$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0hVhEC1G23IYg-9_24o8fgvLnNM.roa File: 0hVhEC1G23IYg-9_24o8fgvLnNM.roa (raw, json) Hash identifier: nNHi5LVGyhLoe5oGbm1pbWFNL/DmE07s9dKfeiFopGM= Subject key identifier: D2:15:61:10:2D:46:DB:72:18:83:EF:7F:DB:8A:3C:7E:0B:CB:9C:D3 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 12D3 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0hVhEC1G23IYg-9_24o8fgvLnNM.roa Signing time: Mon 26 Aug 2024 05:32:35 +0000 ROA not before: Mon 26 Aug 2024 05:32:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 14618 IP address blocks: 103.235.88.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4819 (0x12d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 26 05:32:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D21561102D46DB721883EF7FDB8A3C7E0BCB9CD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8f:2b:07:0a:19:59:27:a2:0d:8d:ad:c0:12: ca:58:4d:2f:2e:00:d1:80:8e:92:c5:5c:bf:b7:3c: 3c:c5:04:3b:e3:51:6c:21:6d:74:62:d2:9f:41:54: ce:82:26:c2:76:82:0d:cd:08:45:7a:de:c3:ee:0c: 4f:3d:ea:27:fb:bf:a4:13:37:4d:f0:41:01:2e:67: 5d:34:2c:54:e4:ce:cc:77:97:50:b9:bc:fc:be:29: 3a:5c:6b:d1:ad:27:e4:a7:78:38:a2:cc:91:32:a7: 59:de:4b:ae:2e:ba:57:8b:a4:c9:37:7d:29:ee:81: cc:a1:4f:38:66:65:cf:ea:92:e4:e0:27:46:48:09: 3a:f7:1f:0a:e7:bc:07:73:a2:3c:c9:6f:f4:62:6e: be:5c:b7:87:b3:33:4b:7b:41:74:38:82:58:aa:78: 02:ef:ec:5a:66:f7:c7:65:db:d2:8a:12:7e:4e:cc: ce:b0:c1:ff:a8:91:eb:e1:70:ba:be:89:9b:9b:b2: 2e:d9:37:c8:98:a0:57:1d:91:24:d3:f1:d1:50:82: 1b:b8:67:c8:f8:5e:1a:e3:d3:08:32:da:c0:27:82: d9:80:44:9c:1a:48:eb:0b:d0:6d:11:9f:9c:11:e8: 0f:19:43:94:c4:7f:fb:af:3e:55:e0:dd:d4:24:c2: ed:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:15:61:10:2D:46:DB:72:18:83:EF:7F:DB:8A:3C:7E:0B:CB:9C:D3 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0hVhEC1G23IYg-9_24o8fgvLnNM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.235.88.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:52:f1:b6:02:e2:c6:c4:fb:42:a9:c8:17:6e:39:f4:af:42: a5:79:d6:9d:c8:fa:ed:51:ad:2a:6f:6f:1c:a7:55:14:ae:2b: f1:dd:03:4d:03:02:45:f1:1f:af:98:f6:64:c4:2a:d6:b4:c1: 8c:31:d4:f1:30:f6:56:e2:3c:a0:64:6c:95:9b:02:2d:d3:59: 45:30:5a:d1:12:01:9b:aa:fa:fc:66:1e:3b:7c:57:23:83:16: c2:ec:10:20:6f:29:b8:f6:9a:9b:42:b9:68:f6:25:44:bf:86: 32:c3:cb:6b:19:43:91:fd:53:7c:a2:d0:18:33:8a:26:c8:a4: 05:79:8d:a8:73:8a:93:7e:db:35:dc:3e:d4:e7:c1:ab:ed:71: d6:81:95:8c:8b:6a:63:ac:f1:c5:f3:ca:35:70:07:50:a5:70: ce:ac:aa:5e:25:04:82:95:28:47:80:34:3f:b0:26:e0:0e:3d: 24:1f:97:92:14:0f:48:df:a0:74:01:6c:61:1f:1b:aa:36:0a: 9c:2d:bf:fb:52:06:ae:31:eb:10:db:be:39:8c:05:7b:9d:59: 2c:c5:f0:ef:9e:85:0b:4d:65:b9:5c:9a:c5:4c:ec:64:ff:92: f7:b3:48:43:36:bc:51:02:21:40:b8:cd:ad:a5:60:67:24:f3: 39:bf:dc:fa -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MjYw NTMyMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyMTU2MTEwMkQ0NkRC NzIxODgzRUY3RkRCOEEzQzdFMEJDQjlDRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDjysHChlZJ6INja3AEspYTS8uANGAjpLFXL+3PDzFBDvjUWwh bXRi0p9BVM6CJsJ2gg3NCEV63sPuDE896if7v6QTN03wQQEuZ100LFTkzsx3l1C5 vPy+KTpca9GtJ+SneDiizJEyp1neS64uuleLpMk3fSnugcyhTzhmZc/qkuTgJ0ZI CTr3HwrnvAdzojzJb/Ribr5ct4ezM0t7QXQ4gliqeALv7Fpm98dl29KKEn5OzM6w wf+okevhcLq+iZubsi7ZN8iYoFcdkSTT8dFQghu4Z8j4Xhrj0wgy2sAngtmARJwa SOsL0G0Rn5wR6A8ZQ5TEf/uvPlXg3dQkwu3NAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU0hVhEC1G23IYg+9/24o8fgvLnNMwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy8waFZoRUMxRzIzSVlnLTlfMjRv OGZndkxuTk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ+tY MA0GCSqGSIb3DQEBCwUAA4IBAQBKUvG2AuLGxPtCqcgXbjn0r0KledadyPrtUa0q b28cp1UUrivx3QNNAwJF8R+vmPZkxCrWtMGMMdTxMPZW4jygZGyVmwIt01lFMFrR EgGbqvr8Zh47fFcjgxbC7BAgbym49pqbQrlo9iVEv4Yyw8trGUOR/VN8otAYM4om yKQFeY2oc4qTfts13D7U58Gr7XHWgZWMi2pjrPHF88o1cAdQpXDOrKpeJQSClShH gDQ/sCbgDj0kH5eSFA9I36B0AWxhHxuqNgqcLb/7UgauMesQ2745jAV7nVksxfDv noULTWW5XJrFTOxk/5L3s0hDNrxRAiFAuM2tpWBnJPM5v9z6 -----END CERTIFICATE-----Generated at Sun Nov 24 21:02:09 2024 by rpki-client on console-fra.rpki-client.org