a8:31:41:65:47:63:1b:43:a4:1b:b0:d4:7e: 0e:f7:af:aa:48:91:6a:30:95:7e:ec:75:68:e1:b8: 6a:8c:a9:ab:8c:4e:7c:6e:d4:7b:61:1d:49:c8:bd: b9:7a:b7:fa:7f:3f:9a:10:5b:01:bd:77:bb:7a:d8: 75:67:4d:6f:9f:52:c8:bf:38:9b:a6:e1:2e:2a:37: f6:cf:85:53:50:bc:e9:0a:b0:fb:4d:b6:f9:b0:a3: 97:e0:38:e5:3c:10:93:71:62:c6:67:f3:6f:ea:79: ea:8e:44:08:9f:c9:54:37:73:11:4c:15:f6:d0:ce: 8e:fc:00:d4:1e:c9:ae:d6:78:0e:2f:59:14:d4:a3: 55:fe:71:d9:8d:e1:88:ff:c0:90:68:af:57:71:8a: 97:11:05:56:3d:94:af:f5:f6:09:16:f3:3c:ef:5a: a0:4f:29:1b:f5:89:f4:ca:e0:6e:24:74:69:9c:6e: b4:9b:a1:5d:9b:a0:94:fd:77:ed:5a:9b:ea:75:ff: fb:40:56:df:96:67:36:b0:c7:19:a9:4d:c4:a2:41: 83:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:67:40:4A:1F:DD:29:6F:28:44:3F:76:48:21:8B:73:2C:32:5F:FF X509v3 Authority Key Identifier: keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/OmdASh_dKW8oRD92SCGLcywyX_8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.129.147.0/24 Signature Algorithm: sha256WithRSAEncryption 26:b6:92:88:58:03:8b:ef:18:0f:a4:6e:fe:b3:0f:48:4b:23: f7:39:29:c7:c4:9f:ad:1f:70:b2:51:ff:6e:77:22:d4:6f:a6: 40:f4:c4:77:91:22:48:61:98:3d:98:2d:17:7b:01:52:ae:59: 3d:6d:a0:d0:f8:70:18:23:20:f3:b4:f3:59:25:17:a2:b9:60: 63:0f:46:96:be:36:75:f7:df:b3:dc:48:41:ab:97:94:7c:68: ac:c2:32:97:69:a2:3a:32:0f:65:b9:ee:51:7a:28:32:95:f5: 05:82:dc:a0:fe:45:ca:ee:42:44:3b:37:5e:7e:3c:69:24:8f: 06:d8:fd:f0:5f:a8:a7:a8:e7:58:fc:e5:56:4f:71:75:8c:07: 03:9a:b9:47:b7:92:f4:bc:08:21:1e:b0:2c:e4:c8:23:7c:43: 67:63:de:19:82:8d:de:9a:6c:d7:c1:97:cb:cf:9b:8e:77:35: 72:a6:4a:e2:ed:f5:2b:6a:20:b6:09:b3:de:e6:e4:20:b7:4e: 19:cc:2f:26:94:d5:14:ac:33:97:4a:e8:03:79:7a:cd:ef:76: 6c:98:3a:cb:d2:a6:b6:18:53:75:c3:c6:26:8a:93:4f:ef:26: 3b:66:88:3c:b1:27:75:6e:94:c6:7b:f3:9b:10:19:d1:83:e1: ef:92:cc:84 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3 MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yNDA4MjYw NTI4MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBNjc0MDRBMUZERDI5 NkYyODQ0M0Y3NjQ4MjE4QjczMkMzMjVGRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDg2qxcSTMPcmBppNgQ9wMuY8yZRLGy2yGh940LVuINADo6shUE 6IAPGrb73i9vqDFBZUdjG0OkG7DUfg73r6pIkWowlX7sdWjhuGqMqauMTnxu1Hth HUnIvbl6t/p/P5oQWwG9d7t62HVnTW+fUsi/OJum4S4qN/bPhVNQvOkKsPtNtvmw o5fgOOU8EJNxYsZn82/qeeqORAifyVQ3cxFMFfbQzo78ANQeya7WeA4vWRTUo1X+ cdmN4Yj/wJBor1dxipcRBVY9lK/19gkW8zzvWqBPKRv1ifTK4G4kdGmcbrSboV2b oJT9d+1am+p1//tAVt+WZzawxxmpTcSiQYMrAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUOmdASh/dKW8oRD92SCGLcywyX/8wHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL09tZEFTaF9kS1c4b1JEOTJTQ0dMY3l3 eVhfOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABngZMwDQYJ KoZIhvcNAQELBQADggEBACa2kohYA4vvGA+kbv6zD0hLI/c5KcfEn60fcLJR/253 ItRvpkD0xHeRIkhhmD2YLRd7AVKuWT1toND4cBgjIPO081klF6K5YGMPRpa+NnX3 37PcSEGrl5R8aKzCMpdpojoyD2W57lF6KDKV9QWC3KD+RcruQkQ7N15+PGkkjwbY /fBfqKeo51j85VZPcXWMBwOauUe3kvS8CCEesCzkyCN8Q2dj3hmCjd6abNfBl8vP m453NXKmSuLt9StqILYJs97m5CC3ThnMLyaU1RSsM5dK6AN5es3vdmyYOsvSprYY U3XDxiaKk0/vJjtmiDyxJ3VulMZ785sQGdGD4e+SzIQ= -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:31 2024 by rpki-client on console-fra.rpki-client.org