$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/HWAz5VsfZMhRPSDro7WHG_qodTM.roa File: HWAz5VsfZMhRPSDro7WHG_qodTM.roa (raw, json) Hash identifier: QnMCwACk1rCxjWeO0jMyXiANrqXHKmXFVcrgKnm+vG4= Subject key identifier: 1D:60:33:E5:5B:1F:64:C8:51:3D:20:EB:A3:B5:87:1B:FA:A8:75:33 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0CC8 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/HWAz5VsfZMhRPSDro7WHG_qodTM.roa Signing time: Mon 26 Aug 2024 05:28:07 +0000 ROA not before: Mon 26 Aug 2024 05:28:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 103.180.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3272 (0xcc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Aug 26 05:28:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1D6033E55B1F64C8513D20EBA3B5871BFAA87533 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d3:96:d4:40:bf:e1:f4:35:ff:ec:d3:83:7a: cf:c5:ff:38:6d:91:ac:15:b1:21:4c:20:f4:bf:85: 4a:17:34:29:34:04:6a:d5:21:23:d7:16:24:75:7b: 21:03:31:82:1c:d4:25:84:18:41:67:db:13:5b:24: 94:05:28:ed:3e:ff:00:e0:d0:b5:c0:5b:56:24:38: d4:77:7f:d0:c7:65:2e:87:fd:0c:f3:18:4d:3c:d5: 37:ea:17:54:95:99:69:6f:ce:2c:14:02:c0:2d:b9: d7:f3:04:23:c9:31:5f:46:fd:2a:f1:7c:63:a2:22: 6b:0b:1c:52:79:c0:ef:06:b9:c0:4f:98:c9:ca:b5: 79:3b:33:ed:99:0a:81:9e:91:3d:e0:5a:12:27:b0: b4:4a:df:fc:7e:20:1f:a9:0b:26:ad:fe:c4:b0:c1: f2:7e:80:2d:a8:43:39:79:be:7b:1c:f2:31:e3:7e: 95:20:6d:5e:b0:94:f7:01:f1:a4:1a:99:2a:85:4e: e5:d6:b5:9f:a5:81:40:6c:11:3a:b7:21:2e:f8:3f: f1:dd:d8:95:b4:c2:55:cd:89:16:36:f0:e4:1d:a4: 01:69:03:27:98:df:d9:b3:5c:0d:11:6a:af:b0:f2: af:45:21:13:58:73:84:5a:13:2c:14:c2:af:82:16: 9b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:60:33:E5:5B:1F:64:C8:51:3D:20:EB:A3:B5:87:1B:FA:A8:75:33 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/HWAz5VsfZMhRPSDro7WHG_qodTM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.180.22.0/23 Signature Algorithm: sha256WithRSAEncryption 89:37:d5:21:c5:87:57:c1:5c:0e:4c:b8:46:75:d7:f5:65:aa: 66:2d:8a:b0:b3:c1:3c:04:b7:9e:25:6e:67:d6:e4:05:c5:43: 07:c2:0a:98:e0:8c:4f:76:f5:74:4e:cf:c8:57:e4:5f:f7:2e: 64:57:98:54:e3:a8:39:1a:66:03:60:e1:34:0a:5c:3b:f1:cf: d6:2e:3e:a7:ed:d6:f7:e5:0d:71:a4:34:c6:45:95:8e:6b:c5: d4:8b:7a:4d:0a:23:f0:d1:86:1e:0c:03:3e:01:bd:52:46:26: fb:35:b0:29:35:ad:a6:ff:9b:33:a8:c7:e8:e4:0a:e4:f5:4e: c5:b0:bf:63:ad:f3:ab:3f:cf:c2:2a:66:70:56:5f:de:a8:c9: bd:ae:bc:f4:c4:0b:6c:03:5d:df:c7:a3:3f:b3:66:0f:19:26: 6b:3c:ef:80:27:6b:52:dc:e3:8b:03:85:d2:f1:71:9a:22:d4: 17:54:b1:47:65:df:28:9b:71:3c:80:44:bd:0d:a0:0d:98:75: ef:c3:08:f3:7c:a9:32:1e:32:c3:d3:ae:cb:57:4e:44:e8:68: 3f:c0:0d:43:a1:ee:b2:93:d7:fd:d0:82:61:bb:bd:32:eb:06: 16:2e:7b:40:85:d5:2c:e7:0c:27:a1:4d:c5:af:d8:7f:61:c1: e0:f8:5a:60 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDMgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDA4MjYw NTI4MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFENjAzM0U1NUIxRjY0 Qzg1MTNEMjBFQkEzQjU4NzFCRkFBODc1MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC505bUQL/h9DX/7NODes/F/zhtkawVsSFMIPS/hUoXNCk0BGrV ISPXFiR1eyEDMYIc1CWEGEFn2xNbJJQFKO0+/wDg0LXAW1YkONR3f9DHZS6H/Qzz GE081TfqF1SVmWlvziwUAsAtudfzBCPJMV9G/SrxfGOiImsLHFJ5wO8GucBPmMnK tXk7M+2ZCoGekT3gWhInsLRK3/x+IB+pCyat/sSwwfJ+gC2oQzl5vnsc8jHjfpUg bV6wlPcB8aQamSqFTuXWtZ+lgUBsETq3IS74P/Hd2JW0wlXNiRY28OQdpAFpAyeY 39mzXA0Raq+w8q9FIRNYc4RaEywUwq+CFpvXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUHWAz5VsfZMhRPSDro7WHG/qodTMwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvSFdBejVWc2ZaTWhSUFNEcm83V0hH X3FvZFRNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAWe0FjAN BgkqhkiG9w0BAQsFAAOCAQEAiTfVIcWHV8FcDky4RnXX9WWqZi2KsLPBPAS3niVu Z9bkBcVDB8IKmOCMT3b1dE7PyFfkX/cuZFeYVOOoORpmA2DhNApcO/HP1i4+p+3W 9+UNcaQ0xkWVjmvF1It6TQoj8NGGHgwDPgG9UkYm+zWwKTWtpv+bM6jH6OQK5PVO xbC/Y63zqz/PwipmcFZf3qjJva689MQLbANd38ejP7NmDxkmazzvgCdrUtzjiwOF 0vFxmiLUF1SxR2XfKJtxPIBEvQ2gDZh178MI83ypMh4yw9Ouy1dOROhoP8ANQ6Hu spPX/dCCYbu9MusGFi57QIXVLOcMJ6FNxa/Yf2HB4PhaYA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org